| Flutschy | 29.04.2024 10:44 |
FRST Logfile: Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 19.04.2024 01
durchgeführt von Andre (Administrator) auf STUDIO-B (LENOVO 90H7004RGE) (29-04-2024 09:26:15)
Gestartet von C:\Users\Andre\Downloads\FRST64.exe
Geladene Profile: Andre
Plattform: Microsoft Windows 11 Home Version 22H2 22621.3527 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: FF
Start-Modus: Normal
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe ->) (OpenJS Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(C:\Program Files\Common Files\Native Instruments\NTK\NTKDaemon.exe ->) (Native Instruments GmbH -> ) C:\Program Files\Common Files\Native Instruments\NTK\crashpad_handler.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_424.1301.450.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\123.0.2420.97\msedgewebview2.exe <6>
(DriverStore\FileRepository\cui_dch.inf_amd64_2bee269ff6068a49\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_2bee269ff6068a49\igfxEM.exe
(explorer.exe ->) (Digital Wave Ltd -> Digital Wave Ltd) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\vidnotifier\vidnotifier.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <14>
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_2bee269ff6068a49\igfxCUIService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_b56b111c605faf54\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_0f12908b4ff13ff7\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_0f12908b4ff13ff7\IntelCpHeciSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(services.exe ->) (Logitech Inc -> Logitech) C:\Program Files\Logitech\LogiCapture\bin\Service\LogiFacecamService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\NisSrv.exe
(services.exe ->) (Native Instruments GmbH -> Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\NTK\NTKDaemon.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvlei.inf_amd64_da6e550a863d4413\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21888.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21888.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_424.1301.450.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\HelpPane.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [IAStorIcon] => c:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [321096 2017-04-27] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [367456 2023-11-28] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [748624 2023-10-04] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2024-04-10] (Adobe Inc. -> )
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\86.0.9.0\GoogleDriveFS.exe --startup_mode (Keine Datei)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\86.0.9.0\GoogleDriveFS.exe --startup_mode (Keine Datei)
HKU\S-1-5-21-1948356582-2310243557-1235988865-1001\...\Run: [MicrosoftEdgeAutoLaunch_0A9DA7EA2F0097BA878B1731B123F49D] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4082112 2024-04-26] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1948356582-2310243557-1235988865-1001\...\Run: [RaiderIO] => "C:\Program Files\RaiderIO\RaiderIO.exe" (Keine Datei)
HKU\S-1-5-21-1948356582-2310243557-1235988865-1001\...\Run: [vidnotifier.exe] => C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\vidnotifier\vidnotifier.exe [2609512 2024-04-24] (Digital Wave Ltd -> Digital Wave Ltd)
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\86.0.9.0\GoogleDriveFS.exe --startup_mode (Keine Datei)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\124.0.6367.92\Installer\chrmstp.exe [2024-04-28] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Beschränkung <==== ACHTUNG
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {232DEA4F-74BE-4106-8E96-58662FFD23C0} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [617096 2022-02-25] (Apple Inc. -> Apple Inc.)
Task: {0C48DFB4-EE2D-4CD0-BC88-5DE7C61C71B3} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\Andre\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [15145336 2024-04-28] (ESET, spol. s r.o. -> ESET)
Task: {A8FDB231-716E-4F48-8227-3F379A01893D} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\Andre\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [15145336 2024-04-28] (ESET, spol. s r.o. -> ESET)
Task: {90A0905F-3084-40A7-A660-20375DD5EB13} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem126.0.6425.0{5875CAD2-6A30-4410-AA3C-572010BBD7F4} => C:\Program Files (x86)\Google\GoogleUpdater\126.0.6425.0\updater.exe [4786464 2024-04-18] (Google LLC -> Google LLC)
Task: {94DC4094-CBDF-4ED9-B040-6ECE8EB32EFD} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-1948356582-2310243557-1235988865-1001 => "C:\Users\Andre\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe" (Keine Datei)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (Keine Datei)
Task: {12818F7D-34A5-4A0E-B1FC-9A0191709908} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe /RunOnAC RebootDialog (Keine Datei)
Task: {CD2B31B8-6A6B-427E-BF85-4B40E995C9D5} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe /RunOnBattery RebootDialog (Keine Datei)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Keine Datei)
Task: {891B8CCD-DEF0-428E-9EB9-A83B9116722E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E6FD8347-E389-4CCF-925A-58BA3124A41A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B6C709DC-E580-401D-BEDA-1EB07722EBC3} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E07E7456-D8CE-402A-8449-64965C6CC6F9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C15D4250-DA9A-40C3-AC36-4FFC7009C592} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [673696 2024-04-23] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (Der Dateneintrag hat 6 weitere Zeichen).
Task: {93C93BAF-A599-4F15-B84E-B22EE4DEEA05} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-1948356582-2310243557-1235988865-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [673696 2024-04-23] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (Der Dateneintrag hat 6 weitere Zeichen).
Task: {4FA9A807-FD6E-459C-BC70-49DBB19CFEB0} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34208 2024-04-23] (Mozilla Corporation -> Mozilla Foundation)
Task: {7C631E39-4FB9-44C6-8CFC-AA5E297093FF} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1277480 2024-04-10] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {C6E6A320-582E-4A3D-96A5-F0579FB9A013} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3347496 2024-04-10] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0458A173-D513-4C5E-8103-96E1EEB205A7} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646696 2024-04-10] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler
Task: {7C866913-36A6-45C0-9856-6E3F374BADA0} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2024-04-10] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D3E84D5C-E384-43BD-B2B0-45F675109289} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2024-04-10] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C6CFEE1B-7E38-4655-AB66-7AD80EC4C2C5} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-04-10] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E82A899C-B723-4C15-9199-72557E259325} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-04-10] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {BD13F15E-888C-443F-984B-5B316CC1D21B} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-04-10] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1720D306-2B7A-4A24-B7E2-386CE7430FDD} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-04-10] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F3482FA1-D5F4-4543-AA53-0AF52A2AF4F7} - System32\Tasks\TVT\TVSUUpdateTask => "C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe" /CM -search R -action INSTALL -includerebootpackages 1,3,4,5 -noicon -noreboot -nolicense -defaultupdate -schtask (Keine Datei)
Task: {32C75AA1-C07B-4379-A66B-02B899CDCA7F} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => "C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe" PendingTask (Keine Datei)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Hosts: 0.0.0.0 live.virtualdj.com
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{0bb6586c-98b1-4b8a-8403-41db03560fcd}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{0bb6586c-98b1-4b8a-8403-41db03560fcd}: [DhcpDomain] fritz.box
Tcpip\..\Interfaces\{752b0d50-2db3-4cd7-8f3b-2eaa6682620b}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{752b0d50-2db3-4cd7-8f3b-2eaa6682620b}: [DhcpDomain] fritz.box
Tcpip\..\Interfaces\{752b0d50-2db3-4cd7-8f3b-2eaa6682620b}\353686C61666A796D6D65627: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{752b0d50-2db3-4cd7-8f3b-2eaa6682620b}\353686C61666A796D6D65627: [DhcpDomain] fritz.box
Tcpip\..\Interfaces\{cf9d3404-8119-4162-93ff-5e3d14678532}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{cf9d3404-8119-4162-93ff-5e3d14678532}: [DhcpDomain] fritz.box
Edge:
=======
Edge Profile: C:\Users\Andre\AppData\Local\Microsoft\Edge\User Data\Default [2024-04-29]
Edge Extension: (Google Docs Offline) - C:\Users\Andre\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-22]
Edge Extension: (Edge relevant text changes) - C:\Users\Andre\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-25]
FireFox:
========
FF DefaultProfile: an758127.default
FF ProfilePath: C:\Users\Andre\AppData\Roaming\Mozilla\Firefox\Profiles\an758127.default [2024-04-28]
FF Homepage: Mozilla\Firefox\Profiles\an758127.default -> hxxps://www.google.com/
FF ProfilePath: C:\Users\Andre\AppData\Roaming\Mozilla\Firefox\Profiles\4s2d3uby.default-release [2024-04-29]
FF Homepage: Mozilla\Firefox\Profiles\4s2d3uby.default-release -> hxxps://www.google.com/
FF Notifications: Mozilla\Firefox\Profiles\4s2d3uby.default-release -> hxxps://best.aliexpress.com; hxxps://www.instagram.com; hxxps://web.whatsapp.com; hxxps://arenti.com; hxxps://brnok.check-tl-ver-94-2.com
FF Extension: (ReCaptcha Solver) - C:\Users\Andre\AppData\Roaming\Mozilla\Firefox\Profiles\4s2d3uby.default-release\Extensions\doz4@hotmail.com.xpi [2023-07-09]
FF Extension: (iCloud-Lesezeichen) - C:\Users\Andre\AppData\Roaming\Mozilla\Firefox\Profiles\4s2d3uby.default-release\Extensions\firefoxdav@icloud.com.xpi [2023-07-09]
FF Extension: (AdBlock*– der beste Ad-Blocker) - C:\Users\Andre\AppData\Roaming\Mozilla\Firefox\Profiles\4s2d3uby.default-release\Extensions\jid1-NIfFY2CA8fy1tg@jetpack.xpi [2023-07-09]
FF Extension: (Trusted Shops-Erweiterung) - C:\Users\Andre\AppData\Roaming\Mozilla\Firefox\Profiles\4s2d3uby.default-release\Extensions\jid1-PBNne26X1Kn6hQ@jetpack.xpi [2024-02-08]
FF Extension: (uBlock Origin) - C:\Users\Andre\AppData\Roaming\Mozilla\Firefox\Profiles\4s2d3uby.default-release\Extensions\uBlock0@raymondhill.net.xpi [2024-04-29]
FF Extension: (Adblock Plus - kostenloser Adblocker) - C:\Users\Andre\AppData\Roaming\Mozilla\Firefox\Profiles\4s2d3uby.default-release\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2023-07-09]
FF Plugin: @java.com/DTPlugin,version=11.391.2 -> C:\Program Files\Java\jre-1.8\bin\dtplugin\npDeployJava1.dll [2023-10-04] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.391.2 -> C:\Program Files\Java\jre-1.8\bin\plugin2\npjp2.dll [2023-10-04] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
Chrome:
=======
CHR Profile: C:\Users\Andre\AppData\Local\Google\Chrome\User Data\Default [2024-04-29]
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR Extension: (Google Docs Offline) - C:\Users\Andre\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-28]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Andre\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-04-28]
==================== Dienste (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [103776 2023-08-22] (Apple Inc. -> Apple Inc.)
