Guten Tag Cosinus ,
bin neu und habe versucht einen Screnshot hochzuladen leider erfolglos
Grüße
FRST Logfile: Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 02.04.2024
durchgeführt von Nutzer (Administrator) auf NUTZER-PC (LENOVO 20QQS44J00) (03-04-2024 15:16:49)
Gestartet von C:\Users\Nutzer\Downloads\FRST64.exe
Geladene Profile: Nutzer
Plattform: Microsoft Windows 11 Pro Version 22H2 22621.3296 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: FF
Start-Modus: Normal
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(C:\Program Files\Avira\Endpoint Protection SDK\endpointprotection.exe ->) (Avira Operations GmbH -> Avira Operations GmbH) C:\Program Files\Avira\Endpoint Protection SDK\SentryEye.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\Malwarebytes.exe
(C:\Program Files\Mozilla Firefox\firefox.exe ->) (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <31>
(C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_424.1301.450.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\123.0.2420.65\msedgewebview2.exe <6>
(explorer.exe ->) (Brave Software, Inc. -> Brave Software, Inc.) C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe <8>
(explorer.exe ->) (Opera Norway AS -> Opera Software) C:\Users\Nutzer\AppData\Local\Programs\Opera\assistant\browser_assistant.exe <2>
(services.exe ->) (Avira Operations GmbH -> Avira Operations GmbH) C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe
(services.exe ->) (Avira Operations GmbH -> Avira Operations GmbH) C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe
(services.exe ->) (Avira Operations GmbH -> Avira Operations GmbH) C:\Program Files\Avira\Endpoint Protection SDK\endpointprotection.exe
(services.exe ->) (Fibocom Wireless Inc. -> Fibocom Wireless Inc.) C:\Windows\Firmware\FwSwitchbin\FwSwitchService.exe
(services.exe ->) (Fibocom Wireless Inc. -> Intel) C:\Windows\System32\ModemAuthenticator.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_82b77f8c4618e2d0\esif_uf.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Locator.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvlt.inf_amd64_893f5cfb268734fc\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(services.exe ->) (Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2412.4.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> ) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.233.1042.0_x64__zpdnekdrzrea0\SpotifyWidgetProvider.exe
(svchost.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5390.0_x64__8j3eq9eme6ctt\IGCC.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_424.1301.450.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [5109624 2023-01-23] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Beschränkung <==== ACHTUNG
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Beschränkung <==== ACHTUNG
HKU\S-1-5-19\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [3306504 2024-03-30] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [3306504 2024-03-30] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-654826891-412923121-3519518231-1000\...\Run: [MicrosoftEdgeAutoLaunch_FCAAFF64BE6F064D278FEB61892EBB2C] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4063800 2024-03-27] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-654826891-412923121-3519518231-1000\...\Run: [Opera Browser Assistant] => C:\Users\Nutzer\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [3996064 2024-03-04] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-654826891-412923121-3519518231-1000\...\Run: [Opera Stable] => C:\Users\Nutzer\AppData\Local\Programs\Opera\opera.exe [1581984 2024-04-02] (Opera Norway AS -> Opera Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\123.1.64.113\Installer\chrmstp.exe [2024-03-29] (Brave Software, Inc. -> Brave Software, Inc.)
Startup: C:\Users\Nutzer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DeepL auto-start.lnk [2024-02-02]
ShortcutTarget: DeepL auto-start.lnk -> (Keine Datei)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\DeepL auto-start.lnk [2024-02-02]
ShortcutTarget: DeepL auto-start.lnk -> (Keine Datei)
BootExecute: autocheck autochk * sdnclean64.exe
GroupPolicy-Firefox: Beschränkung <==== ACHTUNG
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Beschränkung <==== ACHTUNG
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben sol
e sie nicht separat aufgelistet wird.)
Task: {023472E9-516E-46AE-AD36-392D9439C963} - \Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance -> Keine Datei <==== ACHTUNG
Task: {98D1784A-C587-447E-83C2-5C96AE1F4911} - \Lenovo\ImController\TimeBasedEvents\87246a1b-1346-450e-9e69-25fd406b76ec -> Keine Datei <==== ACHTUNG
Task: {9BE2A8A1-F5CB-46C0-95F9-6FF8F08B6026} - \Lenovo\ImController\TimeBasedEvents\0712be00-5542-4d9a-931d-7c889bd7d9b2 -> Keine Datei <==== ACHTUNG
Task: {C06DD97F-340E-4EBA-B7D0-8C6C7C4EF6B7} - \Lenovo\ImController\TimeBasedEvents\bafcd664-65b7-42fb-a76b-8af4d787eb6c -> Keine Datei <==== ACHTUNG
Task: {C99B0385-D671-498B-AEAD-0E4D1C547E29} - \Lenovo\ImController\Lenovo iM Controller Monitor -> Keine Datei <==== ACHTUNG
Task: {CAF0AF25-6EBC-4131-85CA-417B56D9265A} - \Lenovo\ImController\TimeBasedEvents\f18ec5dc-f8db-462c-8bbb-6e3f1218e8f8 -> Keine Datei <==== ACHTUNG
Task: {AC004D08-5B94-4BDC-AF12-788323B3D5B9} - System32\Tasks\Avira_FallbackUpdater => C:\Windows\System32\sc.exe [98304 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> start AviraFallbackUpdater Delayed=false
Task: {A381ECAE-ECB8-40D4-AF1D-960F30AD69E7} - System32\Tasks\Avira_Security_Maintenance => Command(1): C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe -> FallbackTelemetry
Task: {A381ECAE-ECB8-40D4-AF1D-960F30AD69E7} - System32\Tasks\Avira_Security_Maintenance => Command(2): C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe -> ServiceWatchdog
Task: {A381ECAE-ECB8-40D4-AF1D-960F30AD69E7} - System32\Tasks\Avira_Security_Maintenance => Command(3): C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe -> CrashCollector
Task: {277F045D-736E-47B5-B436-5009CC122D5C} - System32\Tasks\Avira_Security_Service_SCM_Watchdog => C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe [259040 2024-03-22] (Avira Operations GmbH -> Avira Operations GmbH)
Task: {F75E077C-FA07-4AC2-B02E-4381CD514278} - System32\Tasks\Avira_Security_Systray => C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Systray.Application.exe [1775072 2024-03-22] (Avira Operations GmbH -> Avira Operations GmbH)
Task: {80009589-6BCA-4A35-B8FE-E62CE74C225E} - System32\Tasks\Avira_Security_Update => C:\Windows\System32\net.exe [81920 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
Task: {CD4E885E-1AEE-4006-92DE-56F727C1993F} - System32\Tasks\AviraSystemSpeedupVerify => C:\Program Files (x86)\Avira\System Speedup\setup\avira_speedup_setup.exe [36867040 2024-04-03] (Avira Operations GmbH -> Avira Operations GmbH)
Task: {6CA3352B-F94E-41BD-9F4E-23EED44F1FC0} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore{68BC27C8-0818-403C-90E8-B75FA3DF013F} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [175424 2024-01-22] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {C10E3A42-2C3E-4C57-978B-8B5BEC2D160B} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA{315E02FB-FD37-4337-BD2A-B67EA3919EB7} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [175424 2024-01-22] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {3FDAA7B4-8B99-430F-A5BD-796D37DD0B05} - System32\Tasks\Lenovo\Power Manager\Background monitor => "C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe" (Keine Datei)
Task: {010166AF-A2BF-4E72-931E-8CD7542202D2} - System32\Tasks\Lenovo\Power Manager\Uninstall task => C:\WINDOWS\SysWOW64\PowerMgrInst.exe [65016 2022-12-04] (Lenovo -> )
Task: {EE8EAFD0-392E-418F-8A85-8613C78FE260} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => C:\WINDOWS\system32\sc.exe [98304 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> start LenovoVantageService
Task: {2C8B4B81-9425-416D-9BAC-D23CEC42AE09} - System32\Tasks\Lenovo\Vantage\Schedule\BatteryGaugeAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {EBA6E5FB-D96F-4E3D-AED3-42E1D974EE21} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {EE3F989E-72C8-4533-A727-492C65EAF697} - System32\Tasks\Lenovo\Vantage\Schedule\GenericMessagingAddin => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {3BA8122D-CA6A-4163-A5BF-CA6B0E9FEFD9} - System32\Tasks\Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {F475961D-93B7-4234-A952-9AEBB3E6CC77} - System32\Tasks\Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.MonthlyReport => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {22CB7858-49ED-46E9-A8BD-8592E1C4B32E} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {84C8B4C4-6A87-4F7C-94E1-FA99E4FCF68A} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {53AC4C6D-FD7C-4295-BC4F-DEDEA72D0E27} - System32\Tasks\Lenovo\Vantage\Schedule\NotificationCenter => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {291BA5C8-4DBF-457C-A42E-80B57BFE24BE} - System32\Tasks\Lenovo\Vantage\Schedule\SmartPerformance.ExpireReminder => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {1B8D834D-FAAA-4F66-9A28-405C9397BCFC} - System32\Tasks\Lenovo\Vantage\Schedule\VantageCoreAddinWeekScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {36486CB5-2B50-4DA4-A31C-EA1E247F6065} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21916864 2024-02-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {031A36CF-6CC3-44EE-9A64-CDE55BC0402A} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21916864 2024-02-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {237D0A62-7361-4DFC-B55F-5162D7BD3F20} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141488 2024-03-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {00CDD4B9-2A5D-46C1-86FA-2CFF18168EDF} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141488 2024-03-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Keine Datei)
Task: {51C0CDFF-1C86-4E81-82EE-1833DDDF5EF8} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [671136 2024-04-03] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (Der Dateneintrag hat 6 weitere Zeichen).
