| |
| |||||||
Log-Analyse und Auswertung: setup.exe von vlc.de auf win 11 ausgeführtWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
08.02.2026, 11:43
| #1 |
| |  setup.exe von vlc.de auf win 11 ausgeführt Hallo liebes Trojaner Board, ich habe gestern dummerweise das Programm setup.exe von vlc.de runtergeladen, ausgeführt, geöffnet (meiner Erinnerung nach einige Häkchen abgewählt), nach 10 Minuten gemerkt, dass ich Mist gebaut hab und dann das Programm wieder deinstalliert. Bisherige Schritte: Von Windows Defender habe ich den Vollständigen Scan sowie die Offlineüberprüfung laufen lassen, beides unauffällig. Symptome: Bisher habe ich noch nichts bemerkt (PC nicht langsamer, keine Popups, Browser normal), aber es war auch erst gestern. Ich würde mich sehr über Hilfe freuen :) Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 07-02-2026
durchgeführt von nico (Administrator) auf PC-nicoR (Micro-Star International Co., Ltd. MS-7E26) (08-02-2026 10:52:47)
Gestartet von C:\Users\nico\Downloads\FRST64.exe
Geladene Profile: nico
Plattform: Microsoft Windows 11 Pro Version 25H2 26200.7623 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: Chrome
Start-Modus: Normal
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.282.428.0_x64__zpdnekdrzrea0\Spotify.exe <7>
(A225F3B5-240D-4EE9-BCF4-697A07F5E93E -> Micro-Star INT'L CO., LTD.) C:\Program Files\WindowsApps\9426MICRO-STARINTERNATION.MSICenter_2.0.64.0_x64__kzh8wxbdkxb8p\DCv2\DCv2.exe
(Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe
(C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\KeyboardSDK\ROGKBPlugin.exe
(C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\SwAgent\ArmourySwAgent.exe
(C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmouryHtmlDebugServer.exe
(C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe <5>
(C:\Program Files (x86)\MSI\MSI Center\MSI.CentralServer.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\MSI Center\Engine\CC_Engine_x64.exe
(C:\Program Files (x86)\MSI\MSI Center\MSI_Central_Service.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MSI Center\MSI.CentralServer.exe
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSSrcExt.exe
(C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe
(C:\Program Files\ASUS\Armoury Crate Service\ArmouryCrate.Service.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\Armoury Crate Service\ArmouryCrate.UserSessionHelper.exe
(cmd.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(Discord Inc. -> Discord Inc.) C:\Users\nico\AppData\Local\Discord\app-1.0.9223\Discord.exe <6>
(DriverStore\FileRepository\u0197640.inf_amd64_38091087f7899005\B025647\atiesrxx.exe ->) (Advanced Micro Devices -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0197640.inf_amd64_38091087f7899005\B025647\atieclxx.exe
(explorer.exe ->) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2>
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <18>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\26.002.0105.0001\OneDrive.Sync.Service.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc) C:\Windows\System32\DriverStore\FileRepository\amdppkg.inf_amd64_27762fb4b4d122d3\AmdPpkgSvc.exe
(services.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Windows\System32\DriverStore\FileRepository\amdfendr.inf_amd64_83dcee55c384eb60\amdfendrsr.exe
(services.exe ->) (Advanced Micro Devices -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0197640.inf_amd64_38091087f7899005\B025647\atiesrxx.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUS Inc.) C:\Program Files (x86)\ASUS\GameSDK Service\GameSDK.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> Asustek Computer Inc.) C:\Program Files (x86)\ASUS\AsusCertService\1.2.41\AsusCertService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files (x86)\LightingService\LightingService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\Armoury Crate Service\ArmouryCrate.Service.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Program Files\ASUS\Aura Wallpaper Service\AuraWallpaperService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25110.6-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25110.6-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25110.6-0\NisSrv.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI Center\Case\MSI_Case_Service.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MSI Center\MSI_Central_Service.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_7e93164ae8ff6bf7\RtkAudUService64.exe <2>
(SPEEDLINK) [Datei ist nicht signiert] C:\Program Files (x86)\SPEEDLINK\DECUS RESPEC Gaming Mouse\Monitor.EXE
(svchost.exe ->) (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTek COMPUTER INC.) C:\Program Files\WindowsApps\B9ECED6F.ArmouryCrate_6.4.7.0_x64__qmba6cd70vzyy\ArmouryCrate.exe
(svchost.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\CPUMetricsServer.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Program Files\ASUS\KINGSTON_Aac_DRAM\AacKingstonDramHal_x86.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files\ASUS\AacExtCard\extensionCardHal_x86.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files\ASUS\ASUS_Aac_DRAM\Aac3572DramHal_x86.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.195.0.0_x64__8wekyb3d8bbwe\MicrosoftStartFeedProvider\MicrosoftStartFeedProvider.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MSI Center\MSI.TerminalServer.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_7e93164ae8ff6bf7\RtkAudUService64.exe [3112448 2025-08-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [DECUS RESPEC Gaming Mouse Driver] => C:\Program Files (x86)\SPEEDLINK\DECUS RESPEC Gaming Mouse\Monitor.exe [3587072 2017-03-14] (SPEEDLINK) [Datei ist nicht signiert]
HKU\S-1-5-19\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4743528 2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4743528 2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1548267073-3587465546-3215327545-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4743528 2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1548267073-3587465546-3215327545-1001\...\Run: [MicrosoftEdgeAutoLaunch_8777BAF98F32F23A314B91BE41AA5DE3] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4314192 2026-02-05] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1548267073-3587465546-3215327545-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [5760152 2026-01-21] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-1548267073-3587465546-3215327545-1001\...\Run: [Microsoft.Lists] => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\OneDrive.Sync.Service.exe [954256 2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1548267073-3587465546-3215327545-1001\...\Run: [AMDNoiseSuppression] => C:\Windows\system32\AMD\ANR\AMDNoiseSuppression.exe [318288 2025-09-10] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
HKU\S-1-5-21-1548267073-3587465546-3215327545-1001\...\Run: [Discord] => C:\Users\nico\AppData\Local\Discord\Update.exe [1596344 2025-09-04] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-1548267073-3587465546-3215327545-1001\...\Run: [EADM] => C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALauncher.exe [3756704 2025-10-23] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-1548267073-3587465546-3215327545-1001\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [41671128 2026-01-31] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-18\...\Run: [AMDNoiseSuppression] => C:\WINDOWS\system32\AMD\ANR\AMDNoiseSuppression.exe [318288 2025-09-10] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
HKU\S-1-5-18\...\RunOnce: [StartRSX] => C:\Program Files\AMD\CNext\CNext\LauncherRSXRuntime.exe [71952 2026-01-08] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{49210152-871f-4ffa-961d-a172abcbc09d}] -> C:\Program Files\Google\Chrome\Application\PlatformExperienceHelper\platform_experience_helper.exe [2026-01-30] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\144.0.7559.133\Installer\chrmstp.exe [2026-02-07] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
HKLM\SOFTWARE\Policies\Google: Beschränkung <==== ACHTUNG
HKLM\SOFTWARE\Policies\Microsoft\Edge: Beschränkung <==== ACHTUNG
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {D9A12C9B-07B8-4089-AE79-DEFCF84C9D02} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1581568 2025-08-24] (Adobe Inc. -> Adobe Inc.)
Task: {B59FE9B2-6378-459F-A8D8-03062CEC54D2} - System32\Tasks\AMD Install Manager - Check For Updates => C:\Program Files\AMD\AMDInstallManager\AMDInstallManager.exe [61153544 2026-01-08] (Advanced Micro Devices -> Advanced Micro Devices, Inc.) -> C:\Program Files\AMD\AMDInstallManager\\-CheckForUpdates
Task: {E20A0759-CF2E-4DE8-B287-D79D06610D7D} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1047824 2026-01-08] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {03083A28-1767-4C46-80F8-E8609A9B088E} - System32\Tasks\AMDRyzenMasterSDKTask => C:\Program Files\AMD\CNext\CNext\cpumetricsserver.exe [192776 2026-01-08] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {900682FE-1308-4C80-89C9-8DFBAE890ABF} - System32\Tasks\ASUS\AcPowerNotification => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe [401304 2025-11-24] (ASUSTeK COMPUTER INC. -> ASUS)
Task: {A9FA82F6-E32E-4405-9E12-37DDD1F1C0DE} - System32\Tasks\ASUS\ArmourySocketServer => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\TaskSchedulerTool_ArmourySocketServer.exe [120728 2025-11-24] (ASUSTeK COMPUTER INC. -> TODO: <公司名稱>)
Task: {B81D7EB4-C3E9-4E5F-BA79-2B60307C7DDC} - System32\Tasks\ASUS\ASUSUpdateTaskMachineCore1dc2c1110d8a31b => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [253336 2025-09-22] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
Task: {CF93F7FD-51CD-4242-B2AF-FAB8A9BB8BD3} - System32\Tasks\ASUS\ASUSUpdateTaskMachineUA => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [253336 2025-09-22] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
Task: {8C8F0266-2F8B-463F-94ED-FB9FC4F0F0F9} - System32\Tasks\ASUS\P508PowerAgent_sdk => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ShareFromArmouryIII\Mouse\ROG STRIX CARRY\P508PowerAgent.exe (Keine Datei)
Task: {144616BF-04FB-40D4-A6D8-00F3FBEA4FDD} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem144.0.7547.0{CCB01FB2-62DC-489D-8098-6C6B4CB9BB09} => C:\Program Files (x86)\Google\GoogleUpdater\144.0.7547.0\updater.exe [7056536 2025-11-26] (Google LLC -> Google LLC)
Task: {D3F897E0-E359-4619-9FC7-637DC7DDAE7F} - System32\Tasks\Microsoft\Office\Office Actions Server => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ActionsServer\ActionsServer.exe [16268592 2026-02-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {C6C3782A-BA69-4E3C-A0AB-536BE009470A} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28622664 2026-01-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {03082BB1-0D11-40AA-BFA0-796B0AFA7B4F} - System32\Tasks\Microsoft\Office\Office Background Push Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\opushutil.exe [73568 2026-02-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {95A9E73B-D91E-46D3-A6FD-43DAB4BD0B9B} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28622664 2026-01-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {259EA0EC-56AE-4FF5-8084-2A4EFD218713} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309608 2026-02-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {30154F25-E77C-4B9C-9EC3-C79E72ED8EB1} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309608 2026-02-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {7AE8D9AB-023E-4037-8029-DD2FE9B7CF48} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [1346856 2026-02-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {7565BFB7-E9D0-4C13-95F4-6D94B04002F2} - System32\Tasks\Microsoft\Office\Office Serviceability Manager => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe [4447336 2026-01-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {E81CB806-CF46-4EBF-A08B-E797F8BA08AC} - System32\Tasks\Microsoft\Office\Office Startup Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ActionsServer\ActionsServer.exe [16268592 2026-02-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {9264AD45-FBAE-4DFE-BF91-DEE2861239B6} - System32\Tasks\Microsoft\Windows\Clip\ClipESU => %SystemRoot%\system32\clipesu.exe (Keine Datei)
Task: {B9A16D65-541E-4027-9517-9566BF300DC2} - System32\Tasks\Microsoft\Windows\Clip\ClipESUConsumer => %SystemRoot%\system32\ClipESUConsumer.exe -evaluateEligibility (Keine Datei)
Task: {42EC4ED5-9338-407D-BF0C-9D386F98B844} - System32\Tasks\Microsoft\Windows\Clip\ClipESUConsumerProcessECUpdate => %SystemRoot%\system32\ClipESUConsumer.exe -persistEligibilityStatus (Keine Datei)
Task: {5C52B5EA-FD8B-4E6D-827E-5F530EE23F96} - System32\Tasks\Microsoft\Windows\Clip\ClipEsuConsumerProcessPreOrder => %SystemRoot%\system32\ClipESUConsumer.exe -postProcessPreOrder (Keine Datei)
Task: {71655BA3-FF91-49F6-B7A4-B097105CFD3E} - System32\Tasks\Microsoft\Windows\Clip\ClipEsuConsumerProcessRefund => %SystemRoot%\system32\ClipESUConsumer.exe -processRefund (Keine Datei)
Task: {FB439B17-2182-45EE-A44C-6C81F835ED48} - System32\Tasks\Microsoft\Windows\Clip\EnableClipESU => %SystemRoot%\system32\clipesu.exe -e (Keine Datei)
Task: {E88D9B2C-DDEA-47B2-9582-085153004DB5} - System32\Tasks\Microsoft\Windows\Location\Notifications => %windir%\System32\LocationNotificationWindows.exe (Keine Datei)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (Keine Datei)
Task: {CAB76809-EDC0-40D2-A888-AD9BEDF4E88A} - System32\Tasks\Microsoft\Windows\UNP\RunUpdateNotificationMgr => %windir%\System32\UNP\UpdateNotificationMgr.exe (Keine Datei)
Task: {346A3362-1890-47D2-BBA3-57477F4DD1F0} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe /RunOnAC RebootDialog (Keine Datei)
Task: {4F358CF7-E1D3-47DF-9D99-E7296DFC3AE6} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe /RunOnBattery RebootDialog (Keine Datei)
Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Keine Datei)
Task: {A3A34B1C-A1AC-4E5E-AC5F-9188A0AF4F3D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25110.6-0\MpCmdRun.exe [1803016 2025-12-21] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E674B6D0-9814-40BE-B333-A20A5C7F2966} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25110.6-0\MpCmdRun.exe [1803016 2025-12-21] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2D16DE90-5750-4FF4-B762-94845F5B9130} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25110.6-0\MpCmdRun.exe [1803016 2025-12-21] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A720D473-7B60-4DEE-AD65-990AE0BB171E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25110.6-0\MpCmdRun.exe [1803016 2025-12-21] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {1E321574-AFFD-445E-A36A-E64C79D13329} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1047824 2026-01-08] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {C3A992AB-EAC2-4D46-B0EF-9A6CA007E93C} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4397416 2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {12E265D7-5108-46F5-B689-0C96D96CF587} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1548267073-3587465546-3215327545-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4397416 2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {5A14FD02-C5F2-481F-825E-9D131E560080} - System32\Tasks\OneDrive Startup Task-S-1-5-21-1548267073-3587465546-3215327545-1001 => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\OneDriveLauncher.exe [745872 2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {09FB4B26-E6BD-4CC5-9ABA-0FA4A81D7DA0} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [143624 2026-01-08] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {FBF93C94-73EC-4833-A88E-F067B6BEA5FE} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [312080 2026-01-08] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{6bfd4da1-d45b-47d3-92c5-16da105eeffa}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{6bfd4da1-d45b-47d3-92c5-16da105eeffa}: [DhcpDomain] fritz.box
FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2026-01-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2026-01-31] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2026-02-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2025-12-15] (Microsoft Corporation -> Microsoft Corporation)
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\nico\AppData\Local\Microsoft\Edge\User Data\Default [2026-02-07]
Edge Extension: (Google Docs Offline) - C:\Users\nico\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2026-02-07]
Edge Extension: (Edge relevant text changes) - C:\Users\nico\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2025-07-13]
Chrome:
=======
CHR Profile: C:\Users\nico\AppData\Local\Google\Chrome\User Data\Default [2026-02-08]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\nico\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2026-02-05]
CHR Extension: (VPN for Chrome: NordVPN proxy protection) - C:\Users\nico\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjoaledfpmneenckfbpdfhkmimnjocfa [2026-02-01]
CHR Extension: (Google Docs Offline) - C:\Users\nico\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2026-01-23]
CHR Extension: (AdBlock − blockieren Sie Werbung im Internet) - C:\Users\nico\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2026-02-06]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\nico\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2025-07-14]
CHR HKU\S-1-5-21-1548267073-3587465546-3215327545-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
==================== Dienste (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [174584 2025-08-24] (Adobe Inc. -> Adobe Inc.)
S2 AmdAppCompatSvc; C:\WINDOWS\System32\DriverStore\FileRepository\amdappcompat.inf_amd64_e01b29e17ce4a109\AmdAppCompatSvc.exe [310704 2025-09-10] (Advanced Micro Devices -> Advanced Micro Devices, Inc)
R2 AmdPpkgSvc; C:\WINDOWS\System32\DriverStore\FileRepository\amdppkg.inf_amd64_27762fb4b4d122d3\AmdPpkgSvc.exe [515480 2025-11-19] (Advanced Micro Devices -> Advanced Micro Devices, Inc)
S3 ArmouryCrateDownloadTool; C:\WINDOWS\System32\DriverStore\FileRepository\rogms.inf_amd64_7bcd8839c8e4f2a7\ArmouryLiveUpdate.exe [577440 2025-11-04] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R2 ArmouryCrateService; C:\Program Files\ASUS\Armoury Crate Service\ArmouryCrate.Service.exe [451176 2026-02-01] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
S2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.02.12\atkexComSvc.exe [457544 2024-08-29] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S2 asus; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [253336 2025-09-22] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
R2 AsusCertService; C:\Program Files (x86)\ASUS\AsusCertService\1.2.41\AsusCertService.exe [497560 2025-11-20] (ASUSTeK COMPUTER INC. -> Asustek Computer Inc.)
S3 asusm; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [253336 2025-09-22] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
S2 AsusROGLSLService; C:\Program Files (x86)\ASUS\AsusROGLSLService\AsusROGLSLService.exe [682904 2025-09-22] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 Aura Wallpaper Service; C:\Program Files\ASUS\Aura Wallpaper Service\AuraWallpaperService.exe [650344 2025-09-16] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13263248 2026-01-30] (Microsoft Corporation -> Microsoft Corporation)
S3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [19291808 2025-10-23] (Electronic Arts, Inc. -> Electronic Arts)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\26.002.0105.0001\FileSyncHelper.exe [3625320 2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
R2 GameSDK Service; C:\Program Files (x86)\ASUS\GameSDK Service\GameSDK.exe [397544 2022-05-31] (ASUSTeK COMPUTER INC. -> ASUS Inc.)
R2 LightingService; C:\Program Files (x86)\LightingService\LightingService.exe [5083032 2025-12-18] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25110.6-0\MpDefenderCoreService.exe [2063376 2025-12-21] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 MSI_Case_Service; C:\Program Files (x86)\MSI\MSI Center\Case\MSI_Case_Service.exe [134160 2025-05-05] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MSI_Center_Service; C:\Program Files (x86)\MSI\MSI Center\MSI_Central_Service.exe [181776 2025-04-17] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\26.002.0105.0001\OneDriveUpdaterService.exe [3918224 2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
R2 ROG Live Service; C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe [2769512 2026-01-14] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [803088 2025-12-15] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25110.6-0\NisSrv.exe [4426832 2025-12-21] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25110.6-0\MsMpEng.exe [290704 2025-12-21] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R3 ACSEHIDRemap; C:\WINDOWS\System32\drivers\ACSEHIDRemap.sys [135160 2025-09-29] (WDKTestCert Ken,133462420546156706 -> )
R3 ACSEVirtualBus; C:\WINDOWS\System32\drivers\ACSEVirtualBus.sys [47088 2025-09-29] (WDKTestCert Ken,133462420546156706 -> )
R3 AmdAppCompat; C:\WINDOWS\System32\DriverStore\FileRepository\amdappcompat.inf_amd64_e01b29e17ce4a109\AmdAppCompat.sys [44984 2025-09-10] (Advanced Micro Devices -> Advanced Micro Devices)
R3 amdfendrmgr; C:\WINDOWS\System32\DriverStore\FileRepository\amdfendr.inf_amd64_83dcee55c384eb60\amdfendrmgr.sys [37272 2025-11-10] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
R3 amdgpio3; C:\WINDOWS\System32\drivers\amdgpio3.sys [43400 2025-09-10] (ASMedia Technology Inc. -> Advanced Micro Devices, Inc)
R3 AmdPpkg; C:\WINDOWS\System32\DriverStore\FileRepository\amdppkg.inf_amd64_27762fb4b4d122d3\AmdPpkg.sys [35224 2025-11-19] (Advanced Micro Devices -> Advanced Micro Devices)
R2 AMDRyzenMasterDriverV31; C:\WINDOWS\system32\AMDRyzenMasterDriver.sys [61832 2026-01-08] (Advanced Micro Devices -> Advanced Micro Devices)
R3 AMDSAFD; C:\WINDOWS\System32\DriverStore\FileRepository\amdsafd.inf_amd64_d4de13a10f2586d0\amdsafd.sys [112952 2024-06-15] (AMD Test Build -> Advanced Micro Devices)
R3 amduw23g-197639-19a81ed0; C:\WINDOWS\System32\DriverStore\FileRepository\u0197639.inf_amd64_6e9872ffe0e526d3\B025646\amdkmdag.sys [102087184 2026-01-19] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
R3 amduw23g-197640-f2ee24e9; C:\WINDOWS\System32\DriverStore\FileRepository\u0197640.inf_amd64_38091087f7899005\B025647\amdkmdag.sys [112496656 2026-01-19] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [63856 2025-09-10] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
R1 Asusgio3; C:\Windows\system32\drivers\AsIO3.sys [60040 2025-11-20] (ASUSTeK COMPUTER INC. -> Asustek Computer Inc.)
R3 cpuz160; C:\ProgramData\CPUID Software\sdk\pTbAEmXbC6hC [44696 2025-09-22] (Microsoft Windows Hardware Compatibility Publisher -> CPUID)
R1 CTIAIO; C:\Windows\system32\drivers\CtiAIo64.sys [34920 2025-09-22] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Innovation Co., LTd.)
R4 IOMap; C:\WINDOWS\system32\drivers\IOMap64.sys [55416 2024-12-01] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
R3 KslD; C:\WINDOWS\System32\drivers\wd\KslD.sys [333192 2025-12-21] (Microsoft Windows -> Microsoft Corporation)
R1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [19672 2023-12-10] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
R3 MTKBTFilterx64; C:\WINDOWS\System32\DriverStore\FileRepository\mtkbtfilter.inf_amd64_cde37df5add40ae6\mtkbtfilterx.sys [529928 2024-07-03] (Microsoft Windows Hardware Compatibility Publisher -> MediaTek Inc.)
R3 mtkwlex; C:\WINDOWS\System32\DriverStore\FileRepository\mtkwl6ex.inf_amd64_6194fff95628cf72\mtkwl6ex.sys [1714808 2024-07-03] (Microsoft Windows Hardware Compatibility Publisher -> MediaTek Inc.)
R3 NTIOLib_CC_COMM; C:\Program Files (x86)\MSI\MSI Center\Lib\SYS\NTIOLib_X64.sys [32592 2024-09-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 ROGMS; C:\WINDOWS\System32\DriverStore\FileRepository\rogms.inf_amd64_7bcd8839c8e4f2a7\ROGMS.sys [41456 2025-11-04] (ASUSTeK COMPUTER INC. -> Windows (R) Win 7 DDK provider)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [21928 2025-12-21] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [635272 2025-12-21] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [102792 2025-12-21] (Microsoft Windows -> Microsoft Corporation)
S4 AmdTools64; \SystemRoot\System32\drivers\AmdTools64.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat (erstellte) (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2026-02-08 10:52 - 2026-02-08 10:53 - 000033336 _____ C:\Users\nico\Downloads\FRST.txt
2026-02-08 10:52 - 2026-02-08 10:52 - 000000000 ____D C:\FRST
2026-02-08 10:51 - 2026-02-08 10:51 - 002447360 _____ (Farbar) C:\Users\nico\Downloads\FRST64.exe
2026-02-08 00:33 - 2026-02-08 00:33 - 000000000 ____D C:\WINDOWS\Microsoft Antimalware
2026-02-08 00:20 - 2026-02-08 00:26 - 000000000 ____D C:\Program Files\VideoLAN
2026-02-08 00:20 - 2026-02-08 00:20 - 000178784 _____ C:\Users\nico\Downloads\setup.exe
2026-02-08 00:20 - 2026-02-08 00:20 - 000000000 ____D C:\Users\nico\AppData\Local\VLC Plus Player Downloader
2026-02-08 00:19 - 2026-02-08 00:19 - 005235880 _____ (BurdaForward GmbH) C:\Users\nico\Downloads\VLC media player (64 Bit) - CHIP Installer _GvBvT.exe
2026-02-07 10:41 - 2026-02-08 00:55 - 000000000 ____D C:\WINDOWS\CbsTemp
2026-02-01 22:25 - 2026-02-01 22:25 - 000707760 _____ C:\WINDOWS\system32\perfh007.dat
2026-02-01 22:25 - 2026-02-01 22:25 - 000150734 _____ C:\WINDOWS\system32\perfc007.dat
2026-01-26 22:54 - 2026-02-08 10:45 - 000003106 _____ C:\WINDOWS\system32\Tasks\AMDInstallLauncher
2026-01-26 19:01 - 2026-01-26 19:01 - 000007605 _____ C:\Users\nico\AppData\Local\Resmon.ResmonCfg
2026-01-26 18:51 - 2026-01-26 18:51 - 000002622 _____ C:\WINDOWS\system32\Tasks\AMDRyzenMasterSDKTask
2026-01-26 18:51 - 2026-01-26 18:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Software꞉ Adrenalin Edition
2026-01-26 18:51 - 2026-01-26 18:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Bug Report Tool
2026-01-26 18:50 - 2026-01-19 19:24 - 005175312 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdadlx64.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 004832784 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdadlx32.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 002498696 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdfendrsr.etz
2026-01-26 18:50 - 2026-01-19 19:24 - 002432016 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2026-01-26 18:50 - 2026-01-19 19:24 - 002432016 _____ C:\WINDOWS\system32\vulkaninfo.exe
2026-01-26 18:50 - 2026-01-19 19:24 - 002192400 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 001933832 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2026-01-26 18:50 - 2026-01-19 19:24 - 001933832 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2026-01-26 18:50 - 2026-01-19 19:24 - 001873936 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 001873936 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 001724592 _____ (AMD) C:\WINDOWS\system32\amf-mft-mjpeg-decoder64.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 001402048 _____ (AMD) C:\WINDOWS\SysWOW64\amf-mft-mjpeg-decoder32.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 001329168 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdsasrv64.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 001185296 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdlvr64.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 001069576 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe
2026-01-26 18:50 - 2026-01-19 19:24 - 000998928 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdlvr32.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 000801808 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Rapidfire64.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 000678928 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\Rapidfire.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 000632840 _____ C:\WINDOWS\system32\GameManager64.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 000592400 _____ C:\WINDOWS\system32\amdgfxinfo64.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 000559632 _____ C:\WINDOWS\system32\atieah64.exe
2026-01-26 18:50 - 2026-01-19 19:24 - 000550416 _____ C:\WINDOWS\system32\dgtrayicon.exe
2026-01-26 18:50 - 2026-01-19 19:24 - 000543248 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdsacli32.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 000526344 _____ C:\WINDOWS\system32\EEURestart.exe
2026-01-26 18:50 - 2026-01-19 19:24 - 000480272 _____ C:\WINDOWS\SysWOW64\GameManager32.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 000473616 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 000471568 _____ C:\WINDOWS\system32\amdlogum.exe
2026-01-26 18:50 - 2026-01-19 19:24 - 000450056 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 000433800 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdfendr.stz
2026-01-26 18:50 - 2026-01-19 19:24 - 000422408 _____ C:\WINDOWS\SysWOW64\atieah32.exe
2026-01-26 18:50 - 2026-01-19 19:24 - 000200712 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 000190984 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 000159472 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 000150536 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 000147464 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amfrt64.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 000131248 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 000122384 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amfrt32.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 000056968 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdfendrmgr.stz
2026-01-26 18:50 - 2026-01-19 19:24 - 000051728 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\RapidFireServer64.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 000048648 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\RapidFireServer.dll
2026-01-26 18:50 - 2026-01-19 19:23 - 115295760 _____ C:\WINDOWS\system32\amd_comgr_2.dll
2026-01-26 18:50 - 2026-01-19 19:23 - 115286544 _____ C:\WINDOWS\system32\amd_comgr_3.dll
2026-01-26 18:50 - 2026-01-19 19:23 - 096949256 _____ C:\WINDOWS\SysWOW64\amd_comgr32.dll
2026-01-26 18:50 - 2026-01-19 19:23 - 018195464 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdhip64_7.dll
2026-01-26 18:50 - 2026-01-19 19:23 - 000606472 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdsacli64.dll
2026-01-26 18:50 - 2026-01-19 19:23 - 000347144 _____ C:\WINDOWS\system32\clinfo.exe
2026-01-26 18:50 - 2026-01-19 19:23 - 000247312 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2026-01-26 18:50 - 2026-01-19 19:23 - 000212488 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2026-01-26 18:50 - 2026-01-19 19:23 - 000182360 _____ C:\WINDOWS\system32\amdmiracast.dll
2026-01-26 18:50 - 2026-01-19 19:23 - 000177168 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmmcl6.dll
2026-01-26 18:50 - 2026-01-19 19:23 - 000169856 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll
2026-01-26 18:50 - 2026-01-19 19:23 - 000159472 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll
2026-01-26 18:50 - 2026-01-19 19:23 - 000145928 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmmcl.dll
2026-01-26 18:50 - 2026-01-19 19:23 - 000145216 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll
2026-01-26 18:50 - 2026-01-19 19:23 - 000142728 _____ C:\WINDOWS\system32\amdxc64.dll
2026-01-26 18:50 - 2026-01-19 19:23 - 000131248 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll
2026-01-26 18:50 - 2026-01-19 19:23 - 000118744 _____ C:\WINDOWS\SysWOW64\amdxc32.dll
2026-01-26 18:50 - 2026-01-19 18:31 - 120371952 _____ C:\WINDOWS\system32\amdxc64.so
2026-01-26 18:50 - 2026-01-19 17:56 - 000787984 _____ C:\WINDOWS\system32\hiprt0200064.dll
2026-01-23 02:33 - 2026-01-23 02:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMDInstallManager
==================== Ein Monat (geänderte) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2026-02-08 10:50 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SystemTemp
2026-02-08 10:45 - 2025-10-29 22:09 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2026-02-08 10:45 - 2025-10-29 22:07 - 000002044 _____ C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2
2026-02-08 10:45 - 2025-10-29 22:05 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2026-02-08 10:45 - 2025-09-22 23:36 - 000000000 ____D C:\Users\nico\AppData\Roaming\asus_framework
2026-02-08 10:45 - 2025-09-05 17:40 - 000000000 ____D C:\Users\nico\AppData\Roaming\discord
2026-02-08 10:45 - 2025-09-05 17:40 - 000000000 ____D C:\Users\nico\AppData\Local\Discord
2026-02-08 10:45 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\ServiceState
2026-02-08 10:45 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\AppReadiness
2026-02-08 10:45 - 2024-04-01 08:26 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2026-02-08 10:45 - 2024-04-01 08:24 - 000000000 ____D C:\WINDOWS\INF
2026-02-08 10:45 - 2022-01-01 10:22 - 000012288 ___SH C:\DumpStack.log.tmp
2026-02-08 00:55 - 2025-07-13 13:17 - 000000000 ____D C:\Users\nico\AppData\Local\D3DSCache
2026-02-08 00:33 - 2024-04-01 08:21 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2026-02-07 23:45 - 2022-01-01 10:22 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2026-02-07 23:27 - 2025-10-29 01:56 - 000000000 ____D C:\Users\nico
2026-02-07 11:19 - 2025-09-05 17:40 - 000002247 _____ C:\Users\nico\Desktop\Discord.lnk
2026-02-07 10:32 - 2025-07-13 13:28 - 000000000 ____D C:\Users\nico\AppData\Local\Comms
2026-02-07 09:41 - 2025-07-18 13:09 - 000000000 ____D C:\Program Files\Microsoft Office
2026-02-07 09:40 - 2025-07-14 10:32 - 000002239 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2026-02-07 09:40 - 2025-07-14 10:32 - 000002198 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2026-02-07 09:34 - 2025-08-05 23:51 - 000000000 ____D C:\Users\nico\AppData\Local\CrashDumps
2026-02-06 12:35 - 2025-07-18 18:30 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2026-02-05 23:25 - 2025-10-30 18:18 - 000000000 ____D C:\ProgramData\Whesvc
2026-02-05 23:13 - 2025-07-16 08:50 - 000000000 ____D C:\Users\nico\Desktop\Wallpapers
2026-02-05 16:56 - 2024-04-01 08:26 - 000000000 ___HD C:\Program Files\WindowsApps
2026-02-03 22:54 - 2025-07-13 13:25 - 000000000 ____D C:\Users\nico\AppData\Local\AMD_Common
2026-02-03 22:48 - 2025-10-29 22:09 - 000003596 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1548267073-3587465546-3215327545-1001
2026-02-03 22:48 - 2025-10-29 22:09 - 000003552 _____ C:\WINDOWS\system32\Tasks\OneDrive Startup Task-S-1-5-21-1548267073-3587465546-3215327545-1001
2026-02-03 22:48 - 2025-10-29 22:09 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2026-02-03 22:48 - 2025-07-18 13:12 - 000002023 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2026-02-03 17:03 - 2025-10-30 18:19 - 000000000 ____D C:\Users\nico\AppData\Local\comgr
2026-02-03 12:56 - 2026-01-07 16:30 - 000000000 ____D C:\Users\nico\Desktop\Filmmaking
2026-02-03 10:28 - 2025-11-03 19:06 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2026-02-03 10:28 - 2025-11-03 19:06 - 000002061 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2026-02-03 10:15 - 2025-09-22 23:34 - 000000000 ____D C:\Program Files\ASUS
2026-02-03 10:15 - 2025-09-22 23:22 - 000000000 ____D C:\ProgramData\ASUS
2026-02-01 22:25 - 2025-10-29 22:11 - 001637736 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2026-02-01 22:25 - 2025-07-13 13:22 - 000000000 ____D C:\ProgramData\Package Cache
2026-02-01 22:24 - 2025-10-29 22:09 - 000000000 ____D C:\WINDOWS\system32\Tasks\ASUS
2026-02-01 22:24 - 2025-09-22 23:47 - 000000000 ____D C:\Program Files\dotnet
2026-02-01 22:24 - 2025-09-22 23:47 - 000000000 ____D C:\Program Files (x86)\LightingService
2026-02-01 22:24 - 2025-07-13 13:26 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2026-02-01 22:23 - 2025-09-22 23:22 - 000000000 ____D C:\Program Files (x86)\ASUS
2026-01-31 10:12 - 2025-07-13 13:28 - 000008192 _____ C:\WINDOWS\system32\Drivers\mtkRunTimeDataWdi.bin
2026-01-27 23:44 - 2025-07-13 13:40 - 000000000 ____D C:\Program Files (x86)\Steam
2026-01-26 18:51 - 2025-12-21 12:06 - 000003484 _____ C:\WINDOWS\system32\Tasks\ModifyLinkUpdate
2026-01-26 18:51 - 2025-12-21 12:06 - 000003152 _____ C:\WINDOWS\system32\Tasks\StartCN
2026-01-26 18:51 - 2025-12-21 12:06 - 000003072 _____ C:\WINDOWS\system32\Tasks\StartDVR
2026-01-26 18:51 - 2025-07-13 13:25 - 000000000 ____D C:\Program Files\AMD
2026-01-26 18:51 - 2025-07-13 13:22 - 000000000 ____D C:\AMD
2026-01-25 23:39 - 2025-10-29 22:09 - 000003754 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2026-01-25 23:39 - 2025-10-29 22:09 - 000003628 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2026-01-23 02:33 - 2025-10-29 22:09 - 000004054 _____ C:\WINDOWS\system32\Tasks\AMD Install Manager - Check For Updates
2026-01-20 23:12 - 2025-07-13 13:17 - 000000000 ____D C:\Users\nico\AppData\Local\Packages
2026-01-20 19:45 - 2025-10-29 22:05 - 000477464 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2026-01-20 19:45 - 2024-04-01 17:36 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2026-01-20 19:45 - 2024-04-01 08:26 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2026-01-20 19:45 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2026-01-20 19:45 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2026-01-20 19:45 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2026-01-20 19:45 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SystemResources
2026-01-20 19:45 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2026-01-20 19:45 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\setup
2026-01-20 19:45 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2026-01-20 19:45 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\bcastdvr
2026-01-20 00:03 - 2025-10-29 22:09 - 003276800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2026-01-10 16:18 - 2025-07-13 13:40 - 000000000 ____D C:\Users\nico\AppData\Local\Steam
2026-01-09 00:29 - 2025-07-21 23:03 - 003093816 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\AMDBugReportTool.exe
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========
2026-01-26 19:01 - 2026-01-26 19:01 - 000007605 _____ () C:\Users\nico\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
==================== Ende von FRST.txt ========================
Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 07-02-2026
durchgeführt von nico (08-02-2026 10:53:38)
Gestartet von C:\Users\nico\Downloads
Microsoft Windows 11 Pro Version 25H2 26200.7623 (X64) (2025-10-29 21:09:20)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
Administrator (S-1-5-21-1548267073-3587465546-3215327545-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1548267073-3587465546-3215327545-503 - Limited - Disabled)
Gast (S-1-5-21-1548267073-3587465546-3215327545-501 - Limited - Disabled)
nico (S-1-5-21-1548267073-3587465546-3215327545-1001 - Administrator - Enabled) => C:\Users\nico
WDAGUtilityAccount (S-1-5-21-1548267073-3587465546-3215327545-504 - Limited - Disabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
7-Zip 25.01 (x64) (HKLM\...\7-Zip) (Version: 25.01 - Igor Pavlov)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1031-1033-7760-BC15014EA700}) (Version: 25.001.21151 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601120}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
AMD Application Compatibility Database Driver (HKLM-x32\...\{7466773D-AE4B-48F6-8E12-D64B555C1BEA}) (Version: 1.0.0.3 - Advanced Micro Devices, Inc.) Hidden
AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 7.11.26.2142 - Advanced Micro Devices, Inc.)