S3 battlenet_helpersvc; C:\ProgramData\Battle.net_components\battlenet_helpersvc\AgentHelper.exe [2567304 2024-04-10] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [15044872 2024-02-08] (BattlEye Innovations e.K. -> )
S2 GoogleUpdaterInternalService126.0.6425.0; C:\Program Files (x86)\Google\GoogleUpdater\126.0.6425.0\updater.exe [4786464 2024-04-18] (Google LLC -> Google LLC)
S2 GoogleUpdaterService126.0.6425.0; C:\Program Files (x86)\Google\GoogleUpdater\126.0.6425.0\updater.exe [4786464 2024-04-18] (Google LLC -> Google LLC)
R2 LogiFacecamService; C:\Program Files\Logitech\LogiCapture\bin\Service\LogiFacecamService.exe [497568 2021-10-25] (Logitech Inc -> Logitech)
R2 NTKDaemonService; C:\Program Files\Common Files\Native Instruments\NTK\NTKDaemon.exe [17491168 2023-12-06] (Native Instruments GmbH -> Native Instruments GmbH)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvlei.inf_amd64_da6e550a863d4413\Display.NvContainer\NVDisplay.Container.exe [1275440 2024-04-12] (NVIDIA Corporation -> NVIDIA Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\NisSrv.exe [3199648 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MsMpEng.exe [133576 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 DCIService; C:\Program Files (x86)\Lavasoft\Web Companion\Service\x64\DCIService.exe [X] <==== ACHTUNG
S2 MFLocalService; C:\Program Files (x86)\Common Files\iMyFone\Components\Resident\LocalService.exe [X]
S3 Rockstar Service; "C:\Program Files\Rockstar Games\Launcher\RockstarService.exe" [X]
S3 SUService; "C:\Program Files (x86)\Lenovo\System Update\SUService.exe" [X]
===================== Treiber (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R2 BdDci; C:\WINDOWS\system32\DRIVERS\bddci.sys [800672 2024-04-28] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender)
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [188416 2023-10-28] (Microsoft Corporation) [Datei ist nicht signiert]
R1 googledrivefs31357; C:\WINDOWS\System32\DriverStore\FileRepository\googledrivefs31357.inf_amd64_a8bf31a168cf7d00\googledrivefs31357.sys [384712 2024-02-09] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
S3 ManyCam; C:\WINDOWS\system32\DRIVERS\mcvidrv.sys [66952 2018-07-30] (ManyCam (VISICOM MÉDIA INC.) -> Visicom Media Inc.)
S3 mcaudrv_simple; C:\WINDOWS\system32\drivers\mcaudrv_x64.sys [35960 2014-12-29] (ManyCam -> Visicom Media Inc.)
R3 MpKsl9cc2b523; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{8C997B55-B381-4010-893A-E01B87F82097}\MpKslDrv.sys [301336 2024-04-29] (Microsoft Windows -> Microsoft Corporation)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_ea6cec41fc5b2a8b\NvModuleTracker.sys [47240 2024-04-03] (NVIDIA Corporation -> NVIDIA Corporation)
R3 rtcx21; C:\WINDOWS\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_516e5c9b75c49dc2\rtcx21x64.sys [539648 2022-05-06] (Microsoft Windows -> Realtek)
R3 rtucx22x64; C:\WINDOWS\System32\DriverStore\FileRepository\rtucx22x64.inf_amd64_7152a7b26a326de6\rtucx22x64.sys [1918304 2024-03-12] (Realtek Semiconductor Corp. -> Realtek Corporation)
S3 rtux64w10; C:\WINDOWS\System32\DriverStore\FileRepository\rtux64w10.inf_amd64_03831aeaaa2c730e\rtux64w10.sys [683520 2022-05-07] (Microsoft Windows -> Realtek Corporation)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2021-05-11] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
R0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [20936 2024-04-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [601376 2024-04-10] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105760 2024-04-10] (Microsoft Windows -> Microsoft Corporation)
S3 XSpltVid; C:\WINDOWS\system32\DRIVERS\XSpltVid.sys [244264 2023-04-19] (Microsoft Windows Hardware Compatibility Publisher -> SplitmediaLabs Limited)
U3 avgArDisk; kein ImagePath
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat (erstellte) (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2024-04-29 09:26 - 2024-04-29 09:26 - 000026689 _____ C:\Users\Andre\Downloads\FRST.txt
2024-04-29 09:25 - 2024-04-29 09:26 - 000000000 ____D C:\FRST
2024-04-29 09:25 - 2024-04-29 09:25 - 002394112 _____ (Farbar) C:\Users\Andre\Downloads\FRST64.exe
2024-04-29 08:48 - 2024-04-29 08:48 - 000758838 _____ C:\WINDOWS\system32\perfh007.dat
2024-04-29 08:48 - 2024-04-29 08:48 - 000157058 _____ C:\WINDOWS\system32\perfc007.dat
2024-04-29 08:42 - 2024-04-29 08:42 - 000000000 ___HD C:\OneDriveTemp
2024-04-29 08:17 - 2024-04-29 08:17 - 002589624 _____ (Malwarebytes) C:\Users\Andre\Downloads\MBSetup.exe
2024-04-29 08:17 - 2024-04-29 08:17 - 002585496 _____ (Malwarebytes) C:\Users\Andre\Downloads\MBSetup-076886.076886-consumer.exe
2024-04-29 08:06 - 2024-04-29 08:06 - 007195168 _____ (EnigmaSoft Limited) C:\Users\Andre\Downloads\SpyHunter-5.15-5-65827-Installer.exe
2024-04-29 06:51 - 2024-04-29 06:51 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2024-04-29 06:48 - 2024-04-12 21:22 - 002031488 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2024-04-29 06:48 - 2024-04-12 21:22 - 002031488 _____ C:\WINDOWS\system32\vulkaninfo.exe
2024-04-29 06:48 - 2024-04-12 21:22 - 001578872 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2024-04-29 06:48 - 2024-04-12 21:22 - 001578872 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2024-04-29 06:48 - 2024-04-12 21:22 - 001488024 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2024-04-29 06:48 - 2024-04-12 21:22 - 001445128 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2024-04-29 06:48 - 2024-04-12 21:22 - 001445128 _____ C:\WINDOWS\system32\vulkan-1.dll
2024-04-29 06:48 - 2024-04-12 21:22 - 001295120 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2024-04-29 06:48 - 2024-04-12 21:22 - 001295120 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2024-04-29 06:48 - 2024-04-12 21:22 - 001226776 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2024-04-29 06:48 - 2024-04-12 21:18 - 001543296 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2024-04-29 06:48 - 2024-04-12 21:18 - 001199752 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2024-04-29 06:48 - 2024-04-12 21:18 - 001046168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2024-04-29 06:48 - 2024-04-12 21:18 - 000842288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2024-04-29 06:48 - 2024-04-12 21:18 - 000670360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvofapi64.dll
2024-04-29 06:48 - 2024-04-12 21:18 - 000505480 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvofapi.dll
2024-04-29 06:48 - 2024-04-12 21:17 - 002174512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2024-04-29 06:48 - 2024-04-12 21:17 - 001626664 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2024-04-29 06:48 - 2024-04-12 21:17 - 001024552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2024-04-29 06:48 - 2024-04-12 21:17 - 000787480 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2024-04-29 06:48 - 2024-04-12 21:17 - 000459928 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2024-04-29 06:48 - 2024-04-12 21:16 - 016034968 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2024-04-29 06:48 - 2024-04-12 21:16 - 012930200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2024-04-29 06:48 - 2024-04-12 21:16 - 006780552 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2024-04-29 06:48 - 2024-04-12 21:16 - 005913752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2024-04-29 06:48 - 2024-04-12 21:16 - 005772824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll
2024-04-29 06:48 - 2024-04-12 21:16 - 003721352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2024-04-29 06:48 - 2024-04-12 21:15 - 000853016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2024-04-29 06:48 - 2024-04-12 21:14 - 006035152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2024-04-29 06:48 - 2024-04-12 04:05 - 000119466 _____ C:\WINDOWS\system32\nvinfo.pb
2024-04-29 06:47 - 2024-03-26 21:11 - 000059928 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2024-04-29 06:47 - 2024-03-26 19:21 - 000060240 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2024-04-29 06:44 - 2024-04-29 06:44 - 003809808 _____ (Lenovo ) C:\Users\Andre\Downloads\LSBSetup(1).exe
2024-04-29 06:41 - 2024-04-29 06:41 - 003809808 _____ (Lenovo ) C:\Users\Andre\Downloads\LSBSetup.exe
2024-04-29 06:06 - 2024-04-29 06:06 - 008790880 _____ (Malwarebytes) C:\Users\Andre\Downloads\adwcleaner(1).exe
2024-04-29 05:59 - 2024-04-29 05:59 - 000003844 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onLogOn
2024-04-29 05:59 - 2024-04-29 05:59 - 000003402 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onTime
2024-04-28 21:02 - 2024-04-29 06:08 - 000000000 ____D C:\Users\Andre\AppData\Local\Lavasoft
2024-04-28 21:02 - 2024-04-29 06:07 - 000000000 ____D C:\Users\Andre\AppData\Roaming\Lavasoft
2024-04-28 21:02 - 2024-04-29 06:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
2024-04-28 21:02 - 2024-04-28 21:02 - 000001282 _____ C:\Users\Andre\OneDrive\Desktop\ESET Online Scanner.lnk