Task: {1F0FB26B-D6B2-4469-A3F9-3E8ACDFA1459} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-654826891-412923121-3519518231-1000 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [671136 2024-04-03] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (Der Dateneintrag hat 6 weitere Zeichen).
Task: {84163763-B096-4494-8E09-287A60C5260B} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34720 2024-04-03] (Mozilla Corporation -> Mozilla Foundation)
Task: {84069929-32E9-4758-AEF4-4A1D38CDC978} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4206096 2024-03-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {13A8014B-D88B-4775-9C0E-78B84F451CCE} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-654826891-412923121-3519518231-1000 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4206096 2024-03-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {DFF355BB-8A8B-4DBA-810F-86CBBB1D0D5C} - System32\Tasks\Opera scheduled assistant Autoupdate 1712142799 => C:\Users\Nutzer\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe [5668768 2024-04-02] (Opera Norway AS -> Opera Software) -> --scheduledtask --productiscomponent --bypasslauncher --installdir="C:\Users\Nutzer\AppData\Local\Programs\Opera\assistant" --producttype=assistant $(Arg0)
Task: {E4A14C37-40F6-49FE-81B5-A39CE9C10520} - System32\Tasks\Opera scheduled Autoupdate 1712142798 => C:\Users\Nutzer\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe [5668768 2024-04-02] (Opera Norway AS -> Opera Software)
Task: {DEC33469-D21C-4F81-8023-B69FD2D20B2E} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [5339512 2023-02-14] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
Task: {5F3AC789-7660-4F72-A166-025654B1D0EC} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [5659512 2023-02-14] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
Task: {648C34E3-03EA-4144-9A0D-E9BDCEB40191} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [5839224 2023-02-14] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
Task: {95EEB105-8A0B-4C84-AA95-F982FEA8DD96} - System32\Tasks\TVT\TVSUUpdateTask => "C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe" /CM -search R -action INSTALL -includerebootpackages 1,3,4,5 -noicon -noreboot -nolicense -defaultupdate -schtask (Keine Datei)
Task: {26CF6903-07F0-4B25-A1BE-0E53AD210695} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => "C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe" PendingTask (Keine Datei)
Task: {CDDFADE4-41A6-4E13-8952-157780DB0A6B} - System32\Tasks\Zero Install\Self update => C:\Program Files\Zero Install\0install-win.exe self update --batch (Keine Datei)
Task: {491C8979-DB28-4902-B2CE-F3EE4C290AE9} - System32\Tasks\Zero Install\Update apps => C:\Program Files\Zero Install\0install-win.exe update-all --batch --machine --clean (Keine Datei)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{6775b051-9314-4014-bcbd-0c97eec71a9f}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{f06bc357-3ade-4e9e-818f-a78cad66c2c9}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{f06bc357-3ade-4e9e-818f-a78cad66c2c9}: [DhcpDomain] fritz.box
Edge:
=======
Edge Profile: C:\Users\Nutzer\AppData\Local\Microsoft\Edge\User Data\Default [2024-04-03]
Edge Extension: (Avira Safe Shopping) - C:\Users\Nutzer\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\caiblelclndcckfafdaggpephhgfpoip [2024-04-03]
Edge Extension: (Avira Password Manager) - C:\Users\Nutzer\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\emgfgdclgfeldebanedpihppahgngnle [2024-04-03]
Edge Extension: (Google Docs Offline) - C:\Users\Nutzer\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-02]
Edge Extension: (Edge relevant text changes) - C:\Users\Nutzer\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]
Edge HKLM-x32\...\Edge\Extension: [caiblelclndcckfafdaggpephhgfpoip]
Edge HKLM-x32\...\Edge\Extension: [emgfgdclgfeldebanedpihppahgngnle]
FireFox:
========
FF DefaultProfile: a0dfqlae.default
FF ProfilePath: C:\Users\Nutzer\AppData\Roaming\Mozilla\Firefox\Profiles\a0dfqlae.default [2024-04-03]
FF ProfilePath: C:\Users\Nutzer\AppData\Roaming\Mozilla\Firefox\Profiles\9s6ovj26.default-release [2024-04-03]
FF Notifications: Mozilla\Firefox\Profiles\9s6ovj26.default-release -> hxxps://de.duolingo.com; hxxps://co6hode071bc73d5f8bg.baseauthenticity.co.in; hxxps://jb5n464ppa6non.baseauthenticity.co.in; hxxps://6kgbwjvehjoxp6.baseauthenticity.co.in
FF Extension: (Manuals Library Search) - C:\Users\Nutzer\AppData\Roaming\Mozilla\Firefox\Profiles\9s6ovj26.default-release\Extensions\addonY143@manualslibrary.co.xpi [2024-03-02] [UpdateUrl:hxxps://cdn.manualsearch-cdn.org/xpi/manualsearch/mv3/1023/search/updates.json]
FF Extension: (Total Adblock - Ad Blocker) - C:\Users\Nutzer\AppData\Roaming\Mozilla\Firefox\Profiles\9s6ovj26.default-release\Extensions\{1133db0e-22c5-4a5d-b542-743fd794279b}.xpi [2023-10-12]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
Opera:
=======
OPR DefaultProfile: Default
Brave:
=======
BRA Profile: C:\Users\Nutzer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2024-04-03]
BRA Extension: (Avira Password Manager) - C:\Users\Nutzer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2024-04-03]
BRA Extension: (Avira Safe Shopping) - C:\Users\Nutzer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\ccbpbkebodcjkknkfkpmfeciinhidaeh [2024-04-03]
BRA Extension: (Avira Browserschutz) - C:\Users\Nutzer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2024-04-03]
BRA Profile: C:\Users\Nutzer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Profile 1 [2024-01-22]
BRA Profile: C:\Users\Nutzer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Profile 2 [2024-01-22]
BRA Extension: (Brave Ad Block Updater (Brave Ad Block First Party Filters (plaintext))) - C:\Users\Nutzer\AppData\Local\BraveSoftware\Brave-Browser\User Data\adcocjohghhfpidemphmcmlmhnfgikei [2024-04-03]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\Nutzer\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2024-04-03]
BRA Extension: (Brave NTP background images) - C:\Users\Nutzer\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2024-04-03]
BRA Extension: (Brave Ad Block Updater (Fanboy's Mobile Notifications (plaintext))) - C:\Users\Nutzer\AppData\Local\BraveSoftware\Brave-Browser\User Data\bfpgedeaaibpoidldhjcknekahbikncb [2024-04-03]
BRA Extension: (Wallet Data Files Updater) - C:\Users\Nutzer\AppData\Local\BraveSoftware\Brave-Browser\User Data\BraveWallet [2024-01-22]
BRA Extension: (Brave Ad Block Updater (EasyList Cookie (plaintext))) - C:\Users\Nutzer\AppData\Local\BraveSoftware\Brave-Browser\User Data\cdbbhgbmjhfnhnmgeddbliobbofkgdhe [2024-04-03]
BRA Extension: (Brave Ad Block Updater (Regional Catalog)) - C:\Users\Nutzer\AppData\Local\BraveSoftware\Brave-Browser\User Data\gkboaolpopklhgplhaaiboijnklogmbc [2024-04-03]
BRA Extension: (Brave NTP Super Referrer mapping table) - C:\Users\Nutzer\AppData\Local\BraveSoftware\Brave-Browser\User Data\heplpbhjcbmiibdlchlanmdenffpiibo [2024-01-22]
BRA Extension: (Brave Ad Block Updater (Brave Ad Block Updater (plaintext))) - C:\Users\Nutzer\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodkpdagapdfkphljnddpjlldadblomo [2024-04-03]
BRA Extension: (Brave Ads Resources) - C:\Users\Nutzer\AppData\Local\BraveSoftware\Brave-Browser\User Data\jcncoheihebhhiemmbmpfhkceomfipbj [2024-04-03]
BRA Extension: (Brave Ad Block Updater (EasyList Germany (plaintext))) - C:\Users\Nutzer\AppData\Local\BraveSoftware\Brave-Browser\User Data\lfmefmifdjlfneapckmpkinmlofjehbp [2024-04-03]
BRA Extension: (Brave Ad Block Updater (Resources)) - C:\Users\Nutzer\AppData\Local\BraveSoftware\Brave-Browser\User Data\mfddibmblmbccpadfndgakiopmmhebop [2024-04-03]
BRA Extension: (Brave NTP sponsored images) - C:\Users\Nutzer\AppData\Local\BraveSoftware\Brave-Browser\User Data\obbokncgfcbepeipkhpdepjjoncelefj [2024-04-03]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\Nutzer\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2024-01-22]
==================== Dienste (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S2 AviraFallbackUpdater; C:\Program Files (x86)\Avira\Fallback Updater\Avira.Spotlight.FallbackUpdater.exe [6737848 2024-04-03] (Avira Operations GmbH -> Avira Operations GmbH)
R2 AviraOptimizerHost; C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe [3003584 2024-01-22] (Avira Operations GmbH -> Avira Operations GmbH)
S2 AviraPhantomVPN; C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe [389096 2023-09-06] (Avira Operations GmbH -> Avira Operations GmbH & Co. KG)
R2 AviraSecurity; C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe [265544 2024-03-22] (Avira Operations GmbH -> Avira Operations GmbH)
S2 AviraSecurityUpdater; C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Common.Updater.exe [295752 2024-03-22] (Avira Operations GmbH -> Avira Operations GmbH)
S2 AVMPowerlineService; C:\Program Files\FRITZ!Powerline\PowerlineService.exe [562656 2023-04-28] (AVM Computersysteme Vertriebs GmbH -> AVM GmbH)
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [175424 2024-01-22] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 BraveElevationService; C:\Program Files\BraveSoftware\Brave-Browser\Application\123.1.64.113\elevation_service.exe [2671128 2024-03-27] (Brave Software, Inc. -> Brave Software, Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [175424 2024-01-22] (Brave Software, Inc. -> BraveSoftware Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9202360 2024-02-02] (Microsoft Corporation -> Microsoft Corporation)
S2 CxAudioSvc; C:\WINDOWS\CxSvc\CxAudioSvc.exe [94496 2022-03-29] (Synaptics Incorporated -> Conexant Systems LLC.)