AMD GPIO2 Driver (HKLM-x32\...\{E9DD399F-21A3-479E-A7DF-D6CF4B2ADBF3}) (Version: 2.2.0.134 - Advanced Micro Devices, Inc.) Hidden
AMD I2C Driver (HKLM-x32\...\{B31D92D9-2914-46B0-9738-F668A563DE73}) (Version: 1.2.0.126 - Advanced Micro Devices, Inc.) Hidden
AMD Install Manager (HKLM\...\{569DDC87-94F9-4D4E-BC04-270227EC8828}) (Version: 25.30.26008.1803 - Advanced Micro Devices, Inc.)
AMD PPM Provisioning File Driver (HKLM-x32\...\{3665A5DE-D07C-46D7-9207-713E8E9FEF32}) (Version: 8.0.0.59 - Advanced Micro Devices, Inc.) Hidden
AMD Privacy View (HKLM\...\{D8E24EA6-807B-48D0-86D6-A9C5E74B8F2C}) (Version: 1.02.0001 - Eyeware Tech SA)
AMD PSP Driver (HKLM-x32\...\{988F14B8-79A8-475D-BAC7-83F96AD3D821}) (Version: 5.40.0.0 - Advanced Micro Devices, Inc.) Hidden
AMD Ryzen Master SDK (HKLM\...\{DBD50508-5F75-416B-995D-C42433A00944}) (Version: 2.14.2.3330 - Advanced Micro Devices, Inc.)
AMD SBxxx SMBus Driver (HKLM-x32\...\{AAE0E27D-C88A-49BA-8715-77ADCD4286A3}) (Version: 5.12.0.44 - Advanced Micro Devices, Inc.) Hidden
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 26.1.1 - Advanced Micro Devices, Inc.)
AMD_Chipset_Drivers (HKLM-x32\...\{a2c5e97a-dd0d-4a8c-b1fc-dfcaf9a0a4a2}) (Version: 7.11.26.2142 - Advanced Micro Devices, Inc.) Hidden
AniMeVisionFont_STRIX_SCAR (HKLM\...\{09125B1C-D984-4FF3-AF65-391CF4E5FD2A}) (Version: 1.0.1 - ASUSTek Computer Inc.) Hidden
Armoury Crate Service (HKLM\...\Armoury Crate Service) (Version: 6.4.7.0 - ASUSTeK COMPUTER INC.)
ASUS Aac_GmAcc HAL (HKLM\...\{998249B1-6913-447E-AA37-F445B8CA33D0}) (Version: 1.0.12.0 - ASUSTek COMPUTER INC.) Hidden
ASUS Aac_GmAcc HAL (HKLM-x32\...\{c3219916-0c5a-483c-8b38-bdd71cf96365}) (Version: 1.0.12.0 - ASUSTek COMPUTER INC.) Hidden
ASUS Ambient HAL (HKLM\...\{867FA4F4-652B-41BD-90C0-E795B5487978}) (Version: 7.15.0.0 - ASUSTeK COMPUTER INC.) Hidden
ASUS Ambient HAL (HKLM-x32\...\{784f961c-218c-4905-b79d-bce3f01d3626}) (Version: 7.15.0.0 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Extension Card HAL (HKLM\...\{237E1CAC-1708-4940-AC34-DF15C079AB70}) (Version: 1.1.0.20 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Extension Card HAL (HKLM-x32\...\{49c4358d-054e-4cf1-9ec1-dca3487f304a}) (Version: 1.1.0.20 - ASUSTeK COMPUTER INC.) Hidden
ASUS Aura SDK (HKLM\...\{CF8E6E00-9C03-4440-81C0-21FACB921A6B}) (Version: 3.07.02 - ASUSTeK COMPUTER INC.) Hidden
ASUS Framework Service (HKLM-x32\...\{339A6383-7862-46DA-8A9D-E84180EF9424}) (Version: 4.2.4.8 - ASUSTeK Computer Inc.)
ASUS Keyboard HAL (HKLM\...\{ECB7DB5E-9707-4DBC-8713-9FC4A4AF436E}) (Version: 1.3.18.0 - ASUSTek COMPUTER INC.) Hidden
ASUS Keyboard HAL (HKLM-x32\...\{d13e6383-8403-46ea-a487-b67f99d54947}) (Version: 1.3.18.0 - ASUSTek COMPUTER INC.) Hidden
ASUS Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.107.151 - ASUSTeK Computer Inc.) Hidden
AURA DRAM Component (HKLM\...\{86D4C8A2-DB22-4948-950D-28DD5145F91C}) (Version: 1.1.29 - ASUS) Hidden
AURA DRAM Component (HKLM-x32\...\{f70a8a88-540d-485d-9aa8-001486fb050e}) (Version: 1.1.29 - ASUS) Hidden
AURA lighting effect add-on (HKLM-x32\...\{1E2EA04B-FCA7-457E-B6F4-F33E1858E859}) (Version: 0.0.52 - ASUSTek COMPUTER INC.)
AURA lighting effect add-on x64 (HKLM\...\{C5A4A164-4428-4931-B728-96EEF0FA3C44}) (Version: 0.0.52 - ASUSTek COMPUTER INC.)
AURA Service (HKLM-x32\...\{4fd68e38-4176-4fea-82f8-0b52bf9db34b}) (Version: 3.10.04 - ASUSTeK COMPUTER INC.)
AURA Service (HKLM-x32\...\{56EEEF7D-0AE3-401A-898B-581719D005AE}) (Version: 3.10.04 - ASUSTeK COMPUTER INC.) Hidden
Aura Wallpaper HTML (HKLM-x32\...\{fd36a871-5a75-4285-a469-61bbe3dbd858}) (Version: 2.1.10.0 - ASUSTek Computer Inc.)
Aura Wallpaper Service (HKLM\...\{A78E52FB-5921-0A22-5D0B-212641047CF4}) (Version: 2.1.10.0 - ASUSTeK COMPUTER INC.)
Blackmagic RAW Common Components (HKLM\...\{FCDBA071-A602-43E6-BFD4-4A6AC43D3556}) (Version: 5.1 - Blackmagic Design)
Branding64 (HKLM\...\{492AEFBE-1B81-4C20-A111-E6974BB98EC5}) (Version: 1.00.0009 - Advanced Micro Devices, Inc.) Hidden
CPUID CPU-Z MSI 2.15 (HKLM\...\CPUID CPU-Z MSI_is1) (Version: 2.15 - CPUID, Inc.)
DaVinci Resolve (HKLM\...\{947B464E-D01B-46D9-912B-F2B8756FA71E}) (Version: 20.3.10006 - Blackmagic Design)
DaVinci Resolve Control Panels (HKLM\...\{6DF13AB8-1697-46A2-8017-F68D860FC201}) (Version: 2.3.4.0 - Blackmagic Design)
DECUS RESPEC Gaming Mouse Driver (HKLM-x32\...\{CF88BB19-254D-4063-88C3-F0DF688ED577}) (Version: 1.2 - Joellenbeck GmbH)
Discord (HKU\S-1-5-21-1548267073-3587465546-3215327545-1001\...\Discord) (Version: 1.0.9223 - Discord Inc.)
EA app (HKLM\...\{C2622085-ABD2-49E5-8AB9-D3D6A642C091}) (Version: 13.579.0.6092 - Electronic Arts) Hidden
EA app (HKLM-x32\...\{a5316e04-4f57-44b2-bc29-c4e58fa0fea1}) (Version: 13.579.0.6092 - Electronic Arts)
ENE RGB HAL (HKLM\...\{E050E98C-5524-4AFB-9E53-97700BEF2C02}) (Version: 1.1.58.4 - Ene Tech.) Hidden
ENE RGB HAL (HKLM-x32\...\{a06f2235-c1cb-4cd6-91ac-30089f052973}) (Version: 1.1.58.4 - Ene Tech.) Hidden
ENE_EHD_M2_HAL (HKLM\...\{37A48B7F-D4EA-4863-844E-A284E2AA3C5D}) (Version: 1.0.14.0 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_M2_HAL (HKLM-x32\...\{c1d017c2-8846-4000-9254-5689eccd462e}) (Version: 1.0.14.0 - ENE TECHNOLOGY INC.) Hidden
GameSDK Service (HKLM-x32\...\{021d69c3-d686-4a94-8fb5-fd1ee782fb14}) (Version: 1.0.5.0 - ASUSTek COMPUTER INC.)
GameSDK Service (HKLM-x32\...\{7160DA8D-3F25-4F6E-ABC8-F693551D82FA}) (Version: 1.0.5.0 - ASUSTek COMPUTER INC.) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 144.0.7559.133 - Google LLC)
Kingston AURA DRAM Component (HKLM\...\{965CDF5F-901C-476F-B3A8-7396701B1129}) (Version: 1.1.40 - KINGSTON COMPONENTS INC.) Hidden
Kingston AURA DRAM Component (HKLM-x32\...\{2dcabc26-feae-4bc3-afc0-fba6e9f32af4}) (Version: 1.1.40 - KINGSTON COMPONENTS INC.) Hidden
Microsoft .NET Host - 8.0.21 (x64) (HKLM\...\{72357746-B194-485C-A161-FB80F419DC20}) (Version: 64.84.40925 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 8.0.21 (x64) (HKLM\...\{B382D796-20D3-45DA-AB94-E98D99668B10}) (Version: 64.84.40925 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 8.0.21 (x64) (HKLM\...\{EEFB29A5-3E62-4DCE-8527-0DF45D780126}) (Version: 64.84.40925 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 8.0.21 (x64) (HKLM-x32\...\{cf83f56a-4c10-4d97-9594-0764dfeb96e3}) (Version: 8.0.21.35325 - Microsoft Corporation)
Microsoft 365 Apps for Enterprise - de-de (HKLM\...\O365ProPlusRetail - de-de) (Version: 16.0.19628.20166 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 144.0.3719.115 - Microsoft Corporation)
Microsoft Edge WebView2-Laufzeit (HKLM-x32\...\Microsoft EdgeWebView) (Version: 144.0.3719.115 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 26.002.0105.0001 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.44.35211 (HKLM-x32\...\{d8bbe9f9-7c5b-42c6-b715-9ee898a2e515}) (Version: 14.44.35211.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.44.35211 (HKLM-x32\...\{0b5169e3-39da-4313-808e-1f9c0407f3bf}) (Version: 14.44.35211.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.44.35211 (HKLM\...\{86AB2CC9-08BD-4643-B0F9-F82D006D72FF}) (Version: 14.44.35211 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.44.35211 (HKLM\...\{43B0D101-A022-48F4-9D04-BA404CEB1D53}) (Version: 14.44.35211 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.44.35211 (HKLM-x32\...\{C18FB403-1E88-43C8-AD8A-CED50F23DE8B}) (Version: 14.44.35211 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.44.35211 (HKLM-x32\...\{922480B5-CAEB-4B1B-AAA4-9716EFDCE26B}) (Version: 14.44.35211 - Microsoft Corporation) Hidden
MSI Center SDK (HKLM-x32\...\{15289038-41BE-48F8-B8B9-0B1021D3089E}}_is1) (Version: 3.2025.0617.01 - MSI)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.19426.20170 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.19029.20208 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0407-1000-0000000FF1CE}) (Version: 16.0.19426.20170 - Microsoft Corporation) Hidden
Patriot Viper DRAM RGB (HKLM\...\{1F9C282E-CCB4-4D8E-A5CB-7B74DFCD8C95}) (Version: 1.0.9.8 - Patriot Memory) Hidden
Patriot Viper DRAM RGB (HKLM-x32\...\{55993b50-5bec-47c8-8b2b-1aecad927e48}) (Version: 1.0.9.8 - Patriot Memory) Hidden
Patriot Viper M2 SSD RGB (HKLM\...\{8B4C0A3D-C135-4E1F-98D8-3926494B4D61}) (Version: 1.1.0.3 - Patriot Memory) Hidden
Patriot Viper M2 SSD RGB (HKLM-x32\...\{6e0eff60-c502-43bb-8f56-360ca07e73d9}) (Version: 1.1.0.3 - Patriot Memory) Hidden
Promontory_GPIO Driver (HKLM-x32\...\{B5512BCC-F4CD-4159-86A4-B2AD7D38FFA9}) (Version: 3.0.3.0 - Advanced Micro Devices, Inc.) Hidden
Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9826.1 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.75.324.2025 - Realtek)
ROG AZOTH (2.4GHz) (HKLM-x32\...\{e471aae0-06b2-4d14-860f-3c437c44ec43}) (Version: 5.00.18 - ASUSTek Computer Inc.)
ROG AZOTH (BLE) (HKLM-x32\...\{8cf5daaa-547f-44b9-b12a-2fe43b4bfaab}) (Version: 5.00.18 - ASUSTek Computer Inc.)
ROG AZOTH (HKLM-x32\...\{b211971f-cf1b-4698-9660-a34f763bb7f3}) (Version: 5.00.18 - ASUSTek Computer Inc.)
ROG Live Service (HKLM\...\{2D87BFB6-C184-4A59-9BBE-3E20CE797631}) (Version: 3.4.12.0 - ASUSTek COMPUTER INC.)
RyzenMasterSDK (HKLM\...\{C173683F-37FC-47A0-8768-09E635AAB284}) (Version: 1.2.3.5 - Advanced Micro Devices, Inc.) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 167.1.12915 - Ubisoft)
Universal Holtek RGB DRAM (HKLM\...\{826388E4-E31F-4514-948B-3BB954FB3EAF}) (Version: 1.0.0.7 - PD) Hidden
Universal Holtek RGB DRAM (HKLM-x32\...\{9a732423-e2f4-47d0-87ab-ef745c7dba69}) (Version: 1.0.0.7 - PD) Hidden
Update for x64-based Windows Systems (KB5001716) (HKLM\...\{B8D93870-98D1-4980-AFCA-E26563CDFB79}) (Version: 8.94.0.0 - Microsoft Corporation)
WD_BLACK AN1500 (HKLM\...\{085E2365-0A70-4230-B664-02D5E4FE7E9C}) (Version: 1.0.14.0 - ENE TECHNOLOGY INC.) Hidden
WD_BLACK AN1500 (HKLM-x32\...\{e42c5874-37b0-4977-9e8d-70bf006e1f76}) (Version: 1.0.14.0 - ENE TECHNOLOGY INC.) Hidden
Xbox 360 Controller Emulator (HKLM\...\{66F1BC10-A109-47A5-918D-61023175C03E}) (Version: 1.0.0.15 - ASUSTek COMPUTER INC.) Hidden
Xbox 360 Controller Emulator (HKLM\...\{6B45AA6A-7060-4A48-91B9-A085A897E483}) (Version: 1.0.0.15 - ASUSTek COMPUTER INC.) Hidden
Packages:
=========
Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Assets [2026-02-03] ()
AMD Radeon Software -> C:\Program Files\AMD\CNext\CNext [2026-01-26] (Advanced Micro Devices Inc.)
Armoury Crate -> C:\Program Files\ASUS\AacAmbientHal [2026-02-01] (Sparse Package)
Armoury Crate -> C:\Program Files\WindowsApps\B9ECED6F.ArmouryCrate_6.4.7.0_x64__qmba6cd70vzyy [2026-01-31] (ASUSTeK COMPUTER INC.)
AURA Creator -> C:\Program Files\WindowsApps\B9ECED6F.AURACreator_4.3.5.0_x64__qmba6cd70vzyy [2025-10-30] (ASUSTeK COMPUTER INC.)
Local AI Manager for Microsoft 365 -> C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\AI [2026-02-07] ()
Microsoft 365 companion apps -> C:\Program Files\WindowsApps\Microsoft.M365Companions_2.2511.25000.0_x64__8wekyb3d8bbwe [2025-12-22] (Microsoft Corporation)
Microsoft.Office.ActionsServer -> C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\ActionsServer [2026-02-07] ()
MSI Center -> C:\Program Files\WindowsApps\9426MICRO-STARINTERNATION.MSICenter_2.0.64.0_x64__kzh8wxbdkxb8p [2026-01-10] (MICRO-STAR INTERNATIONAL CO., LTD) [Startup Task]
OfficePushNotificationsUtility -> C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16 [2026-02-07] ()
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.53.374.0_x64__dt26b99r8h8gj [2025-10-30] (Realtek Semiconductor Corp)
SpotifyAB.SpotifyMusic -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.282.428.0_x64__zpdnekdrzrea0 [2026-02-01] (Spotify AB) [Startup Task]
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-1548267073-3587465546-3215327545-1001_Classes\CLSID\{04271989-C4D2-3396-A53C-16693539ECC9} -> [OneDrive] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}
CustomCLSID: HKU\S-1-5-21-1548267073-3587465546-3215327545-1001_Classes\CLSID\{13357088-9834-0409-1600-134951500000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-1548267073-3587465546-3215327545-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-1548267073-3587465546-3215327545-1001_Classes\CLSID\{DFF20505-B08F-455B-AD70-4FBD055088E0}\localserver32 -> C:\Program Files\Google\Chrome\Application\PlatformExperienceHelper\platform_experience_helper.exe (Google LLC -> Google LLC)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\FileSyncShell64.dll [2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\FileSyncShell64.dll [2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\FileSyncShell64.dll [2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\FileSyncShell64.dll [2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\FileSyncShell64.dll [2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\FileSyncShell64.dll [2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\FileSyncShell64.dll [2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\FileSyncShell64.dll [2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\FileSyncShell64.dll [2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\FileSyncShell64.dll [2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\FileSyncShell64.dll [2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\FileSyncShell64.dll [2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\FileSyncShell64.dll [2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\FileSyncShell64.dll [2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\FileSyncShell64.dll [2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2025-08-03] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2026-01-20] (Adobe Inc. -> Adobe Systems Inc.)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\FileSyncShell64.dll [2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2025-08-03] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\FileSyncShell64.dll [2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2026-01-08] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2025-08-03] (Igor Pavlov) [Datei ist nicht signiert]
==================== Codecs (Nicht auf der Ausnahmeliste) ====================
==================== Verknüpfungen & WMI ========================
==================== Geladene Module (Nicht auf der Ausnahmeliste) =============
2026-02-01 22:24 - 2025-02-03 17:17 - 000349184 _____ () [Datei ist nicht signiert] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\resources\app.asar.unpacked\node_modules\@img\sharp-win32-ia32\lib\sharp-win32-ia32.node
2025-07-22 10:53 - 2016-03-19 11:27 - 000045056 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\SPEEDLINK\DECUS RESPEC Gaming Mouse\hiddriver.dll
2025-07-22 10:53 - 2016-10-27 14:03 - 000036864 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\SPEEDLINK\DECUS RESPEC Gaming Mouse\Lang.dll
2023-04-07 14:49 - 2023-04-07 14:49 - 000061928 _____ (Eyeware Tech SA -> ) [Datei ist nicht signiert] C:\Program Files\AMD\AMD Privacy View\ewvcam\APV\x64\eyeware_vcam.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================
==================== Internet Explorer (Nicht auf der Ausnahmeliste) =============
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2026-02-01] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2026-02-01] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2026-02-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2026-02-01] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2026-02-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2026-02-01] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2026-02-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2026-02-01] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2026-02-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2026-02-01] (Microsoft Corporation -> Microsoft Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE trusted site: HKU\S-1-5-21-1548267073-3587465546-3215327545-1001\...\sharepoint.com -> hxxps://charitede-files.sharepoint.com
==================== Hosts Inhalt: =========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2019-12-07 10:14 - 2019-12-07 10:12 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Network ===========================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
DNS Servers: 192.168.178.1
ist aktiviert.
Network Binding:
=============
WLAN: RZ616 Wi-Fi 6E 160MHz -> mtkwl6ex.sys
Ethernet: Realtek Gaming 2.5GbE Family Controller -> rt640x64.sys
Bluetooth-Netzwerkverbindung: Bluetooth Device (Personal Area Network) -> bthpan.sys
==================== Andere Bereiche ===========================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-1548267073-3587465546-3215327545-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\nico\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows Defender\Features => (TamperProtection: 1) (TamperProtectionSource: 5)
HKLM\SOFTWARE\Microsoft\Windows Defender\Real-Time Protection => (DpaDisabled: 0)
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
HKU\S-1-5-21-1548267073-3587465546-3215327545-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_8777BAF98F32F23A314B91BE41AA5DE3"
HKU\S-1-5-21-1548267073-3587465546-3215327545-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-1548267073-3587465546-3215327545-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-1548267073-3587465546-3215327545-1001\...\StartupApproved\Run: => "EADM"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{B22CA17B-65C9-4CB8-8E3C-D794488F36FF}] => (Allow) H:\SteamLibrary\steamapps\common\DARK SOULS III\Game\DarkSoulsIII.exe (FromSoftware,Inc. -> BANDAI NAMCO Entertainment Inc.) [Datei ist nicht signiert]
FirewallRules: [{048FE0E0-FFF0-4995-ABD4-43F9E958BCB8}] => (Allow) H:\SteamLibrary\steamapps\common\DARK SOULS III\Game\DarkSoulsIII.exe (FromSoftware,Inc. -> BANDAI NAMCO Entertainment Inc.) [Datei ist nicht signiert]
FirewallRules: [{25129877-CB63-4273-A432-4B3CFE48536F}] => (Allow) H:\SteamLibrary\steamapps\common\WitchIt\WitchIt\Binaries\Win64\PropWitchHuntModule-Win64-Shipping.exe (G=Barrel Roll Games) [Datei ist nicht signiert]
FirewallRules: [{58F9FF3F-14F7-48EE-B7B1-EBFA69450A64}] => (Allow) H:\SteamLibrary\steamapps\common\WitchIt\WitchIt\Binaries\Win64\PropWitchHuntModule-Win64-Shipping.exe (G=Barrel Roll Games) [Datei ist nicht signiert]
FirewallRules: [{4D742157-D181-4EC4-8828-C8F667A146E5}] => (Allow) H:\SteamLibrary\steamapps\common\Operation Tango\Operation Tango.exe () [Datei ist nicht signiert]
FirewallRules: [{F774B41C-A261-47AC-90B5-271D2FB2DAAD}] => (Allow) H:\SteamLibrary\steamapps\common\Operation Tango\Operation Tango.exe () [Datei ist nicht signiert]
FirewallRules: [{5B283A2E-7094-4B59-9047-A4B49F16CAAB}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{72582C66-14EA-4B7C-828A-759B2B788AEA}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALaunchHelper.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{0554F3DD-A09C-495D-A696-20121E80FDA9}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{74361E97-542E-40C9-B237-C328119ED103}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{1E817BC5-51B3-49FB-A449-9E71BA4F6312}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{8F844406-67F7-4978-9427-5366113DDDBA}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{ED79F475-2BAA-4A7A-8657-521C7BE18DEF}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{33415284-EDAA-4466-8A9F-0E55B596A520}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{173FB344-F8FE-4C4C-826D-8538FCE8D8C6}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{987CCB7D-3014-410F-B79A-671974CF0742}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{49D01CEF-8FC4-41A9-BDFF-D3F8572A978A}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{0FAF20A8-A8F8-4A91-8ADB-1FC9102E9643}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{232F75D0-E1AC-481C-B326-4B93C51F8FC3}] => (Allow) C:\Users\nico\AppData\Local\Temp\ACFL20250923003420\ACSetup\ACSetup.exe => Keine Datei
FirewallRules: [{60468863-0372-465A-9EBB-49E0D82B3970}] => (Allow) C:\Users\nico\AppData\Local\Temp\ACFL20250923003420\ACSetup\ACSetup.exe => Keine Datei
FirewallRules: [{9156331C-91BC-4D23-87E0-A2500EF2F223}] => (Allow) H:\SteamLibrary\steamapps\common\Assassin's Creed Unity\ACU.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{E9E9FAE7-8D3F-4BB3-9164-5A9F9F954F7A}] => (Allow) H:\SteamLibrary\steamapps\common\Assassin's Creed Unity\ACU.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{F8B5A145-E159-4317-B33C-8B4B2F90DEEA}] => (Allow) H:\SteamLibrary\steamapps\common\SubnauticaZero\SubnauticaZero.exe () [Datei ist nicht signiert]
FirewallRules: [{9539366A-E513-4A95-B280-1FD2E423B5BA}] => (Allow) H:\SteamLibrary\steamapps\common\SubnauticaZero\SubnauticaZero.exe () [Datei ist nicht signiert]
FirewallRules: [{2A867809-EB88-42F6-A2FB-F57EF0B865D8}] => (Allow) H:\SteamLibrary\steamapps\common\Overcooked! 2\Overcooked2.exe () [Datei ist nicht signiert]
FirewallRules: [{1B8B14D3-5841-4B2C-9ECA-D615CF67F011}] => (Allow) H:\SteamLibrary\steamapps\common\Overcooked! 2\Overcooked2.exe () [Datei ist nicht signiert]
FirewallRules: [{ABFA4736-FABE-4F40-926A-4EA3D4D6502A}] => (Allow) H:\SteamLibrary\steamapps\common\Stardew Valley\Stardew Valley.exe (ConcernedApe) [Datei ist nicht signiert]
FirewallRules: [{0CA65DC7-F7A1-4A17-B890-5A1B357CC049}] => (Allow) H:\SteamLibrary\steamapps\common\Stardew Valley\Stardew Valley.exe (ConcernedApe) [Datei ist nicht signiert]
FirewallRules: [{49EDFAFF-A79E-40F9-B1EF-36A1E26B82C8}] => (Allow) H:\SteamLibrary\steamapps\common\Undertale\UNDERTALE.exe (Toby Fox) [Datei ist nicht signiert]
FirewallRules: [{6A9480F6-852F-4097-865D-F66A25870283}] => (Allow) H:\SteamLibrary\steamapps\common\Undertale\UNDERTALE.exe (Toby Fox) [Datei ist nicht signiert]
FirewallRules: [{F551ADBC-6C52-46BD-B687-5AC6F816AA63}] => (Allow) H:\SteamLibrary\steamapps\common\Kerbal Space Program\KSP_x64.exe (Take-Two Interactive Software, Inc. -> )
FirewallRules: [{0BBB5AC2-A1DA-4330-91C3-16513E550092}] => (Allow) H:\SteamLibrary\steamapps\common\Kerbal Space Program\KSP_x64.exe (Take-Two Interactive Software, Inc. -> )
FirewallRules: [{F7B42BEC-3ECF-4237-85E7-07B9592F31AE}] => (Allow) H:\SteamLibrary\steamapps\common\ShellShock Live\ShellShockLive.exe () [Datei ist nicht signiert]
FirewallRules: [{B430DF75-C33A-428D-8378-C639D48032E0}] => (Allow) H:\SteamLibrary\steamapps\common\ShellShock Live\ShellShockLive.exe () [Datei ist nicht signiert]
FirewallRules: [{41F8B211-51D1-422A-B18B-A34A6E1E742D}] => (Allow) H:\SteamLibrary\steamapps\common\Split Fiction\Split\Binaries\Win64\SplitFiction.exe (Hazelight Studios AB -> Hazelight Studios)
FirewallRules: [{27997040-2B7A-4844-8E71-B2319C78FD11}] => (Allow) H:\SteamLibrary\steamapps\common\Split Fiction\Split\Binaries\Win64\SplitFiction.exe (Hazelight Studios AB -> Hazelight Studios)
FirewallRules: [{59A25995-DC37-4B78-B52C-5AC2D5839951}] => (Allow) H:\SteamLibrary\steamapps\common\Ultimate Chicken Horse\UltimateChickenHorse.exe () [Datei ist nicht signiert]
FirewallRules: [{A83BC650-16F0-4462-8277-2411903D15C7}] => (Allow) H:\SteamLibrary\steamapps\common\Ultimate Chicken Horse\UltimateChickenHorse.exe () [Datei ist nicht signiert]
FirewallRules: [{2EA1CA9F-9792-4BC9-A162-5115BEAB385D}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{6C43E13D-AAD7-4135-9BC2-641A64081D44}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{FBAA0400-08BB-4452-BD1F-B9739E7F2100}] => (Allow) H:\SteamLibrary\steamapps\common\Subnautica\Subnautica.exe () [Datei ist nicht signiert]
FirewallRules: [{9344EF37-F09F-4466-B6AC-F0BBF75A2F6B}] => (Allow) H:\SteamLibrary\steamapps\common\Subnautica\Subnautica.exe () [Datei ist nicht signiert]
FirewallRules: [{06BB05C1-4B9A-4271-B747-2276D69F2868}] => (Allow) H:\SteamLibrary\steamapps\common\Dyson Sphere Program\DSPGAME.exe () [Datei ist nicht signiert]
FirewallRules: [{BEF34ADE-E846-4EB5-B61A-3E2D9712B1B6}] => (Allow) H:\SteamLibrary\steamapps\common\Dyson Sphere Program\DSPGAME.exe () [Datei ist nicht signiert]
FirewallRules: [{3B979257-9760-451E-B017-45B46D7F4991}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{2126C595-722F-409E-BBD7-5D94BBF005FC}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{203C1340-F625-4947-9044-C4ABD21A3648}] => (Allow) H:\SteamLibrary\steamapps\common\Overwatch\Overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{31ADA3B7-9E61-4C2E-A5B8-508331F3F10D}] => (Allow) H:\SteamLibrary\steamapps\common\Overwatch\Overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{FAFFA08F-0AD8-44D6-8042-6AF963DAA4C3}C:\program files\blackmagic design\davinci resolve\resolve.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\resolve.exe (Blackmagic Design Pty Ltd. -> Blackmagic Design Pty. Ltd.)
FirewallRules: [TCP Query User{7A448CD7-E8F2-4310-9DF5-05F0D26B84E3}C:\program files\blackmagic design\davinci resolve\resolve.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\resolve.exe (Blackmagic Design Pty Ltd. -> Blackmagic Design Pty. Ltd.)
FirewallRules: [{3E2E924F-3D4B-4BA9-BA9A-3E07D3F701CC}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => Keine Datei
FirewallRules: [{4E1E4F8F-C713-4AD0-B3B5-7456A8ED7389}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => Keine Datei
FirewallRules: [{765ABE41-1975-44CA-A75C-A9651D70D438}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{D1949AF0-4C34-43B3-91D1-C43AE945E2E2}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{967A4ABC-45A5-4319-9373-038813DFCF80}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{F282F4DD-1CC8-4FB3-B3CC-A26254E660FC}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{F9CE4638-C8C0-42B5-AC0C-A1BD53231F4A}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\Resolve.exe (Blackmagic Design Pty Ltd. -> Blackmagic Design Pty. Ltd.)