2024-04-28 21:01 - 2024-04-29 06:08 - 000000000 ____D C:\ProgramData\Lavasoft
2024-04-28 21:01 - 2024-04-29 06:07 - 000000000 ____D C:\Program Files (x86)\Lavasoft
2024-04-28 21:01 - 2024-04-28 21:01 - 000001382 _____ C:\Users\Andre\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2024-04-28 21:01 - 2024-04-28 21:01 - 000000000 ____D C:\Users\Andre\AppData\Local\ESET
2024-04-28 20:32 - 2024-04-28 20:33 - 000000000 ____D C:\AdwCleaner
2024-04-28 20:32 - 2024-04-28 20:32 - 008790880 _____ (Malwarebytes) C:\Users\Andre\Downloads\adwcleaner.exe
2024-04-28 20:10 - 2024-04-28 20:10 - 000000000 ___HD C:\$SysReset
2024-04-28 19:35 - 2024-04-28 19:35 - 000000000 ____D C:\Users\Andre\AppData\Local\NPE
2024-04-28 19:35 - 2024-04-28 19:35 - 000000000 ____D C:\ProgramData\Norton
2024-04-28 19:34 - 2024-04-28 19:34 - 016995528 _____ (NortonLifeLock Inc.) C:\Users\Andre\Downloads\NPE.exe
2024-04-28 19:07 - 2024-04-28 18:42 - 000314816 _____ (Gen Digital Inc.) C:\WINDOWS\system32\avgBoot.exe
2024-04-28 18:55 - 2024-04-28 18:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\GoogleSystem
2024-04-28 18:44 - 2024-04-28 18:44 - 000002315 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-04-28 18:43 - 2024-04-28 20:17 - 000000000 ____D C:\Users\Andre\AppData\Roaming\AVG
2024-04-28 18:43 - 2024-04-28 20:17 - 000000000 ____D C:\Users\Andre\AppData\Local\AVG
2024-04-28 18:42 - 2024-04-28 20:17 - 000000000 ____D C:\ProgramData\AVG
2024-04-28 18:41 - 2024-04-28 18:41 - 000234888 _____ (AVG Technologies CZ, s.r.o.) C:\Users\Andre\Downloads\avg_antivirus_free_setup.exe
2024-04-28 18:41 - 2024-04-28 18:41 - 000234888 _____ (AVG Technologies CZ, s.r.o.) C:\Users\Andre\Downloads\avg_antivirus_free_setup(1).exe
2024-04-28 08:07 - 2024-04-28 08:07 - 000000000 ____D C:\Users\Andre\AppData\Local\FreeYTVDownloader
2024-04-28 04:01 - 2024-04-28 04:01 - 003100840 _____ (NCH Software) C:\Users\Andre\Downloads\wpsetup.exe
2024-04-28 04:01 - 2024-04-28 04:01 - 003100840 _____ (NCH Software) C:\Users\Andre\Downloads\WavePadAudioBearbeitungsSoftware_DE.exe
2024-04-26 01:56 - 2024-04-26 01:58 - 000000000 ___HD C:\$WinREAgent
2024-04-23 20:30 - 2024-04-24 17:05 - 000000000 ____D C:\Program Files\Mozilla Firefox
2024-04-20 16:09 - 2024-04-20 16:09 - 003450857 _____ C:\Users\Andre\Downloads\cowboy.webm
2024-04-20 08:53 - 2024-04-20 08:53 - 075513224 _____ C:\Users\Andre\Downloads\vecteezy_ai-generativ-das-wuste-landschaft-ist-ein-wuste-landschaft_31601180.mp4
2024-04-20 08:51 - 2024-04-20 08:51 - 311185185 _____ C:\Users\Andre\Downloads\vecteezy_les-nuages-en-accelere-traversent-le-monument-national-de-la_13008323.mp4
2024-04-20 05:37 - 2024-04-20 05:37 - 002280708 _____ C:\Users\Andre\Downloads\vecteezy_good-morning-animated-video-message-in-cartoon-style_34114586.mp4
2024-04-19 17:07 - 2024-04-19 17:07 - 001855918 _____ C:\Users\Andre\Downloads\32299-391427178.mp4
2024-04-18 11:33 - 2024-04-18 11:33 - 000317743 _____ C:\Users\Andre\Downloads\NewsBanner.mp4
2024-04-17 19:49 - 2024-04-21 19:50 - 000000000 ____D C:\Users\Andre\AppData\Local\Discord
2024-04-17 19:49 - 2024-04-18 05:02 - 000002253 _____ C:\Users\Andre\OneDrive\Desktop\Discord.lnk
2024-04-17 19:48 - 2024-04-17 19:49 - 112800488 _____ (Discord Inc.) C:\Users\Andre\Downloads\DiscordSetup.exe
2024-04-16 20:33 - 2024-04-16 20:33 - 000005542 _____ C:\Users\Andre\Downloads\logo.zip
2024-04-16 20:33 - 2024-04-16 20:33 - 000000000 ____D C:\Users\Andre\Downloads\logo
2024-04-16 19:51 - 2024-04-16 19:51 - 000000000 ____D C:\Users\Andre\Downloads\Markus%20Heitz%20-%20Schnitzel%20Surprise%20(Ungek%FCrzt)
2024-04-16 19:31 - 2024-04-16 19:31 - 000000000 ____D C:\Users\Andre\Downloads\John Grisham - Feinde
2024-04-16 19:31 - 2024-04-16 19:31 - 000000000 ____D C:\Users\Andre\Downloads\John Grisham - Der Verdaechtige
2024-04-16 19:27 - 2024-04-16 19:28 - 007636088 _____ C:\Users\Andre\Downloads\John Grisham - Der Verdaechtige.rar
2024-04-16 19:25 - 2024-04-16 19:25 - 004055281 _____ C:\Users\Andre\Downloads\John Grisham - Feinde.rar
2024-04-16 19:13 - 2024-04-16 19:13 - 000000000 ____D C:\Users\Andre\Downloads\Martin%20Hyun,%20Wladimir%20Kaminer%20-%20Gebrauchsanweisung%20f%FCr%20Nachbarn
2024-04-16 19:13 - 2024-04-16 19:13 - 000000000 ____D C:\Users\Andre\Downloads\John%20Grisham%20-%20Mitch%20McDeere%2002%20-%20Die%20Entf%FChrung
2024-04-16 19:13 - 2024-04-16 19:13 - 000000000 ____D C:\Users\Andre\Downloads\John Grisham - Mitch McDeere 01 - Die Firma
2024-04-16 19:05 - 2024-04-16 19:09 - 006459756 _____ C:\Users\Andre\Downloads\John%20Grisham%20-%20Mitch%20McDeere%2002%20-%20Die%20Entf%FChrung.rar
2024-04-16 19:04 - 2024-04-16 19:11 - 008493934 _____ C:\Users\Andre\Downloads\John Grisham - Mitch McDeere 01 - Die Firma.rar
2024-04-16 18:50 - 2024-04-16 18:50 - 002307057 _____ C:\Users\Andre\Downloads\Martin%20Hyun,%20Wladimir%20Kaminer%20-%20Gebrauchsanweisung%20f%FCr%20Nachbarn.rar
2024-04-16 18:36 - 2024-04-16 19:50 - 487989047 _____ C:\Users\Andre\Downloads\Markus%20Heitz%20-%20Schnitzel%20Surprise%20(Ungek%FCrzt).rar
2024-04-15 17:31 - 2024-04-15 17:31 - 001763291 _____ C:\Users\Andre\Downloads\gedraengte-oeffentlichkeit-des-nahtlosen-musters-der-frauen.zip
2024-04-14 05:24 - 2024-04-14 05:24 - 025500978 _____ C:\Users\Andre\Downloads\32873-395456347.mp4
2024-04-14 05:16 - 2024-04-14 05:16 - 019638277 _____ C:\Users\Andre\Downloads\33875-398646371.mp4
2024-04-14 05:12 - 2024-04-14 05:12 - 012418514 _____ C:\Users\Andre\Downloads\40315-423976825.mp4
2024-04-13 16:24 - 2024-04-13 16:24 - 000000000 ____D C:\Users\Andre\Downloads\RetroBoombox
2024-04-13 16:23 - 2024-04-13 16:23 - 017784373 _____ C:\Users\Andre\Downloads\RetroBoombox.zip
2024-04-10 21:05 - 2024-04-10 21:05 - 000000000 ____D C:\Users\Andre\OneDrive\Documents\Adobe
2024-04-10 21:01 - 2024-04-10 21:01 - 000001456 _____ C:\Users\Andre\AppData\Local\Adobe Für Web speichern 13.0 Prefs
2024-04-10 20:35 - 2024-04-10 20:35 - 000001064 _____ C:\Users\Andre\OneDrive\Desktop\Adobe Photoshop 2024.lnk
2024-04-10 20:30 - 2024-04-10 20:30 - 000000000 ____D C:\Users\Andre\AppData\Roaming\com.adobe.dunamis
2024-04-10 20:30 - 2024-04-10 20:30 - 000000000 ____D C:\Users\Andre\AppData\LocalLow\Adobe
2024-04-10 20:25 - 2024-04-10 20:25 - 000001064 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop 2024.lnk
2024-04-10 20:23 - 2024-04-10 20:25 - 000000000 ____D C:\Program Files\Common Files\Adobe
2024-04-10 20:23 - 2024-04-10 20:24 - 000000000 ____D C:\Program Files\Adobe
2024-04-10 20:23 - 2024-04-10 20:23 - 000000000 ____D C:\Program Files (x86)\Adobe
2024-04-10 20:21 - 2024-04-18 08:54 - 000000000 ____D C:\Users\Andre\AppData\Local\Adobe
2024-04-10 20:21 - 2024-04-10 20:23 - 000000000 ____D C:\ProgramData\Adobe
2024-04-10 19:38 - 2024-04-10 19:38 - 000000000 ____D C:\ProgramData\Battle.net_components
2024-04-10 18:59 - 2024-04-10 18:59 - 000004365 _____ C:\Users\Andre\AppData\Local\recently-used.xbel
2024-04-10 18:39 - 2024-04-10 18:39 - 000000039 _____ C:\Users\Andre\AppData\Local\kritadisplayrc
2024-04-10 15:31 - 2024-04-10 21:09 - 000000000 ____D C:\Users\Andre\AppData\Roaming\FreeYourMusic
2024-04-10 15:31 - 2024-04-10 15:31 - 000002393 _____ C:\Users\Andre\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FreeYourMusic.lnk
2024-04-10 15:31 - 2024-04-10 15:31 - 000002391 _____ C:\Users\Andre\OneDrive\Desktop\FreeYourMusic.lnk
2024-04-10 15:31 - 2024-04-10 15:31 - 000000000 ____D C:\Users\Andre\AppData\Local\freeyourmusic-updater
2024-04-10 05:34 - 2024-04-28 09:38 - 000000000 ____D C:\Users\Andre\AppData\Roaming\TIDAL
2024-04-10 05:34 - 2024-04-10 05:34 - 000002161 _____ C:\Users\Andre\OneDrive\Desktop\TIDAL.lnk
2024-04-10 05:34 - 2024-04-10 05:34 - 000000000 ____D C:\Users\Andre\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TIDAL Music AS
2024-04-10 05:33 - 2024-04-10 05:34 - 000000000 ____D C:\Users\Andre\AppData\Local\TIDAL
2024-04-08 20:18 - 2024-04-10 18:59 - 000000000 ____D C:\Users\Andre\AppData\Local\gtk-2.0
2024-04-08 20:15 - 2024-04-10 19:03 - 000000000 ____D C:\Users\Andre\AppData\Local\babl-0.1
2024-04-08 20:15 - 2024-04-08 20:15 - 000000000 ____D C:\Users\Andre\AppData\Roaming\GIMP
2024-04-08 20:15 - 2024-04-08 20:15 - 000000000 ____D C:\Users\Andre\AppData\Local\GIMP
2024-04-08 20:15 - 2024-04-08 20:15 - 000000000 ____D C:\Users\Andre\AppData\Local\gegl-0.4
2024-04-05 05:22 - 2024-04-05 05:22 - 000000000 ____D C:\Users\Andre\AppData\Roaming\Abelssoft
2024-04-05 05:22 - 2024-04-05 05:22 - 000000000 ____D C:\Users\Andre\AppData\Local\Abelssoft
2024-04-05 05:22 - 2024-04-05 05:22 - 000000000 ____D C:\ProgramData\XDMessagingv4
2024-04-05 05:22 - 2024-04-05 05:22 - 000000000 ____D C:\Program Files (x86)\RegistryCleaner
2024-04-01 19:29 - 2024-04-01 19:29 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
==================== Ein Monat (geänderte) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2024-04-29 09:21 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-04-29 08:55 - 2023-07-09 18:28 - 000000000 ____D C:\Users\Andre\AppData\Roaming\obs-studio