S2 CxAudMsg; C:\WINDOWS\System32\CxAudMsg64.exe [244512 2022-03-29] (Synaptics Incorporated -> Conexant Systems Inc.)
S2 CxUIUSvc; C:\WINDOWS\System32\CxUIUSvc64.exe [123144 2022-03-29] (Synaptics Incorporated -> Conexant Systems, Inc.)
S2 DolbyDAXAPI; C:\WINDOWS\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_7385124aff7af62d\DAX3API.exe [1928136 2020-05-06] (Dolby Laboratories, Inc. -> Dolby Laboratories)
R2 EndpointProtectionService; C:\Program Files\Avira\Endpoint Protection SDK\endpointprotection.exe [11420464 2024-03-20] (Avira Operations GmbH -> Avira Operations GmbH)
S3 EndpointProtectionService2; C:\Program Files\Avira\Endpoint Protection SDK\endpointprotection.exe [11420464 2024-03-20] (Avira Operations GmbH -> Avira Operations GmbH)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\24.050.0310.0001\FileSyncHelper.exe [3511312 2024-03-30] (Microsoft Corporation -> Microsoft Corporation)
S2 IBMPMSVC; C:\WINDOWS\System32\DriverStore\FileRepository\ibmpmdrv.inf_amd64_7b52940a5893ba07\x64\ibmpmsvc.exe [1031024 2023-06-20] (Lenovo -> Lenovo)
S2 Lenovo Instant On; C:\Windows\SysWOW64\EasyResume.exe [2352344 2022-12-04] (Lenovo -> Lenovo Group Limited)
S2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantageService.exe [34176 2023-07-14] (Lenovo -> Lenovo)
S2 LITSSVC; C:\WINDOWS\System32\DriverStore\FileRepository\litsdrv.inf_amd64_4eda545e0ed970d1\LITSSvc.exe [1083864 2023-10-02] (Lenovo -> Lenovo.)
S2 LPlatSvc; C:\WINDOWS\System32\DriverStore\FileRepository\ibmpmdrv.inf_amd64_7b52940a5893ba07\x64\LPlatSvc.exe [915824 2023-06-20] (Lenovo -> Lenovo)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8882936 2024-04-03] (Malwarebytes Inc. -> Malwarebytes)
S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [3073888 2024-04-03] (Malwarebytes Inc. -> Malwarebytes)
R2 ModemAuthenticatorService; C:\WINDOWS\System32\ModemAuthenticator.exe [1034672 2022-08-25] (Fibocom Wireless Inc. -> Intel)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvlt.inf_amd64_893f5cfb268734fc\Display.NvContainer\NVDisplay.Container.exe [1275416 2024-02-13] (NVIDIA Corporation -> NVIDIA Corporation)
S2 NVWMI; C:\WINDOWS\System32\DriverStore\FileRepository\nvlt.inf_amd64_893f5cfb268734fc\NVWMI\nvWmi64.exe [4513416 2024-02-13] (NVIDIA Corporation -> NVIDIA Corporation)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\24.050.0310.0001\OneDriveUpdaterService.exe [3851296 2024-03-30] (Microsoft Corporation -> Microsoft Corporation)
S2 SAService; C:\Program Files\WindowsApps\22094SynapticsIncorporate.SmartAudio3_1.0.85.0_x64__qt57b6kdvhcfw\SACmd\SASrv.exe [416576 2023-07-11] (5699BA41-022E-4685-9AD3-95C4C30DE78D -> Conexant Systems, Inc.)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2737016 2023-02-14] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [4588408 2023-02-14] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [522200 2024-03-12] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 SynHsaService; C:\WINDOWS\System32\DriverStore\FileRepository\synawudfbiousbuwp.inf_amd64_0a328caa48d41753\SynRpcServer.exe [192128 2023-08-30] (WDKTestCert sarakelyan,130722862255941761 -> Synaptics Incorporated.)
S2 TbtP2pShortcutService; C:\WINDOWS\TbtP2pShortcutService.exe [256368 2022-12-15] (Intel Corporation -> Intel Corporation)
S2 TPHKLOAD; C:\WINDOWS\System32\DriverStore\FileRepository\fn.inf_amd64_9c4c29de89199c58\driver\TPHKLOAD.exe [473760 2021-10-22] (Lenovo -> Lenovo Group Limited)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24020.7-0\NisSrv.exe [3191272 2024-03-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24020.7-0\MsMpEng.exe [133688 2024-03-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 0store-service; "C:\Program Files\Zero Install\0store-service.exe" [X]
S2 DCIService; C:\Program Files (x86)\Lavasoft\Web Companion\Service\x64\DCIService.exe [X] <==== ACHTUNG
S2 ImControllerService; %SystemRoot%\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [X]
S3 SUService; "C:\Program Files (x86)\Lenovo\System Update\SUService.exe" [X]
===================== Treiber (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R3 AKCCID; C:\WINDOWS\System32\drivers\AKCCID.sys [57280 2019-07-03] (Alcorlink Corp. -> Generic)
R3 AX88179A; C:\WINDOWS\System32\DriverStore\FileRepository\axusbeth.inf_amd64_88fb34fbbab9fd2d\AxUsbEth.sys [153472 2023-12-20] (WDKTestCert AndyChen,132652806163117881 -> ASIX Electronics Corp.)
R2 BdDci; C:\WINDOWS\system32\DRIVERS\bddci.sys [800672 2024-04-03] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender)
R0 BdNet; C:\WINDOWS\System32\DRIVERS\BdNet.sys [176712 2024-03-15] (Microsoft Windows Hardware Compatibility Publisher -> Avira Operations GmbH)
R1 BdSentry; C:\WINDOWS\System32\DRIVERS\BdSentry.sys [233560 2024-03-19] (Avira Operations GmbH -> Avira Operations GmbH)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [544768 2023-10-20] (Microsoft Corporation) [Datei ist nicht signiert]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [188416 2023-10-20] (Microsoft Corporation) [Datei ist nicht signiert]
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [Datei ist nicht signiert]
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [158640 2024-04-03] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 IBMPMDRV; C:\WINDOWS\System32\DriverStore\FileRepository\ibmpmdrv.inf_amd64_7b52940a5893ba07\x64\ibmpmdrv.sys [56128 2023-06-20] (Lenovo -> Lenovo)
R3 LenovoBoost; C:\WINDOWS\system32\DRIVERS\vanboost.sys [47888 2023-04-04] (Lenovo -> Lenovo Group Ltd.)