FirewallRules: [{BA4CFC90-D4FE-45AE-8391-F6D36864959D}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\bmdpaneld.exe (Blackmagic Design Pty Ltd. -> )
FirewallRules: [{B884D54C-7264-45DA-ABC9-D69DFA2AAA27}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\DaVinciPanelDaemon.exe (Blackmagic Design Pty Ltd. -> )
FirewallRules: [{BAF44EBA-3799-4040-BE9D-0CF8035BA410}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\JLCooperPanelDaemon.exe (Blackmagic Design Pty Ltd. -> )
FirewallRules: [{F0C50342-D94D-4525-A928-F6CBEDBBFB82}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\EuphonixPanelDaemon.exe (Blackmagic Design Pty Ltd. -> )
FirewallRules: [{967E5198-22EA-4669-900C-1F2F1C3B4C17}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\TangentPanelDaemon.exe (Blackmagic Design Pty Ltd. -> )
FirewallRules: [{AA1C6D43-970E-4691-9F7A-8186D48B01D3}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\ElementsPanelDaemon.exe => Keine Datei
FirewallRules: [{14BD0349-25A5-44AD-8B0C-12F9BB37734B}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\fuscript.exe (Blackmagic Design Pty Ltd. -> Blackmagic Design Pty. Ltd.)
FirewallRules: [{E36B99C7-17A1-4A21-8378-A717D86EA1A3}] => (Allow) C:\Users\nico\AppData\Local\Temp\ACFL\ACSetup\ACSetup.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
FirewallRules: [{2DFEB8D9-9E3D-4593-9DE9-C2DC8CCAC49D}] => (Allow) C:\Users\nico\AppData\Local\Temp\ACFL\ACSetup\ACSetup.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
FirewallRules: [{E3F3407C-B59F-42A9-92C1-454AD2F2C694}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.282.428.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{6CBA9FDF-2141-46BA-B387-56813172228A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.282.428.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{F76925B8-BE16-4AB9-AD12-DE76DBB07139}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.282.428.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{71097380-7825-4B6B-BEB4-AC91BCBE6D4E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.282.428.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{74F0E80D-AAF4-4E78-B824-562DCA114C40}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.282.428.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{00C91E5B-89DE-4C21-BE22-1B94F7E43187}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.282.428.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{C823A35B-7251-48D3-AEA5-8EA30BD36F16}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.282.428.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{B720FFA8-F58B-4CF4-85A6-1A6F9D549DF0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.282.428.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{BD95D6CB-D583-405E-A6CD-2A25F499EB56}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.282.428.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{B5C3782B-F870-4500-9EB4-D18A0E692DE2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.282.428.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{6BCD7BFF-1BD3-4C12-AEC8-FE70593BC7D6}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.282.428.0_x64__zpdnekdrzrea0\SpotifyLauncher.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{FF42D3C9-BD29-4680-A18B-89D004EC56E3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.282.428.0_x64__zpdnekdrzrea0\SpotifyLauncher.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{C18D834A-0DAB-4B85-8EF7-1C00C84EE486}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.282.428.0_x64__zpdnekdrzrea0\SpotifyLauncher.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{17F10225-F040-4DA9-8048-4C73B5EDB996}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
FirewallRules: [{F6379B77-B109-4E67-A185-92BD9D691864}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
FirewallRules: [{F7ECC78A-0C0F-44AF-B2D0-A31DED7AEB89}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmouryHtmlDebugServer.exe (ASUSTeK COMPUTER INC. -> ASUS)
FirewallRules: [{745CDF29-38F7-40D4-ADC3-8155FE125433}] => (Allow) C:\Program Files\ASUS\AacAmbientHal\AacAmbientLighting.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
FirewallRules: [{4BD533F8-1002-4210-93CC-A7069CDE99CA}] => (Allow) H:\program files\asus\aacambienthal\aacambientlighting.exe => Keine Datei
FirewallRules: [{976A2783-E252-436E-82B4-4DF33CEB1510}] => (Allow) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
FirewallRules: [{F04530E9-506D-46FB-86A6-D88BBA3B17AF}] => (Allow) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
FirewallRules: [{84F4B3A1-73A4-4CDC-9874-3C13DAB503DF}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{33CB7E0C-0A2F-43C4-8E4A-F255272C0A7F}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe => Keine Datei
FirewallRules: [UDP Query User{6AFEC750-D2BD-4BDB-89BE-022CE9071E9E}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe => Keine Datei
FirewallRules: [{30409783-0421-429C-AB0F-7FC58A86B505}] => (Allow) LPort=32683
FirewallRules: [{B4B0ABF7-6D76-4C45-9939-FCE51F6BCF0A}] => (Allow) LPort=33683
FirewallRules: [{E78234DC-35E9-4759-8387-3C58A0AD3DA1}] => (Allow) LPort=26822
==================== Wiederherstellungspunkte =========================
01-02-2026 22:23:53 Installed ASUS Framework Service
03-02-2026 10:20:49 Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.44.35211
03-02-2026 10:20:55 Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.44.35211
05-02-2026 16:55:57 Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.44.35211
05-02-2026 16:56:03 Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.44.35211
07-02-2026 09:41:58 Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.44.35211
07-02-2026 09:42:04 Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.44.35211
==================== Fehlerhafte Geräte im Gerätemanager ============
==================== Fehlereinträge in der Ereignisanzeige: ========================
Applikationsfehler:
==================
Error: (02/08/2026 10:45:30 AM) (Source: Application Error) (EventID: 1000) (User: NT-AUTORITÄT)
Description: Fehlerhafter Anwendungsname: atkexComSvc.exe, Version: 1.0.0.1, Zeitstempel: 0x6156aa76
Fehlerhafter Modulname: atkexComSvc.exe, Version: 1.0.0.1, Zeitstempel: 0x6156aa76
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0001eb62
Fehlerhafte Prozess-ID: 0xe80
Fehlerhafte Anwendungsstartzeit: 0x1dc98dfa947cccd
Fehlerhafter Anwendungspfad: C:\Program Files (x86)\ASUS\AXSP\4.02.12\atkexComSvc.exe
Fehlerhafter Modulpfad: C:\Program Files (x86)\ASUS\AXSP\4.02.12\atkexComSvc.exe
Berichts-ID: ad5ca711-5272-4ff3-9482-5265bb08abe8
Vollständiger Name des fehlerhaften Pakets:
Fehlerhafte paketbezogene Anwendungs-ID:
Error: (02/08/2026 12:37:19 AM) (Source: Application Error) (EventID: 1000) (User: NT-AUTORITÄT)
Description: Fehlerhafter Anwendungsname: atkexComSvc.exe, Version: 1.0.0.1, Zeitstempel: 0x6156aa76
Fehlerhafter Modulname: atkexComSvc.exe, Version: 1.0.0.1, Zeitstempel: 0x6156aa76
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0001eb62
Fehlerhafte Prozess-ID: 0xf34
Fehlerhafte Anwendungsstartzeit: 0x1dc988ab2c0f366
Fehlerhafter Anwendungspfad: C:\Program Files (x86)\ASUS\AXSP\4.02.12\atkexComSvc.exe
Fehlerhafter Modulpfad: C:\Program Files (x86)\ASUS\AXSP\4.02.12\atkexComSvc.exe
Berichts-ID: 1a03e847-90e2-46cf-8b70-8a40b3d4159c
Vollständiger Name des fehlerhaften Pakets:
Fehlerhafte paketbezogene Anwendungs-ID:
Error: (02/07/2026 11:14:53 PM) (Source: Application Error) (EventID: 1000) (User: NT-AUTORITÄT)
Description: Fehlerhafter Anwendungsname: atkexComSvc.exe, Version: 1.0.0.1, Zeitstempel: 0x6156aa76
Fehlerhafter Modulname: atkexComSvc.exe, Version: 1.0.0.1, Zeitstempel: 0x6156aa76
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0001eb62
Fehlerhafte Prozess-ID: 0xe80
Fehlerhafte Anwendungsstartzeit: 0x1dc987f2e71b948
Fehlerhafter Anwendungspfad: C:\Program Files (x86)\ASUS\AXSP\4.02.12\atkexComSvc.exe
Fehlerhafter Modulpfad: C:\Program Files (x86)\ASUS\AXSP\4.02.12\atkexComSvc.exe
Berichts-ID: 1dc84fd8-8a68-4547-883d-7985f362e8be
Vollständiger Name des fehlerhaften Pakets:
Fehlerhafte paketbezogene Anwendungs-ID:
Error: (02/07/2026 11:20:01 AM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: PC-nicoR)
Description: Windows kann die erweiterbare Leistungsindikator-DLL "C:\WINDOWS\system32\sysmain.dll" nicht laden (Win32-Fehlercode 126).
Error: (02/07/2026 11:20:00 AM) (Source: Microsoft-Windows-Perflib) (EventID: 1005) (User: PC-nicoR)
Description: Fehler beim Suchen der Open-Prozedur "OpenLsaPerformanceData" in der DLL "C:\Windows\System32\Secur32.dll" für den "Lsa"-Dienst mit dem Win32-Fehlercode 127. Für diesen Dienst sind keine Systemleistungsdaten verfügbar.
Error: (02/07/2026 09:34:44 AM) (Source: Application Error) (EventID: 1000) (User: PC-nicoR)
Description: Fehlerhafter Anwendungsname: ArmouryCrate.UserSessionHelper.exe, Version: 6.4.2.0, Zeitstempel: 0x69438597
Fehlerhafter Modulname: KERNELBASE.dll, Version: 10.0.26100.7623, Zeitstempel: 0x45ad608f
Ausnahmecode: 0xe0434352
Fehleroffset: 0x00000000000ca80a
Fehlerhafte Prozess-ID: 0x57b8
Fehlerhafte Anwendungsstartzeit: 0x1dc976b0ceeefa4
Fehlerhafter Anwendungspfad: C:\Program Files\ASUS\Armoury Crate Service\ArmouryCrate.UserSessionHelper.exe
Fehlerhafter Modulpfad: C:\WINDOWS\System32\KERNELBASE.dll
Berichts-ID: aac7ea61-5367-4f4b-a954-a7cd2267bffc
Vollständiger Name des fehlerhaften Pakets:
Fehlerhafte paketbezogene Anwendungs-ID:
Error: (02/07/2026 09:34:44 AM) (Source: Application Error) (EventID: 1000) (User: NT-AUTORITÄT)
Description: Fehlerhafter Anwendungsname: ArmouryCrate.Service.exe, Version: 6.4.3.0, Zeitstempel: 0x6943859b
Fehlerhafter Modulname: KERNELBASE.dll, Version: 10.0.26100.7623, Zeitstempel: 0x45ad608f
Ausnahmecode: 0xe0434352
Fehleroffset: 0x00000000000ca80a
Fehlerhafte Prozess-ID: 0x3f5c
Fehlerhafte Anwendungsstartzeit: 0x1dc976b0cc88306
Fehlerhafter Anwendungspfad: C:\Program Files\ASUS\Armoury Crate Service\ArmouryCrate.Service.exe
Fehlerhafter Modulpfad: C:\WINDOWS\System32\KERNELBASE.dll
Berichts-ID: 5c0ab3b2-c0d0-43aa-9bc4-f015f9ea1660
Vollständiger Name des fehlerhaften Pakets:
Fehlerhafte paketbezogene Anwendungs-ID:
Error: (02/06/2026 02:38:27 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: ArmouryCrate.Service.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund einer unbehandelten Ausnahme beendet.
Ausnahmeinformationen: System.Runtime.InteropServices.COMException
bei NAudio.CoreAudioApi.Interfaces.IAudioClient.Stop()
bei NAudio.CoreAudioApi.WasapiCapture.CaptureThread(NAudio.CoreAudioApi.AudioClient)
bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
bei System.Threading.ThreadHelper.ThreadStart()
Systemfehler:
=============
Error: (02/08/2026 10:50:34 AM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1801) (User: NT-AUTORITÄT)
Description: Updated Secure Boot certificates are available on this device but have not yet been applied to the firmware. Review the published guidance to complete the update and maintain full protection. This device signature information is included here.
DeviceAttributes: BaseBoardManufacturer:Micro-Star International Co., Ltd.;FirmwareManufacturer:American Megatrends International, LLC.;FirmwareVersion:1.J0;OEMModelBaseBoard:B650 GAMING PLUS WIFI (MS-7E26);OEMManufacturerName:Micro-Star International Co., Ltd.;OSArchitecture:amd64;
BucketId: 27faedd5ac38822c174903a9f9905112acbbf67c9bac740f3bbde7d3c5cc4642
BucketConfidenceLevel:
UpdateType:
For more information, please see https://go.microsoft.com/fwlink/?linkid=2301018.
Error: (02/08/2026 10:45:33 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (45000 ms) wurde beim Verbindungsversuch mit dem Dienst asComSvc erreicht.
Error: (02/08/2026 10:45:29 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am 08.02.2026 um 00:37:18 unerwartet heruntergefahren.
Error: (02/08/2026 10:45:20 AM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: NT-AUTORITÄT)
Description: 3221225684A fatal error occurred processing the restoration data.
Error: (02/08/2026 12:42:33 AM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1801) (User: NT-AUTORITÄT)
Description: Updated Secure Boot certificates are available on this device but have not yet been applied to the firmware. Review the published guidance to complete the update and maintain full protection. This device signature information is included here.
DeviceAttributes: BaseBoardManufacturer:Micro-Star International Co., Ltd.;FirmwareManufacturer:American Megatrends International, LLC.;FirmwareVersion:1.J0;OEMModelBaseBoard:B650 GAMING PLUS WIFI (MS-7E26);OEMManufacturerName:Micro-Star International Co., Ltd.;OSArchitecture:amd64;
BucketId: 27faedd5ac38822c174903a9f9905112acbbf67c9bac740f3bbde7d3c5cc4642
BucketConfidenceLevel:
UpdateType:
For more information, please see https://go.microsoft.com/fwlink/?linkid=2301018.
Error: (02/08/2026 12:37:28 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Armoury Crate Download Tool erreicht.
Error: (02/08/2026 12:37:23 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (45000 ms) wurde beim Verbindungsversuch mit dem Dienst asComSvc erreicht.
Error: (02/08/2026 12:32:55 AM) (Source: DCOM) (EventID: 10010) (User: PC-nicoR)
Description: Der Server "{3E11DF0F-42EB-4747-9A35-802D98B5BCF0}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Windows Defender:
================
Date: 2026-02-06 13:47:10
Description:
Microsoft Defender Antivirus šςåπ нăş взéй šţôφρēδ ьëƒθŗé ςőмрŀęтîöп.%ñ %τЅĉàʼn ĪĎ:%ъ{BA1BD119-996F-4EB9-A701-4851E455E286}%ń %ţЅ¢ąη Τўρê:%вAntimalware%п %ţŠćāŋ Рαѓāmзτёŗŝ:%ъSchnellüberprüfung%ʼn %тŰšёŕ:%ьNT-AUTORITÄT\SYSTEM%ñ %ťŞтôφ Ґεªšòŋ:%ъŔΡ€ ĉοñηĕċţīōп ґůňďöẃň
Date: 2026-02-05 16:59:10
Description:
Microsoft Defender Antivirus šςåπ нăş взéй šţôφρēδ ьëƒθŗé ςőмрŀęтîöп.%ñ %τЅĉàʼn ĪĎ:%ъ{518A1BE3-AA1E-49EB-A796-86BCAE40F6D9}%ń %ţЅ¢ąη Τўρê:%вAntimalware%п %ţŠćāŋ Рαѓāmзτёŗŝ:%ъSchnellüberprüfung%ʼn %тŰšёŕ:%ьNT-AUTORITÄT\SYSTEM%ñ %ťŞтôφ Ґεªšòŋ:%ъЅćн℮δύŀëđ ѕčåй щąš ŝķïρрĕδ ъеċǻúşε ťĥě łάѕτ śυсĉĕѕšƒџļ ѕ¢āη ώªŝ ẃĩτћïл ţħе ℓãşт 7 ďαуŝ
Date: 2026-02-03 12:08:56
Description:
Microsoft Defender Antivirus šςåπ нăş взéй šţôφρēδ ьëƒθŗé ςőмрŀęтîöп.%ñ %τЅĉàʼn ĪĎ:%ъ{16CAC692-0D3A-471B-855E-A326ED25320C}%ń %ţЅ¢ąη Τўρê:%вAntimalware%п %ţŠćāŋ Рαѓāmзτёŗŝ:%ъSchnellüberprüfung%ʼn %тŰšёŕ:%ьNT-AUTORITÄT\SYSTEM%ñ %ťŞтôφ Ґεªšòŋ:%ъЅćн℮δύŀëđ ѕčåй щąš ŝķïρрĕδ ъеċǻúşε ťĥě łάѕτ śυсĉĕѕšƒџļ ѕ¢āη ώªŝ ẃĩτћïл ţħе ℓãşт 7 ďαуŝ
Date: 2026-02-03 11:01:18
Description:
Microsoft Defender Antivirus šςåπ нăş взéй šţôφρēδ ьëƒθŗé ςőмрŀęтîöп.%ñ %τЅĉàʼn ĪĎ:%ъ{EC6A2059-A1B1-47EF-8523-D13828492DCB}%ń %ţЅ¢ąη Τўρê:%вAntimalware%п %ţŠćāŋ Рαѓāmзτёŗŝ:%ъSchnellüberprüfung%ʼn %тŰšёŕ:%ьNT-AUTORITÄT\SYSTEM%ñ %ťŞтôφ Ґεªšòŋ:%ъЅćн℮δύŀëđ ѕčåй щąš ŝķïρрĕδ ъеċǻúşε ťĥě łάѕτ śυсĉĕѕšƒџļ ѕ¢āη ώªŝ ẃĩτћïл ţħе ℓãşт 7 ďαуŝ
Date: 2026-02-01 23:01:58
Description:
Microsoft Defender Antivirus šςåπ нăş взéй šţôφρēδ ьëƒθŗé ςőмрŀęтîöп.%ñ %τЅĉàʼn ĪĎ:%ъ{9E97B6F1-41DD-422E-A4E2-49C0EC8E6CAE}%ń %ţЅ¢ąη Τўρê:%вAntimalware%п %ţŠćāŋ Рαѓāmзτёŗŝ:%ъSchnellüberprüfung%ʼn %тŰšёŕ:%ьNT-AUTORITÄT\SYSTEM%ñ %ťŞтôφ Ґεªšòŋ:%ъЅćн℮δύŀëđ ѕčåй щąš ŝķïρрĕδ ъеċǻúşε ťĥě łάѕτ śυсĉĕѕšƒџļ ѕ¢āη ώªŝ ẃĩτћïл ţħе ℓãşт 7 ďαуŝ
==================== Speicherinformationen ===========================
BIOS: American Megatrends International, LLC. 1.J0 03/13/2025
Hauptplatine: Micro-Star International Co., Ltd. B650 GAMING PLUS WIFI (MS-7E26)
Prozessor: AMD Ryzen 5 7600X 6-Core Processor
Prozentuale Nutzung des RAM: 28%
Installierter physikalischer RAM: 31849.99 MB
Verfügbarer physikalischer RAM: 22806.27 MB
Summe virtueller Speicher: 37737.99 MB
Verfügbarer virtueller Speicher: 24973.75 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:930.63 GB) (Free:781.74 GB) (Model: CT1000E100SSD8) NTFS
Drive h: (HDD) (Fixed) (Total:1863 GB) (Free:675.11 GB) (Model: ST2000DM008-2UB102) NTFS
\\?\Volume{f74fe6e3-6478-4245-8d31-8350d8267503}\ () (Fixed) (Total:0.77 GB) (Free:0.12 GB) NTFS
\\?\Volume{5e32a413-f271-4a3a-b394-be1f64cedc63}\ () (Fixed) (Total:0.09 GB) (Free:0.06 GB) FAT32
==================== MBR & Partitionstabelle ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 1 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
==================== Ende von Addition.txt =======================
|
|
08.02.2026, 11:47
| #2 |
| /// TB-Ausbilder   | setup.exe von vlc.de auf win 11 ausgeführt Mein Name ist Matthias und ich werde dir bei der Analyse und Bereinigung deines Systems helfen. Schritt 1 Führe AdwCleaner gemäß der bebilderten Anleitung aus und poste abschließend die Logdatei. Schritt 2 Führe Malwarebytes' AntiMalware (MBAM) gemäß der bebilderten Anleitung aus und poste abschließend die Logdatei. |
|
09.02.2026, 02:22
| #3 |
| | setup.exe von vlc.de auf win 11 ausgeführt Hi Matthias und vielen Dank für die Antwort! Anbei die zwei Log Dateien:
__________________Code:
ATTFilter # -------------------------------
# Malwarebytes AdwCleaner 8.7.0.619
# -------------------------------
# Build: 12-17-2025
# Database: 2025-12-16.1 (Local)
# Support: https://help.malwarebytes.com/
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 02-09-2026
# Duration: 00:00:00
# OS: Windows 11 (Build 26200.7623)
# Cleaned: 1
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
No malicious registry entries cleaned.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
Deleted Websuche
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1423 octets] - [09/02/2026 02:10:32]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
Code:
ATTFilter Malwarebytes
www.malwarebytes.com
-Protokolldetails-
Scan-Datum: 09.02.2026
Scan-Zeit: 02:16
Protokolldatei: e7106286-0554-11f1-a5ba-345a60a3550c.json
-Softwaredaten-
Version: 5.4.8.232
Komponentenversion: 149.0.5487
Version des Aktualisierungspakets: 1.0.107085
Lizenz: Testversion
-Systemdaten-
Betriebssystem: Windows 11 (Build 26200.7623)
CPU: x64
Dateisystem: NTFS
Benutzer: PC-Nico\nico
-Scan-Übersicht-
Scan-Typ: Bedrohungs-Scan
Scan gestartet von: Manuell
Ergebnis: Abgeschlossen
Gescannte Objekte: 194597
Erkannte Bedrohungen: 3
In die Quarantäne verschobene Bedrohungen: 3
Abgelaufene Zeit: 0 Min., 52 Sek.
-Scan-Optionen-
Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Aktiviert
Heuristik: Aktiviert
PUP: Erkennung
PUM: Erkennung
-Scan-Details-
Prozess: 0
(keine bösartigen Elemente erkannt)
Modul: 0
(keine bösartigen Elemente erkannt)
Registrierungsschlüssel: 0
(keine bösartigen Elemente erkannt)
Registrierungswert: 0
(keine bösartigen Elemente erkannt)
Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)
Daten-Stream: 0
(keine bösartigen Elemente erkannt)
Ordner: 1
PUP.Optional.FakeVLC, C:\USERS\NICO\APPDATA\LOCAL\VLC PLUS PLAYER DOWNLOADER, In Quarantäne, 10571, 1376923, 1.0.107085, , ame, , ,
Datei: 2
PUP.Optional.BundleInstaller, C:\USERS\NICO\DOWNLOADS\VLC MEDIA PLAYER (64 BIT) - CHIP INSTALLER _GVBVT.EXE, In Quarantäne, 81, 1367328, 1.0.107085, , ame, , 49AEEF9FCA98082A8E5722F530C0B3D0, 7D831037EA0ED99D5839082277FDEC869FDD4160EED0B1776192E7C7F42A37BB
PUP.Optional.BundleInstaller, C:\USERS\NICO\DOWNLOADS\SETUP.EXE, In Quarantäne, 81, 1375657, 1.0.107085, , ame, , 650C121EF770044B5B8533EC524B9C7B, FFB7E0228D5212B01B82D48A1A058ADA453228B70A0285E39822FACEFCC24E52
Physischer Sektor: 0
(keine bösartigen Elemente erkannt)
WMI: 0
(keine bösartigen Elemente erkannt)
(end)
|
|
09.02.2026, 14:40
| #4 |
| /// TB-Ausbilder | setup.exe von vlc.de auf win 11 ausgeführt Gut gemacht. Bitte einen Kontrollscan mit FRST ausführen.
|
|
09.02.2026, 15:14
| #5 |
| | setup.exe von vlc.de auf win 11 ausgeführt Alles klar: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 07-02-2026
durchgeführt von nico (Administrator) auf PC-nico (Micro-Star International Co., Ltd. MS-7E26) (09-02-2026 15:10:37)
Gestartet von C:\Users\nico\Downloads\FRST64.exe
Geladene Profile: nico
Plattform: Microsoft Windows 11 Pro Version 25H2 26200.7623 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: Chrome
Start-Modus: Normal
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(A225F3B5-240D-4EE9-BCF4-697A07F5E93E -> Micro-Star INT'L CO., LTD.) C:\Program Files\WindowsApps\9426MICRO-STARINTERNATION.MSICenter_2.0.66.0_x64__kzh8wxbdkxb8p\DCv2\DCv2.exe
(Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe
(C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\KeyboardSDK\ROGKBPlugin.exe
(C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\SwAgent\ArmourySwAgent.exe
(C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmouryHtmlDebugServer.exe
(C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe <5>
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSSrcExt.exe
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Discord Inc. -> Discord Inc.) C:\Users\nico\AppData\Local\Discord\app-1.0.9223\Discord.exe <6>
(C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe
(C:\Program Files\ASUS\Armoury Crate Service\ArmouryCrate.Service.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\Armoury Crate Service\ArmouryCrate.UserSessionHelper.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\Malwarebytes.exe
(cmd.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(explorer.exe ->) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\26.002.0105.0001\OneDrive.Sync.Service.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> Asustek Computer Inc.) C:\Program Files (x86)\ASUS\AsusCertService\1.2.41\AsusCertService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files (x86)\LightingService\LightingService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\Armoury Crate Service\ArmouryCrate.Service.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe
(services.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_7e93164ae8ff6bf7\RtkAudUService64.exe <2>
(SPEEDLINK) [Datei ist nicht signiert] C:\Program Files (x86)\SPEEDLINK\DECUS RESPEC Gaming Mouse\Monitor.EXE
(svchost.exe ->) (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTek COMPUTER INC.) C:\Program Files\WindowsApps\B9ECED6F.ArmouryCrate_6.4.7.0_x64__qmba6cd70vzyy\ArmouryCrate.exe
(svchost.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\CPUMetricsServer.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Program Files\ASUS\KINGSTON_Aac_DRAM\AacKingstonDramHal_x86.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files\ASUS\AacExtCard\extensionCardHal_x86.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files\ASUS\ASUS_Aac_DRAM\Aac3572DramHal_x86.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.195.0.0_x64__8wekyb3d8bbwe\MicrosoftStartFeedProvider\MicrosoftStartFeedProvider.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_7e93164ae8ff6bf7\RtkAudUService64.exe [3112448 2025-08-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [DECUS RESPEC Gaming Mouse Driver] => C:\Program Files (x86)\SPEEDLINK\DECUS RESPEC Gaming Mouse\Monitor.exe [3587072 2017-03-14] (SPEEDLINK) [Datei ist nicht signiert]
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Beschränkung <==== ACHTUNG
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Beschränkung <==== ACHTUNG
HKU\S-1-5-19\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4743528 2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4743528 2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1548267073-3587465546-3215327545-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4743528 2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1548267073-3587465546-3215327545-1001\...\Run: [MicrosoftEdgeAutoLaunch_8777BAF98F32F23A314B91BE41AA5DE3] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4314192 2026-02-05] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1548267073-3587465546-3215327545-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [5760152 2026-01-21] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-1548267073-3587465546-3215327545-1001\...\Run: [Microsoft.Lists] => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\OneDrive.Sync.Service.exe [954256 2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1548267073-3587465546-3215327545-1001\...\Run: [AMDNoiseSuppression] => C:\Windows\system32\AMD\ANR\AMDNoiseSuppression.exe [318288 2025-09-10] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
HKU\S-1-5-21-1548267073-3587465546-3215327545-1001\...\Run: [Discord] => C:\Users\nico\AppData\Local\Discord\Update.exe [1596344 2025-09-04] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-1548267073-3587465546-3215327545-1001\...\Run: [EADM] => C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALauncher.exe [3756704 2025-10-23] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-1548267073-3587465546-3215327545-1001\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [41671128 2026-01-31] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-18\...\Run: [AMDNoiseSuppression] => C:\WINDOWS\system32\AMD\ANR\AMDNoiseSuppression.exe [318288 2025-09-10] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
HKU\S-1-5-18\...\RunOnce: [StartRSX] => C:\Program Files\AMD\CNext\CNext\LauncherRSXRuntime.exe [71952 2026-01-08] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{49210152-871f-4ffa-961d-a172abcbc09d}] -> C:\Program Files\Google\Chrome\Application\PlatformExperienceHelper\platform_experience_helper.exe [2026-01-30] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\144.0.7559.133\Installer\chrmstp.exe [2026-02-07] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
HKLM\SOFTWARE\Policies\Google: Beschränkung <==== ACHTUNG
HKLM\SOFTWARE\Policies\Microsoft\Edge: Beschränkung <==== ACHTUNG
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {D9A12C9B-07B8-4089-AE79-DEFCF84C9D02} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1581568 2025-08-24] (Adobe Inc. -> Adobe Inc.)
Task: {B59FE9B2-6378-459F-A8D8-03062CEC54D2} - System32\Tasks\AMD Install Manager - Check For Updates => C:\Program Files\AMD\AMDInstallManager\AMDInstallManager.exe [61153544 2026-01-08] (Advanced Micro Devices -> Advanced Micro Devices, Inc.) -> C:\Program Files\AMD\AMDInstallManager\\-CheckForUpdates
Task: {BBDDF4D7-5A77-4CB7-9FDD-A9A1AEBD8C7A} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1047824 2026-01-08] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {03083A28-1767-4C46-80F8-E8609A9B088E} - System32\Tasks\AMDRyzenMasterSDKTask => C:\Program Files\AMD\CNext\CNext\cpumetricsserver.exe [192776 2026-01-08] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {900682FE-1308-4C80-89C9-8DFBAE890ABF} - System32\Tasks\ASUS\AcPowerNotification => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe [401304 2025-11-24] (ASUSTeK COMPUTER INC. -> ASUS)
Task: {A9FA82F6-E32E-4405-9E12-37DDD1F1C0DE} - System32\Tasks\ASUS\ArmourySocketServer => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\TaskSchedulerTool_ArmourySocketServer.exe [120728 2025-11-24] (ASUSTeK COMPUTER INC. -> TODO: <公司名稱>)
Task: {B81D7EB4-C3E9-4E5F-BA79-2B60307C7DDC} - System32\Tasks\ASUS\ASUSUpdateTaskMachineCore1dc2c1110d8a31b => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [253336 2025-09-22] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
Task: {CF93F7FD-51CD-4242-B2AF-FAB8A9BB8BD3} - System32\Tasks\ASUS\ASUSUpdateTaskMachineUA => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [253336 2025-09-22] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
Task: {8C8F0266-2F8B-463F-94ED-FB9FC4F0F0F9} - System32\Tasks\ASUS\P508PowerAgent_sdk => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ShareFromArmouryIII\Mouse\ROG STRIX CARRY\P508PowerAgent.exe (Keine Datei)
Task: {144616BF-04FB-40D4-A6D8-00F3FBEA4FDD} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem144.0.7547.0{CCB01FB2-62DC-489D-8098-6C6B4CB9BB09} => C:\Program Files (x86)\Google\GoogleUpdater\144.0.7547.0\updater.exe [7056536 2025-11-26] (Google LLC -> Google LLC)
Task: {D3F897E0-E359-4619-9FC7-637DC7DDAE7F} - System32\Tasks\Microsoft\Office\Office Actions Server => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ActionsServer\ActionsServer.exe [16268592 2026-02-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {C6C3782A-BA69-4E3C-A0AB-536BE009470A} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28622664 2026-01-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {03082BB1-0D11-40AA-BFA0-796B0AFA7B4F} - System32\Tasks\Microsoft\Office\Office Background Push Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\opushutil.exe [73568 2026-02-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {95A9E73B-D91E-46D3-A6FD-43DAB4BD0B9B} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28622664 2026-01-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {259EA0EC-56AE-4FF5-8084-2A4EFD218713} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309608 2026-02-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {30154F25-E77C-4B9C-9EC3-C79E72ED8EB1} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309608 2026-02-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {7AE8D9AB-023E-4037-8029-DD2FE9B7CF48} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [1346856 2026-02-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {7565BFB7-E9D0-4C13-95F4-6D94B04002F2} - System32\Tasks\Microsoft\Office\Office Serviceability Manager => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe [4447336 2026-01-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {E81CB806-CF46-4EBF-A08B-E797F8BA08AC} - System32\Tasks\Microsoft\Office\Office Startup Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ActionsServer\ActionsServer.exe [16268592 2026-02-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {9264AD45-FBAE-4DFE-BF91-DEE2861239B6} - System32\Tasks\Microsoft\Windows\Clip\ClipESU => %SystemRoot%\system32\clipesu.exe (Keine Datei)
Task: {B9A16D65-541E-4027-9517-9566BF300DC2} - System32\Tasks\Microsoft\Windows\Clip\ClipESUConsumer => %SystemRoot%\system32\ClipESUConsumer.exe -evaluateEligibility (Keine Datei)
Task: {42EC4ED5-9338-407D-BF0C-9D386F98B844} - System32\Tasks\Microsoft\Windows\Clip\ClipESUConsumerProcessECUpdate => %SystemRoot%\system32\ClipESUConsumer.exe -persistEligibilityStatus (Keine Datei)
Task: {5C52B5EA-FD8B-4E6D-827E-5F530EE23F96} - System32\Tasks\Microsoft\Windows\Clip\ClipEsuConsumerProcessPreOrder => %SystemRoot%\system32\ClipESUConsumer.exe -postProcessPreOrder (Keine Datei)
Task: {71655BA3-FF91-49F6-B7A4-B097105CFD3E} - System32\Tasks\Microsoft\Windows\Clip\ClipEsuConsumerProcessRefund => %SystemRoot%\system32\ClipESUConsumer.exe -processRefund (Keine Datei)
Task: {FB439B17-2182-45EE-A44C-6C81F835ED48} - System32\Tasks\Microsoft\Windows\Clip\EnableClipESU => %SystemRoot%\system32\clipesu.exe -e (Keine Datei)
Task: {E88D9B2C-DDEA-47B2-9582-085153004DB5} - System32\Tasks\Microsoft\Windows\Location\Notifications => %windir%\System32\LocationNotificationWindows.exe (Keine Datei)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (Keine Datei)
Task: {CAB76809-EDC0-40D2-A888-AD9BEDF4E88A} - System32\Tasks\Microsoft\Windows\UNP\RunUpdateNotificationMgr => %windir%\System32\UNP\UpdateNotificationMgr.exe (Keine Datei)
Task: {346A3362-1890-47D2-BBA3-57477F4DD1F0} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe /RunOnAC RebootDialog (Keine Datei)
Task: {4F358CF7-E1D3-47DF-9D99-E7296DFC3AE6} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe /RunOnBattery RebootDialog (Keine Datei)
Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Keine Datei)
Task: {1E321574-AFFD-445E-A36A-E64C79D13329} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1047824 2026-01-08] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {C3A992AB-EAC2-4D46-B0EF-9A6CA007E93C} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4397416 2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {12E265D7-5108-46F5-B689-0C96D96CF587} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1548267073-3587465546-3215327545-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4397416 2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {5A14FD02-C5F2-481F-825E-9D131E560080} - System32\Tasks\OneDrive Startup Task-S-1-5-21-1548267073-3587465546-3215327545-1001 => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\OneDriveLauncher.exe [745872 2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {09FB4B26-E6BD-4CC5-9ABA-0FA4A81D7DA0} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [143624 2026-01-08] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {FBF93C94-73EC-4833-A88E-F067B6BEA5FE} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [312080 2026-01-08] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{6bfd4da1-d45b-47d3-92c5-16da105eeffa}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{6bfd4da1-d45b-47d3-92c5-16da105eeffa}: [DhcpDomain] fritz.box
FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2026-01-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2026-01-31] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2026-02-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2025-12-15] (Microsoft Corporation -> Microsoft Corporation)
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\nico\AppData\Local\Microsoft\Edge\User Data\Default [2026-02-07]
Edge Extension: (Google Docs Offline) - C:\Users\nico\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2026-02-07]
Edge Extension: (Edge relevant text changes) - C:\Users\nico\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2025-07-13]
Chrome:
=======
CHR Profile: C:\Users\nico\AppData\Local\Google\Chrome\User Data\Default [2026-02-09]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\nico\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2026-02-05]
CHR Extension: (VPN for Chrome: NordVPN proxy protection) - C:\Users\nico\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjoaledfpmneenckfbpdfhkmimnjocfa [2026-02-01]
CHR Extension: (Google Docs Offline) - C:\Users\nico\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2026-01-23]
CHR Extension: (AdBlock − blockieren Sie Werbung im Internet) - C:\Users\nico\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2026-02-06]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\nico\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2025-07-14]
CHR HKU\S-1-5-21-1548267073-3587465546-3215327545-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
==================== Dienste (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [174584 2025-08-24] (Adobe Inc. -> Adobe Inc.)