2024-04-29 08:54 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-04-29 08:51 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-04-29 08:48 - 2023-07-10 21:41 - 001756516 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-04-29 08:48 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF
2024-04-29 08:42 - 2023-07-09 00:56 - 000000000 ____D C:\ProgramData\NVIDIA
2024-04-29 08:42 - 2023-07-09 00:43 - 000000000 ___RD C:\Users\Andre\OneDrive
2024-04-29 08:41 - 2023-07-10 21:40 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-04-29 08:41 - 2023-07-10 05:38 - 000000000 __SHD C:\Users\Andre\IntelGraphicsProfiles
2024-04-29 08:41 - 2023-07-10 05:38 - 000000000 ____D C:\Intel
2024-04-29 08:41 - 2023-07-09 00:34 - 000012288 ___SH C:\DumpStack.log.tmp
2024-04-29 08:41 - 2022-05-07 07:17 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2024-04-29 08:24 - 2022-05-07 07:24 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-04-29 07:45 - 2023-07-09 00:42 - 000000000 ____D C:\Users\Andre\AppData\Local\D3DSCache
2024-04-29 06:52 - 2023-07-09 00:57 - 000000000 ____D C:\Users\Andre\AppData\Local\NVIDIA
2024-04-29 06:47 - 2023-07-10 21:40 - 000004308 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-29 06:47 - 2023-07-10 21:40 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-29 06:47 - 2023-07-10 21:40 - 000003940 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-29 06:47 - 2023-07-10 21:40 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-29 06:47 - 2023-07-10 21:40 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-29 06:47 - 2023-07-10 21:40 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-29 06:47 - 2023-07-10 21:40 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-29 06:47 - 2023-07-10 21:40 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-29 06:47 - 2023-07-10 21:40 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-29 06:47 - 2023-07-09 00:56 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2024-04-29 06:47 - 2023-07-09 00:56 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2024-04-29 06:47 - 2023-07-09 00:54 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2024-04-29 06:07 - 2023-11-13 22:42 - 000000000 ____D C:\Program Files (x86)\Lenovo
2024-04-29 06:01 - 2023-12-07 20:06 - 000004172 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{86917919-AB71-4F16-9FA9-EEC5A25F64A7}
2024-04-28 21:02 - 2023-08-15 10:05 - 000000000 ____D C:\Log
2024-04-28 20:35 - 2023-07-09 00:47 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-04-28 20:34 - 2023-07-10 21:26 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-04-28 20:33 - 2023-07-10 21:30 - 000000000 ____D C:\Users\Andre\AppData\Roaming\Microsoft\Spelling
2024-04-28 20:33 - 2020-11-19 01:37 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-04-28 20:21 - 2023-07-09 00:46 - 000000000 ____D C:\Users\Andre\AppData\Roaming\Microsoft\MMC
2024-04-28 20:10 - 2023-07-12 04:26 - 000000000 ____D C:\WINDOWS\Panther
2024-04-28 20:09 - 2023-07-09 00:42 - 000000000 ____D C:\Users\Andre\AppData\Local\Packages
2024-04-28 20:09 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps
2024-04-28 20:09 - 2020-11-19 01:38 - 000000000 ____D C:\ProgramData\Packages
2024-04-28 18:55 - 2024-02-09 10:41 - 000000000 ____D C:\Program Files (x86)\Google
2024-04-28 18:44 - 2024-02-09 10:41 - 000000000 ____D C:\Users\Andre\AppData\Local\Google
2024-04-28 18:44 - 2024-02-09 10:41 - 000000000 ____D C:\Program Files\Google
2024-04-28 14:56 - 2023-07-09 12:01 - 000000000 ____D C:\Users\Andre\AppData\Local\JDownloader 2.0
2024-04-28 08:16 - 2024-03-19 22:08 - 000000000 ____D C:\Users\Andre\OneDrive\Desktop\Rene
2024-04-28 08:07 - 2023-12-21 05:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2024-04-28 08:07 - 2023-12-21 05:30 - 000000000 ____D C:\Program Files (x86)\DVDVideoSoft
2024-04-28 08:02 - 2023-12-21 05:30 - 000000000 ____D C:\Users\Andre\AppData\Roaming\DVDVideoSoft
2024-04-27 19:50 - 2023-07-09 00:44 - 000000000 ____D C:\Users\Andre\OneDrive\Desktop\Arbeitszeiten
2024-04-26 05:04 - 2023-07-09 02:44 - 000000000 ____D C:\Users\Andre\AppData\Local\CrashDumps
2024-04-26 02:40 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate
2024-04-26 02:25 - 2023-07-10 21:26 - 000677608 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-04-26 02:24 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2024-04-26 02:24 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2024-04-26 02:24 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\system32\UNP
2024-04-26 02:24 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\system32\F12
2024-04-26 02:24 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2024-04-26 02:24 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\PrintDialog
2024-04-26 02:24 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-04-26 02:24 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\UUS
2024-04-26 02:24 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2024-04-26 02:24 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2024-04-26 02:24 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2024-04-26 02:24 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources
2024-04-26 02:24 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemApps
2024-04-26 02:24 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2024-04-26 02:24 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2024-04-26 02:24 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2024-04-26 02:24 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2024-04-26 02:24 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2024-04-26 02:24 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2024-04-26 02:24 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-04-26 02:24 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\migwiz
2024-04-26 02:24 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2024-04-26 02:24 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Dism
2024-04-26 02:24 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-04-26 02:24 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-04-26 02:24 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2024-04-26 02:24 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\BrowserCore
2024-04-26 02:24 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-04-26 02:24 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\servicing
2024-04-26 02:04 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-04-26 02:01 - 2023-07-10 21:29 - 003214336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-04-24 17:05 - 2023-07-09 00:47 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-04-23 20:34 - 2023-07-09 00:47 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-04-23 05:26 - 2023-07-10 21:40 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1948356582-2310243557-1235988865-1001
2024-04-23 05:26 - 2023-07-10 21:40 - 000003366 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1948356582-2310243557-1235988865-1001
2024-04-23 05:26 - 2023-07-09 00:39 - 000002399 _____ C:\Users\Andre\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-04-21 19:51 - 2023-07-23 21:01 - 000000000 ____D C:\Users\Andre\AppData\Roaming\discord
2024-04-21 11:07 - 2023-07-09 00:44 - 000000000 ____D C:\Users\Andre\OneDrive\Desktop\Twitsch,Bilder und Musik
2024-04-18 17:06 - 2023-07-09 06:42 - 000000000 ____D C:\Users\Andre\AppData\Local\LenovoServiceBridge
2024-04-18 08:54 - 2023-10-28 15:59 - 000000000 ____D C:\Users\Andre\AppData\Roaming\Adobe
2024-04-17 19:49 - 2023-07-23 21:01 - 000000000 ____D C:\Users\Andre\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2024-04-17 19:49 - 2023-07-23 21:01 - 000000000 ____D C:\Users\Andre\AppData\Local\SquirrelTemp
2024-04-16 19:34 - 2023-12-14 18:14 - 000000000 ____D C:\Users\Andre\Calibre-Bibliothek
2024-04-16 19:34 - 2023-12-14 18:14 - 000000000 ____D C:\Users\Andre\AppData\Roaming\calibre
2024-04-13 10:03 - 2023-09-27 21:39 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2024-04-13 10:03 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2024-04-13 07:56 - 2023-07-09 02:44 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-04-13 07:55 - 2023-07-09 02:44 - 192651728 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-04-12 21:14 - 2023-07-09 00:54 - 006948656 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2024-04-12 11:26 - 2023-08-19 07:51 - 000000000 ____D C:\Program Files\VirtualDJ
2024-04-11 20:13 - 2023-07-12 21:11 - 000000000 ____D C:\WINDOWS\Minidump
2024-04-11 20:13 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2024-04-11 05:37 - 2023-07-10 21:30 - 000000000 ____D C:\Users\Andre
2024-04-10 20:22 - 2023-07-09 00:57 - 000000000 ____D C:\ProgramData\Package Cache
2024-04-10 18:39 - 2023-08-19 19:49 - 000031107 _____ C:\Users\Andre\AppData\Local\kritarc
2024-04-10 18:39 - 2023-08-19 19:49 - 000000000 ____D C:\Users\Andre\AppData\Roaming\krita
2024-04-10 17:28 - 2023-08-19 07:51 - 000000000 ____D C:\Users\Andre\AppData\Local\VirtualDJ