S3 LenovoDiagnosticsDriver; C:\ProgramData\Lenovo\Vantage\Addins\LenovoHardwareScanAddin\3.1.1.2\LenovoDiagnosticsDriver.sys [53184 2023-08-22] (Lenovo -> Lenovo Group Limited (R))
R2 mbamchameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [223296 2024-04-03] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2024-04-03] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt11.sys [233704 2024-04-03] (Malwarebytes Inc. -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [78912 2024-04-03] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239576 2024-04-03] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [188784 2024-04-03] (Malwarebytes Inc. -> Malwarebytes)
R1 netprotection_network_filter; C:\WINDOWS\System32\drivers\netprotection_network_filter.sys [115496 2024-03-20] (Avira Operations GmbH -> Avira Operations GmbH)
R2 npf; C:\WINDOWS\System32\drivers\npf.sys [36600 2015-11-15] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
R1 PMDRVS; C:\WINDOWS\System32\DriverStore\FileRepository\ibmpmdrv.inf_amd64_7b52940a5893ba07\x64\pmdrvs.sys [41792 2023-06-20] (Lenovo -> Lenovo)
R1 rtp1; C:\WINDOWS\System32\DRIVERS\rtp1.sys [412040 2024-03-19] (Avira Operations GmbH -> Avira Operations GmbH)
R1 rtp2; C:\WINDOWS\System32\DRIVERS\rtp2.sys [412040 2024-03-19] (Avira Operations GmbH -> Avira Operations GmbH)
S0 rtp_elam; C:\WINDOWS\System32\DRIVERS\rtp_elam.sys [28784 2024-03-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Avira Operations GmbH)
S3 rtu53cx22x64; C:\WINDOWS\System32\DriverStore\FileRepository\rtu53cx22x64.inf_amd64_841b1dac10ff931f\rtu53cx22x64.sys [1083264 2023-08-02] (Realtek Semiconductor Corp. -> Realtek Corporation)
S3 rtux64w10; C:\WINDOWS\System32\DriverStore\FileRepository\rtux64w10.inf_amd64_03831aeaaa2c730e\rtux64w10.sys [683520 2022-05-07] (Microsoft Windows -> Realtek Corporation)
R2 speedfan; C:\Windows\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
R3 TPS65987; C:\WINDOWS\System32\drivers\TPS65987.sys [46904 2019-06-06] (FPT USA Corp. -> )
R3 UDE; C:\WINDOWS\System32\drivers\UDE.sys [344496 2022-08-25] (Fibocom Wireless Inc. -> Intel Corporation)
S3 usbaud; C:\WINDOWS\System32\drivers\usbaud64w10.sys [99672 2020-09-23] (Synaptics Incorporated -> Synaptics Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [20928 2024-03-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [603416 2024-03-13] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105752 2024-03-13] (Microsoft Windows -> Microsoft Corporation)
R3 WiMan; C:\WINDOWS\System32\DriverStore\FileRepository\wiman.inf_amd64_39b0d69e31702623\WiMan\WiMan.sys [169568 2022-07-11] (Intel Corporation -> Intel Corporation)
S1 WinSetupMon; C:\WINDOWS\System32\DRIVERS\WinSetupMon.sys [107920 2023-08-08] (Microsoft Windows -> Microsoft Corporation)
S3 netprotection_network_filter2; System32\drivers\netprotection_network_filter2.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat (erstellte) (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2024-04-03 15:16 - 2024-04-03 15:17 - 000037187 _____ C:\Users\Nutzer\Downloads\FRST.txt
2024-04-03 15:15 - 2024-04-03 15:17 - 000000000 ____D C:\FRST
2024-04-03 15:15 - 2024-04-03 15:15 - 002393088 _____ (Farbar) C:\Users\Nutzer\Downloads\FRST64.exe
2024-04-03 15:15 - 2024-04-03 15:15 - 001564968 _____ () C:\Users\Nutzer\Downloads\pdfPilot.exe
2024-04-03 14:19 - 2024-04-03 14:19 - 000233704 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt11.sys
2024-04-03 14:19 - 2024-04-03 14:19 - 000188784 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2024-04-03 14:17 - 2024-04-03 15:13 - 000000000 ____D C:\Users\Nutzer\AppData\Local\Malwarebytes
2024-04-03 14:17 - 2024-04-03 14:17 - 000002093 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2024-04-03 14:17 - 2024-04-03 14:17 - 000002081 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2024-04-03 14:16 - 2024-04-03 14:16 - 000000000 ____D C:\ProgramData\Malwarebytes
2024-04-03 14:16 - 2024-04-03 14:16 - 000000000 ____D C:\Program Files\Malwarebytes
2024-04-03 14:12 - 2024-04-03 14:13 - 000000000 ____D C:\AdwCleaner
2024-04-03 14:12 - 2024-04-03 14:12 - 008790880 _____ (Malwarebytes) C:\Users\Nutzer\Downloads\adwcleaner.exe
2024-04-03 14:12 - 2024-04-03 14:12 - 007025360 _____ (Malwarebytes) C:\Users\Nutzer\Downloads\adwcleaner_7.3.exe
2024-04-03 14:00 - 2024-04-03 14:00 - 000000000 ____D C:\Users\Nutzer\AppData\Roaming\Microsoft\HTML Help
2024-04-03 13:59 - 2024-04-03 14:00 - 000000310 _____ C:\WINDOWS\wininit.ini
2024-04-03 13:45 - 2024-04-03 13:45 - 000723674 _____ C:\WINDOWS\system32\perfh007.dat
2024-04-03 13:45 - 2024-04-03 13:45 - 000149714 _____ C:\WINDOWS\system32\perfc007.dat
2024-04-03 13:36 - 2024-04-03 13:36 - 000000000 ____D C:\WINDOWS\system32\Tasks\Safer-Networking
2024-04-03 13:13 - 2024-04-03 14:02 - 000000000 ____D C:\ProgramData\Spybot - Search & Destroy
2024-04-03 13:13 - 2024-04-03 13:39 - 000000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2024-04-03 13:13 - 2024-04-03 13:13 - 000004526 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1712142799
2024-04-03 13:13 - 2024-04-03 13:13 - 000004264 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1712142798
2024-04-03 13:13 - 2024-04-03 13:13 - 000001460 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2024-04-03 13:13 - 2024-04-03 13:13 - 000001448 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2024-04-03 13:13 - 2024-04-03 13:13 - 000001383 _____ C:\Users\Nutzer\Desktop\Opera-Browser.lnk
2024-04-03 13:13 - 2024-04-03 13:13 - 000001383 _____ C:\Users\Nutzer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Opera-Browser.lnk
2024-04-03 13:13 - 2024-04-03 13:13 - 000000000 ____D C:\Users\Nutzer\AppData\Local\Opera Software
2024-04-03 13:13 - 2024-04-03 13:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2024-04-03 13:13 - 2018-02-06 18:04 - 000032168 _____ (Safer-Networking Ltd.) C:\WINDOWS\system32\sdnclean64.exe
2024-04-03 13:12 - 2024-04-03 13:12 - 000000000 ____D C:\Users\Nutzer\AppData\Roaming\Opera Software
2024-04-03 12:58 - 2024-04-03 12:58 - 007195168 _____ (EnigmaSoft Limited) C:\Users\Nutzer\Downloads\SpyHunter-5.15-71-9911-Installer.exe
2024-04-03 12:58 - 2024-04-03 12:58 - 007195168 _____ (EnigmaSoft Limited) C:\Users\Nutzer\Downloads\SpyHunter-5.15-71-9911-Installer(2).exe
2024-04-03 12:58 - 2024-04-03 12:58 - 007195168 _____ (EnigmaSoft Limited) C:\Users\Nutzer\Downloads\SpyHunter-5.15-71-9911-Installer(1).exe
2024-04-03 12:52 - 2024-04-03 12:52 - 000000000 ____D C:\Users\Public\Security Sessions
2024-04-03 12:49 - 2024-04-03 12:49 - 000000000 ____D C:\WINDOWS\SysWOW64\statReporter
2024-04-03 12:49 - 2024-04-03 12:49 - 000000000 ____D C:\Users\Nutzer\AppData\Local\AviraWebView2Cache
2024-04-03 12:48 - 2024-04-03 13:36 - 004102768 _____ C:\WINDOWS\system32\rtp.db
2024-04-03 12:48 - 2024-04-03 12:48 - 000000000 ____D C:\Program Files\Avira
2024-04-03 12:48 - 2024-03-20 09:20 - 000115496 _____ (Avira Operations GmbH) C:\WINDOWS\system32\Drivers\netprotection_network_filter.sys
2024-04-03 12:48 - 2024-03-19 13:27 - 000233560 _____ (Avira Operations GmbH) C:\WINDOWS\system32\Drivers\BdSentry.sys
2024-04-03 12:48 - 2024-03-19 10:59 - 000412040 _____ (Avira Operations GmbH) C:\WINDOWS\system32\Drivers\rtp2.sys
2024-04-03 12:48 - 2024-03-19 10:59 - 000412040 _____ (Avira Operations GmbH) C:\WINDOWS\system32\Drivers\rtp1.sys
2024-04-03 12:47 - 2024-04-03 12:52 - 000000000 ____D C:\Users\Nutzer\AppData\Local\Avira
2024-04-03 12:47 - 2024-04-03 12:47 - 000003888 _____ C:\WINDOWS\system32\Tasks\Avira_Security_Maintenance
2024-04-03 12:47 - 2024-04-03 12:47 - 000003774 _____ C:\WINDOWS\system32\Tasks\AviraSystemSpeedupVerify
2024-04-03 12:47 - 2024-04-03 12:47 - 000003706 _____ C:\WINDOWS\system32\Tasks\Avira_FallbackUpdater
2024-04-03 12:47 - 2024-04-03 12:47 - 000003476 _____ C:\WINDOWS\system32\Tasks\Avira_Security_Update
2024-04-03 12:47 - 2024-04-03 12:47 - 000003428 _____ C:\WINDOWS\system32\Tasks\Avira_Security_Service_SCM_Watchdog
2024-04-03 12:47 - 2024-04-03 12:47 - 000002818 _____ C:\WINDOWS\system32\Tasks\Avira_Security_Systray
2024-04-03 12:47 - 2024-04-03 12:47 - 000001150 _____ C:\Users\Public\Desktop\Avira.lnk
2024-04-03 12:47 - 2024-04-03 12:47 - 000000000 ____D C:\Users\Public\Speedup Sessions
2024-04-03 12:47 - 2024-04-03 12:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2024-04-03 12:47 - 2024-04-03 12:47 - 000000000 ____D C:\Program Files (x86)\Avira
2024-04-03 12:46 - 2024-04-03 12:48 - 000000000 ____D C:\ProgramData\Avira
2024-04-03 12:46 - 2024-04-03 12:46 - 006737848 _____ (Avira Operations GmbH) C:\Users\Nutzer\Downloads\avira_de_sptl1_1628571002-1712141199-1712141199-1__adwb.exe
2024-04-03 12:41 - 2024-04-03 13:17 - 000000000 ____D C:\Users\Nutzer\AppData\Roaming\AVG
2024-04-03 12:41 - 2024-04-03 13:17 - 000000000 ____D C:\Users\Nutzer\AppData\Local\AVG