S2 AmdAppCompatSvc; C:\WINDOWS\System32\DriverStore\FileRepository\amdappcompat.inf_amd64_e01b29e17ce4a109\AmdAppCompatSvc.exe [310704 2025-09-10] (Advanced Micro Devices -> Advanced Micro Devices, Inc)
S2 AmdPpkgSvc; C:\WINDOWS\System32\DriverStore\FileRepository\amdppkg.inf_amd64_27762fb4b4d122d3\AmdPpkgSvc.exe [515480 2025-11-19] (Advanced Micro Devices -> Advanced Micro Devices, Inc)
S3 ArmouryCrateDownloadTool; C:\WINDOWS\System32\DriverStore\FileRepository\rogms.inf_amd64_7bcd8839c8e4f2a7\ArmouryLiveUpdate.exe [577440 2025-11-04] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R2 ArmouryCrateService; C:\Program Files\ASUS\Armoury Crate Service\ArmouryCrate.Service.exe [451176 2026-02-01] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
S2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.02.12\atkexComSvc.exe [457544 2024-08-29] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S2 asus; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [253336 2025-09-22] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
R2 AsusCertService; C:\Program Files (x86)\ASUS\AsusCertService\1.2.41\AsusCertService.exe [497560 2025-11-20] (ASUSTeK COMPUTER INC. -> Asustek Computer Inc.)
S3 asusm; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [253336 2025-09-22] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
S2 AsusROGLSLService; C:\Program Files (x86)\ASUS\AsusROGLSLService\AsusROGLSLService.exe [682904 2025-09-22] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
S2 Aura Wallpaper Service; C:\Program Files\ASUS\Aura Wallpaper Service\AuraWallpaperService.exe [650344 2025-09-16] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13263248 2026-01-30] (Microsoft Corporation -> Microsoft Corporation)
S3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [19291808 2025-10-23] (Electronic Arts, Inc. -> Electronic Arts)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\26.002.0105.0001\FileSyncHelper.exe [3625320 2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
S2 GameSDK Service; C:\Program Files (x86)\ASUS\GameSDK Service\GameSDK.exe [397544 2022-05-31] (ASUSTeK COMPUTER INC. -> ASUS Inc.)
R2 LightingService; C:\Program Files (x86)\LightingService\LightingService.exe [5083032 2025-12-18] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [11255744 2026-02-09] (Malwarebytes Inc -> Malwarebytes)
S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [2788304 2026-02-09] (Malwarebytes Inc. -> Malwarebytes)
S3 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25110.6-0\MpDefenderCoreService.exe [2063376 2025-12-21] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 MSI_Case_Service; C:\Program Files (x86)\MSI\MSI Center\Case\MSI_Case_Service.exe [134160 2025-05-05] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
S2 MSI_Center_Service; C:\Program Files (x86)\MSI\MSI Center\MSI_Central_Service.exe [181776 2025-04-17] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\26.002.0105.0001\OneDriveUpdaterService.exe [3918224 2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
R2 ROG Live Service; C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe [2769512 2026-01-14] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [803088 2025-12-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25110.6-0\NisSrv.exe [4426832 2025-12-21] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25110.6-0\MsMpEng.exe [290704 2025-12-21] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R3 ACSEHIDRemap; C:\WINDOWS\System32\drivers\ACSEHIDRemap.sys [135160 2025-09-29] (WDKTestCert Ken,133462420546156706 -> )
R3 ACSEVirtualBus; C:\WINDOWS\System32\drivers\ACSEVirtualBus.sys [47088 2025-09-29] (WDKTestCert Ken,133462420546156706 -> )
R3 AmdAppCompat; C:\WINDOWS\System32\DriverStore\FileRepository\amdappcompat.inf_amd64_e01b29e17ce4a109\AmdAppCompat.sys [44984 2025-09-10] (Advanced Micro Devices -> Advanced Micro Devices)
R3 amdfendrmgr; C:\WINDOWS\System32\DriverStore\FileRepository\amdfendr.inf_amd64_83dcee55c384eb60\amdfendrmgr.sys [37272 2025-11-10] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
R3 amdgpio3; C:\WINDOWS\System32\drivers\amdgpio3.sys [43400 2025-09-10] (ASMedia Technology Inc. -> Advanced Micro Devices, Inc)
R3 AmdPpkg; C:\WINDOWS\System32\DriverStore\FileRepository\amdppkg.inf_amd64_27762fb4b4d122d3\AmdPpkg.sys [35224 2025-11-19] (Advanced Micro Devices -> Advanced Micro Devices)
R2 AMDRyzenMasterDriverV31; C:\WINDOWS\system32\AMDRyzenMasterDriver.sys [61832 2026-01-08] (Advanced Micro Devices -> Advanced Micro Devices)
R3 AMDSAFD; C:\WINDOWS\System32\DriverStore\FileRepository\amdsafd.inf_amd64_d4de13a10f2586d0\amdsafd.sys [112952 2024-06-15] (AMD Test Build -> Advanced Micro Devices)
R3 amduw23g-197639-19a81ed0; C:\WINDOWS\System32\DriverStore\FileRepository\u0197639.inf_amd64_6e9872ffe0e526d3\B025646\amdkmdag.sys [102087184 2026-01-19] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
R3 amduw23g-197640-f2ee24e9; C:\WINDOWS\System32\DriverStore\FileRepository\u0197640.inf_amd64_38091087f7899005\B025647\amdkmdag.sys [112496656 2026-01-19] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [63856 2025-09-10] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
R1 Asusgio3; C:\Windows\system32\drivers\AsIO3.sys [60040 2025-11-20] (ASUSTeK COMPUTER INC. -> Asustek Computer Inc.)
R3 cpuz160; C:\ProgramData\CPUID Software\sdk\pTbAEmXbC6hC [44696 2025-09-22] (Microsoft Windows Hardware Compatibility Publisher -> CPUID)
R1 CTIAIO; C:\Windows\system32\drivers\CtiAIo64.sys [34920 2025-09-22] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Innovation Co., LTd.)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae.sys [159296 2026-02-09] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R4 IOMap; C:\WINDOWS\system32\drivers\IOMap64.sys [55416 2024-12-01] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
S3 KslD; C:\WINDOWS\System32\drivers\wd\KslD.sys [333192 2025-12-21] (Microsoft Windows -> Microsoft Corporation)
R2 mbamchameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [234600 2026-02-09] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [22120 2026-02-09] (Microsoft Windows Early Launch Anti-Malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\Drivers\farflt11.sys [214632 2026-02-09] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\System32\Drivers\mbam.sys [80984 2026-02-09] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [245864 2026-02-09] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [190096 2026-02-09] (Malwarebytes Inc -> Malwarebytes)
R1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [19672 2023-12-10] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
R3 MTKBTFilterx64; C:\WINDOWS\System32\DriverStore\FileRepository\mtkbtfilter.inf_amd64_cde37df5add40ae6\mtkbtfilterx.sys [529928 2024-07-03] (Microsoft Windows Hardware Compatibility Publisher -> MediaTek Inc.)
R3 mtkwlex; C:\WINDOWS\System32\DriverStore\FileRepository\mtkwl6ex.inf_amd64_6194fff95628cf72\mtkwl6ex.sys [1714808 2024-07-03] (Microsoft Windows Hardware Compatibility Publisher -> MediaTek Inc.)
R3 NTIOLib_CC_COMM; C:\Program Files (x86)\MSI\MSI Center\Lib\SYS\NTIOLib_X64.sys [32592 2024-09-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 ROGMS; C:\WINDOWS\System32\DriverStore\FileRepository\rogms.inf_amd64_7bcd8839c8e4f2a7\ROGMS.sys [41456 2025-11-04] (ASUSTeK COMPUTER INC. -> Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [21928 2025-12-21] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [635272 2025-12-21] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [102792 2025-12-21] (Microsoft Windows -> Microsoft Corporation)
S4 AmdTools64; \SystemRoot\System32\drivers\AmdTools64.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat (erstellte) (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2026-02-09 15:10 - 2026-02-09 15:10 - 000031149 _____ C:\Users\nico\Downloads\FRST.txt
2026-02-09 02:18 - 2026-02-09 02:18 - 000001958 _____ C:\Users\nico\Desktop\MBAM.txt
2026-02-09 02:16 - 2026-02-09 02:16 - 000707760 _____ C:\WINDOWS\system32\perfh007.dat
2026-02-09 02:16 - 2026-02-09 02:16 - 000150734 _____ C:\WINDOWS\system32\perfc007.dat
2026-02-09 02:15 - 2026-02-09 02:16 - 000000000 ____D C:\Users\nico\AppData\LocalLow\IGDump
2026-02-09 02:15 - 2026-02-09 02:15 - 000190096 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2026-02-09 02:14 - 2026-02-09 02:16 - 000000000 ____D C:\Users\nico\AppData\Local\Malwarebytes
2026-02-09 02:14 - 2026-02-09 02:14 - 000002093 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2026-02-09 02:14 - 2026-02-09 02:14 - 000002081 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2026-02-09 02:14 - 2026-02-09 02:14 - 000000000 ____D C:\ProgramData\Malwarebytes
2026-02-09 02:14 - 2026-02-09 02:14 - 000000000 ____D C:\Program Files\Malwarebytes
2026-02-09 02:13 - 2026-02-09 02:13 - 002849080 _____ (Malwarebytes) C:\Users\nico\Downloads\MBSetup.exe
2026-02-09 02:10 - 2026-02-09 02:11 - 000000000 ____D C:\AdwCleaner
2026-02-09 02:09 - 2026-02-09 02:09 - 009629128 _____ (Malwarebytes) C:\Users\nico\Downloads\adwcleaner.exe
2026-02-08 10:58 - 2026-02-08 11:40 - 000000605 _____ C:\Users\nico\Desktop\Torjaner Board.txt
2026-02-08 10:52 - 2026-02-09 15:10 - 000000000 ____D C:\FRST
2026-02-08 10:51 - 2026-02-08 10:51 - 002447360 _____ (Farbar) C:\Users\nico\Downloads\FRST64.exe
2026-02-08 00:33 - 2026-02-08 00:33 - 000000000 ____D C:\WINDOWS\Microsoft Antimalware
2026-02-08 00:20 - 2026-02-08 00:26 - 000000000 ____D C:\Program Files\VideoLAN
2026-02-07 10:41 - 2026-02-08 00:55 - 000000000 ____D C:\WINDOWS\CbsTemp
2026-01-26 22:54 - 2026-02-09 15:06 - 000003106 _____ C:\WINDOWS\system32\Tasks\AMDInstallLauncher
2026-01-26 19:01 - 2026-01-26 19:01 - 000007605 _____ C:\Users\nico\AppData\Local\Resmon.ResmonCfg
2026-01-26 18:51 - 2026-01-26 18:51 - 000002622 _____ C:\WINDOWS\system32\Tasks\AMDRyzenMasterSDKTask
2026-01-26 18:51 - 2026-01-26 18:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Software꞉ Adrenalin Edition
2026-01-26 18:51 - 2026-01-26 18:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Bug Report Tool
2026-01-26 18:50 - 2026-01-19 19:24 - 005175312 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdadlx64.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 004832784 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdadlx32.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 002498696 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdfendrsr.etz
2026-01-26 18:50 - 2026-01-19 19:24 - 002432016 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2026-01-26 18:50 - 2026-01-19 19:24 - 002432016 _____ C:\WINDOWS\system32\vulkaninfo.exe
2026-01-26 18:50 - 2026-01-19 19:24 - 002192400 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 001933832 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2026-01-26 18:50 - 2026-01-19 19:24 - 001933832 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2026-01-26 18:50 - 2026-01-19 19:24 - 001873936 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 001873936 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 001724592 _____ (AMD) C:\WINDOWS\system32\amf-mft-mjpeg-decoder64.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 001402048 _____ (AMD) C:\WINDOWS\SysWOW64\amf-mft-mjpeg-decoder32.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 001329168 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdsasrv64.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 001185296 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdlvr64.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 001069576 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe
2026-01-26 18:50 - 2026-01-19 19:24 - 000998928 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdlvr32.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 000801808 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Rapidfire64.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 000678928 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\Rapidfire.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 000632840 _____ C:\WINDOWS\system32\GameManager64.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 000592400 _____ C:\WINDOWS\system32\amdgfxinfo64.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 000559632 _____ C:\WINDOWS\system32\atieah64.exe
2026-01-26 18:50 - 2026-01-19 19:24 - 000550416 _____ C:\WINDOWS\system32\dgtrayicon.exe
2026-01-26 18:50 - 2026-01-19 19:24 - 000543248 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdsacli32.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 000526344 _____ C:\WINDOWS\system32\EEURestart.exe
2026-01-26 18:50 - 2026-01-19 19:24 - 000480272 _____ C:\WINDOWS\SysWOW64\GameManager32.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 000473616 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 000471568 _____ C:\WINDOWS\system32\amdlogum.exe
2026-01-26 18:50 - 2026-01-19 19:24 - 000450056 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 000433800 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdfendr.stz
2026-01-26 18:50 - 2026-01-19 19:24 - 000422408 _____ C:\WINDOWS\SysWOW64\atieah32.exe
2026-01-26 18:50 - 2026-01-19 19:24 - 000200712 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 000190984 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 000159472 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 000150536 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 000147464 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amfrt64.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 000131248 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 000122384 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amfrt32.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 000056968 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdfendrmgr.stz
2026-01-26 18:50 - 2026-01-19 19:24 - 000051728 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\RapidFireServer64.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 000048648 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\RapidFireServer.dll
2026-01-26 18:50 - 2026-01-19 19:23 - 115295760 _____ C:\WINDOWS\system32\amd_comgr_2.dll
2026-01-26 18:50 - 2026-01-19 19:23 - 115286544 _____ C:\WINDOWS\system32\amd_comgr_3.dll
2026-01-26 18:50 - 2026-01-19 19:23 - 096949256 _____ C:\WINDOWS\SysWOW64\amd_comgr32.dll
2026-01-26 18:50 - 2026-01-19 19:23 - 018195464 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdhip64_7.dll
2026-01-26 18:50 - 2026-01-19 19:23 - 000606472 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdsacli64.dll
2026-01-26 18:50 - 2026-01-19 19:23 - 000347144 _____ C:\WINDOWS\system32\clinfo.exe
2026-01-26 18:50 - 2026-01-19 19:23 - 000247312 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2026-01-26 18:50 - 2026-01-19 19:23 - 000212488 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2026-01-26 18:50 - 2026-01-19 19:23 - 000182360 _____ C:\WINDOWS\system32\amdmiracast.dll
2026-01-26 18:50 - 2026-01-19 19:23 - 000177168 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmmcl6.dll
2026-01-26 18:50 - 2026-01-19 19:23 - 000169856 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll
2026-01-26 18:50 - 2026-01-19 19:23 - 000159472 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll
2026-01-26 18:50 - 2026-01-19 19:23 - 000145928 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmmcl.dll
2026-01-26 18:50 - 2026-01-19 19:23 - 000145216 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll
2026-01-26 18:50 - 2026-01-19 19:23 - 000142728 _____ C:\WINDOWS\system32\amdxc64.dll
2026-01-26 18:50 - 2026-01-19 19:23 - 000131248 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll
2026-01-26 18:50 - 2026-01-19 19:23 - 000118744 _____ C:\WINDOWS\SysWOW64\amdxc32.dll
2026-01-26 18:50 - 2026-01-19 18:31 - 120371952 _____ C:\WINDOWS\system32\amdxc64.so
2026-01-26 18:50 - 2026-01-19 17:56 - 000787984 _____ C:\WINDOWS\system32\hiprt0200064.dll
2026-01-23 02:33 - 2026-01-23 02:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMDInstallManager
==================== Ein Monat (geänderte) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2026-02-09 15:10 - 2025-09-09 12:02 - 000000342 _____ C:\Users\nico\Desktop\Ubisoft.txt
2026-02-09 15:10 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SystemTemp
2026-02-09 15:07 - 2025-09-05 17:40 - 000000000 ____D C:\Users\nico\AppData\Roaming\discord
2026-02-09 15:07 - 2025-09-05 17:40 - 000000000 ____D C:\Users\nico\AppData\Local\Discord
2026-02-09 15:06 - 2025-09-22 23:36 - 000000000 ____D C:\Users\nico\AppData\Roaming\asus_framework
2026-02-09 15:06 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\AppReadiness
2026-02-09 02:23 - 2024-04-01 08:26 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2026-02-09 02:16 - 2025-10-29 22:11 - 001637736 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2026-02-09 02:16 - 2024-04-01 08:24 - 000000000 ____D C:\WINDOWS\INF
2026-02-09 02:14 - 2025-07-13 13:17 - 000000000 ____D C:\Users\nico\AppData\Local\Packages
2026-02-09 02:14 - 2025-07-13 13:17 - 000000000 ____D C:\ProgramData\Packages
2026-02-09 02:14 - 2024-04-01 08:26 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2026-02-09 02:14 - 2024-04-01 08:26 - 000000000 ___HD C:\Program Files\WindowsApps
2026-02-08 10:59 - 2025-07-13 13:17 - 000000000 ____D C:\Users\nico\AppData\Local\D3DSCache
2026-02-08 10:45 - 2025-10-29 22:09 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2026-02-08 10:45 - 2025-10-29 22:07 - 000002044 _____ C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2
2026-02-08 10:45 - 2025-10-29 22:05 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2026-02-08 10:45 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\ServiceState
2026-02-08 10:45 - 2022-01-01 10:22 - 000012288 ___SH C:\DumpStack.log.tmp
2026-02-08 00:33 - 2024-04-01 08:21 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2026-02-07 23:45 - 2022-01-01 10:22 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2026-02-07 23:27 - 2025-10-29 01:56 - 000000000 ____D C:\Users\nico
2026-02-07 11:19 - 2025-09-05 17:40 - 000002247 _____ C:\Users\nico\Desktop\Discord.lnk
2026-02-07 10:32 - 2025-07-13 13:28 - 000000000 ____D C:\Users\nico\AppData\Local\Comms
2026-02-07 09:41 - 2025-07-18 13:09 - 000000000 ____D C:\Program Files\Microsoft Office
2026-02-07 09:40 - 2025-07-14 10:32 - 000002239 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2026-02-07 09:40 - 2025-07-14 10:32 - 000002198 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2026-02-07 09:34 - 2025-08-05 23:51 - 000000000 ____D C:\Users\nico\AppData\Local\CrashDumps
2026-02-06 12:35 - 2025-07-18 18:30 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2026-02-05 23:25 - 2025-10-30 18:18 - 000000000 ____D C:\ProgramData\Whesvc
2026-02-05 23:13 - 2025-07-16 08:50 - 000000000 ____D C:\Users\nico\Desktop\Wallpapers
2026-02-03 22:54 - 2025-07-13 13:25 - 000000000 ____D C:\Users\nico\AppData\Local\AMD_Common
2026-02-03 22:48 - 2025-10-29 22:09 - 000003596 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1548267073-3587465546-3215327545-1001
2026-02-03 22:48 - 2025-10-29 22:09 - 000003552 _____ C:\WINDOWS\system32\Tasks\OneDrive Startup Task-S-1-5-21-1548267073-3587465546-3215327545-1001
2026-02-03 22:48 - 2025-10-29 22:09 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2026-02-03 22:48 - 2025-07-18 13:12 - 000002023 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2026-02-03 17:03 - 2025-10-30 18:19 - 000000000 ____D C:\Users\nico\AppData\Local\comgr
2026-02-03 12:56 - 2026-01-07 16:30 - 000000000 ____D C:\Users\nico\Desktop\Filmmaking
2026-02-03 10:28 - 2025-11-03 19:06 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2026-02-03 10:28 - 2025-11-03 19:06 - 000002061 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2026-02-03 10:15 - 2025-09-22 23:34 - 000000000 ____D C:\Program Files\ASUS
2026-02-03 10:15 - 2025-09-22 23:22 - 000000000 ____D C:\ProgramData\ASUS
2026-02-01 22:25 - 2025-07-13 13:22 - 000000000 ____D C:\ProgramData\Package Cache
2026-02-01 22:24 - 2025-10-29 22:09 - 000000000 ____D C:\WINDOWS\system32\Tasks\ASUS
2026-02-01 22:24 - 2025-09-22 23:47 - 000000000 ____D C:\Program Files\dotnet
2026-02-01 22:24 - 2025-09-22 23:47 - 000000000 ____D C:\Program Files (x86)\LightingService
2026-02-01 22:24 - 2025-07-13 13:26 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2026-02-01 22:23 - 2025-09-22 23:22 - 000000000 ____D C:\Program Files (x86)\ASUS
2026-01-31 10:12 - 2025-07-13 13:28 - 000008192 _____ C:\WINDOWS\system32\Drivers\mtkRunTimeDataWdi.bin
2026-01-27 23:44 - 2025-07-13 13:40 - 000000000 ____D C:\Program Files (x86)\Steam
2026-01-26 18:51 - 2025-12-21 12:06 - 000003484 _____ C:\WINDOWS\system32\Tasks\ModifyLinkUpdate
2026-01-26 18:51 - 2025-12-21 12:06 - 000003152 _____ C:\WINDOWS\system32\Tasks\StartCN
2026-01-26 18:51 - 2025-12-21 12:06 - 000003072 _____ C:\WINDOWS\system32\Tasks\StartDVR
2026-01-26 18:51 - 2025-07-13 13:25 - 000000000 ____D C:\Program Files\AMD
2026-01-26 18:51 - 2025-07-13 13:22 - 000000000 ____D C:\AMD
2026-01-25 23:39 - 2025-10-29 22:09 - 000003754 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2026-01-25 23:39 - 2025-10-29 22:09 - 000003628 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2026-01-23 02:33 - 2025-10-29 22:09 - 000004054 _____ C:\WINDOWS\system32\Tasks\AMD Install Manager - Check For Updates
2026-01-20 19:45 - 2025-10-29 22:05 - 000477464 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2026-01-20 19:45 - 2024-04-01 17:36 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2026-01-20 19:45 - 2024-04-01 08:26 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2026-01-20 19:45 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2026-01-20 19:45 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2026-01-20 19:45 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2026-01-20 19:45 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SystemResources
2026-01-20 19:45 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2026-01-20 19:45 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\setup
2026-01-20 19:45 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2026-01-20 19:45 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\bcastdvr
2026-01-20 00:03 - 2025-10-29 22:09 - 003276800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2026-01-10 16:18 - 2025-07-13 13:40 - 000000000 ____D C:\Users\nico\AppData\Local\Steam
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========
2026-01-26 19:01 - 2026-01-26 19:01 - 000007605 _____ () C:\Users\nico\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
==================== Ende von FRST.txt ========================
Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 07-02-2026
durchgeführt von nico (09-02-2026 15:11:06)
Gestartet von C:\Users\nico\Downloads
Microsoft Windows 11 Pro Version 25H2 26200.7623 (X64) (2025-10-29 21:09:20)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
Administrator (S-1-5-21-1548267073-3587465546-3215327545-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1548267073-3587465546-3215327545-503 - Limited - Disabled)
Gast (S-1-5-21-1548267073-3587465546-3215327545-501 - Limited - Disabled)
nico (S-1-5-21-1548267073-3587465546-3215327545-1001 - Administrator - Enabled) => C:\Users\nico
WDAGUtilityAccount (S-1-5-21-1548267073-3587465546-3215327545-504 - Limited - Disabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Malwarebytes (Enabled - Up to date) {A537353A-1D6A-F6B5-9153-CE1CF80FBE66}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
7-Zip 25.01 (x64) (HKLM\...\7-Zip) (Version: 25.01 - Igor Pavlov)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1031-1033-7760-BC15014EA700}) (Version: 25.001.21151 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601120}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
AMD Application Compatibility Database Driver (HKLM-x32\...\{7466773D-AE4B-48F6-8E12-D64B555C1BEA}) (Version: 1.0.0.3 - Advanced Micro Devices, Inc.) Hidden
AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 7.11.26.2142 - Advanced Micro Devices, Inc.)
AMD GPIO2 Driver (HKLM-x32\...\{E9DD399F-21A3-479E-A7DF-D6CF4B2ADBF3}) (Version: 2.2.0.134 - Advanced Micro Devices, Inc.) Hidden
AMD I2C Driver (HKLM-x32\...\{B31D92D9-2914-46B0-9738-F668A563DE73}) (Version: 1.2.0.126 - Advanced Micro Devices, Inc.) Hidden
AMD Install Manager (HKLM\...\{569DDC87-94F9-4D4E-BC04-270227EC8828}) (Version: 25.30.26008.1803 - Advanced Micro Devices, Inc.)
AMD PPM Provisioning File Driver (HKLM-x32\...\{3665A5DE-D07C-46D7-9207-713E8E9FEF32}) (Version: 8.0.0.59 - Advanced Micro Devices, Inc.) Hidden
AMD Privacy View (HKLM\...\{D8E24EA6-807B-48D0-86D6-A9C5E74B8F2C}) (Version: 1.02.0001 - Eyeware Tech SA)
AMD PSP Driver (HKLM-x32\...\{988F14B8-79A8-475D-BAC7-83F96AD3D821}) (Version: 5.40.0.0 - Advanced Micro Devices, Inc.) Hidden
AMD Ryzen Master SDK (HKLM\...\{DBD50508-5F75-416B-995D-C42433A00944}) (Version: 2.14.2.3330 - Advanced Micro Devices, Inc.)
AMD SBxxx SMBus Driver (HKLM-x32\...\{AAE0E27D-C88A-49BA-8715-77ADCD4286A3}) (Version: 5.12.0.44 - Advanced Micro Devices, Inc.) Hidden
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 26.1.1 - Advanced Micro Devices, Inc.)
AMD_Chipset_Drivers (HKLM-x32\...\{a2c5e97a-dd0d-4a8c-b1fc-dfcaf9a0a4a2}) (Version: 7.11.26.2142 - Advanced Micro Devices, Inc.) Hidden
AniMeVisionFont_STRIX_SCAR (HKLM\...\{09125B1C-D984-4FF3-AF65-391CF4E5FD2A}) (Version: 1.0.1 - ASUSTek Computer Inc.) Hidden
Armoury Crate Service (HKLM\...\Armoury Crate Service) (Version: 6.4.7.0 - ASUSTeK COMPUTER INC.)
ASUS Aac_GmAcc HAL (HKLM\...\{998249B1-6913-447E-AA37-F445B8CA33D0}) (Version: 1.0.12.0 - ASUSTek COMPUTER INC.) Hidden
ASUS Aac_GmAcc HAL (HKLM-x32\...\{c3219916-0c5a-483c-8b38-bdd71cf96365}) (Version: 1.0.12.0 - ASUSTek COMPUTER INC.) Hidden
ASUS Ambient HAL (HKLM\...\{867FA4F4-652B-41BD-90C0-E795B5487978}) (Version: 7.15.0.0 - ASUSTeK COMPUTER INC.) Hidden
ASUS Ambient HAL (HKLM-x32\...\{784f961c-218c-4905-b79d-bce3f01d3626}) (Version: 7.15.0.0 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Extension Card HAL (HKLM\...\{237E1CAC-1708-4940-AC34-DF15C079AB70}) (Version: 1.1.0.20 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Extension Card HAL (HKLM-x32\...\{49c4358d-054e-4cf1-9ec1-dca3487f304a}) (Version: 1.1.0.20 - ASUSTeK COMPUTER INC.) Hidden
ASUS Aura SDK (HKLM\...\{CF8E6E00-9C03-4440-81C0-21FACB921A6B}) (Version: 3.07.02 - ASUSTeK COMPUTER INC.) Hidden
ASUS Framework Service (HKLM-x32\...\{339A6383-7862-46DA-8A9D-E84180EF9424}) (Version: 4.2.4.8 - ASUSTeK Computer Inc.)
ASUS Keyboard HAL (HKLM\...\{ECB7DB5E-9707-4DBC-8713-9FC4A4AF436E}) (Version: 1.3.18.0 - ASUSTek COMPUTER INC.) Hidden
ASUS Keyboard HAL (HKLM-x32\...\{d13e6383-8403-46ea-a487-b67f99d54947}) (Version: 1.3.18.0 - ASUSTek COMPUTER INC.) Hidden
ASUS Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.107.151 - ASUSTeK Computer Inc.) Hidden
AURA DRAM Component (HKLM\...\{86D4C8A2-DB22-4948-950D-28DD5145F91C}) (Version: 1.1.29 - ASUS) Hidden
AURA DRAM Component (HKLM-x32\...\{f70a8a88-540d-485d-9aa8-001486fb050e}) (Version: 1.1.29 - ASUS) Hidden
AURA lighting effect add-on (HKLM-x32\...\{1E2EA04B-FCA7-457E-B6F4-F33E1858E859}) (Version: 0.0.52 - ASUSTek COMPUTER INC.)
AURA lighting effect add-on x64 (HKLM\...\{C5A4A164-4428-4931-B728-96EEF0FA3C44}) (Version: 0.0.52 - ASUSTek COMPUTER INC.)
AURA Service (HKLM-x32\...\{4fd68e38-4176-4fea-82f8-0b52bf9db34b}) (Version: 3.10.04 - ASUSTeK COMPUTER INC.)
AURA Service (HKLM-x32\...\{56EEEF7D-0AE3-401A-898B-581719D005AE}) (Version: 3.10.04 - ASUSTeK COMPUTER INC.) Hidden
Aura Wallpaper HTML (HKLM-x32\...\{fd36a871-5a75-4285-a469-61bbe3dbd858}) (Version: 2.1.10.0 - ASUSTek Computer Inc.)
Aura Wallpaper Service (HKLM\...\{A78E52FB-5921-0A22-5D0B-212641047CF4}) (Version: 2.1.10.0 - ASUSTeK COMPUTER INC.)
Blackmagic RAW Common Components (HKLM\...\{FCDBA071-A602-43E6-BFD4-4A6AC43D3556}) (Version: 5.1 - Blackmagic Design)
Branding64 (HKLM\...\{492AEFBE-1B81-4C20-A111-E6974BB98EC5}) (Version: 1.00.0009 - Advanced Micro Devices, Inc.) Hidden
CPUID CPU-Z MSI 2.15 (HKLM\...\CPUID CPU-Z MSI_is1) (Version: 2.15 - CPUID, Inc.)
DaVinci Resolve (HKLM\...\{947B464E-D01B-46D9-912B-F2B8756FA71E}) (Version: 20.3.10006 - Blackmagic Design)
DaVinci Resolve Control Panels (HKLM\...\{6DF13AB8-1697-46A2-8017-F68D860FC201}) (Version: 2.3.4.0 - Blackmagic Design)
DECUS RESPEC Gaming Mouse Driver (HKLM-x32\...\{CF88BB19-254D-4063-88C3-F0DF688ED577}) (Version: 1.2 - Joellenbeck GmbH)
Discord (HKU\S-1-5-21-1548267073-3587465546-3215327545-1001\...\Discord) (Version: 1.0.9223 - Discord Inc.)