2024-04-10 17:00 - 2020-11-19 01:34 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2024-04-10 13:19 - 2023-07-09 00:57 - 002900520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2024-04-10 13:19 - 2023-07-09 00:57 - 002231336 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2024-04-10 13:18 - 2023-07-09 00:57 - 001296936 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvRtmpStreamer64.dll
2024-04-10 12:50 - 2023-07-09 00:57 - 000086568 _____ C:\WINDOWS\system32\FvSDK_x64.dll
2024-04-10 12:50 - 2023-07-09 00:57 - 000075304 _____ C:\WINDOWS\SysWOW64\FvSDK_x86.dll
2024-04-10 09:48 - 2023-07-09 00:57 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2024-04-08 20:55 - 2023-08-16 08:23 - 000000000 ____D C:\Users\Andre\AppData\Roaming\Sidify Music Converter
2024-04-08 20:53 - 2024-03-20 12:33 - 000000000 ____D C:\Users\Andre\AppData\Roaming\TunePat Spotify Converter
2024-04-08 20:15 - 2023-12-26 05:58 - 000000000 ____D C:\Users\Andre\.cache
2024-04-05 05:32 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ServiceState
2024-04-04 17:29 - 2023-07-10 21:40 - 000003756 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-04-04 17:29 - 2023-07-10 21:40 - 000003632 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========
2023-11-29 06:08 - 2024-03-21 12:49 - 000000016 _____ () C:\Users\Andre\AppData\Roaming\obs-virtualcam.txt
2024-04-10 21:01 - 2024-04-10 21:01 - 000001456 _____ () C:\Users\Andre\AppData\Local\Adobe Für Web speichern 13.0 Prefs
2023-08-19 19:49 - 2024-04-10 18:39 - 000008080 _____ () C:\Users\Andre\AppData\Local\krita-sysinfo.log
2023-08-19 19:49 - 2024-04-10 18:39 - 000059300 _____ () C:\Users\Andre\AppData\Local\krita.log
2024-03-27 08:32 - 2024-03-27 08:32 - 000030162 _____ () C:\Users\Andre\AppData\Local\kritacrash.log
2024-04-10 18:39 - 2024-04-10 18:39 - 000000039 _____ () C:\Users\Andre\AppData\Local\kritadisplayrc
2023-08-19 19:49 - 2024-04-10 18:39 - 000031107 _____ () C:\Users\Andre\AppData\Local\kritarc
2024-04-10 18:59 - 2024-04-10 18:59 - 000004365 _____ () C:\Users\Andre\AppData\Local\recently-used.xbel
2023-12-07 12:55 - 2023-08-16 08:23 - 000000036 _____ () C:\Users\Andre\AppData\Local\_LOCAL_GUID
==================== SigCheck ============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
==================== Ende von FRST.txt ========================
--- --- ---
FRST Additions Logfile: Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 19.04.2024 01
durchgeführt von Andre (29-04-2024 09:27:59)
Gestartet von C:\Users\Andre\Downloads
Microsoft Windows 11 Home Version 22H2 22621.3527 (X64) (2023-07-10 19:40:20)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
Administrator (S-1-5-21-1948356582-2310243557-1235988865-500 - Administrator - Disabled)
Andre (S-1-5-21-1948356582-2310243557-1235988865-1001 - Administrator - Enabled) => C:\Users\Andre
DefaultAccount (S-1-5-21-1948356582-2310243557-1235988865-503 - Limited - Disabled)
Gast (S-1-5-21-1948356582-2310243557-1235988865-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-1948356582-2310243557-1235988865-504 - Limited - Disabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
7-Zip 22.01 (x64) (HKLM\...\7-Zip) (Version: 22.01 - Igor Pavlov)
Adobe Photoshop 2024 (HKLM-x32\...\PHSP_25_1) (Version: 25.1.0.120 - Adobe Inc.)
Advanced Masks version 1.1.0 (HKLM-x32\...\{62e839c8-e072-4927-851b-cf517fee8123}}_is1) (Version: 1.1.0 - FiniteSingularity)
Apple Mobile Device Support (HKLM\...\{D76F9829-A6F3-48D3-A0B6-BC1522CB9F49}) (Version: 17.0.0.21 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{B292D163-23D2-4523-A699-1ABEC1875609}) (Version: 2.7.0.3 - Apple Inc.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Breitbandmessung 3.5.0 (HKLM\...\14607473-30db-509f-94f0-bb7c085c619e) (Version: 3.5.0 - zafaco GmbH)
Burning Crusade Classic (HKLM-x32\...\Burning Crusade Classic) (Version: - Blizzard Entertainment)
calibre 64bit (HKLM\...\{9E38FA2A-6295-45FA-880A-C7F3E151B248}) (Version: 7.1.0 - Kovid Goyal)
CPUID CPU-Z 2.06 (HKLM\...\CPUID CPU-Z_is1) (Version: 2.06 - CPUID, Inc.)
Discord (HKU\S-1-5-21-1948356582-2310243557-1235988865-1001\...\Discord) (Version: 1.0.9039 - Discord Inc.)
DriversCloud.com (HKLM\...\{7C5A59CD-BF23-4E8B-9DAE-28A0ED02AE61}) (Version: 11.2.8.0 - Cybelsoft)
Dynamic Application Loader Host Interface Service (HKLM\...\{A28339C8-E641-4CCE-A316-56F405D1C245}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Free YouTube Download (HKLM-x32\...\Free YouTube Download_is1) (Version: 4.3.116.423 - Digital Wave Ltd)
FreeYourMusic 8.7.0 (HKU\S-1-5-21-1948356582-2310243557-1235988865-1001\...\eea5e4fa-a0b3-5935-9ed7-a1bc19a244f5) (Version: 8.7.0 - freeyourmusic)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 124.0.6367.92 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.13 - Google LLC) Hidden
Intel(R) Chipset Device Software (HKLM\...\{6FAC699B-7992-4C62-9839-4783564CAEDD}) (Version: 10.1.1.40 - Intel Corporation) Hidden
Intel(R) Icls (HKLM\...\{0F81F40A-C278-47DA-8DD7-1961834FA78C}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) LMS (HKLM\...\{A0983640-26D2-4CD8-A512-747BF3CF3F82}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 2101.15.0.2080 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{21468D61-6A78-4358-B346-F4D37C6D55CC}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{788371EA-0B02-40AD-85D0-21BE107E3628}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Driver (HKLM\...\{2F171580-9C56-4A25-A5D5-CBBAA025BFA6}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 15.5.1.1053 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{DBD79F26-B81C-4C52-945B-6D960AC3B48F}) (Version: 15.5.1.1053 - Intel Corporation) Hidden
Intel® Chipsatz-Gerätesoftware (HKLM-x32\...\{314d4c01-f54b-4125-a71f-1e2722c29050}) (Version: 10.1.1.40 - Intel(R) Corporation) Hidden
iTunes (HKLM\...\{3EF2FA6E-94E4-4B51-A39D-33AD745712C2}) (Version: 12.13.1.3 - Apple Inc.)
Java 8 Update 391 (64-bit) (HKLM\...\{71324AE4-039E-4CA4-87B4-2F64180391F0}) (Version: 8.0.3910.13 - Oracle Corporation)
JDownloader 2 (HKLM-x32\...\jdownloader2) (Version: 2.0.1 - AppWork GmbH)
Logitech Capture (HKLM\...\Capture) (Version: 2.08.11 - Logitech)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 124.0.2478.67 - Microsoft Corporation)
Microsoft Edge WebView2-Laufzeit (HKLM-x32\...\Microsoft EdgeWebView) (Version: 123.0.2420.97 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1948356582-2310243557-1235988865-1001\...\OneDriveSetup.exe) (Version: 24.070.0407.0003 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{C6FD611E-7EFE-488C-A0E0-974C09EF6473}) (Version: 5.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{90ffcee5-8608-4e94-8c18-a4feb4f83fb8}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.36.32532 (HKLM-x32\...\{8bdfe669-9705-4184-9368-db9ce581e0e7}) (Version: 14.36.32532.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.36.32532 (HKLM-x32\...\{410c0ee1-00bb-41b6-9772-e12c2828b02f}) (Version: 14.36.32532.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.36.32532 (HKLM\...\{0025DD72-A959-45B5-A0A3-7EFEB15A8050}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.36.32532 (HKLM\...\{D5D19E2F-7189-42FE-8103-92CD1FA457C2}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.36.32532 (HKLM-x32\...\{C2C59CAB-8766-4ABD-A8EF-1151A36C41E5}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.36.32532 (HKLM-x32\...\{73F77E4E-5A17-46E5-A5FC-8A061047725F}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Mozilla Firefox (x64 de) (HKLM\...\Mozilla Firefox 125.0.2 (x64 de)) (Version: 125.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 115.0.1 - Mozilla)
Native Instruments NTKDaemon (HKLM-x32\...\Native Instruments NTKDaemon) (Version: 1.15.1.0 - Native Instruments)
NVIDIA FrameView SDK 1.3.8513.32290073 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8513.32290073 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.28.0.412 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.28.0.412 - NVIDIA Corporation)
NVIDIA Grafiktreiber 552.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 552.22 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.40.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.40.14 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 30.1.2 - OBS Project)
OpenOffice 4.1.14 (HKLM-x32\...\{67817932-052B-4DB6-8E7C-A78585923709}) (Version: 4.114.9811 - Apache Software Foundation)
REALTEK Bluetooth Filter Driver (HKLM-x32\...\{9D3D8C60-A5EF-4123-B2B9-172095903AD}) (Version: 1.4.887.032917 - REALTEK Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.16.323.2017 - Realtek)
ReaPlugs/x64 (HKLM\...\ReaPlugs) (Version: - )
Red Dead Redemption II MULTi13 5566135 (HKLM-x32\...\Red Dead Redemption II MULTi13 5566135) (Version: 5566135 - x.X.RIDDICK.X.x)
Registry Cleaner (HKLM-x32\...\Registry Cleaner_is1) (Version: 9 - Abelssoft)
Shotcut (HKLM\...\Shotcut) (Version: 23.06.14 - Meltytech, LLC)
Sidify Music Converter 3.3.3 (HKLM-x32\...\Sidify Music Converter) (Version: 3.3.3 - Sidify)
Tenorshare 4uKey 3.0.17.6 (HKLM-x32\...\{Tenorshare 4uKey}_is1) (Version: 3.0.17.6 - Tenorshare, Inc.)