2024-04-03 12:41 - 2024-04-03 12:39 - 000314816 _____ (Gen Digital Inc.) C:\WINDOWS\system32\avgBoot.exe
2024-04-03 12:39 - 2024-04-03 13:17 - 000000000 ____D C:\ProgramData\AVG
2024-04-03 12:39 - 2024-04-03 12:39 - 000888600 _____ (Google LLC) C:\Users\Public\Documents\gcapi.dll
2024-04-03 12:39 - 2024-04-03 12:39 - 000234944 _____ (AVG Technologies CZ, s.r.o.) C:\Users\Nutzer\Downloads\avg_antivirus_free_setup.exe
2024-04-03 12:23 - 2024-04-03 13:37 - 000000000 ____D C:\Users\Nutzer\AppData\Local\Avast Software
2024-04-03 12:22 - 2024-04-03 12:22 - 000000000 ____D C:\WINDOWS\system32\o2
2024-04-03 12:21 - 2024-04-03 13:37 - 000000000 ____D C:\ProgramData\Avast Software
2024-04-03 12:21 - 2024-04-03 12:21 - 000264088 _____ (AVAST Software) C:\Users\Nutzer\Downloads\avast_free_antivirus_online-installation.exe
2024-04-03 12:21 - 2024-04-03 12:21 - 000264088 _____ (AVAST Software) C:\Users\Nutzer\Downloads\avast_free_antivirus_online-installation(1).exe
2024-04-03 12:19 - 2024-04-03 12:19 - 000743064 _____ (Lavasoft) C:\Users\Nutzer\Downloads\WebCompanionInstaller.exe
2024-04-03 12:19 - 2024-04-03 12:19 - 000003754 _____ C:\Users\Nutzer\Downloads\App.config
2024-04-03 12:09 - 2024-04-03 14:13 - 000000000 ____D C:\Users\Nutzer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lavasoft
2024-04-03 11:05 - 2024-04-03 12:48 - 000000000 ____D C:\Program Files\Mozilla Firefox
2024-04-02 09:56 - 2024-04-02 09:56 - 000048205 _____ C:\Users\Nutzer\Downloads\Tagesvorbereitung temp.svg
2024-04-02 09:55 - 2024-04-02 09:55 - 000126947 _____ C:\Users\Nutzer\Downloads\Trend.svg
2024-04-02 09:55 - 2024-04-02 09:55 - 000126947 _____ C:\Users\Nutzer\Downloads\Trend(1).svg
2024-04-02 09:55 - 2024-04-02 09:55 - 000039626 _____ C:\Users\Nutzer\Downloads\Struktur.svg
2024-04-02 09:55 - 2024-04-02 09:55 - 000026519 _____ C:\Users\Nutzer\Downloads\a Einstieg Ausstieg.svg
2024-04-01 17:27 - 2024-04-01 17:27 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2024-04-01 17:25 - 2024-02-13 17:11 - 001487904 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2024-04-01 17:25 - 2024-02-13 17:11 - 001227400 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2024-04-01 17:25 - 2024-02-13 17:11 - 000849088 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2024-04-01 17:25 - 2024-02-13 17:11 - 000849088 _____ C:\WINDOWS\system32\vulkaninfo.exe
2024-04-01 17:25 - 2024-02-13 17:11 - 000713920 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2024-04-01 17:25 - 2024-02-13 17:11 - 000713920 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2024-04-01 17:25 - 2024-02-13 17:11 - 000653504 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2024-04-01 17:25 - 2024-02-13 17:11 - 000653504 _____ C:\WINDOWS\system32\vulkan-1.dll
2024-04-01 17:25 - 2024-02-13 17:11 - 000637120 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2024-04-01 17:25 - 2024-02-13 17:11 - 000637120 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2024-04-01 17:24 - 2024-02-13 17:07 - 000669320 _____ C:\WINDOWS\system32\nvofapi64.dll
2024-04-01 17:24 - 2024-02-13 17:07 - 000504352 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2024-04-01 17:24 - 2024-02-13 17:06 - 000942712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2024-04-01 17:24 - 2024-02-13 17:05 - 002167824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2024-04-01 17:24 - 2024-02-13 17:05 - 001622152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2024-04-01 17:24 - 2024-02-13 17:05 - 001538184 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2024-04-01 17:24 - 2024-02-13 17:05 - 001195656 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2024-04-01 17:24 - 2024-02-13 17:05 - 000992800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2024-04-01 17:24 - 2024-02-13 17:05 - 000780424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2024-04-01 17:24 - 2024-02-13 17:05 - 000768544 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2024-04-01 17:24 - 2024-02-13 17:04 - 000293384 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2024-04-01 17:24 - 2024-02-13 17:03 - 014520336 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2024-04-01 17:24 - 2024-02-13 17:03 - 012066840 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2024-04-01 17:24 - 2024-02-13 17:03 - 006190728 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2024-04-01 17:24 - 2024-02-13 17:03 - 005911688 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll
2024-04-01 17:24 - 2024-02-13 17:03 - 005858424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2024-04-01 17:24 - 2024-02-13 17:03 - 003482632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2024-04-01 17:24 - 2024-02-13 17:02 - 000853112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2024-04-01 17:24 - 2024-01-03 03:37 - 000108558 _____ C:\WINDOWS\system32\nvinfo.pb
2024-04-01 13:57 - 2024-04-01 13:57 - 000000886 _____ C:\Users\Nutzer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SierraChart_64 (C_SierraChart).lnk
2024-03-22 14:12 - 2024-03-22 14:12 - 000045540 _____ C:\Users\Nutzer\Downloads\000 FDAX_03M24 (OliStyle).Cht
2024-03-12 20:08 - 2024-03-12 20:08 - 000020023 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-03-12 20:08 - 2024-03-12 20:08 - 000020023 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-03-06 20:31 - 2024-03-06 20:31 - 000137032 _____ (Zoom Video Communications, Inc.) C:\Users\Nutzer\Downloads\Zoom_cm_fo42pnktZ9vvrZo4_mhVwP7+ab4ko9Q33KQKejGJrpWWEZOxy4k+I@UHz+3K5WXkRvyZGB_k02fdb7f264de2802_.exe
==================== Ein Monat (geänderte) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2024-04-03 14:50 - 2023-10-12 22:47 - 000000000 ____D C:\Users\Nutzer\AppData\Roaming\Microsoft\Word
2024-04-03 14:45 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-04-03 14:40 - 2023-07-11 09:42 - 000000000 ____D C:\Users\Nutzer\AppData\Local\D3DSCache
2024-04-03 14:19 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-04-03 14:18 - 2023-07-11 09:47 - 000000000 ____D C:\ProgramData\NVIDIA
2024-04-03 14:17 - 2022-05-07 07:24 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-04-03 14:17 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF
2024-04-03 14:13 - 2023-11-02 22:29 - 000000000 ____D C:\WINDOWS\Lenovo
2024-04-03 14:13 - 2023-10-20 23:09 - 000000000 ____D C:\WINDOWS\system32\Tasks\Lenovo
2024-04-03 14:13 - 2023-10-20 21:45 - 000000000 ____D C:\WINDOWS\SysWOW64\Lenovo
2024-04-03 14:13 - 2023-10-20 21:45 - 000000000 ____D C:\WINDOWS\system32\Lenovo
2024-04-03 14:13 - 2023-10-13 22:58 - 000000000 ____D C:\Users\Nutzer\AppData\Local\Lavasoft
2024-04-03 14:13 - 2023-10-13 22:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
2024-04-03 14:13 - 2023-10-13 22:55 - 000000000 ____D C:\Users\Nutzer\AppData\Roaming\Lavasoft
2024-04-03 14:13 - 2023-10-13 22:55 - 000000000 ____D C:\ProgramData\Lavasoft
2024-04-03 14:13 - 2023-10-13 22:55 - 000000000 ____D C:\Program Files (x86)\Lavasoft
2024-04-03 14:13 - 2023-07-11 10:00 - 000000000 ____D C:\Program Files\Lenovo
2024-04-03 14:13 - 2023-07-11 09:57 - 000000000 ____D C:\Program Files (x86)\Lenovo
2024-04-03 14:13 - 2023-07-11 09:55 - 000000000 ____D C:\Users\Nutzer\AppData\Local\Lenovo
2024-04-03 14:13 - 2023-07-11 09:42 - 000000000 ____D C:\ProgramData\Lenovo
2024-04-03 13:45 - 2023-10-20 23:08 - 001662892 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-04-03 13:38 - 2023-10-20 23:03 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-04-03 13:38 - 2023-07-11 09:50 - 000000000 __SHD C:\Users\Nutzer\IntelGraphicsProfiles
2024-04-03 13:37 - 2023-10-20 23:09 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-04-03 13:37 - 2023-10-20 23:03 - 000471496 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-04-03 13:37 - 2023-07-11 09:50 - 000000000 ____D C:\Intel
2024-04-03 13:37 - 2023-07-11 09:41 - 000012288 ___SH C:\DumpStack.log.tmp
2024-04-03 13:37 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ServiceState
2024-04-03 13:37 - 2022-05-07 07:17 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2024-04-03 13:18 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2024-04-03 12:31 - 2023-10-13 22:49 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2024-04-03 12:31 - 2023-10-12 18:34 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-04-03 12:20 - 2023-10-13 22:55 - 000800672 _____ (Bitdefender) C:\WINDOWS\system32\Drivers\bddci.sys
2024-04-03 12:02 - 2024-01-09 22:01 - 000000000 ____D C:\SierraChart
2024-04-03 12:02 - 2023-10-12 18:34 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-04-03 11:17 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-04-02 09:36 - 2023-10-15 16:23 - 000000000 ____D C:\Trading mit Oli
2024-04-02 08:50 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps
2024-04-01 17:27 - 2023-07-11 09:42 - 000000000 ____D C:\WINDOWS\TempInst