EA app (HKLM\...\{C2622085-ABD2-49E5-8AB9-D3D6A642C091}) (Version: 13.579.0.6092 - Electronic Arts) Hidden
EA app (HKLM-x32\...\{a5316e04-4f57-44b2-bc29-c4e58fa0fea1}) (Version: 13.579.0.6092 - Electronic Arts)
ENE RGB HAL (HKLM\...\{E050E98C-5524-4AFB-9E53-97700BEF2C02}) (Version: 1.1.58.4 - Ene Tech.) Hidden
ENE RGB HAL (HKLM-x32\...\{a06f2235-c1cb-4cd6-91ac-30089f052973}) (Version: 1.1.58.4 - Ene Tech.) Hidden
ENE_EHD_M2_HAL (HKLM\...\{37A48B7F-D4EA-4863-844E-A284E2AA3C5D}) (Version: 1.0.14.0 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_M2_HAL (HKLM-x32\...\{c1d017c2-8846-4000-9254-5689eccd462e}) (Version: 1.0.14.0 - ENE TECHNOLOGY INC.) Hidden
GameSDK Service (HKLM-x32\...\{021d69c3-d686-4a94-8fb5-fd1ee782fb14}) (Version: 1.0.5.0 - ASUSTek COMPUTER INC.)
GameSDK Service (HKLM-x32\...\{7160DA8D-3F25-4F6E-ABC8-F693551D82FA}) (Version: 1.0.5.0 - ASUSTek COMPUTER INC.) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 144.0.7559.133 - Google LLC)
Kingston AURA DRAM Component (HKLM\...\{965CDF5F-901C-476F-B3A8-7396701B1129}) (Version: 1.1.40 - KINGSTON COMPONENTS INC.) Hidden
Kingston AURA DRAM Component (HKLM-x32\...\{2dcabc26-feae-4bc3-afc0-fba6e9f32af4}) (Version: 1.1.40 - KINGSTON COMPONENTS INC.) Hidden
Malwarebytes version 5.4.8.232 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 5.4.8.232 - Malwarebytes)
Microsoft .NET Host - 8.0.21 (x64) (HKLM\...\{72357746-B194-485C-A161-FB80F419DC20}) (Version: 64.84.40925 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 8.0.21 (x64) (HKLM\...\{B382D796-20D3-45DA-AB94-E98D99668B10}) (Version: 64.84.40925 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 8.0.21 (x64) (HKLM\...\{EEFB29A5-3E62-4DCE-8527-0DF45D780126}) (Version: 64.84.40925 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 8.0.21 (x64) (HKLM-x32\...\{cf83f56a-4c10-4d97-9594-0764dfeb96e3}) (Version: 8.0.21.35325 - Microsoft Corporation)
Microsoft 365 Apps for Enterprise - de-de (HKLM\...\O365ProPlusRetail - de-de) (Version: 16.0.19628.20166 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 144.0.3719.115 - Microsoft Corporation)
Microsoft Edge WebView2-Laufzeit (HKLM-x32\...\Microsoft EdgeWebView) (Version: 144.0.3719.115 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 26.002.0105.0001 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.44.35211 (HKLM-x32\...\{d8bbe9f9-7c5b-42c6-b715-9ee898a2e515}) (Version: 14.44.35211.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.44.35211 (HKLM-x32\...\{0b5169e3-39da-4313-808e-1f9c0407f3bf}) (Version: 14.44.35211.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.44.35211 (HKLM\...\{86AB2CC9-08BD-4643-B0F9-F82D006D72FF}) (Version: 14.44.35211 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.44.35211 (HKLM\...\{43B0D101-A022-48F4-9D04-BA404CEB1D53}) (Version: 14.44.35211 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.44.35211 (HKLM-x32\...\{C18FB403-1E88-43C8-AD8A-CED50F23DE8B}) (Version: 14.44.35211 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.44.35211 (HKLM-x32\...\{922480B5-CAEB-4B1B-AAA4-9716EFDCE26B}) (Version: 14.44.35211 - Microsoft Corporation) Hidden
MSI Center SDK (HKLM-x32\...\{15289038-41BE-48F8-B8B9-0B1021D3089E}}_is1) (Version: 3.2025.0617.01 - MSI)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.19426.20170 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.19029.20208 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0407-1000-0000000FF1CE}) (Version: 16.0.19426.20170 - Microsoft Corporation) Hidden
Patriot Viper DRAM RGB (HKLM\...\{1F9C282E-CCB4-4D8E-A5CB-7B74DFCD8C95}) (Version: 1.0.9.8 - Patriot Memory) Hidden
Patriot Viper DRAM RGB (HKLM-x32\...\{55993b50-5bec-47c8-8b2b-1aecad927e48}) (Version: 1.0.9.8 - Patriot Memory) Hidden
Patriot Viper M2 SSD RGB (HKLM\...\{8B4C0A3D-C135-4E1F-98D8-3926494B4D61}) (Version: 1.1.0.3 - Patriot Memory) Hidden
Patriot Viper M2 SSD RGB (HKLM-x32\...\{6e0eff60-c502-43bb-8f56-360ca07e73d9}) (Version: 1.1.0.3 - Patriot Memory) Hidden
Promontory_GPIO Driver (HKLM-x32\...\{B5512BCC-F4CD-4159-86A4-B2AD7D38FFA9}) (Version: 3.0.3.0 - Advanced Micro Devices, Inc.) Hidden
Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9826.1 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.75.324.2025 - Realtek)
ROG AZOTH (2.4GHz) (HKLM-x32\...\{e471aae0-06b2-4d14-860f-3c437c44ec43}) (Version: 5.00.18 - ASUSTek Computer Inc.)
ROG AZOTH (BLE) (HKLM-x32\...\{8cf5daaa-547f-44b9-b12a-2fe43b4bfaab}) (Version: 5.00.18 - ASUSTek Computer Inc.)
ROG AZOTH (HKLM-x32\...\{b211971f-cf1b-4698-9660-a34f763bb7f3}) (Version: 5.00.18 - ASUSTek Computer Inc.)
ROG Live Service (HKLM\...\{2D87BFB6-C184-4A59-9BBE-3E20CE797631}) (Version: 3.4.12.0 - ASUSTek COMPUTER INC.)
RyzenMasterSDK (HKLM\...\{C173683F-37FC-47A0-8768-09E635AAB284}) (Version: 1.2.3.5 - Advanced Micro Devices, Inc.) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 167.1.12915 - Ubisoft)
Universal Holtek RGB DRAM (HKLM\...\{826388E4-E31F-4514-948B-3BB954FB3EAF}) (Version: 1.0.0.7 - PD) Hidden
Universal Holtek RGB DRAM (HKLM-x32\...\{9a732423-e2f4-47d0-87ab-ef745c7dba69}) (Version: 1.0.0.7 - PD) Hidden
Update for x64-based Windows Systems (KB5001716) (HKLM\...\{B8D93870-98D1-4980-AFCA-E26563CDFB79}) (Version: 8.94.0.0 - Microsoft Corporation)
WD_BLACK AN1500 (HKLM\...\{085E2365-0A70-4230-B664-02D5E4FE7E9C}) (Version: 1.0.14.0 - ENE TECHNOLOGY INC.) Hidden
WD_BLACK AN1500 (HKLM-x32\...\{e42c5874-37b0-4977-9e8d-70bf006e1f76}) (Version: 1.0.14.0 - ENE TECHNOLOGY INC.) Hidden
Xbox 360 Controller Emulator (HKLM\...\{66F1BC10-A109-47A5-918D-61023175C03E}) (Version: 1.0.0.15 - ASUSTek COMPUTER INC.) Hidden
Xbox 360 Controller Emulator (HKLM\...\{6B45AA6A-7060-4A48-91B9-A085A897E483}) (Version: 1.0.0.15 - ASUSTek COMPUTER INC.) Hidden
Packages:
=========
Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Assets [2026-02-03] ()
AMD Radeon Software -> C:\Program Files\AMD\CNext\CNext [2026-01-26] (Advanced Micro Devices Inc.)
Armoury Crate -> C:\Program Files\ASUS\AacAmbientHal [2026-02-01] (Sparse Package)
Armoury Crate -> C:\Program Files\WindowsApps\B9ECED6F.ArmouryCrate_6.4.7.0_x64__qmba6cd70vzyy [2026-01-31] (ASUSTeK COMPUTER INC.)
AURA Creator -> C:\Program Files\WindowsApps\B9ECED6F.AURACreator_4.3.5.0_x64__qmba6cd70vzyy [2025-10-30] (ASUSTeK COMPUTER INC.)
Local AI Manager for Microsoft 365 -> C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\AI [2026-02-07] ()
Malwarebytes Anti-Malware -> C:\Program Files\Malwarebytes\Anti-Malware [2026-02-09] ()
Microsoft 365 companion apps -> C:\Program Files\WindowsApps\Microsoft.M365Companions_2.2511.25000.0_x64__8wekyb3d8bbwe [2025-12-22] (Microsoft Corporation)
Microsoft.Office.ActionsServer -> C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\ActionsServer [2026-02-07] ()
MSI Center -> C:\Program Files\WindowsApps\9426MICRO-STARINTERNATION.MSICenter_2.0.66.0_x64__kzh8wxbdkxb8p [2026-02-08] (MICRO-STAR INTERNATIONAL CO., LTD) [Startup Task]
OfficePushNotificationsUtility -> C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16 [2026-02-07] ()
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.53.374.0_x64__dt26b99r8h8gj [2025-10-30] (Realtek Semiconductor Corp)
SpotifyAB.SpotifyMusic -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.282.428.0_x64__zpdnekdrzrea0 [2026-02-01] (Spotify AB) [Startup Task]
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-1548267073-3587465546-3215327545-1001_Classes\CLSID\{04271989-C4D2-3396-A53C-16693539ECC9} -> [OneDrive] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}
CustomCLSID: HKU\S-1-5-21-1548267073-3587465546-3215327545-1001_Classes\CLSID\{13357088-9834-0409-1600-134951500000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-1548267073-3587465546-3215327545-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-1548267073-3587465546-3215327545-1001_Classes\CLSID\{DFF20505-B08F-455B-AD70-4FBD055088E0}\localserver32 -> C:\Program Files\Google\Chrome\Application\PlatformExperienceHelper\platform_experience_helper.exe (Google LLC -> Google LLC)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\FileSyncShell64.dll [2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\FileSyncShell64.dll [2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\FileSyncShell64.dll [2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\FileSyncShell64.dll [2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\FileSyncShell64.dll [2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\FileSyncShell64.dll [2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\FileSyncShell64.dll [2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\FileSyncShell64.dll [2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\FileSyncShell64.dll [2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\FileSyncShell64.dll [2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\FileSyncShell64.dll [2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\FileSyncShell64.dll [2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\FileSyncShell64.dll [2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\FileSyncShell64.dll [2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\FileSyncShell64.dll [2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2025-08-03] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2026-01-20] (Adobe Inc. -> Adobe Systems Inc.)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2026-02-09] (Malwarebytes Inc -> Malwarebytes)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\FileSyncShell64.dll [2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2025-08-03] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\FileSyncShell64.dll [2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2026-01-08] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2025-08-03] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2026-02-09] (Malwarebytes Inc -> Malwarebytes)
==================== Codecs (Nicht auf der Ausnahmeliste) ====================
==================== Verknüpfungen & WMI ========================
==================== Geladene Module (Nicht auf der Ausnahmeliste) =============
2026-02-01 22:24 - 2025-02-03 17:17 - 000349184 _____ () [Datei ist nicht signiert] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\resources\app.asar.unpacked\node_modules\@img\sharp-win32-ia32\lib\sharp-win32-ia32.node
2025-07-22 10:53 - 2016-03-19 11:27 - 000045056 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\SPEEDLINK\DECUS RESPEC Gaming Mouse\hiddriver.dll
2025-07-22 10:53 - 2016-10-27 14:03 - 000036864 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\SPEEDLINK\DECUS RESPEC Gaming Mouse\Lang.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================
==================== Internet Explorer (Nicht auf der Ausnahmeliste) =============
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2026-02-01] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2026-02-01] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2026-02-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2026-02-01] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2026-02-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2026-02-01] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2026-02-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2026-02-01] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2026-02-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2026-02-01] (Microsoft Corporation -> Microsoft Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE trusted site: HKU\S-1-5-21-1548267073-3587465546-3215327545-1001\...\sharepoint.com -> hxxps://charitede-files.sharepoint.com
==================== Hosts Inhalt: =========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2019-12-07 10:14 - 2019-12-07 10:12 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Network ===========================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
DNS Servers: 192.168.178.1
ist aktiviert.
Network Binding:
=============
WLAN: RZ616 Wi-Fi 6E 160MHz -> mtkwl6ex.sys
Ethernet: Realtek Gaming 2.5GbE Family Controller -> rt640x64.sys
Bluetooth-Netzwerkverbindung: Bluetooth Device (Personal Area Network) -> bthpan.sys
==================== Andere Bereiche ===========================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-1548267073-3587465546-3215327545-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\nico\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows Defender\Features => (TamperProtection: 1) (TamperProtectionSource: 5)
HKLM\SOFTWARE\Microsoft\Windows Defender\Real-Time Protection => (DpaDisabled: 0)
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
HKU\S-1-5-21-1548267073-3587465546-3215327545-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_8777BAF98F32F23A314B91BE41AA5DE3"
HKU\S-1-5-21-1548267073-3587465546-3215327545-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-1548267073-3587465546-3215327545-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-1548267073-3587465546-3215327545-1001\...\StartupApproved\Run: => "EADM"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{B22CA17B-65C9-4CB8-8E3C-D794488F36FF}] => (Allow) H:\SteamLibrary\steamapps\common\DARK SOULS III\Game\DarkSoulsIII.exe (FromSoftware,Inc. -> BANDAI NAMCO Entertainment Inc.) [Datei ist nicht signiert]
FirewallRules: [{048FE0E0-FFF0-4995-ABD4-43F9E958BCB8}] => (Allow) H:\SteamLibrary\steamapps\common\DARK SOULS III\Game\DarkSoulsIII.exe (FromSoftware,Inc. -> BANDAI NAMCO Entertainment Inc.) [Datei ist nicht signiert]
FirewallRules: [{25129877-CB63-4273-A432-4B3CFE48536F}] => (Allow) H:\SteamLibrary\steamapps\common\WitchIt\WitchIt\Binaries\Win64\PropWitchHuntModule-Win64-Shipping.exe (G=Barrel Roll Games) [Datei ist nicht signiert]
FirewallRules: [{58F9FF3F-14F7-48EE-B7B1-EBFA69450A64}] => (Allow) H:\SteamLibrary\steamapps\common\WitchIt\WitchIt\Binaries\Win64\PropWitchHuntModule-Win64-Shipping.exe (G=Barrel Roll Games) [Datei ist nicht signiert]
FirewallRules: [{4D742157-D181-4EC4-8828-C8F667A146E5}] => (Allow) H:\SteamLibrary\steamapps\common\Operation Tango\Operation Tango.exe () [Datei ist nicht signiert]
FirewallRules: [{F774B41C-A261-47AC-90B5-271D2FB2DAAD}] => (Allow) H:\SteamLibrary\steamapps\common\Operation Tango\Operation Tango.exe () [Datei ist nicht signiert]
FirewallRules: [{5B283A2E-7094-4B59-9047-A4B49F16CAAB}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{72582C66-14EA-4B7C-828A-759B2B788AEA}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALaunchHelper.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{0554F3DD-A09C-495D-A696-20121E80FDA9}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{74361E97-542E-40C9-B237-C328119ED103}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{1E817BC5-51B3-49FB-A449-9E71BA4F6312}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{8F844406-67F7-4978-9427-5366113DDDBA}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{ED79F475-2BAA-4A7A-8657-521C7BE18DEF}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{33415284-EDAA-4466-8A9F-0E55B596A520}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{173FB344-F8FE-4C4C-826D-8538FCE8D8C6}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{987CCB7D-3014-410F-B79A-671974CF0742}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{49D01CEF-8FC4-41A9-BDFF-D3F8572A978A}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{0FAF20A8-A8F8-4A91-8ADB-1FC9102E9643}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{232F75D0-E1AC-481C-B326-4B93C51F8FC3}] => (Allow) C:\Users\nico\AppData\Local\Temp\ACFL20250923003420\ACSetup\ACSetup.exe => Keine Datei
FirewallRules: [{60468863-0372-465A-9EBB-49E0D82B3970}] => (Allow) C:\Users\nico\AppData\Local\Temp\ACFL20250923003420\ACSetup\ACSetup.exe => Keine Datei
FirewallRules: [{9156331C-91BC-4D23-87E0-A2500EF2F223}] => (Allow) H:\SteamLibrary\steamapps\common\Assassin's Creed Unity\ACU.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{E9E9FAE7-8D3F-4BB3-9164-5A9F9F954F7A}] => (Allow) H:\SteamLibrary\steamapps\common\Assassin's Creed Unity\ACU.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{F8B5A145-E159-4317-B33C-8B4B2F90DEEA}] => (Allow) H:\SteamLibrary\steamapps\common\SubnauticaZero\SubnauticaZero.exe () [Datei ist nicht signiert]
FirewallRules: [{9539366A-E513-4A95-B280-1FD2E423B5BA}] => (Allow) H:\SteamLibrary\steamapps\common\SubnauticaZero\SubnauticaZero.exe () [Datei ist nicht signiert]
FirewallRules: [{2A867809-EB88-42F6-A2FB-F57EF0B865D8}] => (Allow) H:\SteamLibrary\steamapps\common\Overcooked! 2\Overcooked2.exe () [Datei ist nicht signiert]
FirewallRules: [{1B8B14D3-5841-4B2C-9ECA-D615CF67F011}] => (Allow) H:\SteamLibrary\steamapps\common\Overcooked! 2\Overcooked2.exe () [Datei ist nicht signiert]
FirewallRules: [{ABFA4736-FABE-4F40-926A-4EA3D4D6502A}] => (Allow) H:\SteamLibrary\steamapps\common\Stardew Valley\Stardew Valley.exe (ConcernedApe) [Datei ist nicht signiert]
FirewallRules: [{0CA65DC7-F7A1-4A17-B890-5A1B357CC049}] => (Allow) H:\SteamLibrary\steamapps\common\Stardew Valley\Stardew Valley.exe (ConcernedApe) [Datei ist nicht signiert]
FirewallRules: [{49EDFAFF-A79E-40F9-B1EF-36A1E26B82C8}] => (Allow) H:\SteamLibrary\steamapps\common\Undertale\UNDERTALE.exe (Toby Fox) [Datei ist nicht signiert]
FirewallRules: [{6A9480F6-852F-4097-865D-F66A25870283}] => (Allow) H:\SteamLibrary\steamapps\common\Undertale\UNDERTALE.exe (Toby Fox) [Datei ist nicht signiert]
FirewallRules: [{F551ADBC-6C52-46BD-B687-5AC6F816AA63}] => (Allow) H:\SteamLibrary\steamapps\common\Kerbal Space Program\KSP_x64.exe (Take-Two Interactive Software, Inc. -> )
FirewallRules: [{0BBB5AC2-A1DA-4330-91C3-16513E550092}] => (Allow) H:\SteamLibrary\steamapps\common\Kerbal Space Program\KSP_x64.exe (Take-Two Interactive Software, Inc. -> )
FirewallRules: [{F7B42BEC-3ECF-4237-85E7-07B9592F31AE}] => (Allow) H:\SteamLibrary\steamapps\common\ShellShock Live\ShellShockLive.exe () [Datei ist nicht signiert]
FirewallRules: [{B430DF75-C33A-428D-8378-C639D48032E0}] => (Allow) H:\SteamLibrary\steamapps\common\ShellShock Live\ShellShockLive.exe () [Datei ist nicht signiert]
FirewallRules: [{41F8B211-51D1-422A-B18B-A34A6E1E742D}] => (Allow) H:\SteamLibrary\steamapps\common\Split Fiction\Split\Binaries\Win64\SplitFiction.exe (Hazelight Studios AB -> Hazelight Studios)
FirewallRules: [{27997040-2B7A-4844-8E71-B2319C78FD11}] => (Allow) H:\SteamLibrary\steamapps\common\Split Fiction\Split\Binaries\Win64\SplitFiction.exe (Hazelight Studios AB -> Hazelight Studios)
FirewallRules: [{59A25995-DC37-4B78-B52C-5AC2D5839951}] => (Allow) H:\SteamLibrary\steamapps\common\Ultimate Chicken Horse\UltimateChickenHorse.exe () [Datei ist nicht signiert]
FirewallRules: [{A83BC650-16F0-4462-8277-2411903D15C7}] => (Allow) H:\SteamLibrary\steamapps\common\Ultimate Chicken Horse\UltimateChickenHorse.exe () [Datei ist nicht signiert]
FirewallRules: [{2EA1CA9F-9792-4BC9-A162-5115BEAB385D}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{6C43E13D-AAD7-4135-9BC2-641A64081D44}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{FBAA0400-08BB-4452-BD1F-B9739E7F2100}] => (Allow) H:\SteamLibrary\steamapps\common\Subnautica\Subnautica.exe () [Datei ist nicht signiert]
FirewallRules: [{9344EF37-F09F-4466-B6AC-F0BBF75A2F6B}] => (Allow) H:\SteamLibrary\steamapps\common\Subnautica\Subnautica.exe () [Datei ist nicht signiert]
FirewallRules: [{06BB05C1-4B9A-4271-B747-2276D69F2868}] => (Allow) H:\SteamLibrary\steamapps\common\Dyson Sphere Program\DSPGAME.exe () [Datei ist nicht signiert]
FirewallRules: [{BEF34ADE-E846-4EB5-B61A-3E2D9712B1B6}] => (Allow) H:\SteamLibrary\steamapps\common\Dyson Sphere Program\DSPGAME.exe () [Datei ist nicht signiert]
FirewallRules: [{3B979257-9760-451E-B017-45B46D7F4991}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{2126C595-722F-409E-BBD7-5D94BBF005FC}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{203C1340-F625-4947-9044-C4ABD21A3648}] => (Allow) H:\SteamLibrary\steamapps\common\Overwatch\Overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{31ADA3B7-9E61-4C2E-A5B8-508331F3F10D}] => (Allow) H:\SteamLibrary\steamapps\common\Overwatch\Overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{FAFFA08F-0AD8-44D6-8042-6AF963DAA4C3}C:\program files\blackmagic design\davinci resolve\resolve.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\resolve.exe (Blackmagic Design Pty Ltd. -> Blackmagic Design Pty. Ltd.)
FirewallRules: [TCP Query User{7A448CD7-E8F2-4310-9DF5-05F0D26B84E3}C:\program files\blackmagic design\davinci resolve\resolve.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\resolve.exe (Blackmagic Design Pty Ltd. -> Blackmagic Design Pty. Ltd.)
FirewallRules: [{3E2E924F-3D4B-4BA9-BA9A-3E07D3F701CC}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => Keine Datei
FirewallRules: [{4E1E4F8F-C713-4AD0-B3B5-7456A8ED7389}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => Keine Datei
FirewallRules: [{765ABE41-1975-44CA-A75C-A9651D70D438}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{D1949AF0-4C34-43B3-91D1-C43AE945E2E2}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{967A4ABC-45A5-4319-9373-038813DFCF80}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{F282F4DD-1CC8-4FB3-B3CC-A26254E660FC}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{F9CE4638-C8C0-42B5-AC0C-A1BD53231F4A}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\Resolve.exe (Blackmagic Design Pty Ltd. -> Blackmagic Design Pty. Ltd.)
FirewallRules: [{BA4CFC90-D4FE-45AE-8391-F6D36864959D}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\bmdpaneld.exe (Blackmagic Design Pty Ltd. -> )
FirewallRules: [{B884D54C-7264-45DA-ABC9-D69DFA2AAA27}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\DaVinciPanelDaemon.exe (Blackmagic Design Pty Ltd. -> )
FirewallRules: [{BAF44EBA-3799-4040-BE9D-0CF8035BA410}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\JLCooperPanelDaemon.exe (Blackmagic Design Pty Ltd. -> )
FirewallRules: [{F0C50342-D94D-4525-A928-F6CBEDBBFB82}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\EuphonixPanelDaemon.exe (Blackmagic Design Pty Ltd. -> )
FirewallRules: [{967E5198-22EA-4669-900C-1F2F1C3B4C17}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\TangentPanelDaemon.exe (Blackmagic Design Pty Ltd. -> )
FirewallRules: [{AA1C6D43-970E-4691-9F7A-8186D48B01D3}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\ElementsPanelDaemon.exe => Keine Datei
FirewallRules: [{14BD0349-25A5-44AD-8B0C-12F9BB37734B}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\fuscript.exe (Blackmagic Design Pty Ltd. -> Blackmagic Design Pty. Ltd.)
FirewallRules: [{E36B99C7-17A1-4A21-8378-A717D86EA1A3}] => (Allow) C:\Users\nico\AppData\Local\Temp\ACFL\ACSetup\ACSetup.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
FirewallRules: [{2DFEB8D9-9E3D-4593-9DE9-C2DC8CCAC49D}] => (Allow) C:\Users\nico\AppData\Local\Temp\ACFL\ACSetup\ACSetup.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
FirewallRules: [{E3F3407C-B59F-42A9-92C1-454AD2F2C694}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.282.428.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{6CBA9FDF-2141-46BA-B387-56813172228A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.282.428.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{F76925B8-BE16-4AB9-AD12-DE76DBB07139}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.282.428.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{71097380-7825-4B6B-BEB4-AC91BCBE6D4E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.282.428.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{74F0E80D-AAF4-4E78-B824-562DCA114C40}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.282.428.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{00C91E5B-89DE-4C21-BE22-1B94F7E43187}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.282.428.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{C823A35B-7251-48D3-AEA5-8EA30BD36F16}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.282.428.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{B720FFA8-F58B-4CF4-85A6-1A6F9D549DF0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.282.428.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{BD95D6CB-D583-405E-A6CD-2A25F499EB56}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.282.428.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{B5C3782B-F870-4500-9EB4-D18A0E692DE2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.282.428.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{6BCD7BFF-1BD3-4C12-AEC8-FE70593BC7D6}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.282.428.0_x64__zpdnekdrzrea0\SpotifyLauncher.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{FF42D3C9-BD29-4680-A18B-89D004EC56E3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.282.428.0_x64__zpdnekdrzrea0\SpotifyLauncher.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{C18D834A-0DAB-4B85-8EF7-1C00C84EE486}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.282.428.0_x64__zpdnekdrzrea0\SpotifyLauncher.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{17F10225-F040-4DA9-8048-4C73B5EDB996}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
FirewallRules: [{F6379B77-B109-4E67-A185-92BD9D691864}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
FirewallRules: [{F7ECC78A-0C0F-44AF-B2D0-A31DED7AEB89}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmouryHtmlDebugServer.exe (ASUSTeK COMPUTER INC. -> ASUS)
FirewallRules: [{745CDF29-38F7-40D4-ADC3-8155FE125433}] => (Allow) C:\Program Files\ASUS\AacAmbientHal\AacAmbientLighting.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
FirewallRules: [{4BD533F8-1002-4210-93CC-A7069CDE99CA}] => (Allow) H:\program files\asus\aacambienthal\aacambientlighting.exe => Keine Datei
FirewallRules: [{976A2783-E252-436E-82B4-4DF33CEB1510}] => (Allow) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
FirewallRules: [{F04530E9-506D-46FB-86A6-D88BBA3B17AF}] => (Allow) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
FirewallRules: [{84F4B3A1-73A4-4CDC-9874-3C13DAB503DF}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{33CB7E0C-0A2F-43C4-8E4A-F255272C0A7F}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe => Keine Datei
FirewallRules: [UDP Query User{6AFEC750-D2BD-4BDB-89BE-022CE9071E9E}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe => Keine Datei
FirewallRules: [{30409783-0421-429C-AB0F-7FC58A86B505}] => (Allow) LPort=32683
FirewallRules: [{B4B0ABF7-6D76-4C45-9939-FCE51F6BCF0A}] => (Allow) LPort=33683
FirewallRules: [{D5D6DE22-597B-43CA-9C32-A7CFEB53E598}] => (Allow) LPort=26822
==================== Wiederherstellungspunkte =========================
01-02-2026 22:23:53 Installed ASUS Framework Service
03-02-2026 10:20:49 Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.44.35211
03-02-2026 10:20:55 Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.44.35211
05-02-2026 16:55:57 Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.44.35211
05-02-2026 16:56:03 Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.44.35211
07-02-2026 09:41:58 Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.44.35211
07-02-2026 09:42:04 Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.44.35211
==================== Fehlerhafte Geräte im Gerätemanager ============
==================== Fehlereinträge in der Ereignisanzeige: ========================
Applikationsfehler:
==================
Error: (02/09/2026 03:07:05 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: PC-nicoR)
Description: Windows kann die erweiterbare Leistungsindikator-DLL "C:\WINDOWS\system32\sysmain.dll" nicht laden (Win32-Fehlercode 126).
Error: (02/09/2026 03:07:05 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1005) (User: PC-nicoR)
Description: Fehler beim Suchen der Open-Prozedur "OpenLsaPerformanceData" in der DLL "C:\Windows\System32\Secur32.dll" für den "Lsa"-Dienst mit dem Win32-Fehlercode 127. Für diesen Dienst sind keine Systemleistungsdaten verfügbar.
Error: (02/09/2026 03:06:49 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 12) (User: PC-nicoR)
Description: Microsoft.AAD.BrokerPlugin_cw5n1h2txyewy-2147023878
Error: (02/09/2026 02:08:23 AM) (Source: Application Error) (EventID: 1000) (User: NT-AUTORITÄT)
Description: Fehlerhafter Anwendungsname: ArmouryCrate.Service.exe, Version: 6.4.3.0, Zeitstempel: 0x6943859b
Fehlerhafter Modulname: KERNELBASE.dll, Version: 10.0.26100.7623, Zeitstempel: 0x45ad608f
Ausnahmecode: 0xe0434352
Fehleroffset: 0x00000000000ca80a
Fehlerhafte Prozess-ID: 0x2b40
Fehlerhafte Anwendungsstartzeit: 0x1dc98dfabb7612f
Fehlerhafter Anwendungspfad: C:\Program Files\ASUS\Armoury Crate Service\ArmouryCrate.Service.exe
Fehlerhafter Modulpfad: C:\WINDOWS\System32\KERNELBASE.dll
Berichts-ID: 743fb750-4491-4150-902d-af4eb972b295
Vollständiger Name des fehlerhaften Pakets:
Fehlerhafte paketbezogene Anwendungs-ID:
Error: (02/08/2026 12:08:48 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: ArmouryCrate.Service.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund einer unbehandelten Ausnahme beendet.
Ausnahmeinformationen: System.Runtime.InteropServices.COMException
bei NAudio.CoreAudioApi.Interfaces.IAudioClient.Stop()
bei NAudio.CoreAudioApi.WasapiCapture.CaptureThread(NAudio.CoreAudioApi.AudioClient)
bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
bei System.Threading.ThreadHelper.ThreadStart()
Error: (02/08/2026 11:49:32 AM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: PC-nicoR)
Description: Windows kann die erweiterbare Leistungsindikator-DLL "C:\WINDOWS\system32\sysmain.dll" nicht laden (Win32-Fehlercode 126).
Error: (02/08/2026 11:49:32 AM) (Source: Microsoft-Windows-Perflib) (EventID: 1005) (User: PC-nicoR)
Description: Fehler beim Suchen der Open-Prozedur "OpenLsaPerformanceData" in der DLL "C:\Windows\System32\Secur32.dll" für den "Lsa"-Dienst mit dem Win32-Fehlercode 127. Für diesen Dienst sind keine Systemleistungsdaten verfügbar.
Error: (02/08/2026 10:45:30 AM) (Source: Application Error) (EventID: 1000) (User: NT-AUTORITÄT)
Description: Fehlerhafter Anwendungsname: atkexComSvc.exe, Version: 1.0.0.1, Zeitstempel: 0x6156aa76
Fehlerhafter Modulname: atkexComSvc.exe, Version: 1.0.0.1, Zeitstempel: 0x6156aa76
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0001eb62
Fehlerhafte Prozess-ID: 0xe80
Fehlerhafte Anwendungsstartzeit: 0x1dc98dfa947cccd
Fehlerhafter Anwendungspfad: C:\Program Files (x86)\ASUS\AXSP\4.02.12\atkexComSvc.exe
Fehlerhafter Modulpfad: C:\Program Files (x86)\ASUS\AXSP\4.02.12\atkexComSvc.exe
Berichts-ID: ad5ca711-5272-4ff3-9482-5265bb08abe8
Vollständiger Name des fehlerhaften Pakets:
Fehlerhafte paketbezogene Anwendungs-ID:
Systemfehler:
=============
Error: (02/09/2026 03:07:10 PM) (Source: DCOM) (EventID: 10010) (User: PC-nicoR)
Description: Der Server "{6FA05A24-B1DF-4155-909E-7B424F2D2BB5}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (02/09/2026 02:25:26 AM) (Source: DCOM) (EventID: 10010) (User: PC-nicoR)
Description: Der Server "{6FA05A24-B1DF-4155-909E-7B424F2D2BB5}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (02/09/2026 02:11:10 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "ASUS AURA SYNC lighting service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (02/09/2026 02:11:10 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Armoury Crate Service" wurde unerwartet beendet. Dies ist bereits 2 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 5000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (02/09/2026 02:11:10 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Microsoft Office Click-to-Run Service" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 0 Millisekunden durchgeführt: Neustart des Diensts.