TIDAL (HKU\S-1-5-21-1948356582-2310243557-1235988865-1001\...\TIDAL) (Version: 2.36.2 - TIDAL Music AS)
TomTom MyDrive Connect 4.4.0.5040 (HKLM-x32\...\MyDriveConnect) (Version: 4.4.0.5040 - TomTom)
TunePat Spotify Converter 1.7.3 (HKLM-x32\...\TunePat Spotify Converter) (Version: 1.7.3 - Tunepat)
UXP WebView Support (HKLM-x32\...\UXPW_1_1_0) (Version: 1.1.0 - Adobe Inc.)
VirtualDJ 2023 (HKLM\...\{33C2002F-7566-453D-8874-0ADC7D80511E}) (Version: 8.5.7607.0 - Atomix Productions)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.20 - VideoLAN)
WavePad Audio-Editor (HKLM-x32\...\WavePad) (Version: 17.68 - NCH Software)
Windows-PC-Integritätsprüfung (HKLM\...\{B3956CF3-F6C5-4567-AC38-1FD4432B319C}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Windows-Treiberpaket - Apple, Inc. (USBAAPL) USB (05/19/2017 6.0.9999.69) (HKLM\...\7771A0176A543725D7BBF70A546C096A4EE2DD40) (Version: 05/19/2017 6.0.9999.69 - Apple, Inc.)
Windows-Treiberpaket - Apple, Inc. (USBAAPL64) USB (05/19/2017 6.0.9999.69) (HKLM\...\C2C6A29F3ABC80FD992777A92DF30699124D37C5) (Version: 05/19/2017 6.0.9999.69 - Apple, Inc.)
WinRAR 6.22 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 6.22.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
World of Warcraft Classic Era (HKLM-x32\...\World of Warcraft Classic Era) (Version: - Blizzard Entertainment)
Packages:
=========
AppUp.IntelGraphicsExperience -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5435.0_x64__8j3eq9eme6ctt [2024-04-14] (INTEL CORP) [Startup Task]
Dev Home -> C:\Program Files\WindowsApps\Microsoft.Windows.DevHome_0.1300.477.0_x64__8wekyb3d8bbwe [2024-04-24] (Microsoft Corporation)
Microsoft Family -> C:\Program Files\WindowsApps\MicrosoftCorporationII.MicrosoftFamily_0.2.40.0_x64__8wekyb3d8bbwe [2023-09-14] (Microsoft Corp.)
Microsoft.Windows.Ai.Copilot.Provider -> C:\Program Files\WindowsApps\Microsoft.Windows.Ai.Copilot.Provider_1.0.3.0_neutral__8wekyb3d8bbwe [2024-03-29] (Microsoft Corporation)
Microsoft.WindowsAppRuntime.CBS -> C:\WINDOWS\SystemApps\Microsoft.WindowsAppRuntime.CBS_8wekyb3d8bbwe [2024-03-02] (Microsoft Corporation)
MicrosoftWindows.CrossDevice -> C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24041.33.0_x64__cw5n1h2txyewy [2024-04-24] (Microsoft Windows) [Startup Task]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.966.0_x64__56jybvy8sckqj [2024-04-24] (NVIDIA Corp.)
shellmenua -> C:\Program Files (x86)\NCH Software\Components\Shared\shellmenu [2024-03-20] ()
shellmenub -> C:\Program Files (x86)\NCH Software\Components\Shared\shellmenu [2024-03-20] ()
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0 [2024-04-10] (Spotify AB) [Startup Task]
Windows Feature Experience Pack -> C:\WINDOWS\SystemApps\MicrosoftWindows.Client.FileExp_cw5n1h2txyewy [2024-04-26] (Microsoft Windows)
Windows Feature Experience Pack -> C:\WINDOWS\SystemApps\MicrosoftWindows.Client.LKG_cw5n1h2txyewy [2024-04-26] (Microsoft Windows)
WinRAR -> C:\Program Files\WinRAR [2023-07-11] (win.rar GmbH)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-1948356582-2310243557-1235988865-1001_Classes\CLSID\{2fd1b642-ca5d-4583-bccf-12ef694a9d59}\localserver32 -> "C:\Program Files\MobiSystems\OfficeSuite\MobiSystemsUpdate.exe" -ToastActivated => Keine Datei
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-04-10] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-04-10] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-04-10] (Adobe Inc. -> )
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-04-10] (Adobe Inc. -> )
ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => -> Keine Datei
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-05-29] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-05-29] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => -> Keine Datei
ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => -> Keine Datei
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvlei.inf_amd64_da6e550a863d4413\nvshext.dll [2024-04-12] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-04-10] (Adobe Inc. -> )
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-05-29] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-05-29] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Nicht auf der Ausnahmeliste) ====================
==================== Verknüpfungen & WMI ========================
==================== Geladene Module (Nicht auf der Ausnahmeliste) =============
2023-02-09 11:26 - 2023-02-09 11:26 - 000600064 _____ (Apache Software Foundation) [Datei ist nicht signiert] C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\ooofilt_x64.dll
2023-02-09 11:26 - 2023-02-09 11:26 - 000557568 _____ (Apache Software Foundation) [Datei ist nicht signiert] C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\propertyhdl_x64.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================
==================== Internet Explorer (Nicht auf der Ausnahmeliste) ==========
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre-1.8\bin\ssv.dll [2023-10-04] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre-1.8\bin\jp2ssv.dll [2023-10-04] (Oracle America, Inc. -> Oracle Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE trusted site: HKU\S-1-5-21-1948356582-2310243557-1235988865-1001\...\localhost -> localhost
==================== Hosts Inhalt: =========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2019-12-07 11:14 - 2024-04-27 08:23 - 000000852 _____ C:\WINDOWS\system32\drivers\etc\hosts
0.0.0.0 live.virtualdj.com
==================== Andere Bereiche ===========================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files\Calibre2\
HKU\S-1-5-21-1948356582-2310243557-1235988865-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Andre\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\LocalCache\Microsoft\IrisService\3050232101339744486\133588053089876224.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
HKU\S-1-5-21-1948356582-2310243557-1235988865-1001\...\StartupApproved\Run: => "RaiderIO"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{7BB389D3-9F1B-419C-BD42-75AA4413E194}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => Keine Datei
FirewallRules: [{7CC5F2A2-F5EB-482A-8A20-BE3194C8020A}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => Keine Datei
FirewallRules: [{667CDD3A-4FD4-4FF0-82B9-D5409E594DBC}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe => Keine Datei
FirewallRules: [{D8606868-DA90-404F-B970-3FC8170066F9}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe => Keine Datei
FirewallRules: [{398B37FE-E37F-48F2-AF0C-E860008C2D39}] => (Allow) C:\Program Files\Cybelsoft\DriversCloud.com\DriversCloud.exe (CYBELSOFT -> CybelSoft)
FirewallRules: [{F85C1E87-90ED-4D91-8951-75946B9001F9}] => (Allow) C:\Program Files\Cybelsoft\DriversCloud.com\DriversCloud.exe (CYBELSOFT -> CybelSoft)
FirewallRules: [{21D3C82B-9A66-460E-A6A5-662AAC2B0BBC}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3403.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{414E4351-173F-486F-B740-9829B8D4297B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3403.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{119FB6C6-AC1A-441F-8C32-DD5FD8978C03}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3403.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{9C211A36-AA74-4988-960D-28A9C95D4BAE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3403.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{9A744A74-119C-4ED3-B2B1-3776F56A2DF6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{0DBE324C-1864-4829-B135-36B56CCBC5BD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{A5FBBF4E-BF46-4355-AB5F-3FA46F3F2B91}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{C474B77A-3E11-4755-8C9F-B3E4861E61E3}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{AC0B9297-25D4-4B85-A887-3306AEB3DFCC}] => (Allow) C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe (TomTom International B.V. -> TomTom)
FirewallRules: [{C1A29EA5-3F21-4544-A3F7-D7A30383D620}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{87E9806B-515D-4459-9B7B-A9FF9D11A26A}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{DDFD6B5A-80E4-4669-A6DD-C05B605892D4}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{1183590A-EC95-4975-99AA-372367A1CDC8}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [TCP Query User{F3705AA3-BA08-49B2-8465-C3A0C1F5DC56}C:\users\andre\appdata\local\discord\app-1.0.9015\discord.exe] => (Allow) C:\users\andre\appdata\local\discord\app-1.0.9015\discord.exe => Keine Datei