2024-04-01 14:01 - 2024-01-09 22:02 - 000000726 _____ C:\Users\Nutzer\Desktop\SierraChart_64 (C_SierraChart).lnk
2024-04-01 13:58 - 2024-02-11 12:05 - 000000000 ____D C:\Users\Nutzer\AppData\Roaming\obs-studio
2024-03-30 15:17 - 2023-10-20 23:09 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-654826891-412923121-3519518231-1000
2024-03-30 15:17 - 2023-10-20 23:09 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2024-03-30 15:17 - 2023-10-12 22:47 - 000002148 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-03-29 12:21 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\SecurityHealth
2024-03-29 12:06 - 2024-01-22 21:04 - 000002356 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2024-03-29 12:06 - 2024-01-22 21:04 - 000002315 _____ C:\Users\Public\Desktop\Brave.lnk
2024-03-29 12:06 - 2023-07-11 09:43 - 000000000 ____D C:\Users\Nutzer\AppData\Local\Packages
2024-03-29 12:06 - 2023-07-11 09:41 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-03-26 20:40 - 2023-10-20 23:09 - 000003756 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-03-26 20:40 - 2023-10-20 23:09 - 000003632 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-03-16 23:14 - 2023-10-20 21:37 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2024-03-16 23:14 - 2022-05-07 12:39 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2024-03-16 23:14 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-03-16 23:14 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2024-03-16 23:14 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources
2024-03-16 23:14 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-03-16 23:14 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-03-16 23:14 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-03-16 23:14 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2024-03-16 23:14 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-03-16 23:14 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\servicing
2024-03-15 15:59 - 2023-10-12 22:42 - 000000000 ____D C:\Program Files\Microsoft Office
2024-03-13 18:54 - 2023-07-11 09:41 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2024-03-12 20:12 - 2023-10-12 18:50 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-03-12 20:11 - 2023-10-12 18:50 - 190470136 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-03-12 20:11 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-03-12 20:08 - 2023-10-20 23:05 - 003213824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========
2024-02-11 12:38 - 2024-02-11 12:38 - 000000016 _____ () C:\Users\Nutzer\AppData\Roaming\obs-virtualcam.txt
==================== SigCheck ============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
==================== Ende von FRST.txt ======================== --- --- ---
FRST Additions Logfile: Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 02.04.2024
durchgeführt von Nutzer (03-04-2024 15:17:58)
Gestartet von C:\Users\Nutzer\Downloads
Microsoft Windows 11 Pro Version 22H2 22621.3296 (X64) (2023-10-20 21:10:18)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
Administrator (S-1-5-21-654826891-412923121-3519518231-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-654826891-412923121-3519518231-503 - Limited - Disabled)
Gast (S-1-5-21-654826891-412923121-3519518231-501 - Limited - Disabled)
Nutzer (S-1-5-21-654826891-412923121-3519518231-1000 - Administrator - Enabled) => C:\Users\Nutzer
WDAGUtilityAccount (S-1-5-21-654826891-412923121-3519518231-504 - Limited - Disabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Avira Security (Enabled - Up to date) {D76CC0CC-5B8D-C222-E82F-D14369E4A430}
AV: Malwarebytes (Enabled - Up to date) {0D452135-A081-B000-D6B6-132E52638543}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
Avira Fallback Updater (HKLM-x32\...\Avira Fallback Updater) (Version: - ) Hidden
Avira Phantom VPN (HKLM-x32\...\Avira Phantom VPN) (Version: 2.43.1.16819 - Avira Operations GmbH & Co. KG) Hidden
Avira Security (HKLM-x32\...\Avira Security_is1) (Version: 1.1.100.521 - Avira Operations GmbH) Hidden
Avira Security (HKLM-x32\...\AviraSecurityUninstaller) (Version: - Avira Operations GmbH)
Avira System Speedup (HKLM-x32\...\Avira System Speedup_is1) (Version: 7.2.0.477 - Avira Operations GmbH) Hidden
Brave (HKLM-x32\...\BraveSoftware Brave-Browser) (Version: 123.1.64.113 - Die Brave-Autoren)
CPUID CPU-Z 2.08 (HKLM\...\CPUID CPU-Z_is1) (Version: 2.08 - CPUID, Inc.)
Endpoint Protection SDK (HKLM\...\{68E1CCB4-4965-4713-BDEB-77F6D6C9BF9D}_is1) (Version: 1.0.2403.2381 - Avira Operations GmbH) Hidden
FRITZ!Powerline (HKLM\...\{9C359BF2-AA70-4707-ACE3-44A07FD5E09E}) (Version: 1.5.4.0 - AVM GmbH) Hidden
FRITZ!Powerline (HKLM-x32\...\{0c7cce97-f015-4c84-8ee2-c9f21664faab}) (Version: 1.5.4.0 - AVM GmbH)
Lenovo Vantage Service (HKLM-x32\...\VantageSRV_is1) (Version: 3.13.72.0 - Lenovo Group Ltd.)
Malwarebytes version 5.1.1.106 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 5.1.1.106 - Malwarebytes)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 123.0.2420.65 - Microsoft Corporation)
Microsoft Edge WebView2-Laufzeit (HKLM-x32\...\Microsoft EdgeWebView) (Version: 123.0.2420.65 - Microsoft Corporation)
Microsoft Office LTSC Professional Plus 2021 - de-de (HKLM\...\ProPlus2021Volume - de-de) (Version: 16.0.14332.20651 - Microsoft Corporation)
Microsoft Office LTSC Professional Plus 2021 - en-us (HKLM\...\ProPlus2021Volume - en-us) (Version: 16.0.14332.20651 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 24.050.0310.0001 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{C6FD611E-7EFE-488C-A0E0-974C09EF6473}) (Version: 5.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.29.30139 (HKLM-x32\...\{2c673fb6-3e65-4751-965d-33d30b68a8a6}) (Version: 14.29.30139.0 - Microsoft Corporation)
Microsoft Visual C++ 2019 X64 Additional Runtime - 14.29.30139 (HKLM\...\{7F4A9F52-173F-4B0D-B1EA-269C32EDA827}) (Version: 14.29.30139 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.29.30139 (HKLM\...\{A6D3F752-BF11-4D7C-B19C-F6F96A35CF50}) (Version: 14.29.30139 - Microsoft Corporation) Hidden
Mozilla Firefox (x64 de) (HKLM\...\Mozilla Firefox 124.0.2 (x64 de)) (Version: 124.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 118.0.2 - Mozilla)
NinjaTrader (HKLM\...\{2713A76E-E7D1-4E39-84CF-43497D900DC1}) (Version: 8.1.1.7 - NinjaTrader, LLC)
NinjaTrader (HKLM\...\{F6CED911-E0EF-4A93-8B6B-0A9719A3F8FF}) (Version: 8.1.2.1 - NinjaTrader, LLC)
NVIDIA Grafiktreiber 529.08 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 529.08 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 30.0.2 - OBS Project)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.14332.20651 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.14332.20651 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0407-1000-0000000FF1CE}) (Version: 16.0.14332.20624 - Microsoft Corporation) Hidden
Opera Stable 109.0.5097.38 (HKU\S-1-5-21-654826891-412923121-3519518231-1000\...\Opera 109.0.5097.38) (Version: 109.0.5097.38 - Opera Software)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.9.85.5 - Safer-Networking Ltd.)
Web Companion (HKU\S-1-5-21-654826891-412923121-3519518231-1000\...\{f9b75974-36e6-45e6-a9ae-be265b0b378a}) (Version: 12.901.4.1003 - Lavasoft) <==== ACHTUNG
WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - CACE Technologies)
Packages:
=========
AppUp.IntelGraphicsExperience -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5390.0_x64__8j3eq9eme6ctt [2024-03-16] (INTEL CORP) [Startup Task]
Dev Home -> C:\Program Files\WindowsApps\Microsoft.Windows.DevHome_0.0.0.0_x64__8wekyb3d8bbwe [2023-11-02] (Microsoft Corporation)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.21.269.0_x64__rz1tebttyb220 [2024-03-21] (Dolby Laboratories)
DuckDuckGo -> C:\Program Files\WindowsApps\DuckDuckGo.DesktopBrowser_0.56.1.0_x64__ya2fgkz3nks94 [2023-11-07] (DuckDuckGo)
ELAN Touchpad for Thinkpad -> C:\Program Files\WindowsApps\ELANMicroelectronicsCorpo.ELANTouchpadforThinkpad_24.121.15.0_x64__stws0m115j6hg [2024-03-20] (ELAN Microelectronics Corporation)
ELAN TrackPoint for Thinkpad -> C:\Program Files\WindowsApps\ELANMicroelectronicsCorpo.ELANTrackPointforThinkpa_24.121.18.0_x64__stws0m115j6hg [2024-03-20] (ELAN Microelectronics Corporation)
Messenger -> C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_2080.9.229.0_x64__8xx8rvfyw5nnt [2024-03-26] (Meta) [Startup Task]
Microsoft.Windows.Ai.Copilot.Provider -> C:\Program Files\WindowsApps\Microsoft.Windows.Ai.Copilot.Provider_1.0.3.0_neutral__8wekyb3d8bbwe [2024-03-29] (Microsoft Corporation)
Microsoft.WindowsAppRuntime.CBS -> C:\Windows\SystemApps\Microsoft.WindowsAppRuntime.CBS_8wekyb3d8bbwe [2024-03-16] (Microsoft Corporation)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.965.0_x64__56jybvy8sckqj [2024-03-26] (NVIDIA Corp.)