Error: (02/09/2026 02:11:10 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "ROG Live Service" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (02/09/2026 02:11:10 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Aura Wallpaper Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (02/09/2026 02:11:09 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "MSI_Case_Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Windows Defender:
================
Date: 2026-02-08 11:28:54
Description:
Microsoft Defender Antivirus šςåπ нăş взéй šţôφρēδ ьëƒθŗé ςőмрŀęтîöп.%ñ %τЅĉàʼn ĪĎ:%ъ{89B247C5-2D1D-4CD7-A4A9-9F4D2F539A2E}%ń %ţЅ¢ąη Τўρê:%вAntimalware%п %ţŠćāŋ Рαѓāmзτёŗŝ:%ъSchnellüberprüfung%ʼn %тŰšёŕ:%ьNT-AUTORITÄT\SYSTEM%ñ %ťŞтôφ Ґεªšòŋ:%ъŔΡ€ ĉοñηĕċţīōп ґůňďöẃň
Date: 2026-02-06 13:47:10
Description:
Microsoft Defender Antivirus šςåπ нăş взéй šţôφρēδ ьëƒθŗé ςőмрŀęтîöп.%ñ %τЅĉàʼn ĪĎ:%ъ{BA1BD119-996F-4EB9-A701-4851E455E286}%ń %ţЅ¢ąη Τўρê:%вAntimalware%п %ţŠćāŋ Рαѓāmзτёŗŝ:%ъSchnellüberprüfung%ʼn %тŰšёŕ:%ьNT-AUTORITÄT\SYSTEM%ñ %ťŞтôφ Ґεªšòŋ:%ъŔΡ€ ĉοñηĕċţīōп ґůňďöẃň
Date: 2026-02-05 16:59:10
Description:
Microsoft Defender Antivirus šςåπ нăş взéй šţôφρēδ ьëƒθŗé ςőмрŀęтîöп.%ñ %τЅĉàʼn ĪĎ:%ъ{518A1BE3-AA1E-49EB-A796-86BCAE40F6D9}%ń %ţЅ¢ąη Τўρê:%вAntimalware%п %ţŠćāŋ Рαѓāmзτёŗŝ:%ъSchnellüberprüfung%ʼn %тŰšёŕ:%ьNT-AUTORITÄT\SYSTEM%ñ %ťŞтôφ Ґεªšòŋ:%ъЅćн℮δύŀëđ ѕčåй щąš ŝķïρрĕδ ъеċǻúşε ťĥě łάѕτ śυсĉĕѕšƒџļ ѕ¢āη ώªŝ ẃĩτћïл ţħе ℓãşт 7 ďαуŝ
Date: 2026-02-03 12:08:56
Description:
Microsoft Defender Antivirus šςåπ нăş взéй šţôφρēδ ьëƒθŗé ςőмрŀęтîöп.%ñ %τЅĉàʼn ĪĎ:%ъ{16CAC692-0D3A-471B-855E-A326ED25320C}%ń %ţЅ¢ąη Τўρê:%вAntimalware%п %ţŠćāŋ Рαѓāmзτёŗŝ:%ъSchnellüberprüfung%ʼn %тŰšёŕ:%ьNT-AUTORITÄT\SYSTEM%ñ %ťŞтôφ Ґεªšòŋ:%ъЅćн℮δύŀëđ ѕčåй щąš ŝķïρрĕδ ъеċǻúşε ťĥě łάѕτ śυсĉĕѕšƒџļ ѕ¢āη ώªŝ ẃĩτћïл ţħе ℓãşт 7 ďαуŝ
Date: 2026-02-03 11:01:18
Description:
Microsoft Defender Antivirus šςåπ нăş взéй šţôφρēδ ьëƒθŗé ςőмрŀęтîöп.%ñ %τЅĉàʼn ĪĎ:%ъ{EC6A2059-A1B1-47EF-8523-D13828492DCB}%ń %ţЅ¢ąη Τўρê:%вAntimalware%п %ţŠćāŋ Рαѓāmзτёŗŝ:%ъSchnellüberprüfung%ʼn %тŰšёŕ:%ьNT-AUTORITÄT\SYSTEM%ñ %ťŞтôφ Ґεªšòŋ:%ъЅćн℮δύŀëđ ѕčåй щąš ŝķïρрĕδ ъеċǻúşε ťĥě łάѕτ śυсĉĕѕšƒџļ ѕ¢āη ώªŝ ẃĩτћïл ţħе ℓãşт 7 ďαуŝ
CodeIntegrity:
===============
Date: 2026-02-09 15:10:47
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SecurityHealthService.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbamsi64.dll that did not meet the Windows signing level requirements.
Date: 2026-02-09 15:07:15
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbamsi64.dll that did not meet the Windows signing level requirements.
==================== Speicherinformationen ===========================
BIOS: American Megatrends International, LLC. 1.J0 03/13/2025
Hauptplatine: Micro-Star International Co., Ltd. B650 GAMING PLUS WIFI (MS-7E26)
Prozessor: AMD Ryzen 5 7600X 6-Core Processor
Prozentuale Nutzung des RAM: 24%
Installierter physikalischer RAM: 31849.99 MB
Verfügbarer physikalischer RAM: 23932.91 MB
Summe virtueller Speicher: 37737.99 MB
Verfügbarer virtueller Speicher: 27502.84 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:930.63 GB) (Free:779.86 GB) (Model: CT1000E100SSD8) NTFS
Drive h: (HDD) (Fixed) (Total:1863 GB) (Free:650.05 GB) (Model: ST2000DM008-2UB102) NTFS
\\?\Volume{f74fe6e3-6478-4245-8d31-8350d8267503}\ () (Fixed) (Total:0.77 GB) (Free:0.12 GB) NTFS
\\?\Volume{5e32a413-f271-4a3a-b394-be1f64cedc63}\ () (Fixed) (Total:0.09 GB) (Free:0.06 GB) FAT32
==================== MBR & Partitionstabelle ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 1 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
==================== Ende von Addition.txt =======================
|
|
09.02.2026, 19:16
| #6 |
| /// TB-Ausbilder | setup.exe von vlc.de auf win 11 ausgeführt Servus, vielen Dank für die neuen Logs. Reparatur mit FRST Bitte gedulde dich, sobald du die Reparatur gestartet hast. Je nach Art und Umfang der notwendigen Reparaturen kann dies einige Minuten dauern. Eventuell erhältst du während der Reparatur auch die Information "keine Rückmeldung" von FRST. Das ist normal, du musst nichts weiter tun, nur abwarten. HINWEIS AN ALLE MITLESER: Dieses FRST-Skript ist ausschließlich für diesen Nutzer gedacht und sollte niemals 1:1 für ein anderes System verwendet werden!
|
|
09.02.2026, 20:51
| #7 |
| | setup.exe von vlc.de auf win 11 ausgeführt Hey und vielen vielen dank schonmal  Anbei die Log Datei: Code:
ATTFilter Entfernungsergebnis von Farbar Recovery Scan Tool (x64) Version: 07-02-2026
durchgeführt von nico (09-02-2026 20:47:24) Run:1
Gestartet von C:\Users\nico\Downloads
Geladene Profile: nico
Start-Modus: Normal
==============================================
fixlist Inhalt:
*****************
Start::
CreateRestorePoint:
CloseProcesses:
HKLM\SOFTWARE\Policies\Google: Beschränkung <==== ACHTUNG
HKLM\SOFTWARE\Policies\Microsoft\Edge: Beschränkung <==== ACHTUNG
Task: {9264AD45-FBAE-4DFE-BF91-DEE2861239B6} - System32\Tasks\Microsoft\Windows\Clip\ClipESU => %SystemRoot%\system32\clipesu.exe (Keine Datei)
Task: {B9A16D65-541E-4027-9517-9566BF300DC2} - System32\Tasks\Microsoft\Windows\Clip\ClipESUConsumer => %SystemRoot%\system32\ClipESUConsumer.exe -evaluateEligibility (Keine Datei)
Task: {42EC4ED5-9338-407D-BF0C-9D386F98B844} - System32\Tasks\Microsoft\Windows\Clip\ClipESUConsumerProcessECUpdate => %SystemRoot%\system32\ClipESUConsumer.exe -persistEligibilityStatus (Keine Datei)
Task: {5C52B5EA-FD8B-4E6D-827E-5F530EE23F96} - System32\Tasks\Microsoft\Windows\Clip\ClipEsuConsumerProcessPreOrder => %SystemRoot%\system32\ClipESUConsumer.exe -postProcessPreOrder (Keine Datei)
Task: {71655BA3-FF91-49F6-B7A4-B097105CFD3E} - System32\Tasks\Microsoft\Windows\Clip\ClipEsuConsumerProcessRefund => %SystemRoot%\system32\ClipESUConsumer.exe -processRefund (Keine Datei)
Task: {FB439B17-2182-45EE-A44C-6C81F835ED48} - System32\Tasks\Microsoft\Windows\Clip\EnableClipESU => %SystemRoot%\system32\clipesu.exe -e (Keine Datei)
Task: {E88D9B2C-DDEA-47B2-9582-085153004DB5} - System32\Tasks\Microsoft\Windows\Location\Notifications => %windir%\System32\LocationNotificationWindows.exe (Keine Datei)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (Keine Datei)
Task: {CAB76809-EDC0-40D2-A888-AD9BEDF4E88A} - System32\Tasks\Microsoft\Windows\UNP\RunUpdateNotificationMgr => %windir%\System32\UNP\UpdateNotificationMgr.exe (Keine Datei)
Task: {346A3362-1890-47D2-BBA3-57477F4DD1F0} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe /RunOnAC RebootDialog (Keine Datei)
Task: {4F358CF7-E1D3-47DF-9D99-E7296DFC3AE6} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe /RunOnBattery RebootDialog (Keine Datei)
Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Keine Datei)
S4 AmdTools64; \SystemRoot\System32\drivers\AmdTools64.sys [X]
CMD: netsh winsock reset
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh winhttp reset proxy
CMD: Bitsadmin /Reset /Allusers
CMD: Winmgmt /salvagerepository
CMD: Winmgmt /verifyrepository
CMD: "%WINDIR%\SYSTEM32\lodctr.exe" /R
CMD: "%WINDIR%\SysWOW64\lodctr.exe" /R
CMD: "%WINDIR%\SYSTEM32\lodctr.exe" /R
CMD: "%WINDIR%\SysWOW64\lodctr.exe" /R
CMD: reg query "HKLM\Software\Policies" /S
CMD: reg query "HKCU\Software\Policies" /S
CMD: reg query "HKLM\System\CurrentControlSet\Control\Session Manager\Environment" /S
CMD: reg query "HKCU\Environment" /S
Hosts:
RemoveProxy:
EmptyEventLogs:
EmptyTemp:
End::
*****************
Wiederherstellungspunkt wurde erfolgreich erstellt.
Prozesse erfolgreich geschlossen.
HKLM\SOFTWARE\Policies\Google => erfolgreich entfernt
HKLM\SOFTWARE\Policies\Microsoft\Edge => erfolgreich entfernt
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{9264AD45-FBAE-4DFE-BF91-DEE2861239B6}" => erfolgreich entfernt
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9264AD45-FBAE-4DFE-BF91-DEE2861239B6}" => erfolgreich entfernt
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Clip\ClipESU => erfolgreich verschoben
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Clip\ClipESU" => erfolgreich entfernt
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{B9A16D65-541E-4027-9517-9566BF300DC2}" => erfolgreich entfernt
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B9A16D65-541E-4027-9517-9566BF300DC2}" => erfolgreich entfernt
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Clip\ClipESUConsumer => erfolgreich verschoben
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Clip\ClipESUConsumer" => erfolgreich entfernt
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{42EC4ED5-9338-407D-BF0C-9D386F98B844}" => erfolgreich entfernt
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{42EC4ED5-9338-407D-BF0C-9D386F98B844}" => erfolgreich entfernt
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Clip\ClipESUConsumerProcessECUpdate => erfolgreich verschoben
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Clip\ClipESUConsumerProcessECUpdate" => erfolgreich entfernt
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5C52B5EA-FD8B-4E6D-827E-5F530EE23F96}" => erfolgreich entfernt
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5C52B5EA-FD8B-4E6D-827E-5F530EE23F96}" => erfolgreich entfernt
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Clip\ClipEsuConsumerProcessPreOrder => erfolgreich verschoben
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Clip\ClipEsuConsumerProcessPreOrder" => erfolgreich entfernt
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{71655BA3-FF91-49F6-B7A4-B097105CFD3E}" => erfolgreich entfernt
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{71655BA3-FF91-49F6-B7A4-B097105CFD3E}" => erfolgreich entfernt
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Clip\ClipEsuConsumerProcessRefund => erfolgreich verschoben
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Clip\ClipEsuConsumerProcessRefund" => erfolgreich entfernt
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FB439B17-2182-45EE-A44C-6C81F835ED48}" => erfolgreich entfernt
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FB439B17-2182-45EE-A44C-6C81F835ED48}" => erfolgreich entfernt
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Clip\EnableClipESU => erfolgreich verschoben
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Clip\EnableClipESU" => erfolgreich entfernt
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E88D9B2C-DDEA-47B2-9582-085153004DB5}" => erfolgreich entfernt
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E88D9B2C-DDEA-47B2-9582-085153004DB5}" => erfolgreich entfernt
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Location\Notifications => erfolgreich verschoben
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Location\Notifications" => erfolgreich entfernt
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CCDFC0B8-01A3-4E74-A820-4F13F51D269E}" => erfolgreich entfernt
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CCDFC0B8-01A3-4E74-A820-4F13F51D269E}" => erfolgreich entfernt
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => erfolgreich verschoben
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser" => erfolgreich entfernt
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CAB76809-EDC0-40D2-A888-AD9BEDF4E88A}" => erfolgreich entfernt
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CAB76809-EDC0-40D2-A888-AD9BEDF4E88A}" => erfolgreich entfernt
C:\WINDOWS\System32\Tasks\Microsoft\Windows\UNP\RunUpdateNotificationMgr => erfolgreich verschoben
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UNP\RunUpdateNotificationMgr" => erfolgreich entfernt
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{346A3362-1890-47D2-BBA3-57477F4DD1F0}" => erfolgreich entfernt
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{346A3362-1890-47D2-BBA3-57477F4DD1F0}" => erfolgreich entfernt
C:\WINDOWS\System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => erfolgreich verschoben
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UpdateOrchestrator\Reboot_AC" => erfolgreich entfernt
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4F358CF7-E1D3-47DF-9D99-E7296DFC3AE6}" => erfolgreich entfernt
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4F358CF7-E1D3-47DF-9D99-E7296DFC3AE6}" => erfolgreich entfernt
C:\WINDOWS\System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => erfolgreich verschoben
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery" => erfolgreich entfernt
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F3E6E7ED-A196-4E44-8803-55FAB3AD4E29}" => erfolgreich entfernt
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F3E6E7ED-A196-4E44-8803-55FAB3AD4E29}" => erfolgreich entfernt
C:\WINDOWS\System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => erfolgreich verschoben
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker" => erfolgreich entfernt
HKLM\System\CurrentControlSet\Services\AmdTools64 => erfolgreich entfernt
AmdTools64 => Dienst erfolgreich entfernt
========= netsh winsock reset =========
Der Winsock-Katalog wurde zurückgesetzt.
Sie müssen den Computer neu starten, um den Vorgang abzuschließen.
========= Ende von CMD: =========
========= netsh advfirewall reset =========
OK.
========= Ende von CMD: =========
========= netsh advfirewall set allprofiles state ON =========
OK.
========= Ende von CMD: =========
========= netsh winhttp reset proxy =========
Aktuelle WinHTTP-Proxyeinstellungen:
DirectAccess (kein Proxyserver).
========= Ende von CMD: =========
========= Bitsadmin /Reset /Allusers =========
BITSADMIN version 3.0
BITS administration utility.
(C) Copyright Microsoft Corp.
{778A0C7C-2AA5-4638-A76C-A9E13F2FA72B} canceled.
1 out of 1 jobs canceled.
========= Ende von CMD: =========
========= Winmgmt /salvagerepository =========
Das WMI-Repository ist konsistent.
========= Ende von CMD: =========
========= Winmgmt /verifyrepository =========
Das WMI-Repository ist konsistent.
========= Ende von CMD: =========
========= "%WINDIR%\SYSTEM32\lodctr.exe" /R =========
Info: Die Leistungsindikatoreinstellungen wurden erfolgreich aus dem Systemsicherungsspeicher neu erstellt.
========= Ende von CMD: =========
========= "%WINDIR%\SysWOW64\lodctr.exe" /R =========
Info: Die Leistungsindikatoreinstellungen wurden erfolgreich aus dem Systemsicherungsspeicher neu erstellt.
========= Ende von CMD: =========
========= "%WINDIR%\SYSTEM32\lodctr.exe" /R =========
Info: Die Leistungsindikatoreinstellungen wurden erfolgreich aus dem Systemsicherungsspeicher neu erstellt.
========= Ende von CMD: =========
========= "%WINDIR%\SysWOW64\lodctr.exe" /R =========
Info: Die Leistungsindikatoreinstellungen wurden erfolgreich aus dem Systemsicherungsspeicher neu erstellt.
========= Ende von CMD: =========
========= reg query "HKLM\Software\Policies" /S =========
HKEY_LOCAL_MACHINE\Software\Policies\Adobe
HKEY_LOCAL_MACHINE\Software\Policies\Adobe\Adobe Acrobat
HKEY_LOCAL_MACHINE\Software\Policies\Adobe\Adobe Acrobat\DC
HKEY_LOCAL_MACHINE\Software\Policies\Adobe\Adobe Acrobat\DC\FeatureLockDown
HKEY_LOCAL_MACHINE\Software\Policies\Adobe\Adobe Acrobat\DC\FeatureLockDown\cDefaultExecMenuItems
tWhiteList REG_SZ Close|GeneralInfo|Quit|FirstPage|PrevPage|NextPage|LastPage|ActualSize|FitPage|FitWidth|FitHeight|SinglePage|OneColumn|TwoPages|TwoColumns|ZoomViewIn|ZoomViewOut|ShowHideBookmarks|ShowHideThumbnails|Print|GoToPage|ZoomTo|GeneralPrefs|SaveAs|FullScreenMode|OpenOrganizer|Scan|Web2PDF:OpnURL|AcroSendMail:SendMail|Spelling:Check Spelling|PageSetup|Find|FindSearch|GoBack|GoForward|FitVisible|ShowHideArticles|ShowHideFileAttachment|ShowHideAnnotManager|ShowHideFields|ShowHideOptCont|ShowHideModelTree|ShowHideSignatures|InsertPages|ExtractPages|ReplacePages|DeletePages|CropPages|RotatePages|AddFileAttachment|FindCurrentBookmark|BookmarkShowLocation|GoBackDoc|GoForwardDoc|DocHelpUserGuide|HelpReader|rolReadPage|HandMenuItem|ZoomDragMenuItem|CollectionPreview|CollectionHome|CollectionDetails|CollectionShowRoot|&Pages|Co&ntent|&Forms|Action &Wizard|Recognize &Text|P&rotection|&Sign && Certify|Doc&ument Processing|Print Pro&duction|Ja&vaScript|&Accessibility|Analy&ze|&Annotations|D&rawing Markups|Revie&w
HKEY_LOCAL_MACHINE\Software\Policies\Adobe\Adobe Acrobat\DC\FeatureLockDown\cDefaultFindAttachmentPerms
tSearchAttachmentsWhiteList REG_SZ 3g2|3gp|3gpp|3gpp2|aac|ac3|aif|aiff|ani|asf|avi|bmp|cdr|cur|divx|djvu|doc|docx|dv|emf|eps|flv|f4v|gif|ico|iff|jbig2|jp2|jpeg|jpg|m2v|m4a|m4b|m4p|m4v|mid|mkv|mov|mpa|mp2|mp3|mp4|mts|nsv|ogg|ogm|ogv|pbm|pgm|png|ppm|ppt|pptx|ps|psd|qt|rtf|riff|svg|tif|ts|txt|ram|rm|rmvb|vob|wav|wma|wmf|wmv|xmb|xls|xlsx
HKEY_LOCAL_MACHINE\Software\Policies\Adobe\Adobe Acrobat\DC\FeatureLockDown\cDefaultLaunchAttachmentPerms
tBuiltInPermList REG_SZ version:1|.ade:3|.adp:3|.app:3|.arc:3|.arj:3|.asp:3|.bas:3|.bat:3|.bz:3|.bz2:3|.cab:3|.chm:3|.class:3|.cmd:3|.com:3|.command:3|.cpl:3|.crt:3|.csh:3|.desktop:3|.dll:3|.exe:3|.fxp:3|.gz:3|.hex:3|.hlp:3|.hqx:3|.hta:3|.inf:3|.ini:3|.ins:3|.isp:3|.its:3|.job:3|.js:3|.jse:3|.ksh:3|.lnk:3|.lzh:3|.mad:3|.maf:3|.mag:3|.mam:3|.maq:3|.mar:3|.mas:3|.mat:3|.mau:3|.mav:3|.maw:3|.mda:3|.mdb:3|.mde:3|.mdt:3|.mdw:3|.mdz:3|.msc:3|.msi:3|.msp:3|.mst:3|.ocx:3|.ops:3|.pcd:3|.pi:3|.pif:3|.prf:3|.prg:3|.pst:3|.rar:3|.reg:3|.scf:3|.scr:3|.sct:3|.sea:3|.shb:3|.shs:3|.sit:3|.tar:3|.taz:3|.tgz:3|.tmp:3|.url:3|.vb:3|.vbe:3|.vbs:3|.vsmacros:3|.vss:3|.vst:3|.vsw:3|.webloc:3|.ws:3|.wsc:3|.wsf:3|.wsh:3|.z:3|.zip:3|.zlo:3|.zoo:3|.pdf:2|.fdf:2|.jar:3|.pkg:3|.tool:3|.term:3|.acm:3|.asa:3|.aspx:3|.ax:3|.ad:3|.application:3|.asx:3|.cer:3|.cfg:3|.chi:3|.class:3|.clb:3|.cnt:3|.cnv:3|.cpx:3|.crx:3|.der:3|.drv:3|.fon:3|.gadget:3|.grp:3|.htt:3|.ime:3|.jnlp:3|.local:3|.manifest:3|.mmc:3|.mof:3|.msh:3|.msh1:3|.msh2:3|.mshxml:3|.msh1xml:3|.msh2xml:3|.mui:3|.nls:3|.pl:3|.perl:3|.plg:3|.ps1:3|.ps2:3|.ps1xml:3|.ps2xml:3|.psc1:3|.psc2:3|.py:3|.pyc:3|.pyo:3|.pyd:3|.rb:3|.sys:3|.tlb:3|.tsp:3|.xbap:3|.xnk:3|.xpi:3|.air:3|.appref-ms:3|.desklink:3|.glk:3|.library-ms:3|.mapimail:3|.mydocs:3|.sct:3|.search-ms:3|.searchConnector-ms:3|.vxd:3|.website:3|.zfsendtotarget:3
HKEY_LOCAL_MACHINE\Software\Policies\Adobe\Adobe Acrobat\DC\FeatureLockDown\cDefaultLaunchURLPerms
tSchemePerms REG_SZ version:2|shell:3|hcp:3|ms-help:3|ms-its:3|ms-itss:3|its:3|mk:3|mhtml:3|help:3|disk:3|afp:3|disks:3|telnet:3|ssh:3|acrobat:2|mailto:2|file:1|rlogin:3|javascript:4|data:3|jar:3|vbscript:3
tSponsoredContentSchemeWhiteList REG_SZ http|https
tFlashContentSchemeWhiteList REG_SZ http|https|ftp|rtmp|rtmpe|rtmpt|rtmpte|rtmps|mailto
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\cloud
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\cloud\office
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\cloud\office\16.0
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\cloud\office\16.0\Common
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\cloud\office\16.0\Common\officesvcmanager
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\cloud\office\16.0\Common\officeupdate
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Cryptography
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Cryptography\Configuration
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Cryptography\Configuration\SSL
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Cryptography\Configuration\SSL\00010002
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\PeerDist
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Peernet
Disabled REG_DWORD 0x0
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\SystemCertificates
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\SystemCertificates\CA
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\SystemCertificates\CA\Certificates
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\SystemCertificates\CA\CRLs
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\SystemCertificates\CA\CTLs
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\SystemCertificates\Disallowed
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\SystemCertificates\Disallowed\Certificates
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\SystemCertificates\Disallowed\CRLs
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\SystemCertificates\Disallowed\CTLs
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\SystemCertificates\Root
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\SystemCertificates\Root\Certificates
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\SystemCertificates\Root\CRLs
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\SystemCertificates\Root\CTLs
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\SystemCertificates\trust
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\SystemCertificates\trust\Certificates
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\SystemCertificates\trust\CRLs
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\SystemCertificates\trust\CTLs
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\SystemCertificates\TrustedPeople
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\Certificates
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\CRLs
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\CTLs
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\SystemCertificates\TrustedPublisher
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\SystemCertificates\TrustedPublisher\Certificates
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\SystemCertificates\TrustedPublisher\CRLs
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\SystemCertificates\TrustedPublisher\CTLs
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\TPM
OSManagedAuthLevel REG_DWORD 0x5
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\Appx
MdmHosts REG_SZ ^(?:[^\/]*)\.MANAGE[^\.]*\.(MICROSOFT\.(COM|US)|MICROSOFTONLINE\.CN)$
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\BITS
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\Bowser
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings
CallLegacyWCMPolicies REG_DWORD 0x0
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Cache
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\DataCollection
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\EnhancedStorageDevices
TCGSecurityActivationDisabled REG_DWORD 0x0
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\IPSec
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\IPSec\Policy
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\IPSec\Policy\Local
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\MpeHttpExt
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\MpeHttpExt\Payload
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\MpeHttpExt\Payload\PreventPolicyKeyDelete
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\Network Connections
NC_PersonalFirewallConfig REG_DWORD 0x0
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\NetworkConnectivityStatusIndicator
(Standard) REG_SZ
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\NetworkProvider
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\safer
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\safer\codeidentifiers
authenticodeenabled REG_DWORD 0x0
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\SettingSync
EnableBackupForWin8Apps REG_DWORD 0x1
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\Sudo
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\SwiftPair
SwiftPairDefault REG_DWORD 0x1
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\System
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\TenantRestrictions
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\TenantRestrictions\Payload
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\TenantRestrictions\Payload\PreventPolicyKeyDelete
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\WcmSvc
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\WcmSvc\GroupPolicy
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\WcmSvc\Local
WCMPresent REG_DWORD 0x1
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\WindowsUpdate
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\WindowsUpdate\AU
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\WorkplaceJoin
(Standard) REG_SZ
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\WSDAPI
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\WSDAPI\Discovery Proxies
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows Advanced Threat Protection
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows Advanced Threat Protection\Task
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows Defender
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows Defender\Policy Manager
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows NT
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows NT\Terminal Services
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows NT\Terminal Services\Client
fEnableUsbBlockDeviceBySetupClass REG_DWORD 0x1
fEnableUsbNoAckIsochWriteToDevice REG_DWORD 0x50
fEnableUsbSelectDeviceByInterface REG_DWORD 0x1
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows NT\Terminal Services\Client\UsbBlockDeviceBySetupClasses
1000 REG_SZ {3376f4ce-ff8d-40a2-a80f-bb4359d1415c}
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows NT\Terminal Services\Client\UsbSelectDeviceByInterfaces
1000 REG_SZ {6bdd1fc6-810f-11d0-bec7-08002be2092f}
HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows NT\Windows File Protection
KnownDllList REG_SZ nlhtml.dll
========= Ende von CMD: =========
========= reg query "HKCU\Software\Policies" /S =========
HKEY_CURRENT_USER\Software\Policies\Microsoft
HKEY_CURRENT_USER\Software\Policies\Microsoft\5718f469-e3bf-4ec1-bc91-7dfa3ebc5eb5_ADAL
HKEY_CURRENT_USER\Software\Policies\Microsoft\5718f469-e3bf-4ec1-bc91-7dfa3ebc5eb5_ADAL\Cloud
HKEY_CURRENT_USER\Software\Policies\Microsoft\5718f469-e3bf-4ec1-bc91-7dfa3ebc5eb5_ADAL\Cloud\Office
HKEY_CURRENT_USER\Software\Policies\Microsoft\5718f469-e3bf-4ec1-bc91-7dfa3ebc5eb5_ADAL\Cloud\Office\16.0
HKEY_CURRENT_USER\Software\Policies\Microsoft\5718f469-e3bf-4ec1-bc91-7dfa3ebc5eb5_ADAL\Cloud\Office\16.0\common
HKEY_CURRENT_USER\Software\Policies\Microsoft\5718f469-e3bf-4ec1-bc91-7dfa3ebc5eb5_ADAL\Cloud\Office\16.0\common\copilot
CopilotPinning REG_DWORD 0x0
CopilotWebSearch REG_DWORD 0x1
PinningStateforCopilotApp REG_DWORD 0x0
HKEY_CURRENT_USER\Software\Policies\Microsoft\5718f469-e3bf-4ec1-bc91-7dfa3ebc5eb5_ADAL\Cloud\Office\16.0\common\loop
Loop_App REG_DWORD 0x1
LoopBizChatDocs REG_DWORD 0x0
HKEY_CURRENT_USER\Software\Policies\Microsoft\5718f469-e3bf-4ec1-bc91-7dfa3ebc5eb5_ADAL\Cloud\Office\16.0\common\privacy
MultiAcctCopilot REG_DWORD 0x0
HKEY_CURRENT_USER\Software\Policies\Microsoft\5718f469-e3bf-4ec1-bc91-7dfa3ebc5eb5_ADAL\Cloud\Office\Override
C2RVersionForApp REG_DWORD 0x1
HKEY_CURRENT_USER\Software\Policies\Microsoft\Cloud
HKEY_CURRENT_USER\Software\Policies\Microsoft\Cloud\Office
HKEY_CURRENT_USER\Software\Policies\Microsoft\Cloud\Office\16.0
HKEY_CURRENT_USER\Software\Policies\Microsoft\Cloud\Office\16.0\common
HKEY_CURRENT_USER\Software\Policies\Microsoft\Cloud\Office\16.0\common\copilot
CopilotPinning REG_DWORD 0x0
CopilotWebSearch REG_DWORD 0x1
PinningStateforCopilotApp REG_DWORD 0x0
HKEY_CURRENT_USER\Software\Policies\Microsoft\Cloud\Office\16.0\common\loop
Loop_App REG_DWORD 0x1
LoopBizChatDocs REG_DWORD 0x0
HKEY_CURRENT_USER\Software\Policies\Microsoft\Cloud\Office\16.0\common\privacy
MultiAcctCopilot REG_DWORD 0x0
HKEY_CURRENT_USER\Software\Policies\Microsoft\Cloud\Office\Override
C2RVersionForApp REG_DWORD 0x1
HKEY_CURRENT_USER\Software\Policies\Microsoft\Office
HKEY_CURRENT_USER\Software\Policies\Microsoft\Office\15.0
HKEY_CURRENT_USER\Software\Policies\Microsoft\Office\15.0\Common
HKEY_CURRENT_USER\Software\Policies\Microsoft\Office\15.0\Common\Security
HKEY_CURRENT_USER\Software\Policies\Microsoft\Office\15.0\Common\Security\Trusted Protocols
HKEY_CURRENT_USER\Software\Policies\Microsoft\Office\15.0\Common\Security\Trusted Protocols\All Applications
HKEY_CURRENT_USER\Software\Policies\Microsoft\Office\15.0\Common\Security\Trusted Protocols\All Applications\malwarebytes:
(Standard) REG_SZ
HKEY_CURRENT_USER\Software\Policies\Microsoft\Office\16.0
HKEY_CURRENT_USER\Software\Policies\Microsoft\Office\16.0\Common
HKEY_CURRENT_USER\Software\Policies\Microsoft\Office\16.0\Common\Security
HKEY_CURRENT_USER\Software\Policies\Microsoft\Office\16.0\Common\Security\Trusted Protocols
HKEY_CURRENT_USER\Software\Policies\Microsoft\Office\16.0\Common\Security\Trusted Protocols\All Applications
HKEY_CURRENT_USER\Software\Policies\Microsoft\Office\16.0\Common\Security\Trusted Protocols\All Applications\malwarebytes:
(Standard) REG_SZ
HKEY_CURRENT_USER\Software\Policies\Microsoft\SystemCertificates
HKEY_CURRENT_USER\Software\Policies\Microsoft\SystemCertificates\CA
HKEY_CURRENT_USER\Software\Policies\Microsoft\SystemCertificates\CA\Certificates
HKEY_CURRENT_USER\Software\Policies\Microsoft\SystemCertificates\CA\CRLs
HKEY_CURRENT_USER\Software\Policies\Microsoft\SystemCertificates\CA\CTLs
HKEY_CURRENT_USER\Software\Policies\Microsoft\SystemCertificates\Disallowed
HKEY_CURRENT_USER\Software\Policies\Microsoft\SystemCertificates\Disallowed\Certificates
HKEY_CURRENT_USER\Software\Policies\Microsoft\SystemCertificates\Disallowed\CRLs
HKEY_CURRENT_USER\Software\Policies\Microsoft\SystemCertificates\Disallowed\CTLs
HKEY_CURRENT_USER\Software\Policies\Microsoft\SystemCertificates\trust
HKEY_CURRENT_USER\Software\Policies\Microsoft\SystemCertificates\trust\Certificates
HKEY_CURRENT_USER\Software\Policies\Microsoft\SystemCertificates\trust\CRLs
HKEY_CURRENT_USER\Software\Policies\Microsoft\SystemCertificates\trust\CTLs
HKEY_CURRENT_USER\Software\Policies\Microsoft\SystemCertificates\TrustedPeople
HKEY_CURRENT_USER\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\Certificates
HKEY_CURRENT_USER\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\CRLs
HKEY_CURRENT_USER\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\CTLs
HKEY_CURRENT_USER\Software\Policies\Microsoft\SystemCertificates\TrustedPublisher
HKEY_CURRENT_USER\Software\Policies\Microsoft\SystemCertificates\TrustedPublisher\Certificates
HKEY_CURRENT_USER\Software\Policies\Microsoft\SystemCertificates\TrustedPublisher\CRLs
HKEY_CURRENT_USER\Software\Policies\Microsoft\SystemCertificates\TrustedPublisher\CTLs
HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows
HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CloudContent
HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion
HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings
HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\5.0
HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache
HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Cache
HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\DataCollection
HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\Explorer
HKEY_CURRENT_USER\Software\Policies\Power
HKEY_CURRENT_USER\Software\Policies\Power\PowerSettings
========= Ende von CMD: =========
========= reg query "HKLM\System\CurrentControlSet\Control\Session Manager\Environment" /S =========
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Session Manager\Environment
ComSpec REG_EXPAND_SZ %SystemRoot%\system32\cmd.exe
DriverData REG_SZ C:\Windows\System32\Drivers\DriverData
OS REG_SZ Windows_NT
PATHEXT REG_SZ .COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
PROCESSOR_ARCHITECTURE REG_SZ AMD64
PSModulePath REG_EXPAND_SZ %ProgramFiles%\WindowsPowerShell\Modules;%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules
TEMP REG_EXPAND_SZ %SystemRoot%\TEMP
TMP REG_EXPAND_SZ %SystemRoot%\TEMP
USERNAME REG_SZ SYSTEM
windir REG_EXPAND_SZ %SystemRoot%
Path REG_EXPAND_SZ %SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\dotnet\
AMDRMSDKPATH REG_SZ C:\Program Files\AMD\RyzenMasterSDK\
ACSetupSvcPort REG_SZ 23210
RlsSvcPort REG_SZ 22112
EnableLog REG_SZ INFO
NUMBER_OF_PROCESSORS REG_SZ 12
PROCESSOR_LEVEL REG_SZ 25
PROCESSOR_IDENTIFIER REG_SZ AMD64 Family 25 Model 97 Stepping 2, AuthenticAMD
PROCESSOR_REVISION REG_SZ 6102
========= Ende von CMD: =========
========= reg query "HKCU\Environment" /S =========
HKEY_CURRENT_USER\Environment
Path REG_EXPAND_SZ %USERPROFILE%\AppData\Local\Microsoft\WindowsApps;
TEMP REG_EXPAND_SZ %USERPROFILE%\AppData\Local\Temp
TMP REG_EXPAND_SZ %USERPROFILE%\AppData\Local\Temp
OneDrive REG_EXPAND_SZ C:\Users\nico\OneDrive
========= Ende von CMD: =========
C:\Windows\System32\Drivers\etc\hosts => erfolgreich verschoben
Hosts erfolgreich wiederhergestellt.