FirewallRules: [UDP Query User{E7C8AA43-2933-457C-9937-376FD0B740A0}C:\users\andre\appdata\local\discord\app-1.0.9015\discord.exe] => (Allow) C:\users\andre\appdata\local\discord\app-1.0.9015\discord.exe => Keine Datei
FirewallRules: [TCP Query User{73EED8B4-B8C1-49B9-BE4E-FB560DD7BC15}C:\program files\native instruments\traktor pro 3\traktor.exe] => (Block) C:\program files\native instruments\traktor pro 3\traktor.exe => Keine Datei
FirewallRules: [UDP Query User{472D968D-A662-4043-A900-AED11BEFD05E}C:\program files\native instruments\traktor pro 3\traktor.exe] => (Block) C:\program files\native instruments\traktor pro 3\traktor.exe => Keine Datei
FirewallRules: [TCP Query User{DE40AF31-D617-49A4-A509-209AF0CC38A8}C:\program files (x86)\mediamonkey 5\mediamonkeyengine.exe] => (Allow) C:\program files (x86)\mediamonkey 5\mediamonkeyengine.exe => Keine Datei
FirewallRules: [UDP Query User{2A781C12-403F-4BA6-B46E-58E7F98C3390}C:\program files (x86)\mediamonkey 5\mediamonkeyengine.exe] => (Allow) C:\program files (x86)\mediamonkey 5\mediamonkeyengine.exe => Keine Datei
FirewallRules: [TCP Query User{7BCD54B0-ACB2-4FCD-BE9C-7EBDA7AE9093}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{31DA3A8F-BC09-40E7-80F8-802F533B4EDD}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [TCP Query User{8787F749-0064-4B2C-8D41-BAD82398B06F}C:\program files\dj.studio\dj.studio.exe] => (Block) C:\program files\dj.studio\dj.studio.exe => Keine Datei
FirewallRules: [UDP Query User{FB2AAD15-192E-47EF-8B73-48ED012663AE}C:\program files\dj.studio\dj.studio.exe] => (Block) C:\program files\dj.studio\dj.studio.exe => Keine Datei
FirewallRules: [TCP Query User{8D5C62FF-D9F0-4AEA-9E58-85387582B40B}C:\program files\virtualdj\virtualdj.exe] => (Block) C:\program files\virtualdj\virtualdj.exe (Atomix Productions America Inc. -> Atomix Productions)
FirewallRules: [UDP Query User{B9E807E9-A6E0-4EDC-B22A-529FE53E31CC}C:\program files\virtualdj\virtualdj.exe] => (Block) C:\program files\virtualdj\virtualdj.exe (Atomix Productions America Inc. -> Atomix Productions)
FirewallRules: [TCP Query User{738F0D52-58E0-4AB1-97A1-787839004114}C:\program files\obs-studio\bin\64bit\obs64.exe] => (Block) C:\program files\obs-studio\bin\64bit\obs64.exe (Hugh Bailey -> OBS)
FirewallRules: [UDP Query User{A6F01F2A-448C-4E04-A83F-EC2E1683381D}C:\program files\obs-studio\bin\64bit\obs64.exe] => (Block) C:\program files\obs-studio\bin\64bit\obs64.exe (Hugh Bailey -> OBS)
FirewallRules: [TCP Query User{13E0D28D-6850-4E10-8F36-33DD9A6F0CD7}E:\curseforge windows\curseforge.exe] => (Block) E:\curseforge windows\curseforge.exe => Keine Datei
FirewallRules: [UDP Query User{29F96743-8015-47D2-9DF0-AF292A8A52D9}E:\curseforge windows\curseforge.exe] => (Block) E:\curseforge windows\curseforge.exe => Keine Datei
FirewallRules: [{A1776214-40E2-44EB-8A7A-65D64C68CCBF}] => (Allow) C:\Users\Andre\Downloads\4ukey.exe => Keine Datei
FirewallRules: [{A2482566-D59C-4907-8414-81BC0750C4D5}] => (Allow) C:\Users\Andre\Downloads\4ukey.exe => Keine Datei
FirewallRules: [{004829A2-B23F-46B6-B80F-29AC97D493D2}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe => Keine Datei
FirewallRules: [{6C5E29EE-B961-4BB0-865D-8D0943A6444D}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe => Keine Datei
FirewallRules: [TCP Query User{40F5DBF3-D02E-43B8-86DA-E53827922DD9}C:\program files (x86)\common files\oracle\java\javapath_target_11118968\javaw.exe] => (Allow) C:\program files (x86)\common files\oracle\java\javapath_target_11118968\javaw.exe
FirewallRules: [UDP Query User{9EAE4D3E-71D7-4E9D-8AD7-B69F9EEB5D12}C:\program files (x86)\common files\oracle\java\javapath_target_11118968\javaw.exe] => (Allow) C:\program files (x86)\common files\oracle\java\javapath_target_11118968\javaw.exe
FirewallRules: [{BE6E4A81-C3EE-417B-B5FA-5024129CD2E6}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_23306.3309.2530.1346_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{DDC7B015-A314-4FFD-B0DA-46135B14CBE4}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_23306.3309.2530.1346_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{E4F7A6E8-456C-4259-AAA0-BBCCF1EE18F8}C:\program files\ispy\ispy.exe] => (Allow) C:\program files\ispy\ispy.exe => Keine Datei
FirewallRules: [UDP Query User{10745717-E310-48E7-AC85-3A0751EF8829}C:\program files\ispy\ispy.exe] => (Allow) C:\program files\ispy\ispy.exe => Keine Datei
FirewallRules: [TCP Query User{1ED08446-3605-4222-9A7C-CA971FCA3B07}C:\users\andre\downloads\agent_setup_windows(2)\setup.exe] => (Allow) C:\users\andre\downloads\agent_setup_windows(2)\setup.exe => Keine Datei
FirewallRules: [UDP Query User{62A4C61C-71B0-4A84-B645-DF46ECEF4901}C:\users\andre\downloads\agent_setup_windows(2)\setup.exe] => (Allow) C:\users\andre\downloads\agent_setup_windows(2)\setup.exe => Keine Datei
FirewallRules: [{3F2B6F29-8178-4E94-ABAB-29B299300B1B}] => (Allow) LPort=5353
FirewallRules: [{472E7068-4035-4A52-B7BC-1E29D3FF19B9}] => (Allow) C:\Program Files (x86)\go1984\go1984.exe => Keine Datei
FirewallRules: [{440F57E5-FA41-4306-9403-121318137DE3}] => (Allow) C:\Program Files\go1984\go1984.exe => Keine Datei
FirewallRules: [{5A5F3955-265D-4120-88B5-8341CBAD7B33}] => (Allow) D:\Program Files\TxGameAssistant\AppMarket\DL\syzs_dl_svr.exe => Keine Datei
FirewallRules: [{9AB91B91-E62E-4A0F-95C8-EB23351C7C4C}] => (Allow) D:\Program Files\TxGameAssistant\AppMarket\DL\syzs_dl_svr.exe => Keine Datei
FirewallRules: [{62E48A4B-3ADC-43B9-9135-E1FCA9F4642C}] => (Allow) D:\Program Files\TxGameAssistant\AppMarket\DL\syzs_dl_svr.exe => Keine Datei
FirewallRules: [{04E193F6-9433-4465-AEB5-C0CD08211D1E}] => (Allow) D:\Program Files\TxGameAssistant\AppMarket\DL\syzs_dl_svr.exe => Keine Datei
FirewallRules: [{2AADF588-DBDB-4F05-8B01-3F805F30B3C2}] => (Allow) D:\Program Files\TxGameAssistant\AppMarket\DL\syzs_dl_svr.exe => Keine Datei
FirewallRules: [{49B37F7D-A7F5-403E-AD64-9A05B8A35847}] => (Allow) D:\Program Files\TxGameAssistant\AppMarket\DL\syzs_dl_svr.exe => Keine Datei
FirewallRules: [{63DB8871-830F-424E-A0D3-703694EEA1EC}] => (Allow) LPort=8090
FirewallRules: [{C3998A8D-AE1C-4B15-A8FC-CA23C73236FF}] => (Allow) C:\Program Files\Agent\Agent.exe (DEVELOPER IN A BOX -> Developerinabox)
FirewallRules: [{B6224A3F-A1A7-4CD3-96B9-F117EF058C76}] => (Allow) LPort=5353
FirewallRules: [{44928FB9-96FD-4346-9DA4-3FED878002E0}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{F879DC1F-10AB-4007-A052-7DDA89B3538E}] => (Allow) C:\Program Files (x86)\BlueStacks X\BlueStacksWeb.exe => Keine Datei
FirewallRules: [{08A621B0-7A88-4981-BEA6-D291B92C930F}] => (Allow) C:\Program Files (x86)\BlueStacks X\Cloud Game.exe => Keine Datei
FirewallRules: [{D9D192B4-3D59-49A1-B445-0047E4867489}] => (Allow) C:\Program Files\BlueStacks_nxt\HD-Player.exe => Keine Datei
FirewallRules: [{DC4F3C52-49CD-44E2-8278-3ADADCB52DE5}] => (Allow) C:\Program Files\BlueStacks_nxt\BlueStacksAppplayerWeb.exe => Keine Datei
FirewallRules: [TCP Query User{72776A91-D95E-46CD-9CE1-969D222381A2}C:\program files\steinberg\wavelab pro 11\system\lib.pluginsupport.exe] => (Allow) C:\program files\steinberg\wavelab pro 11\system\lib.pluginsupport.exe => Keine Datei
FirewallRules: [UDP Query User{9A86E6C9-8651-46F6-BC86-276AD38412DE}C:\program files\steinberg\wavelab pro 11\system\lib.pluginsupport.exe] => (Allow) C:\program files\steinberg\wavelab pro 11\system\lib.pluginsupport.exe => Keine Datei
FirewallRules: [TCP Query User{36CC86EE-1142-4AB0-B3F6-BA99DFD43908}C:\users\andre\appdata\local\desktop_overlay\app-1.0.2\own3d desktop overlay.exe] => (Allow) C:\users\andre\appdata\local\desktop_overlay\app-1.0.2\own3d desktop overlay.exe => Keine Datei
FirewallRules: [UDP Query User{29CA7290-2FE5-422C-87D5-8F2BE551CF7E}C:\users\andre\appdata\local\desktop_overlay\app-1.0.2\own3d desktop overlay.exe] => (Allow) C:\users\andre\appdata\local\desktop_overlay\app-1.0.2\own3d desktop overlay.exe => Keine Datei
FirewallRules: [TCP Query User{05CE21C1-758B-496D-A0B5-26AD6FB6F744}C:\users\andre\appdata\local\desktop_overlay\app-1.1.0\own3d desktop overlay.exe] => (Allow) C:\users\andre\appdata\local\desktop_overlay\app-1.1.0\own3d desktop overlay.exe => Keine Datei
FirewallRules: [UDP Query User{95D4A38A-E2E3-49C0-946C-73B8438F8B0E}C:\users\andre\appdata\local\desktop_overlay\app-1.1.0\own3d desktop overlay.exe] => (Allow) C:\users\andre\appdata\local\desktop_overlay\app-1.1.0\own3d desktop overlay.exe => Keine Datei
FirewallRules: [TCP Query User{62D2D20E-257A-4489-83B9-C5285280D37D}C:\program files\engine dj\engine dj.exe] => (Allow) C:\program files\engine dj\engine dj.exe => Keine Datei