PrebootManager -> C:\Program Files\WindowsApps\SynapticsIncorporated.SynapticsUtilities_1.1.18.0_x64__807d65c4rvak2 [2024-03-26] (Synaptics Incorporated)
SmartAudio 3 -> C:\Program Files\WindowsApps\22094SynapticsIncorporate.SmartAudio3_1.0.85.0_x64__qt57b6kdvhcfw [2023-11-02] (Synaptics Hong Kong Limited, Taiwan Branch (H.K.))
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.233.1042.0_x64__zpdnekdrzrea0 [2024-03-25] (Spotify AB) [Startup Task]
Thunderbolt™ Kontrollcenter -> C:\Program Files\WindowsApps\AppUp.ThunderboltControlCenter_1.0.37.0_x64__8j3eq9eme6ctt [2023-11-02] (INTEL CORP)
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2412.4.0_x64__cv1g1gvanyjgm [2024-03-29] (WhatsApp Inc.) [Startup Task]
Windows Feature Experience Pack -> C:\WINDOWS\SystemApps\MicrosoftWindows.Client.FileExp_cw5n1h2txyewy [2024-03-16] (Microsoft Corporation)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-654826891-412923121-3519518231-1000_Classes\CLSID\{04271989-C4D2-1E65-552A-495C28422D30} -> [OneDrive] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}
CustomCLSID: HKU\S-1-5-21-654826891-412923121-3519518231-1000_Classes\CLSID\{b72e6f5e-f6e0-a9eb-461b-6118363bd15c}\localserver32 -> C:\Users\Nutzer\AppData\Local\0install.net\implementations\sha256new_7ATQFYMYISD5LU42STURHNI33TRSMJBHVQPLEAO3EX4R5WPI6GTQ\DeepL.exe (DeepL SE -> DeepL SE)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\24.050.0310.0001\FileSyncShell64.dll [2024-03-30] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\24.050.0310.0001\FileSyncShell64.dll [2024-03-30] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\24.050.0310.0001\FileSyncShell64.dll [2024-03-30] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\24.050.0310.0001\FileSyncShell64.dll [2024-03-30] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\24.050.0310.0001\FileSyncShell64.dll [2024-03-30] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\24.050.0310.0001\FileSyncShell64.dll [2024-03-30] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\24.050.0310.0001\FileSyncShell64.dll [2024-03-30] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\24.050.0310.0001\FileSyncShell64.dll [2024-03-30] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\24.050.0310.0001\FileSyncShell64.dll [2024-03-30] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\24.050.0310.0001\FileSyncShell64.dll [2024-03-30] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\24.050.0310.0001\FileSyncShell64.dll [2024-03-30] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\24.050.0310.0001\FileSyncShell64.dll [2024-03-30] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\24.050.0310.0001\FileSyncShell64.dll [2024-03-30] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\24.050.0310.0001\FileSyncShell64.dll [2024-03-30] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.050.0310.0001\FileSyncShell64.dll [2024-03-30] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2021-12-21] (Safer-Networking Limited -> Safer-Networking Ltd.)
ContextMenuHandlers1: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2021-12-21] (Safer-Networking Limited -> Safer-Networking Ltd.)
ContextMenuHandlers1: [SystemSpeedupFilesMenu] -> {14cb2bd0-2375-3d10-9b5d-5e18865c8959} => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.UI.ShellExtension.DLL [2024-02-28] (Avira Operations GmbH -> Avira Operations GmbH)
ContextMenuHandlers2: [ContextMenu] -> {ee10d625-cc60-30a4-b3df-4b349785be6b} => C:\Program Files (x86)\Avira\Security\Antivirus.ContextMenu\Antivirus.ContextMenu.DLL [2024-03-22] (Avira Operations GmbH -> Avira Operations GmbH)
ContextMenuHandlers2: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2021-12-21] (Safer-Networking Limited -> Safer-Networking Ltd.)
ContextMenuHandlers2: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2021-12-21] (Safer-Networking Limited -> Safer-Networking Ltd.)
ContextMenuHandlers3: [ContextMenu] -> {ee10d625-cc60-30a4-b3df-4b349785be6b} => C:\Program Files (x86)\Avira\Security\Antivirus.ContextMenu\Antivirus.ContextMenu.DLL [2024-03-22] (Avira Operations GmbH -> Avira Operations GmbH)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2024-04-03] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers3: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2021-12-21] (Safer-Networking Limited -> Safer-Networking Ltd.)
ContextMenuHandlers3: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2021-12-21] (Safer-Networking Limited -> Safer-Networking Ltd.)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.050.0310.0001\FileSyncShell64.dll [2024-03-30] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [SystemSpeedupFoldersMenu] -> {700866bb-c8e9-3e71-b359-abb28baed0e8} => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.UI.ShellExtension.DLL [2024-02-28] (Avira Operations GmbH -> Avira Operations GmbH)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.050.0310.0001\FileSyncShell64.dll [2024-03-30] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvlt.inf_amd64_893f5cfb268734fc\nvshext.dll [2024-02-13] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers5: [SystemSpeedupDesktopMenu] -> {0cab5786-30e8-3185-9b3b-ccefbf1b8afe} => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.UI.ShellExtension.DLL [2024-02-28] (Avira Operations GmbH -> Avira Operations GmbH)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2024-04-03] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers6: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2021-12-21] (Safer-Networking Limited -> Safer-Networking Ltd.)
ContextMenuHandlers6: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2021-12-21] (Safer-Networking Limited -> Safer-Networking Ltd.)
==================== Codecs (Nicht auf der Ausnahmeliste) ====================
==================== Verknüpfungen & WMI ========================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
ShortcutWithArgument: C:\Users\Nutzer\Desktop\Profile 1 - Brave.lnk -> C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc.) -> --profile-directory="Default"
==================== Geladene Module (Nicht auf der Ausnahmeliste) =============
2024-04-03 13:13 - 2022-12-28 21:28 - 001111883 _____ (SQLite Development Team) [Datei ist nicht signiert] C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
2024-04-03 13:13 - 2019-12-21 11:55 - 001380864 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Datei ist nicht signiert] C:\Program Files (x86)\Spybot - Search & Destroy 2\libeay32.dll
2024-04-03 13:13 - 2019-12-21 11:55 - 000337920 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Datei ist nicht signiert] C:\Program Files (x86)\Spybot - Search & Destroy 2\ssleay32.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\Users\Nutzer\Downloads\FRST64.exe:MBAM.Zone.Identifier [193]
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================
==================== Internet Explorer (Nicht auf der Ausnahmeliste) ==========
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-654826891-412923121-3519518231-1000\...\localhost -> localhost
==================== Hosts Inhalt: =========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2021-06-05 14:08 - 2021-06-05 14:08 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Andere Bereiche ===========================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-654826891-412923121-3519518231-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Nutzer\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\LocalCache\Microsoft\IrisService\2606828283777141292\133564388970736647.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
HKLM\...\StartupApproved\StartupFolder: => "DeepL auto-start.lnk"
HKU\S-1-5-21-654826891-412923121-3519518231-1000\...\StartupApproved\StartupFolder: => "DeepL auto-start.lnk"
HKU\S-1-5-21-654826891-412923121-3519518231-1000\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_FCAAFF64BE6F064D278FEB61892EBB2C"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{D23A8EED-611D-4A49-9189-44B7B55940B7}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C8C2EF1C-647D-47FC-94D1-5E88FCCA5108}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{CC2673C1-739E-46D6-B953-B13EE66814F5}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1EE7852E-0F31-47E9-8BFE-D5CBB687EC8E}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{19349CC5-2FAD-40F9-8328-F56DBD399D96}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5973E9EA-C031-4834-82C6-3A50280DE257}] => (Block) C:\program files\ninjatrader 8\bin\ninjatrader.exe (NinjaTrader) [Datei ist nicht signiert]
FirewallRules: [{26341162-DB7C-409B-87AE-895BD050571D}] => (Block) C:\program files\ninjatrader 8\bin\ninjatrader.exe (NinjaTrader) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{1A14191D-FD9B-464E-8BA9-F3C8D6718131}C:\program files\ninjatrader 8\bin\ninjatrader.exe] => (Allow) C:\program files\ninjatrader 8\bin\ninjatrader.exe (NinjaTrader) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{B000FAB0-E9D7-448F-8C90-60FFB29844E2}C:\program files\ninjatrader 8\bin\ninjatrader.exe] => (Allow) C:\program files\ninjatrader 8\bin\ninjatrader.exe (NinjaTrader) [Datei ist nicht signiert]
FirewallRules: [{7BD8B403-B70C-4CBF-BD04-B4F0369A61BE}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{2FA81DC5-4ED1-47FC-821A-2DE1B81E934E}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{6FE137FB-211F-438C-AA3F-FD6EABC8B16E}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe => Keine Datei
FirewallRules: [{E993D23B-050E-4786-848F-0C1F4331E670}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe => Keine Datei
FirewallRules: [{ADC59EBB-86EE-4671-8661-D214DDB37E14}] => (Allow) C:\Program Files\WindowsApps\DuckDuckGo.DesktopBrowser_0.56.1.0_x64__ya2fgkz3nks94\WindowsBrowser\WebView2\msedgewebview2.exe (Duck Duck Go, Inc. -> Microsoft Corporation)