========= RemoveProxy: =========
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => erfolgreich entfernt
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => erfolgreich entfernt
"HKU\S-1-5-21-1548267073-3587465546-3215327545-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => erfolgreich entfernt
"HKU\S-1-5-21-1548267073-3587465546-3215327545-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => erfolgreich entfernt
========= Ende von RemoveProxy: =========
=========== EmptyEventLogs: ==========
1266 Event logs cleared.
================================
=========== EmptyTemp: ==========
FlushDNS => abgeschlossen
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 59342209 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 1011385757 B
Windows/system/drivers => 125570726 B
Edge => 254939593 B
Chrome => 1095061186 B
Firefox => 0 B
Opera => 0 B
Local\Temp, Local\*.tmp, LocalLow\Temp, Roaming\Temp, Roaming\*.tmp , IE cache, history, cookies, recent:
Default => 7680 B
ProgramData => 0 B
Public => 0 B
systemprofile => 132402791 B
systemprofile32 => 0 B
LocalService => 10974 B
NetworkService => 38838 B
nico => 155592440 B
RecycleBin => 12392805989 B
EmptyTemp: => 14.2 GB temporäre Dateien entfernt.
================================
Das System musste neu gestartet werden.
==== Ende von Fixlog 20:48:10 ====
|
|
09.02.2026, 20:55
| #8 |
| /// TB-Ausbilder | setup.exe von vlc.de auf win 11 ausgeführt Gut gemacht.  Führe bitte einen neuen FRST-Scan aus.
|
|
09.02.2026, 21:50
| #9 |
| | setup.exe von vlc.de auf win 11 ausgeführt Okay  Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 07-02-2026
durchgeführt von nico (Administrator) auf PC-nicoR (Micro-Star International Co., Ltd. MS-7E26) (09-02-2026 21:47:42)
Gestartet von C:\Users\nico\Downloads\FRST64.exe
Geladene Profile: nico
Plattform: Microsoft Windows 11 Pro Version 25H2 26200.7623 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: Chrome
Start-Modus: Normal
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.282.428.0_x64__zpdnekdrzrea0\Spotify.exe <7>
(A225F3B5-240D-4EE9-BCF4-697A07F5E93E -> Micro-Star INT'L CO., LTD.) C:\Program Files\WindowsApps\9426MICRO-STARINTERNATION.MSICenter_2.0.66.0_x64__kzh8wxbdkxb8p\DCv2\DCv2.exe
(Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe
(C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\KeyboardSDK\ROGKBPlugin.exe
(C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\SwAgent\ArmourySwAgent.exe
(C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmouryHtmlDebugServer.exe
(C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe <5>
(C:\Program Files (x86)\MSI\MSI Center\MSI_Central_Service.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MSI Center\MSI.CentralServer.exe
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSSrcExt.exe
(C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe
(C:\Program Files\ASUS\Armoury Crate Service\ArmouryCrate.Service.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\Armoury Crate Service\ArmouryCrate.UserSessionHelper.exe
(C:\Program Files\Google\Chrome\Application\chrome.exe ->) (Discord Inc. -> Discord Inc.) C:\Users\nico\AppData\Local\Discord\app-1.0.9223\Discord.exe <6>
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\Malwarebytes.exe
(cmd.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(DriverStore\FileRepository\u0197640.inf_amd64_38091087f7899005\B025647\atiesrxx.exe ->) (Advanced Micro Devices -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0197640.inf_amd64_38091087f7899005\B025647\atieclxx.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <12>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\26.002.0105.0001\OneDrive.Sync.Service.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\MSI Center\Engine\CC_Engine_x64.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc) C:\Windows\System32\DriverStore\FileRepository\amdppkg.inf_amd64_27762fb4b4d122d3\AmdPpkgSvc.exe
(services.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Windows\System32\DriverStore\FileRepository\amdfendr.inf_amd64_83dcee55c384eb60\amdfendrsr.exe
(services.exe ->) (Advanced Micro Devices -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0197640.inf_amd64_38091087f7899005\B025647\atiesrxx.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUS Inc.) C:\Program Files (x86)\ASUS\GameSDK Service\GameSDK.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> Asustek Computer Inc.) C:\Program Files (x86)\ASUS\AsusCertService\1.2.41\AsusCertService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files (x86)\LightingService\LightingService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\Armoury Crate Service\ArmouryCrate.Service.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Program Files\ASUS\Aura Wallpaper Service\AuraWallpaperService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe
(services.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\msiexec.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI Center\Case\MSI_Case_Service.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MSI Center\MSI_Central_Service.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_7e93164ae8ff6bf7\RtkAudUService64.exe <2>
(SPEEDLINK) [Datei ist nicht signiert] C:\Program Files (x86)\SPEEDLINK\DECUS RESPEC Gaming Mouse\Monitor.EXE
(svchost.exe ->) (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTek COMPUTER INC.) C:\Program Files\WindowsApps\B9ECED6F.ArmouryCrate_6.4.7.0_x64__qmba6cd70vzyy\ArmouryCrate.exe
(svchost.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\CPUMetricsServer.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Program Files\ASUS\KINGSTON_Aac_DRAM\AacKingstonDramHal_x86.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files\ASUS\AacExtCard\extensionCardHal_x86.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files\ASUS\ASUS_Aac_DRAM\Aac3572DramHal_x86.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.195.0.0_x64__8wekyb3d8bbwe\MicrosoftStartFeedProvider\MicrosoftStartFeedProvider.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MSI Center\MSI.TerminalServer.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_7e93164ae8ff6bf7\RtkAudUService64.exe [3112448 2025-08-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [DECUS RESPEC Gaming Mouse Driver] => C:\Program Files (x86)\SPEEDLINK\DECUS RESPEC Gaming Mouse\Monitor.exe [3587072 2017-03-14] (SPEEDLINK) [Datei ist nicht signiert]
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Beschränkung <==== ACHTUNG
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Beschränkung <==== ACHTUNG
HKU\S-1-5-19\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4743528 2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4743528 2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1548267073-3587465546-3215327545-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4743528 2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1548267073-3587465546-3215327545-1001\...\Run: [MicrosoftEdgeAutoLaunch_8777BAF98F32F23A314B91BE41AA5DE3] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4314192 2026-02-05] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1548267073-3587465546-3215327545-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [5760152 2026-01-21] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-1548267073-3587465546-3215327545-1001\...\Run: [Microsoft.Lists] => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\OneDrive.Sync.Service.exe [954256 2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1548267073-3587465546-3215327545-1001\...\Run: [AMDNoiseSuppression] => C:\Windows\system32\AMD\ANR\AMDNoiseSuppression.exe [318288 2025-09-10] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
HKU\S-1-5-21-1548267073-3587465546-3215327545-1001\...\Run: [Discord] => C:\Users\nico\AppData\Local\Discord\Update.exe [1596344 2025-09-04] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-1548267073-3587465546-3215327545-1001\...\Run: [EADM] => C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALauncher.exe [3756704 2025-10-23] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-1548267073-3587465546-3215327545-1001\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [41671128 2026-02-05] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-18\...\Run: [AMDNoiseSuppression] => C:\WINDOWS\system32\AMD\ANR\AMDNoiseSuppression.exe [318288 2025-09-10] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
HKU\S-1-5-18\...\RunOnce: [StartRSX] => C:\Program Files\AMD\CNext\CNext\LauncherRSXRuntime.exe [71952 2026-01-08] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{49210152-871f-4ffa-961d-a172abcbc09d}] -> C:\Program Files\Google\Chrome\Application\PlatformExperienceHelper\platform_experience_helper.exe [2026-01-30] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\144.0.7559.133\Installer\chrmstp.exe [2026-02-07] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {D9A12C9B-07B8-4089-AE79-DEFCF84C9D02} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1581568 2025-08-24] (Adobe Inc. -> Adobe Inc.)
Task: {B59FE9B2-6378-459F-A8D8-03062CEC54D2} - System32\Tasks\AMD Install Manager - Check For Updates => C:\Program Files\AMD\AMDInstallManager\AMDInstallManager.exe [61153544 2026-01-08] (Advanced Micro Devices -> Advanced Micro Devices, Inc.) -> C:\Program Files\AMD\AMDInstallManager\\-CheckForUpdates
Task: {B158B539-DB26-446D-A85E-6B46DB2BC707} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1047824 2026-01-08] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {03083A28-1767-4C46-80F8-E8609A9B088E} - System32\Tasks\AMDRyzenMasterSDKTask => C:\Program Files\AMD\CNext\CNext\cpumetricsserver.exe [192776 2026-01-08] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {900682FE-1308-4C80-89C9-8DFBAE890ABF} - System32\Tasks\ASUS\AcPowerNotification => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe [401304 2025-11-24] (ASUSTeK COMPUTER INC. -> ASUS)
Task: {A9FA82F6-E32E-4405-9E12-37DDD1F1C0DE} - System32\Tasks\ASUS\ArmourySocketServer => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\TaskSchedulerTool_ArmourySocketServer.exe [120728 2025-11-24] (ASUSTeK COMPUTER INC. -> TODO: <公司名稱>)
Task: {B81D7EB4-C3E9-4E5F-BA79-2B60307C7DDC} - System32\Tasks\ASUS\ASUSUpdateTaskMachineCore1dc2c1110d8a31b => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [253336 2025-09-22] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
Task: {CF93F7FD-51CD-4242-B2AF-FAB8A9BB8BD3} - System32\Tasks\ASUS\ASUSUpdateTaskMachineUA => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [253336 2025-09-22] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
Task: {8C8F0266-2F8B-463F-94ED-FB9FC4F0F0F9} - System32\Tasks\ASUS\P508PowerAgent_sdk => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ShareFromArmouryIII\Mouse\ROG STRIX CARRY\P508PowerAgent.exe (Keine Datei)
Task: {144616BF-04FB-40D4-A6D8-00F3FBEA4FDD} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem144.0.7547.0{CCB01FB2-62DC-489D-8098-6C6B4CB9BB09} => C:\Program Files (x86)\Google\GoogleUpdater\144.0.7547.0\updater.exe [7056536 2025-11-26] (Google LLC -> Google LLC)
Task: {D3F897E0-E359-4619-9FC7-637DC7DDAE7F} - System32\Tasks\Microsoft\Office\Office Actions Server => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ActionsServer\ActionsServer.exe [16268592 2026-02-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {C6C3782A-BA69-4E3C-A0AB-536BE009470A} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28622664 2026-01-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {03082BB1-0D11-40AA-BFA0-796B0AFA7B4F} - System32\Tasks\Microsoft\Office\Office Background Push Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\opushutil.exe [73568 2026-02-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {95A9E73B-D91E-46D3-A6FD-43DAB4BD0B9B} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28622664 2026-01-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {259EA0EC-56AE-4FF5-8084-2A4EFD218713} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309608 2026-02-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {30154F25-E77C-4B9C-9EC3-C79E72ED8EB1} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309608 2026-02-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {7AE8D9AB-023E-4037-8029-DD2FE9B7CF48} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [1346856 2026-02-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {7565BFB7-E9D0-4C13-95F4-6D94B04002F2} - System32\Tasks\Microsoft\Office\Office Serviceability Manager => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe [4447336 2026-01-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {E81CB806-CF46-4EBF-A08B-E797F8BA08AC} - System32\Tasks\Microsoft\Office\Office Startup Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ActionsServer\ActionsServer.exe [16268592 2026-02-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {1E321574-AFFD-445E-A36A-E64C79D13329} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1047824 2026-01-08] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {C3A992AB-EAC2-4D46-B0EF-9A6CA007E93C} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4397416 2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {12E265D7-5108-46F5-B689-0C96D96CF587} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1548267073-3587465546-3215327545-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4397416 2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {5A14FD02-C5F2-481F-825E-9D131E560080} - System32\Tasks\OneDrive Startup Task-S-1-5-21-1548267073-3587465546-3215327545-1001 => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\OneDriveLauncher.exe [745872 2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {09FB4B26-E6BD-4CC5-9ABA-0FA4A81D7DA0} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [143624 2026-01-08] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {FBF93C94-73EC-4833-A88E-F067B6BEA5FE} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [312080 2026-01-08] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{6bfd4da1-d45b-47d3-92c5-16da105eeffa}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{6bfd4da1-d45b-47d3-92c5-16da105eeffa}: [DhcpDomain] fritz.box
FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2026-01-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2026-02-05] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2026-02-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2025-12-15] (Microsoft Corporation -> Microsoft Corporation)
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\nico\AppData\Local\Microsoft\Edge\User Data\Default [2026-02-09]
Edge Extension: (Google Docs Offline) - C:\Users\nico\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2026-02-07]
Edge Extension: (Edge relevant text changes) - C:\Users\nico\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2025-07-13]
Chrome:
=======
CHR Profile: C:\Users\nico\AppData\Local\Google\Chrome\User Data\Default [2026-02-09]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\nico\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2026-02-05]
CHR Extension: (VPN for Chrome: NordVPN proxy protection) - C:\Users\nico\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjoaledfpmneenckfbpdfhkmimnjocfa [2026-02-01]
CHR Extension: (Google Docs Offline) - C:\Users\nico\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2026-01-23]
CHR Extension: (AdBlock − blockieren Sie Werbung im Internet) - C:\Users\nico\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2026-02-06]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\nico\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2025-07-14]
CHR HKU\S-1-5-21-1548267073-3587465546-3215327545-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
==================== Dienste (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [174584 2025-08-24] (Adobe Inc. -> Adobe Inc.)
S2 AmdAppCompatSvc; C:\WINDOWS\System32\DriverStore\FileRepository\amdappcompat.inf_amd64_e01b29e17ce4a109\AmdAppCompatSvc.exe [310704 2025-09-10] (Advanced Micro Devices -> Advanced Micro Devices, Inc)
R2 AmdPpkgSvc; C:\WINDOWS\System32\DriverStore\FileRepository\amdppkg.inf_amd64_27762fb4b4d122d3\AmdPpkgSvc.exe [515480 2025-11-19] (Advanced Micro Devices -> Advanced Micro Devices, Inc)
S3 ArmouryCrateDownloadTool; C:\WINDOWS\System32\DriverStore\FileRepository\rogms.inf_amd64_7bcd8839c8e4f2a7\ArmouryLiveUpdate.exe [577440 2025-11-04] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R2 ArmouryCrateService; C:\Program Files\ASUS\Armoury Crate Service\ArmouryCrate.Service.exe [451176 2026-02-01] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
S2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.02.12\atkexComSvc.exe [457544 2024-08-29] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S2 asus; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [253336 2025-09-22] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
R2 AsusCertService; C:\Program Files (x86)\ASUS\AsusCertService\1.2.41\AsusCertService.exe [497560 2025-11-20] (ASUSTeK COMPUTER INC. -> Asustek Computer Inc.)
S3 asusm; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [253336 2025-09-22] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
S2 AsusROGLSLService; C:\Program Files (x86)\ASUS\AsusROGLSLService\AsusROGLSLService.exe [682904 2025-09-22] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 Aura Wallpaper Service; C:\Program Files\ASUS\Aura Wallpaper Service\AuraWallpaperService.exe [650344 2025-09-16] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13263248 2026-01-30] (Microsoft Corporation -> Microsoft Corporation)
S3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [19291808 2025-10-23] (Electronic Arts, Inc. -> Electronic Arts)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\26.002.0105.0001\FileSyncHelper.exe [3625320 2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
R2 GameSDK Service; C:\Program Files (x86)\ASUS\GameSDK Service\GameSDK.exe [397544 2022-05-31] (ASUSTeK COMPUTER INC. -> ASUS Inc.)
R2 LightingService; C:\Program Files (x86)\LightingService\LightingService.exe [5083032 2025-12-18] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [11255744 2026-02-09] (Malwarebytes Inc -> Malwarebytes)
S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [2788304 2026-02-09] (Malwarebytes Inc. -> Malwarebytes)
S3 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25110.6-0\MpDefenderCoreService.exe [2063376 2025-12-21] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 MSI_Case_Service; C:\Program Files (x86)\MSI\MSI Center\Case\MSI_Case_Service.exe [134160 2025-05-05] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MSI_Center_Service; C:\Program Files (x86)\MSI\MSI Center\MSI_Central_Service.exe [181776 2025-04-17] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\26.002.0105.0001\OneDriveUpdaterService.exe [3918224 2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
R2 ROG Live Service; C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe [2769512 2026-01-14] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [803088 2025-12-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25110.6-0\NisSrv.exe [4426832 2025-12-21] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25110.6-0\MsMpEng.exe [290704 2025-12-21] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R3 ACSEHIDRemap; C:\WINDOWS\System32\drivers\ACSEHIDRemap.sys [135160 2025-09-29] (WDKTestCert Ken,133462420546156706 -> )
R3 ACSEVirtualBus; C:\WINDOWS\System32\drivers\ACSEVirtualBus.sys [47088 2025-09-29] (WDKTestCert Ken,133462420546156706 -> )
R3 AmdAppCompat; C:\WINDOWS\System32\DriverStore\FileRepository\amdappcompat.inf_amd64_e01b29e17ce4a109\AmdAppCompat.sys [44984 2025-09-10] (Advanced Micro Devices -> Advanced Micro Devices)
R3 amdfendrmgr; C:\WINDOWS\System32\DriverStore\FileRepository\amdfendr.inf_amd64_83dcee55c384eb60\amdfendrmgr.sys [37272 2025-11-10] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
R3 amdgpio3; C:\WINDOWS\System32\drivers\amdgpio3.sys [43400 2025-09-10] (ASMedia Technology Inc. -> Advanced Micro Devices, Inc)
R3 AmdPpkg; C:\WINDOWS\System32\DriverStore\FileRepository\amdppkg.inf_amd64_27762fb4b4d122d3\AmdPpkg.sys [35224 2025-11-19] (Advanced Micro Devices -> Advanced Micro Devices)
R2 AMDRyzenMasterDriverV31; C:\WINDOWS\system32\AMDRyzenMasterDriver.sys [61832 2026-01-08] (Advanced Micro Devices -> Advanced Micro Devices)
R3 AMDSAFD; C:\WINDOWS\System32\DriverStore\FileRepository\amdsafd.inf_amd64_d4de13a10f2586d0\amdsafd.sys [112952 2024-06-15] (AMD Test Build -> Advanced Micro Devices)
R3 amduw23g-197639-19a81ed0; C:\WINDOWS\System32\DriverStore\FileRepository\u0197639.inf_amd64_6e9872ffe0e526d3\B025646\amdkmdag.sys [102087184 2026-01-19] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
R3 amduw23g-197640-f2ee24e9; C:\WINDOWS\System32\DriverStore\FileRepository\u0197640.inf_amd64_38091087f7899005\B025647\amdkmdag.sys [112496656 2026-01-19] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [63856 2025-09-10] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
R1 Asusgio3; C:\Windows\system32\drivers\AsIO3.sys [60040 2025-11-20] (ASUSTeK COMPUTER INC. -> Asustek Computer Inc.)
R3 cpuz160; C:\ProgramData\CPUID Software\sdk\pTbAEmXbC6hC [44696 2025-09-22] (Microsoft Windows Hardware Compatibility Publisher -> CPUID)
R1 CTIAIO; C:\Windows\system32\drivers\CtiAIo64.sys [34920 2025-09-22] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Innovation Co., LTd.)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae.sys [159296 2026-02-09] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R4 IOMap; C:\WINDOWS\system32\drivers\IOMap64.sys [55416 2024-12-01] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
S3 KslD; C:\WINDOWS\System32\drivers\wd\KslD.sys [333192 2025-12-21] (Microsoft Windows -> Microsoft Corporation)
R2 mbamchameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [234600 2026-02-09] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [22120 2026-02-09] (Microsoft Windows Early Launch Anti-Malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\Drivers\farflt11.sys [214632 2026-02-09] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\System32\Drivers\mbam.sys [80984 2026-02-09] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [245864 2026-02-09] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [190096 2026-02-09] (Malwarebytes Inc -> Malwarebytes)
R1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [19672 2023-12-10] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
R3 MTKBTFilterx64; C:\WINDOWS\System32\DriverStore\FileRepository\mtkbtfilter.inf_amd64_cde37df5add40ae6\mtkbtfilterx.sys [529928 2024-07-03] (Microsoft Windows Hardware Compatibility Publisher -> MediaTek Inc.)
R3 mtkwlex; C:\WINDOWS\System32\DriverStore\FileRepository\mtkwl6ex.inf_amd64_6194fff95628cf72\mtkwl6ex.sys [1714808 2024-07-03] (Microsoft Windows Hardware Compatibility Publisher -> MediaTek Inc.)
R3 NTIOLib_CC_COMM; C:\Program Files (x86)\MSI\MSI Center\Lib\SYS\NTIOLib_X64.sys [32592 2024-09-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 ROGMS; C:\WINDOWS\System32\DriverStore\FileRepository\rogms.inf_amd64_7bcd8839c8e4f2a7\ROGMS.sys [41456 2025-11-04] (ASUSTeK COMPUTER INC. -> Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [21928 2025-12-21] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [635272 2025-12-21] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [102792 2025-12-21] (Microsoft Windows -> Microsoft Corporation)
S4 AmdTools64; \SystemRoot\System32\drivers\AmdTools64.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat (erstellte) (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2026-02-09 21:46 - 2026-02-09 21:47 - 000030896 _____ C:\Users\nico\Downloads\FRST.txt
2026-02-09 20:49 - 2026-02-09 20:49 - 000190096 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2026-02-09 20:47 - 2026-02-09 20:47 - 000706480 _____ C:\WINDOWS\system32\perfh007.dat
2026-02-09 20:47 - 2026-02-09 20:47 - 000149454 _____ C:\WINDOWS\system32\perfc007.dat
2026-02-09 20:46 - 2026-02-09 21:46 - 000003091 _____ C:\Users\nico\Desktop\fix.txt
2026-02-09 02:18 - 2026-02-09 02:18 - 000001958 _____ C:\Users\nico\Desktop\MBAM.txt
2026-02-09 02:14 - 2026-02-09 21:45 - 000000000 ____D C:\Users\nico\AppData\Local\Malwarebytes
2026-02-09 02:14 - 2026-02-09 02:14 - 000002093 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2026-02-09 02:14 - 2026-02-09 02:14 - 000002081 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2026-02-09 02:14 - 2026-02-09 02:14 - 000000000 ____D C:\ProgramData\Malwarebytes
2026-02-09 02:14 - 2026-02-09 02:14 - 000000000 ____D C:\Program Files\Malwarebytes
2026-02-09 02:13 - 2026-02-09 02:13 - 002849080 _____ (Malwarebytes) C:\Users\nico\Downloads\MBSetup.exe
2026-02-09 02:10 - 2026-02-09 02:11 - 000000000 ____D C:\AdwCleaner
2026-02-09 02:09 - 2026-02-09 02:09 - 009629128 _____ (Malwarebytes) C:\Users\nico\Downloads\adwcleaner.exe
2026-02-08 10:58 - 2026-02-08 11:40 - 000000605 _____ C:\Users\nico\Desktop\Torjaner Board.txt
2026-02-08 10:52 - 2026-02-09 21:47 - 000000000 ____D C:\FRST
2026-02-08 10:51 - 2026-02-08 10:51 - 002447360 _____ (Farbar) C:\Users\nico\Downloads\FRST64.exe
2026-02-08 00:33 - 2026-02-08 00:33 - 000000000 ____D C:\WINDOWS\Microsoft Antimalware
2026-02-08 00:20 - 2026-02-08 00:26 - 000000000 ____D C:\Program Files\VideoLAN
2026-02-07 10:41 - 2026-02-08 00:55 - 000000000 ____D C:\WINDOWS\CbsTemp
2026-01-26 22:54 - 2026-02-09 21:43 - 000003106 _____ C:\WINDOWS\system32\Tasks\AMDInstallLauncher
2026-01-26 19:01 - 2026-01-26 19:01 - 000007605 _____ C:\Users\nico\AppData\Local\Resmon.ResmonCfg
2026-01-26 18:51 - 2026-01-26 18:51 - 000002622 _____ C:\WINDOWS\system32\Tasks\AMDRyzenMasterSDKTask
2026-01-26 18:51 - 2026-01-26 18:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Software꞉ Adrenalin Edition
2026-01-26 18:51 - 2026-01-26 18:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Bug Report Tool
2026-01-26 18:50 - 2026-01-19 19:24 - 005175312 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdadlx64.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 004832784 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdadlx32.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 002498696 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdfendrsr.etz
2026-01-26 18:50 - 2026-01-19 19:24 - 002432016 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2026-01-26 18:50 - 2026-01-19 19:24 - 002432016 _____ C:\WINDOWS\system32\vulkaninfo.exe
2026-01-26 18:50 - 2026-01-19 19:24 - 002192400 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 001933832 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2026-01-26 18:50 - 2026-01-19 19:24 - 001933832 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2026-01-26 18:50 - 2026-01-19 19:24 - 001873936 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 001873936 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 001724592 _____ (AMD) C:\WINDOWS\system32\amf-mft-mjpeg-decoder64.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 001402048 _____ (AMD) C:\WINDOWS\SysWOW64\amf-mft-mjpeg-decoder32.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 001329168 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdsasrv64.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 001185296 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdlvr64.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 001069576 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe
2026-01-26 18:50 - 2026-01-19 19:24 - 000998928 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdlvr32.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 000801808 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Rapidfire64.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 000678928 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\Rapidfire.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 000632840 _____ C:\WINDOWS\system32\GameManager64.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 000592400 _____ C:\WINDOWS\system32\amdgfxinfo64.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 000559632 _____ C:\WINDOWS\system32\atieah64.exe
2026-01-26 18:50 - 2026-01-19 19:24 - 000550416 _____ C:\WINDOWS\system32\dgtrayicon.exe
2026-01-26 18:50 - 2026-01-19 19:24 - 000543248 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdsacli32.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 000526344 _____ C:\WINDOWS\system32\EEURestart.exe
2026-01-26 18:50 - 2026-01-19 19:24 - 000480272 _____ C:\WINDOWS\SysWOW64\GameManager32.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 000473616 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 000471568 _____ C:\WINDOWS\system32\amdlogum.exe
2026-01-26 18:50 - 2026-01-19 19:24 - 000450056 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 000433800 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdfendr.stz
2026-01-26 18:50 - 2026-01-19 19:24 - 000422408 _____ C:\WINDOWS\SysWOW64\atieah32.exe
2026-01-26 18:50 - 2026-01-19 19:24 - 000200712 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 000190984 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 000159472 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 000150536 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 000147464 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amfrt64.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 000131248 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 000122384 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amfrt32.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 000056968 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdfendrmgr.stz
2026-01-26 18:50 - 2026-01-19 19:24 - 000051728 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\RapidFireServer64.dll
2026-01-26 18:50 - 2026-01-19 19:24 - 000048648 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\RapidFireServer.dll
2026-01-26 18:50 - 2026-01-19 19:23 - 115295760 _____ C:\WINDOWS\system32\amd_comgr_2.dll
2026-01-26 18:50 - 2026-01-19 19:23 - 115286544 _____ C:\WINDOWS\system32\amd_comgr_3.dll
2026-01-26 18:50 - 2026-01-19 19:23 - 096949256 _____ C:\WINDOWS\SysWOW64\amd_comgr32.dll
2026-01-26 18:50 - 2026-01-19 19:23 - 018195464 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdhip64_7.dll
2026-01-26 18:50 - 2026-01-19 19:23 - 000606472 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdsacli64.dll
2026-01-26 18:50 - 2026-01-19 19:23 - 000347144 _____ C:\WINDOWS\system32\clinfo.exe
2026-01-26 18:50 - 2026-01-19 19:23 - 000247312 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2026-01-26 18:50 - 2026-01-19 19:23 - 000212488 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2026-01-26 18:50 - 2026-01-19 19:23 - 000182360 _____ C:\WINDOWS\system32\amdmiracast.dll
2026-01-26 18:50 - 2026-01-19 19:23 - 000177168 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmmcl6.dll
2026-01-26 18:50 - 2026-01-19 19:23 - 000169856 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll
2026-01-26 18:50 - 2026-01-19 19:23 - 000159472 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll
2026-01-26 18:50 - 2026-01-19 19:23 - 000145928 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmmcl.dll
2026-01-26 18:50 - 2026-01-19 19:23 - 000145216 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll
2026-01-26 18:50 - 2026-01-19 19:23 - 000142728 _____ C:\WINDOWS\system32\amdxc64.dll
2026-01-26 18:50 - 2026-01-19 19:23 - 000131248 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll
2026-01-26 18:50 - 2026-01-19 19:23 - 000118744 _____ C:\WINDOWS\SysWOW64\amdxc32.dll
2026-01-26 18:50 - 2026-01-19 18:31 - 120371952 _____ C:\WINDOWS\system32\amdxc64.so
2026-01-26 18:50 - 2026-01-19 17:56 - 000787984 _____ C:\WINDOWS\system32\hiprt0200064.dll
2026-01-23 02:33 - 2026-01-23 02:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMDInstallManager
==================== Ein Monat (geänderte) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2026-02-09 21:45 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SystemTemp
2026-02-09 21:45 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\AppReadiness
2026-02-09 21:43 - 2025-11-03 19:06 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2026-02-09 21:43 - 2025-11-03 19:06 - 000002061 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2026-02-09 21:40 - 2025-09-22 23:36 - 000000000 ____D C:\Users\nico\AppData\Roaming\asus_framework
2026-02-09 21:40 - 2025-09-05 17:40 - 000000000 ____D C:\Users\nico\AppData\Roaming\discord
2026-02-09 21:40 - 2025-09-05 17:40 - 000000000 ____D C:\Users\nico\AppData\Local\Discord
2026-02-09 20:49 - 2025-10-29 22:09 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2026-02-09 20:49 - 2025-10-29 22:07 - 000002190 _____ C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2
2026-02-09 20:49 - 2025-07-18 18:44 - 000000000 ____D C:\Users\nico\AppData\LocalLow\Temp
2026-02-09 20:49 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\ServiceState
2026-02-09 20:49 - 2024-04-01 08:26 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2026-02-09 20:49 - 2024-04-01 08:24 - 000000000 ____D C:\WINDOWS\INF
2026-02-09 20:49 - 2022-01-01 10:22 - 000012288 ___SH C:\DumpStack.log.tmp
2026-02-09 20:48 - 2024-04-01 08:21 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2026-02-09 15:10 - 2025-09-09 12:02 - 000000342 _____ C:\Users\nico\Desktop\Ubisoft.txt
2026-02-09 02:16 - 2025-10-29 22:11 - 001637736 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2026-02-09 02:14 - 2025-07-13 13:17 - 000000000 ____D C:\Users\nico\AppData\Local\Packages
2026-02-09 02:14 - 2025-07-13 13:17 - 000000000 ____D C:\ProgramData\Packages
2026-02-09 02:14 - 2024-04-01 08:26 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2026-02-09 02:14 - 2024-04-01 08:26 - 000000000 ___HD C:\Program Files\WindowsApps
2026-02-08 10:59 - 2025-07-13 13:17 - 000000000 ____D C:\Users\nico\AppData\Local\D3DSCache
2026-02-08 10:45 - 2025-10-29 22:05 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2026-02-07 23:45 - 2022-01-01 10:22 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2026-02-07 23:27 - 2025-10-29 01:56 - 000000000 ____D C:\Users\nico
2026-02-07 11:19 - 2025-09-05 17:40 - 000002247 _____ C:\Users\nico\Desktop\Discord.lnk
2026-02-07 10:32 - 2025-07-13 13:28 - 000000000 ____D C:\Users\nico\AppData\Local\Comms
2026-02-07 09:41 - 2025-07-18 13:09 - 000000000 ____D C:\Program Files\Microsoft Office
2026-02-07 09:40 - 2025-07-14 10:32 - 000002239 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2026-02-07 09:40 - 2025-07-14 10:32 - 000002198 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2026-02-07 09:34 - 2025-08-05 23:51 - 000000000 ____D C:\Users\nico\AppData\Local\CrashDumps
2026-02-06 12:35 - 2025-07-18 18:30 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2026-02-05 23:25 - 2025-10-30 18:18 - 000000000 ____D C:\ProgramData\Whesvc
2026-02-05 23:13 - 2025-07-16 08:50 - 000000000 ____D C:\Users\nico\Desktop\Wallpapers
2026-02-03 22:54 - 2025-07-13 13:25 - 000000000 ____D C:\Users\nico\AppData\Local\AMD_Common
2026-02-03 22:48 - 2025-10-29 22:09 - 000003596 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1548267073-3587465546-3215327545-1001
2026-02-03 22:48 - 2025-10-29 22:09 - 000003552 _____ C:\WINDOWS\system32\Tasks\OneDrive Startup Task-S-1-5-21-1548267073-3587465546-3215327545-1001
2026-02-03 22:48 - 2025-10-29 22:09 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2026-02-03 22:48 - 2025-07-18 13:12 - 000002023 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2026-02-03 17:03 - 2025-10-30 18:19 - 000000000 ____D C:\Users\nico\AppData\Local\comgr
2026-02-03 12:56 - 2026-01-07 16:30 - 000000000 ____D C:\Users\nico\Desktop\Filmmaking
2026-02-03 10:15 - 2025-09-22 23:34 - 000000000 ____D C:\Program Files\ASUS
2026-02-03 10:15 - 2025-09-22 23:22 - 000000000 ____D C:\ProgramData\ASUS
2026-02-01 22:25 - 2025-07-13 13:22 - 000000000 ____D C:\ProgramData\Package Cache
2026-02-01 22:24 - 2025-10-29 22:09 - 000000000 ____D C:\WINDOWS\system32\Tasks\ASUS
2026-02-01 22:24 - 2025-09-22 23:47 - 000000000 ____D C:\Program Files\dotnet
2026-02-01 22:24 - 2025-09-22 23:47 - 000000000 ____D C:\Program Files (x86)\LightingService
2026-02-01 22:24 - 2025-07-13 13:26 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2026-02-01 22:23 - 2025-09-22 23:22 - 000000000 ____D C:\Program Files (x86)\ASUS
2026-01-31 10:12 - 2025-07-13 13:28 - 000008192 _____ C:\WINDOWS\system32\Drivers\mtkRunTimeDataWdi.bin
2026-01-27 23:44 - 2025-07-13 13:40 - 000000000 ____D C:\Program Files (x86)\Steam
2026-01-26 18:51 - 2025-12-21 12:06 - 000003484 _____ C:\WINDOWS\system32\Tasks\ModifyLinkUpdate
2026-01-26 18:51 - 2025-12-21 12:06 - 000003152 _____ C:\WINDOWS\system32\Tasks\StartCN
2026-01-26 18:51 - 2025-12-21 12:06 - 000003072 _____ C:\WINDOWS\system32\Tasks\StartDVR
2026-01-26 18:51 - 2025-07-13 13:25 - 000000000 ____D C:\Program Files\AMD
2026-01-26 18:51 - 2025-07-13 13:22 - 000000000 ____D C:\AMD
2026-01-25 23:39 - 2025-10-29 22:09 - 000003754 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2026-01-25 23:39 - 2025-10-29 22:09 - 000003628 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2026-01-23 02:33 - 2025-10-29 22:09 - 000004054 _____ C:\WINDOWS\system32\Tasks\AMD Install Manager - Check For Updates
2026-01-20 19:45 - 2025-10-29 22:05 - 000477464 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2026-01-20 19:45 - 2024-04-01 17:36 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2026-01-20 19:45 - 2024-04-01 08:26 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2026-01-20 19:45 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2026-01-20 19:45 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2026-01-20 19:45 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2026-01-20 19:45 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SystemResources
2026-01-20 19:45 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2026-01-20 19:45 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\setup
2026-01-20 19:45 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2026-01-20 19:45 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\bcastdvr
2026-01-20 00:03 - 2025-10-29 22:09 - 003276800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2026-01-10 16:18 - 2025-07-13 13:40 - 000000000 ____D C:\Users\nico\AppData\Local\Steam
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========
2026-01-26 19:01 - 2026-01-26 19:01 - 000007605 _____ () C:\Users\nico\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
==================== Ende von FRST.txt ========================
Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 07-02-2026
durchgeführt von nico (09-02-2026 21:48:12)
Gestartet von C:\Users\nico\Downloads
Microsoft Windows 11 Pro Version 25H2 26200.7623 (X64) (2025-10-29 21:09:20)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
Administrator (S-1-5-21-1548267073-3587465546-3215327545-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1548267073-3587465546-3215327545-503 - Limited - Disabled)
Gast (S-1-5-21-1548267073-3587465546-3215327545-501 - Limited - Disabled)
nico (S-1-5-21-1548267073-3587465546-3215327545-1001 - Administrator - Enabled) => C:\Users\nico
WDAGUtilityAccount (S-1-5-21-1548267073-3587465546-3215327545-504 - Limited - Disabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Malwarebytes (Enabled - Up to date) {A537353A-1D6A-F6B5-9153-CE1CF80FBE66}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
7-Zip 25.01 (x64) (HKLM\...\7-Zip) (Version: 25.01 - Igor Pavlov)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1031-1033-7760-BC15014EA700}) (Version: 25.001.21184 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601120}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
AMD Application Compatibility Database Driver (HKLM-x32\...\{7466773D-AE4B-48F6-8E12-D64B555C1BEA}) (Version: 1.0.0.3 - Advanced Micro Devices, Inc.) Hidden
AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 7.11.26.2142 - Advanced Micro Devices, Inc.)