FirewallRules: [{33B3AB38-7022-483E-87DF-7895B61AA0AA}] => (Allow) C:\Program Files\WindowsApps\DuckDuckGo.DesktopBrowser_0.56.1.0_x64__ya2fgkz3nks94\WindowsBrowser\WebView2\msedgewebview2.exe (Duck Duck Go, Inc. -> Microsoft Corporation)
FirewallRules: [TCP Query User{CE759EC3-D0A8-4AC4-8D27-2BFA00920ABA}C:\sierrachart\sierrachart_64.exe] => (Allow) C:\sierrachart\sierrachart_64.exe (Sierra Chart (Teton IT Management Services) -> )
FirewallRules: [UDP Query User{E2E240C6-485F-4BA6-AD7D-FDD2F3A112B4}C:\sierrachart\sierrachart_64.exe] => (Allow) C:\sierrachart\sierrachart_64.exe (Sierra Chart (Teton IT Management Services) -> )
FirewallRules: [TCP Query User{C76215BC-BA9A-4B38-BC40-D5B12FE5210C}C:\sierrachart\sierrachartinstance_2\sierrachart_64.exe] => (Allow) C:\sierrachart\sierrachartinstance_2\sierrachart_64.exe (Sierra Chart (Teton IT Management Services) -> )
FirewallRules: [UDP Query User{36DABB07-6926-48A9-AA03-25BD83C368BE}C:\sierrachart\sierrachartinstance_2\sierrachart_64.exe] => (Allow) C:\sierrachart\sierrachartinstance_2\sierrachart_64.exe (Sierra Chart (Teton IT Management Services) -> )
FirewallRules: [{075D363C-36B8-46C0-BEFA-7983FC3A1B15}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24047.202.2704.38_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{472FC97C-7894-4250-9FF0-DA70BE5E5D11}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24047.202.2704.38_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{EDD55BB5-C440-456C-9565-5BBB04981FC5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.233.1042.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{3589357C-7771-43D1-9049-CFB7A31C5A53}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.233.1042.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{06265CCC-940A-42A0-855B-5E5C5433404B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.233.1042.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{21019402-1A92-4D91-8AEC-66040BDF0D17}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.233.1042.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{C2FC511E-0E07-4C2F-8056-98C4D6BBFE7A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.233.1042.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{689F7826-A57D-4868-934A-4B00E60423DC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.233.1042.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{B2466890-2107-4768-B661-21BCBFE10926}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.233.1042.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{E3BC95E7-C6AD-4B1A-A2FA-A1733A2059EE}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.233.1042.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{F2031147-F285-4BEF-B817-14783B5C1A45}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.233.1042.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{BE48BD43-645D-45D8-87D8-9D0C28C65405}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.233.1042.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{35A75861-EB8B-4EE2-8E62-2D0A37CA36D7}] => (Allow) C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.)
FirewallRules: [{84A243D5-EEF5-44B5-8F20-B4F640F587F7}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\123.0.2420.65\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C46225DE-693D-491E-A6A2-26AA02E2D5E5}] => (Allow) C:\Users\Nutzer\AppData\Local\Programs\Opera\opera.exe (Opera Norway AS -> Opera Software)
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
==================== Wiederherstellungspunkte =========================
15-03-2024 16:06:30 Windows Update
20-03-2024 20:53:46 Windows Update
24-03-2024 13:49:11 Windows Update
24-03-2024 13:49:18 Windows Update
29-03-2024 12:06:31 Windows Update
01-04-2024 14:07:12 Windows Update
03-04-2024 14:13:20 AdwCleaner_BeforeCleaning_03/04/2024_14:13:19
==================== Fehlerhafte Geräte im Gerätemanager ============
==================== Fehlereinträge in der Ereignisanzeige: ========================
Applikationsfehler:
==================
Error: (04/03/2024 01:36:53 PM) (Source: Application Error) (EventID: 1000) (User: NT-AUTORITÄT)
Description: Name der fehlerhaften Anwendung: SDFSSvc.exe, Version: 2.9.85.231, Zeitstempel: 0x63ebb1a4
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 10.0.22621.3296, Zeitstempel: 0x71c4f65c
Ausnahmecode: 0x0eedfade
Fehleroffset: 0x00149542
ID des fehlerhaften Prozesses: 0x0x23b4
Startzeit der fehlerhaften Anwendung: 0x0x1da85bb234c8304
Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
Pfad des fehlerhaften Moduls: C:\WINDOWS\System32\KERNELBASE.dll
Berichtskennung: a382e7ea-fad0-4788-a4fb-b527f6432871
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (04/03/2024 01:36:52 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Aufrufen von Routine "CoCreateInstance" ist ein unerwarteter Fehler aufgetreten. hr = 0x8007045b, Der Computer wird heruntergefahren..
Error: (04/03/2024 01:36:52 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volumenschattenkopie-Dienst-Informationen: Der COM-Server mit CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} und dem Namen "CEventSystem" kann nicht gestartet werden. [0x8007045b, Der Computer wird heruntergefahren.]
Error: (04/03/2024 01:17:50 PM) (Source: AbtPaaS) (EventID: 0) (User: )
Description: Event-ID 0
Error: (04/03/2024 01:17:50 PM) (Source: AbtPaaS) (EventID: 0) (User: )
Description: Event-ID 0
Error: (04/03/2024 01:17:50 PM) (Source: AbtPaaS) (EventID: 0) (User: )
Description: Event-ID 0
Error: (04/03/2024 01:17:50 PM) (Source: AbtPaaS) (EventID: 0) (User: )
Description: Event-ID 0
Error: (04/03/2024 12:20:48 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: NUTZER-PC)
Description: Windows kann die erweiterbare Leistungsindikator-DLL "C:\WINDOWS\system32\sysmain.dll" nicht laden (Win32-Fehlercode 126).
Systemfehler:
=============
Error: (04/03/2024 02:18:25 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "RPC-Locator" wurde unerwartet beendet. Dies ist bereits 2 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 300000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (04/03/2024 02:18:25 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "WMI-Leistungsadapter" wurde unerwartet beendet. Dies ist bereits 2 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 300000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (04/03/2024 02:18:25 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel® SGX AESM" wurde unerwartet beendet. Dies ist bereits 3 Mal passiert.
Error: (04/03/2024 02:18:25 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Spybot-S&D 2 Updating Service" wurde unerwartet beendet. Dies ist bereits 3 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (04/03/2024 02:18:25 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Windows-Sicherheitsdienst" wurde unerwartet beendet. Dies ist bereits 3 Mal passiert.
Error: (04/03/2024 02:18:25 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Avira Phantom VPN" wurde unerwartet beendet. Dies ist bereits 3 Mal passiert.
Error: (04/03/2024 02:18:25 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel(R) Dynamic Application Loader Host Interface Service" wurde unerwartet beendet. Dies ist bereits 3 Mal passiert.
Error: (04/03/2024 02:18:25 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Avira Optimizer Host" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 0 Millisekunden durchgeführt: Neustart des Diensts.
Windows Defender:
================
Date: 2024-04-02 19:20:03
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {DFCACFA6-D8EE-4E72-8578-60615261C1D6}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Date: 2024-04-01 22:09:30
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {9DAB743B-9F7A-46CC-BBC2-5167C2DA2D1A}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Date: 2024-04-01 12:04:29
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {578F7638-D014-426A-96BF-921A1965BD79}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Date: 2024-03-30 18:14:00
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {9D3C7A30-EFA7-4162-9425-8BF8E135BCDE}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Date: 2024-03-29 18:33:07
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {16EB7EA4-81B1-425C-9813-DC61DFAE6069}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Event[0]
Date: 2023-11-02 21:08:27
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Security Intelligence aufgetreten. Es wird versucht, zu einer vorherigen Version zurückzukehren.
Security Intelligence versucht: Aktuell
Fehlercode: 0x80070003
Fehlerbeschreibung: Das System kann den angegebenen Pfad nicht finden.
Security Intelligence-Version: 0.0.0.0;0.0.0.0
Modulversion: 0.0.0.0
CodeIntegrity:
===============
Date: 2024-04-03 14:53:36
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Avira\Endpoint Protection SDK\amsi\x64\avamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Speicherinformationen ===========================
BIOS: LENOVO N2NET58W (1.43 ) 11/21/2023
Hauptplatine: LENOVO 20QQS44J00
Prozessor: Intel(R) Core(TM) i7-9750H CPU @ 2.60GHz
Prozentuale Nutzung des RAM: 21%
Installierter physikalischer RAM: 65269.23 MB
Verfügbarer physikalischer RAM: 51313.17 MB
Summe virtueller Speicher: 69365.23 MB
Verfügbarer virtueller Speicher: 51504.67 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:952.76 GB) (Free:855.87 GB) (Model: SAMSUNG MZVLB1T0HBLR-000L7) NTFS
\\?\Volume{b898cf2e-9cd0-4405-a08e-0ec656c3af12}\ () (Fixed) (Total:1 GB) (Free:0.07 GB) NTFS
\\?\Volume{56409350-6265-4e0c-8dff-6ca526c701bb}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partitionstabelle ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 953.9 GB) (Disk ID: 00000000)
Partition: GPT.
==================== Ende von Addition.txt ======================= --- --- --- |