AMD GPIO2 Driver (HKLM-x32\...\{E9DD399F-21A3-479E-A7DF-D6CF4B2ADBF3}) (Version: 2.2.0.134 - Advanced Micro Devices, Inc.) Hidden
AMD I2C Driver (HKLM-x32\...\{B31D92D9-2914-46B0-9738-F668A563DE73}) (Version: 1.2.0.126 - Advanced Micro Devices, Inc.) Hidden
AMD Install Manager (HKLM\...\{569DDC87-94F9-4D4E-BC04-270227EC8828}) (Version: 25.30.26008.1803 - Advanced Micro Devices, Inc.)
AMD PPM Provisioning File Driver (HKLM-x32\...\{3665A5DE-D07C-46D7-9207-713E8E9FEF32}) (Version: 8.0.0.59 - Advanced Micro Devices, Inc.) Hidden
AMD Privacy View (HKLM\...\{D8E24EA6-807B-48D0-86D6-A9C5E74B8F2C}) (Version: 1.02.0001 - Eyeware Tech SA)
AMD PSP Driver (HKLM-x32\...\{988F14B8-79A8-475D-BAC7-83F96AD3D821}) (Version: 5.40.0.0 - Advanced Micro Devices, Inc.) Hidden
AMD Ryzen Master SDK (HKLM\...\{DBD50508-5F75-416B-995D-C42433A00944}) (Version: 2.14.2.3330 - Advanced Micro Devices, Inc.)
AMD SBxxx SMBus Driver (HKLM-x32\...\{AAE0E27D-C88A-49BA-8715-77ADCD4286A3}) (Version: 5.12.0.44 - Advanced Micro Devices, Inc.) Hidden
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 26.1.1 - Advanced Micro Devices, Inc.)
AMD_Chipset_Drivers (HKLM-x32\...\{a2c5e97a-dd0d-4a8c-b1fc-dfcaf9a0a4a2}) (Version: 7.11.26.2142 - Advanced Micro Devices, Inc.) Hidden
AniMeVisionFont_STRIX_SCAR (HKLM\...\{09125B1C-D984-4FF3-AF65-391CF4E5FD2A}) (Version: 1.0.1 - ASUSTek Computer Inc.) Hidden
Armoury Crate Service (HKLM\...\Armoury Crate Service) (Version: 6.4.7.0 - ASUSTeK COMPUTER INC.)
ASUS Aac_GmAcc HAL (HKLM\...\{998249B1-6913-447E-AA37-F445B8CA33D0}) (Version: 1.0.12.0 - ASUSTek COMPUTER INC.) Hidden
ASUS Aac_GmAcc HAL (HKLM-x32\...\{c3219916-0c5a-483c-8b38-bdd71cf96365}) (Version: 1.0.12.0 - ASUSTek COMPUTER INC.) Hidden
ASUS Ambient HAL (HKLM\...\{867FA4F4-652B-41BD-90C0-E795B5487978}) (Version: 7.15.0.0 - ASUSTeK COMPUTER INC.) Hidden
ASUS Ambient HAL (HKLM-x32\...\{784f961c-218c-4905-b79d-bce3f01d3626}) (Version: 7.15.0.0 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Extension Card HAL (HKLM\...\{237E1CAC-1708-4940-AC34-DF15C079AB70}) (Version: 1.1.0.20 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Extension Card HAL (HKLM-x32\...\{49c4358d-054e-4cf1-9ec1-dca3487f304a}) (Version: 1.1.0.20 - ASUSTeK COMPUTER INC.) Hidden
ASUS Aura SDK (HKLM\...\{CF8E6E00-9C03-4440-81C0-21FACB921A6B}) (Version: 3.07.02 - ASUSTeK COMPUTER INC.) Hidden
ASUS Framework Service (HKLM-x32\...\{339A6383-7862-46DA-8A9D-E84180EF9424}) (Version: 4.2.4.8 - ASUSTeK Computer Inc.)
ASUS Keyboard HAL (HKLM\...\{ECB7DB5E-9707-4DBC-8713-9FC4A4AF436E}) (Version: 1.3.18.0 - ASUSTek COMPUTER INC.) Hidden
ASUS Keyboard HAL (HKLM-x32\...\{d13e6383-8403-46ea-a487-b67f99d54947}) (Version: 1.3.18.0 - ASUSTek COMPUTER INC.) Hidden
ASUS Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.107.151 - ASUSTeK Computer Inc.) Hidden
AURA DRAM Component (HKLM\...\{86D4C8A2-DB22-4948-950D-28DD5145F91C}) (Version: 1.1.29 - ASUS) Hidden
AURA DRAM Component (HKLM-x32\...\{f70a8a88-540d-485d-9aa8-001486fb050e}) (Version: 1.1.29 - ASUS) Hidden
AURA lighting effect add-on (HKLM-x32\...\{1E2EA04B-FCA7-457E-B6F4-F33E1858E859}) (Version: 0.0.52 - ASUSTek COMPUTER INC.)
AURA lighting effect add-on x64 (HKLM\...\{C5A4A164-4428-4931-B728-96EEF0FA3C44}) (Version: 0.0.52 - ASUSTek COMPUTER INC.)
AURA Service (HKLM-x32\...\{4fd68e38-4176-4fea-82f8-0b52bf9db34b}) (Version: 3.10.04 - ASUSTeK COMPUTER INC.)
AURA Service (HKLM-x32\...\{56EEEF7D-0AE3-401A-898B-581719D005AE}) (Version: 3.10.04 - ASUSTeK COMPUTER INC.) Hidden
Aura Wallpaper HTML (HKLM-x32\...\{fd36a871-5a75-4285-a469-61bbe3dbd858}) (Version: 2.1.10.0 - ASUSTek Computer Inc.)
Aura Wallpaper Service (HKLM\...\{A78E52FB-5921-0A22-5D0B-212641047CF4}) (Version: 2.1.10.0 - ASUSTeK COMPUTER INC.)
Blackmagic RAW Common Components (HKLM\...\{FCDBA071-A602-43E6-BFD4-4A6AC43D3556}) (Version: 5.1 - Blackmagic Design)
Branding64 (HKLM\...\{492AEFBE-1B81-4C20-A111-E6974BB98EC5}) (Version: 1.00.0009 - Advanced Micro Devices, Inc.) Hidden
CPUID CPU-Z MSI 2.15 (HKLM\...\CPUID CPU-Z MSI_is1) (Version: 2.15 - CPUID, Inc.)
DaVinci Resolve (HKLM\...\{947B464E-D01B-46D9-912B-F2B8756FA71E}) (Version: 20.3.10006 - Blackmagic Design)
DaVinci Resolve Control Panels (HKLM\...\{6DF13AB8-1697-46A2-8017-F68D860FC201}) (Version: 2.3.4.0 - Blackmagic Design)
DECUS RESPEC Gaming Mouse Driver (HKLM-x32\...\{CF88BB19-254D-4063-88C3-F0DF688ED577}) (Version: 1.2 - Joellenbeck GmbH)
Discord (HKU\S-1-5-21-1548267073-3587465546-3215327545-1001\...\Discord) (Version: 1.0.9223 - Discord Inc.)
EA app (HKLM\...\{C2622085-ABD2-49E5-8AB9-D3D6A642C091}) (Version: 13.579.0.6092 - Electronic Arts) Hidden
EA app (HKLM-x32\...\{a5316e04-4f57-44b2-bc29-c4e58fa0fea1}) (Version: 13.579.0.6092 - Electronic Arts)
ENE RGB HAL (HKLM\...\{E050E98C-5524-4AFB-9E53-97700BEF2C02}) (Version: 1.1.58.4 - Ene Tech.) Hidden
ENE RGB HAL (HKLM-x32\...\{a06f2235-c1cb-4cd6-91ac-30089f052973}) (Version: 1.1.58.4 - Ene Tech.) Hidden
ENE_EHD_M2_HAL (HKLM\...\{37A48B7F-D4EA-4863-844E-A284E2AA3C5D}) (Version: 1.0.14.0 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_M2_HAL (HKLM-x32\...\{c1d017c2-8846-4000-9254-5689eccd462e}) (Version: 1.0.14.0 - ENE TECHNOLOGY INC.) Hidden
GameSDK Service (HKLM-x32\...\{021d69c3-d686-4a94-8fb5-fd1ee782fb14}) (Version: 1.0.5.0 - ASUSTek COMPUTER INC.)
GameSDK Service (HKLM-x32\...\{7160DA8D-3F25-4F6E-ABC8-F693551D82FA}) (Version: 1.0.5.0 - ASUSTek COMPUTER INC.) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 144.0.7559.133 - Google LLC)
Kingston AURA DRAM Component (HKLM\...\{965CDF5F-901C-476F-B3A8-7396701B1129}) (Version: 1.1.40 - KINGSTON COMPONENTS INC.) Hidden
Kingston AURA DRAM Component (HKLM-x32\...\{2dcabc26-feae-4bc3-afc0-fba6e9f32af4}) (Version: 1.1.40 - KINGSTON COMPONENTS INC.) Hidden
Malwarebytes version 5.4.8.232 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 5.4.8.232 - Malwarebytes)
Microsoft .NET Host - 8.0.21 (x64) (HKLM\...\{72357746-B194-485C-A161-FB80F419DC20}) (Version: 64.84.40925 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 8.0.21 (x64) (HKLM\...\{B382D796-20D3-45DA-AB94-E98D99668B10}) (Version: 64.84.40925 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 8.0.21 (x64) (HKLM\...\{EEFB29A5-3E62-4DCE-8527-0DF45D780126}) (Version: 64.84.40925 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 8.0.21 (x64) (HKLM-x32\...\{cf83f56a-4c10-4d97-9594-0764dfeb96e3}) (Version: 8.0.21.35325 - Microsoft Corporation)
Microsoft 365 Apps for Enterprise - de-de (HKLM\...\O365ProPlusRetail - de-de) (Version: 16.0.19628.20166 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 144.0.3719.115 - Microsoft Corporation)
Microsoft Edge WebView2-Laufzeit (HKLM-x32\...\Microsoft EdgeWebView) (Version: 144.0.3719.115 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 26.002.0105.0001 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.44.35211 (HKLM-x32\...\{d8bbe9f9-7c5b-42c6-b715-9ee898a2e515}) (Version: 14.44.35211.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.44.35211 (HKLM-x32\...\{0b5169e3-39da-4313-808e-1f9c0407f3bf}) (Version: 14.44.35211.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.44.35211 (HKLM\...\{86AB2CC9-08BD-4643-B0F9-F82D006D72FF}) (Version: 14.44.35211 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.44.35211 (HKLM\...\{43B0D101-A022-48F4-9D04-BA404CEB1D53}) (Version: 14.44.35211 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.44.35211 (HKLM-x32\...\{C18FB403-1E88-43C8-AD8A-CED50F23DE8B}) (Version: 14.44.35211 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.44.35211 (HKLM-x32\...\{922480B5-CAEB-4B1B-AAA4-9716EFDCE26B}) (Version: 14.44.35211 - Microsoft Corporation) Hidden
MSI Center SDK (HKLM-x32\...\{15289038-41BE-48F8-B8B9-0B1021D3089E}}_is1) (Version: 3.2025.0617.01 - MSI)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.19426.20170 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.19029.20208 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0407-1000-0000000FF1CE}) (Version: 16.0.19426.20170 - Microsoft Corporation) Hidden
Patriot Viper DRAM RGB (HKLM\...\{1F9C282E-CCB4-4D8E-A5CB-7B74DFCD8C95}) (Version: 1.0.9.8 - Patriot Memory) Hidden
Patriot Viper DRAM RGB (HKLM-x32\...\{55993b50-5bec-47c8-8b2b-1aecad927e48}) (Version: 1.0.9.8 - Patriot Memory) Hidden
Patriot Viper M2 SSD RGB (HKLM\...\{8B4C0A3D-C135-4E1F-98D8-3926494B4D61}) (Version: 1.1.0.3 - Patriot Memory) Hidden
Patriot Viper M2 SSD RGB (HKLM-x32\...\{6e0eff60-c502-43bb-8f56-360ca07e73d9}) (Version: 1.1.0.3 - Patriot Memory) Hidden
Promontory_GPIO Driver (HKLM-x32\...\{B5512BCC-F4CD-4159-86A4-B2AD7D38FFA9}) (Version: 3.0.3.0 - Advanced Micro Devices, Inc.) Hidden
Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9826.1 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.75.324.2025 - Realtek)
ROG AZOTH (2.4GHz) (HKLM-x32\...\{e471aae0-06b2-4d14-860f-3c437c44ec43}) (Version: 5.00.18 - ASUSTek Computer Inc.)
ROG AZOTH (BLE) (HKLM-x32\...\{8cf5daaa-547f-44b9-b12a-2fe43b4bfaab}) (Version: 5.00.18 - ASUSTek Computer Inc.)
ROG AZOTH (HKLM-x32\...\{b211971f-cf1b-4698-9660-a34f763bb7f3}) (Version: 5.00.18 - ASUSTek Computer Inc.)
ROG Live Service (HKLM\...\{2D87BFB6-C184-4A59-9BBE-3E20CE797631}) (Version: 3.4.12.0 - ASUSTek COMPUTER INC.)
RyzenMasterSDK (HKLM\...\{C173683F-37FC-47A0-8768-09E635AAB284}) (Version: 1.2.3.5 - Advanced Micro Devices, Inc.) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 167.1.12915 - Ubisoft)
Universal Holtek RGB DRAM (HKLM\...\{826388E4-E31F-4514-948B-3BB954FB3EAF}) (Version: 1.0.0.7 - PD) Hidden
Universal Holtek RGB DRAM (HKLM-x32\...\{9a732423-e2f4-47d0-87ab-ef745c7dba69}) (Version: 1.0.0.7 - PD) Hidden
Update for x64-based Windows Systems (KB5001716) (HKLM\...\{B8D93870-98D1-4980-AFCA-E26563CDFB79}) (Version: 8.94.0.0 - Microsoft Corporation)
WD_BLACK AN1500 (HKLM\...\{085E2365-0A70-4230-B664-02D5E4FE7E9C}) (Version: 1.0.14.0 - ENE TECHNOLOGY INC.) Hidden
WD_BLACK AN1500 (HKLM-x32\...\{e42c5874-37b0-4977-9e8d-70bf006e1f76}) (Version: 1.0.14.0 - ENE TECHNOLOGY INC.) Hidden
Xbox 360 Controller Emulator (HKLM\...\{66F1BC10-A109-47A5-918D-61023175C03E}) (Version: 1.0.0.15 - ASUSTek COMPUTER INC.) Hidden
Xbox 360 Controller Emulator (HKLM\...\{6B45AA6A-7060-4A48-91B9-A085A897E483}) (Version: 1.0.0.15 - ASUSTek COMPUTER INC.) Hidden
Packages:
=========
Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Assets [2026-02-09] ()
AMD Radeon Software -> C:\Program Files\AMD\CNext\CNext [2026-01-26] (Advanced Micro Devices Inc.)
Armoury Crate -> C:\Program Files\ASUS\AacAmbientHal [2026-02-01] (Sparse Package)
Armoury Crate -> C:\Program Files\WindowsApps\B9ECED6F.ArmouryCrate_6.4.7.0_x64__qmba6cd70vzyy [2026-01-31] (ASUSTeK COMPUTER INC.)
AURA Creator -> C:\Program Files\WindowsApps\B9ECED6F.AURACreator_4.3.5.0_x64__qmba6cd70vzyy [2025-10-30] (ASUSTeK COMPUTER INC.)
Local AI Manager for Microsoft 365 -> C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\AI [2026-02-07] ()
Malwarebytes Anti-Malware -> C:\Program Files\Malwarebytes\Anti-Malware [2026-02-09] ()
Microsoft 365 companion apps -> C:\Program Files\WindowsApps\Microsoft.M365Companions_2.2511.25000.0_x64__8wekyb3d8bbwe [2025-12-22] (Microsoft Corporation)
Microsoft.Office.ActionsServer -> C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\ActionsServer [2026-02-07] ()
MSI Center -> C:\Program Files\WindowsApps\9426MICRO-STARINTERNATION.MSICenter_2.0.66.0_x64__kzh8wxbdkxb8p [2026-02-08] (MICRO-STAR INTERNATIONAL CO., LTD) [Startup Task]
OfficePushNotificationsUtility -> C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16 [2026-02-07] ()
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.53.374.0_x64__dt26b99r8h8gj [2025-10-30] (Realtek Semiconductor Corp)
SpotifyAB.SpotifyMusic -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.282.428.0_x64__zpdnekdrzrea0 [2026-02-01] (Spotify AB) [Startup Task]
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-1548267073-3587465546-3215327545-1001_Classes\CLSID\{04271989-C4D2-3396-A53C-16693539ECC9} -> [OneDrive] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}
CustomCLSID: HKU\S-1-5-21-1548267073-3587465546-3215327545-1001_Classes\CLSID\{13357088-9834-0409-1600-134951500000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-1548267073-3587465546-3215327545-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-1548267073-3587465546-3215327545-1001_Classes\CLSID\{DFF20505-B08F-455B-AD70-4FBD055088E0}\localserver32 -> C:\Program Files\Google\Chrome\Application\PlatformExperienceHelper\platform_experience_helper.exe (Google LLC -> Google LLC)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\FileSyncShell64.dll [2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\FileSyncShell64.dll [2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\FileSyncShell64.dll [2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\FileSyncShell64.dll [2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\FileSyncShell64.dll [2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\FileSyncShell64.dll [2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\FileSyncShell64.dll [2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\FileSyncShell64.dll [2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\FileSyncShell64.dll [2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\FileSyncShell64.dll [2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\FileSyncShell64.dll [2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\FileSyncShell64.dll [2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\FileSyncShell64.dll [2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\FileSyncShell64.dll [2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\FileSyncShell64.dll [2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2025-08-03] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2026-01-20] (Adobe Inc. -> Adobe Systems Inc.)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2026-02-09] (Malwarebytes Inc -> Malwarebytes)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\FileSyncShell64.dll [2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2025-08-03] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\26.002.0105.0001\FileSyncShell64.dll [2026-02-03] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2026-01-08] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2025-08-03] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2026-02-09] (Malwarebytes Inc -> Malwarebytes)
==================== Codecs (Nicht auf der Ausnahmeliste) ====================
==================== Verknüpfungen & WMI ========================
==================== Geladene Module (Nicht auf der Ausnahmeliste) =============
2026-02-01 22:24 - 2025-02-03 17:17 - 000349184 _____ () [Datei ist nicht signiert] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\resources\app.asar.unpacked\node_modules\@img\sharp-win32-ia32\lib\sharp-win32-ia32.node
2025-07-22 10:53 - 2016-03-19 11:27 - 000045056 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\SPEEDLINK\DECUS RESPEC Gaming Mouse\hiddriver.dll
2025-07-22 10:53 - 2016-10-27 14:03 - 000036864 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\SPEEDLINK\DECUS RESPEC Gaming Mouse\Lang.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================
==================== Internet Explorer (Nicht auf der Ausnahmeliste) =============
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2026-02-01] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2026-02-01] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2026-02-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2026-02-01] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2026-02-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2026-02-01] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2026-02-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2026-02-01] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2026-02-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2026-02-01] (Microsoft Corporation -> Microsoft Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE trusted site: HKU\S-1-5-21-1548267073-3587465546-3215327545-1001\...\sharepoint.com -> hxxps://charitede-files.sharepoint.com
==================== Hosts Inhalt: =========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2019-12-07 10:14 - 2026-02-09 20:47 - 000000027 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost
==================== Network ===========================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
DNS Servers: 192.168.178.1
ist aktiviert.
Network Binding:
=============
WLAN: RZ616 Wi-Fi 6E 160MHz -> mtkwl6ex.sys
Ethernet: Realtek Gaming 2.5GbE Family Controller -> rt640x64.sys
Bluetooth-Netzwerkverbindung: Bluetooth Device (Personal Area Network) -> bthpan.sys
==================== Andere Bereiche ===========================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-1548267073-3587465546-3215327545-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\nico\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows Defender\Features => (TamperProtection: 1) (TamperProtectionSource: 5)
HKLM\SOFTWARE\Microsoft\Windows Defender\Real-Time Protection => (DpaDisabled: 0)
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
HKU\S-1-5-21-1548267073-3587465546-3215327545-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_8777BAF98F32F23A314B91BE41AA5DE3"
HKU\S-1-5-21-1548267073-3587465546-3215327545-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-1548267073-3587465546-3215327545-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-1548267073-3587465546-3215327545-1001\...\StartupApproved\Run: => "EADM"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{DB72FE62-94F7-44FD-80E4-81EACF2490E2}] => (Allow) LPort=32683
FirewallRules: [{2EE289B2-363D-4563-9C36-41D8ABB99E67}] => (Allow) LPort=33683
FirewallRules: [TCP Query User{CA8B210A-419F-401B-9D5C-0E3AA30B75AA}C:\program files\windowsapps\spotifyab.spotifymusic_1.282.428.0_x64__zpdnekdrzrea0\spotify.exe] => (Allow) C:\program files\windowsapps\spotifyab.spotifymusic_1.282.428.0_x64__zpdnekdrzrea0\spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [UDP Query User{03082472-5791-458B-8ED7-4C7CB07E8818}C:\program files\windowsapps\spotifyab.spotifymusic_1.282.428.0_x64__zpdnekdrzrea0\spotify.exe] => (Allow) C:\program files\windowsapps\spotifyab.spotifymusic_1.282.428.0_x64__zpdnekdrzrea0\spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{0B08DF92-672A-40B4-A0E3-14B474849F2D}] => (Allow) LPort=26822
==================== Wiederherstellungspunkte =========================
01-02-2026 22:23:53 Installed ASUS Framework Service
03-02-2026 10:20:49 Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.44.35211
03-02-2026 10:20:55 Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.44.35211
05-02-2026 16:55:57 Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.44.35211
05-02-2026 16:56:03 Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.44.35211
07-02-2026 09:41:58 Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.44.35211
07-02-2026 09:42:04 Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.44.35211
09-02-2026 20:47:25 Restore Point Created by FRST
==================== Fehlerhafte Geräte im Gerätemanager ============
==================== Fehlereinträge in der Ereignisanzeige: ========================
Applikationsfehler:
==================
Error: (02/09/2026 08:49:05 PM) (Source: Application Error) (EventID: 1000) (User: NT-AUTORITÄT)
Description: Fehlerhafter Anwendungsname: atkexComSvc.exe, Version: 1.0.0.1, Zeitstempel: 0x6156aa76
Fehlerhafter Modulname: atkexComSvc.exe, Version: 1.0.0.1, Zeitstempel: 0x6156aa76
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0001eb62
Fehlerhafte Prozess-ID: 0xea4
Fehlerhafte Anwendungsstartzeit: 0x1dc99fd2584505e
Fehlerhafter Anwendungspfad: C:\Program Files (x86)\ASUS\AXSP\4.02.12\atkexComSvc.exe
Fehlerhafter Modulpfad: C:\Program Files (x86)\ASUS\AXSP\4.02.12\atkexComSvc.exe
Berichts-ID: 629c093f-ac12-4309-a41d-7d3163e8fb5d
Vollständiger Name des fehlerhaften Pakets:
Fehlerhafte paketbezogene Anwendungs-ID:
Systemfehler:
=============
Error: (02/09/2026 09:40:10 PM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1801) (User: NT-AUTORITÄT)
Description: Updated Secure Boot certificates are available on this device but have not yet been applied to the firmware. Review the published guidance to complete the update and maintain full protection. This device signature information is included here.
DeviceAttributes: BaseBoardManufacturer:Micro-Star International Co., Ltd.;FirmwareManufacturer:American Megatrends International, LLC.;FirmwareVersion:1.J0;OEMModelBaseBoard:B650 GAMING PLUS WIFI (MS-7E26);OEMManufacturerName:Micro-Star International Co., Ltd.;OSArchitecture:amd64;
BucketId: 27faedd5ac38822c174903a9f9905112acbbf67c9bac740f3bbde7d3c5cc4642
BucketConfidenceLevel:
UpdateType:
For more information, please see https://go.microsoft.com/fwlink/?linkid=2301018.
Error: (02/09/2026 08:52:24 PM) (Source: DCOM) (EventID: 10010) (User: PC-nicoR)
Description: Der Server "{3E11DF0F-42EB-4747-9A35-802D98B5BCF0}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (02/09/2026 08:52:24 PM) (Source: DCOM) (EventID: 10010) (User: PC-nicoR)
Description: Der Server "{6FA05A24-B1DF-4155-909E-7B424F2D2BB5}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (02/09/2026 08:49:09 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (45000 ms) wurde beim Verbindungsversuch mit dem Dienst asComSvc erreicht.
Error: (02/09/2026 08:48:36 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.
Modulpfad: C:\WINDOWS\system32\mtkihvx.dll
Error: (02/09/2026 08:48:36 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.
Modulpfad: C:\WINDOWS\system32\mtkihvx.dll
CodeIntegrity:
===============
Date: 2026-02-09 21:47:23
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbamsi64.dll that did not meet the Windows signing level requirements.
==================== Speicherinformationen ===========================
BIOS: American Megatrends International, LLC. 1.J0 03/13/2025
Hauptplatine: Micro-Star International Co., Ltd. B650 GAMING PLUS WIFI (MS-7E26)
Prozessor: AMD Ryzen 5 7600X 6-Core Processor
Prozentuale Nutzung des RAM: 29%
Installierter physikalischer RAM: 31849.99 MB
Verfügbarer physikalischer RAM: 22568.8 MB
Summe virtueller Speicher: 37737.99 MB
Verfügbarer virtueller Speicher: 25017.27 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:930.63 GB) (Free:790.69 GB) (Model: CT1000E100SSD8) NTFS
Drive h: (HDD) (Fixed) (Total:1863 GB) (Free:650.05 GB) (Model: ST2000DM008-2UB102) NTFS
\\?\Volume{f74fe6e3-6478-4245-8d31-8350d8267503}\ () (Fixed) (Total:0.77 GB) (Free:0.12 GB) NTFS
\\?\Volume{5e32a413-f271-4a3a-b394-be1f64cedc63}\ () (Fixed) (Total:0.09 GB) (Free:0.06 GB) FAT32
==================== MBR & Partitionstabelle ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 1 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
==================== Ende von Addition.txt =======================
|
|
09.02.2026, 22:03
| #10 |
| /// TB-Ausbilder | setup.exe von vlc.de auf win 11 ausgeführt Servus, die neuen Logs sehen gut aus. FRST und alle dazugehörigen Elemente kannst du wie folgt entfernen:
AdwCleaner und MBAM könntest du natürlich auch entfernen. Wir empfehlen diese kostenlosen Tools jedoch für regelmäßige Kontrollscans, weil sie sehr gut gegen Adware und PUPs sind. Dann wären wir durch! Wenn du keine Probleme mehr mit Malware hast, dann sind wir hier fertig. Deine Logdateien sind sauber.  Wenn Du möchtest, kannst Du hier sagen, ob du mit uns und unserer Hilfe zufrieden warst...  Vielleicht möchtest du das Forum mit einer kleinen Spende  unterstützen. Zum Schluss bitte unbedingt die Sicherheitsmaßnahmen lesen und umsetzen: Hinweis: Bitte gib mir eine kurze Rückmeldung, sobald du die oben verlinkten Informationen gelesen hast, alles erledigt ist und keine Fragen mehr vorhanden sind, so dass ich dieses Thema aus meinen Abos löschen kann. |
|
09.02.2026, 22:58
| #11 |
| | setup.exe von vlc.de auf win 11 ausgeführt Lieber Matthias, vielen Dank für die schnelle und gute Hilfe! Ich habe keine weiteren Fragen und bin dir sehr dankbar. Ich finde das wirklich eine tolle Seite und spende gerne einen kleinen Beitrag Dir noch eine schöne Woche. LG Nico |
|
10.02.2026, 16:11
| #12 |
| /// TB-Ausbilder | setup.exe von vlc.de auf win 11 ausgeführt Vielen Dank für die Spende. Sie dient zur Erhaltung des Forums. Ich wünsche dir ebenfalls noch eine schöne Woche. Alles Gute. Wir sind froh, dass wir helfen konnten  Dieses Thema scheint erledigt und wird aus unseren Abos gelöscht. Solltest Du das Thema erneut brauchen, schicke uns bitte eine Erinnerung inklusive Link zum Thema. Jeder andere bitte hier klicken und ein eigenes Thema erstellen. |
|
| Themen zu setup.exe von vlc.de auf win 11 ausgeführt |
| antivirus, browser, computer, desktop, google, installation, internet, internet explorer, mozilla, performance, programm, proxy, prozesse, realtek, registry, scan, server, svchost.exe, system, trojaner, trojaner board, udp, updates, werbung, windows |
Lesestoff:
Linear-Darstellung