FirewallRules: [UDP Query User{5D3F0DD5-F87A-4595-BBEA-574F34CBF9E5}C:\program files\engine dj\engine dj.exe] => (Allow) C:\program files\engine dj\engine dj.exe => Keine Datei
FirewallRules: [{F513FC5D-0933-483C-876E-6E4E7FA19A7B}] => (Allow) C:\Users\Andre\Downloads\hitpaw-video-converter_11710879980718602801.exe => Keine Datei
FirewallRules: [{EF72174D-DA7C-4A67-A859-3418AB2E2955}] => (Allow) C:\Users\Andre\Downloads\hitpaw-video-converter_11710879980718602801.exe => Keine Datei
FirewallRules: [{B892CDAF-AD78-4FF6-9AA7-54185F90F3E9}] => (Allow) C:\Users\Andre\Downloads\hitpaw-video-converter_11711204506156661201.exe => Keine Datei
FirewallRules: [{55E8B953-D6A1-4EA0-926E-0A61D45EF708}] => (Allow) C:\Users\Andre\Downloads\hitpaw-video-converter_11711204506156661201.exe => Keine Datei
FirewallRules: [{B499BCBA-96F6-419E-9D92-58253DB39B30}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{3409FA84-C25C-4442-96DD-4FBC411220AD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{F998DBD9-3BF3-4B2A-8A60-8BFD64F0F580}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{DBBDBF5F-9731-4178-9585-773B613ABFF3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{C1A1388B-8423-4E76-AF82-035C6F920362}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{2675B5EE-69A6-4254-AD38-623C7CDB0376}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{EAE48ECA-B6BC-494E-A618-9164752278DF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{4ACA900D-EF2C-4169-83D5-23AC84F8C1D9}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{1107F9B6-FFC8-475D-8DC6-A3C58BF5BAE3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{5D89747F-E9AC-48CC-83BA-C357D2CF8048}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{D72E526A-EDAF-46A6-B6D0-2A49134F9B7B}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\123.0.2420.97\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{61A8A108-A52C-45A6-ACD4-C2C67FB1536A}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{615FFB88-41C7-455A-8628-56C24445D2F7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{A53FB61C-147D-40B6-B51C-6A0624208F2C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{65A125DD-3E8D-4A41-AF59-C0D313B821A1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{226E2415-7D0B-4B11-A5F6-90ADA22375C8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{939B7FBE-DFC4-4584-A3FB-BEFF68F3E9E0}C:\program files\obs-studio\bin\64bit\obs64.exe] => (Allow) C:\program files\obs-studio\bin\64bit\obs64.exe (Hugh Bailey -> OBS)
FirewallRules: [UDP Query User{CDBC64F3-255A-471C-AE58-1E46A26C5C68}C:\program files\obs-studio\bin\64bit\obs64.exe] => (Allow) C:\program files\obs-studio\bin\64bit\obs64.exe (Hugh Bailey -> OBS)
==================== Wiederherstellungspunkte =========================
==================== Fehlerhafte Geräte im Gerätemanager ============
==================== Fehlereinträge in der Ereignisanzeige: ========================
Applikationsfehler:
==================
Error: (04/29/2024 09:18:48 AM) (Source: Application Hang) (EventID: 1002) (User: NT-AUTORITÄT)
Description: Das Programm SystemSettings.exe Version 10.0.22621.3527 hat aufgehört mit Windows zu interagieren und wurde geschlossen. Weitere Informationen zum Problem finden Sie im Problemverlauf in der Systemsteuerung „Sicherheit und Wartung“.
Error: (04/29/2024 08:47:05 AM) (Source: Application Hang) (EventID: 1002) (User: NT-AUTORITÄT)
Description: Das Programm SecHealthUI.exe Version 10.0.22621.1 hat aufgehört mit Windows zu interagieren und wurde geschlossen. Weitere Informationen zum Problem finden Sie im Problemverlauf in der Systemsteuerung „Sicherheit und Wartung“.
Error: (04/29/2024 08:41:23 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Aufrufen von Routine "CoCreateInstance" ist ein unerwarteter Fehler aufgetreten. hr = 0x8007045b, Der Computer wird heruntergefahren..
Error: (04/29/2024 08:41:23 AM) (Source: VSS) (EventID: 13) (User: )
Description: Volumenschattenkopie-Dienst-Informationen: Der COM-Server mit CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} und dem Namen "CEventSystem" kann nicht gestartet werden. [0x8007045b, Der Computer wird heruntergefahren.]
Error: (04/29/2024 03:41:06 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 18 4.D.5.0.8.6.E.F.F.F.C.4.0.E.2.0.0.0.0.0.0.0.0.0.0.0.0.0.0.8.E.F.ip6.arpa. PTR Studio-B-3.local.
Error: (04/29/2024 03:41:06 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.178.72:5353 18 4.D.5.0.8.6.E.F.F.F.C.4.0.E.2.0.0.0.0.0.0.0.0.0.0.0.0.0.0.8.E.F.ip6.arpa. PTR Studio-B-2.local.
Error: (04/29/2024 03:41:06 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 18 72.178.168.192.in-addr.arpa. PTR Studio-B-3.local.
Error: (04/29/2024 03:41:06 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.178.72:5353 18 72.178.168.192.in-addr.arpa. PTR Studio-B-2.local.
Systemfehler:
=============
Error: (04/29/2024 09:20:32 AM) (Source: DCOM) (EventID: 10010) (User: STUDIO-B)
Description: Der Server "{F99A566C-42AE-4DE2-AD4D-D297A04C5433}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (04/29/2024 08:59:51 AM) (Source: DCOM) (EventID: 10010) (User: STUDIO-B)
Description: Der Server "{A2A6D7C6-ECBD-439E-9244-9E784608439F}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (04/29/2024 08:57:51 AM) (Source: DCOM) (EventID: 10010) (User: STUDIO-B)
Description: Der Server "{CC66E708-C687-42EA-806E-83D41C9D1A5F}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (04/29/2024 08:55:51 AM) (Source: DCOM) (EventID: 10010) (User: STUDIO-B)
Description: Der Server "{470B9B9B-0E95-4963-B265-5D58E5808C3D}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (04/29/2024 08:53:51 AM) (Source: DCOM) (EventID: 10010) (User: STUDIO-B)
Description: Der Server "{434AEC1C-8583-45EC-B88F-750D6F380BC3}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (04/29/2024 08:51:51 AM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: Der Server "{2D15188C-D298-4E10-83B2-64666CCBEBBD}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (04/29/2024 08:49:51 AM) (Source: DCOM) (EventID: 10010) (User: STUDIO-B)
Description: Der Server "{470B9B9B-0E95-4963-B265-5D58E5808C3D}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (04/29/2024 08:47:51 AM) (Source: DCOM) (EventID: 10010) (User: STUDIO-B)
Description: Der Server "{434AEC1C-8583-45EC-B88F-750D6F380BC3}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Windows Defender:
================
Date: 2024-04-28 21:57:02
Description:
Microsoft Defender Antivirus hat Schadsoftware oder andere potenziell unerwünschte Software erkannt.
Weitere Informationen:
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/crack&threatid=2147734096&enterprise=0
Name: HackTool:Win32/crack
Schweregrad: Hoch
Kategorie: Tool
Pfad: file:_D:\Filme & co\Adobe Photoshop 2024 - Pentium\1719\Adobe Photoshop 2024 v25.6.0.433\Setup\packages\setup.exe
Erkennungsursprung: Lokaler Computer
Erkennungstype: Konkret
Erkennungsquelle: Echtzeitschutz
Benutzer: STUDIO-B\Andre
Prozessname: C:\Users\Andre\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe
Sicherheitsversion: AV: 1.409.576.0, AS: 1.409.576.0, NIS: 1.409.576.0
Modulversion: AM: 1.1.24030.4, NIS: 1.1.24030.4
Date: 2024-04-28 18:25:28
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {BDC4E409-9DCB-4F3F-9CA8-7A390DD2E94D}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Date: 2024-04-28 12:24:15
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {02CFFA13-AEEE-4044-9B50-12E5CC674007}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Date: 2024-04-27 08:25:10
Description:
Microsoft Defender Antivirus hat Schadsoftware oder andere potenziell unerwünschte Software erkannt.
Weitere Informationen:
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/Keygen&threatid=2147593794&enterprise=0
Name: HackTool:Win32/Keygen
Schweregrad: Hoch
Kategorie: Tool
Pfad: file:_C:\Users\Andre\Downloads\Atomix(1)\Atomix VirtualDJ 2023 Pro Infinity 8.5.7482 (x64) Multilingual\Keygen\VirtualDJ_KeyGen.exe
Erkennungsursprung: Lokaler Computer
Erkennungstype: Konkret
Erkennungsquelle: Echtzeitschutz
Benutzer: STUDIO-B\Andre
Prozessname: C:\Windows\explorer.exe
Sicherheitsversion: AV: 1.409.546.0, AS: 1.409.546.0, NIS: 1.409.546.0
Modulversion: AM: 1.1.24030.4, NIS: 1.1.24030.4
Date: 2024-04-27 08:18:44
Description:
Microsoft Defender Antivirus hat Schadsoftware oder andere potenziell unerwünschte Software erkannt.
Weitere Informationen:
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/Keygen&threatid=2147593794&enterprise=0
Name: HackTool:Win32/Keygen
Schweregrad: Hoch
Kategorie: Tool
Pfad: file:_C:\Users\Andre\Downloads\Atomix(1)\Atomix VirtualDJ 2023 Pro Infinity 8.5.7482 (x64) Multilingual\Keygen\VirtualDJ_KeyGen.exe
Erkennungsursprung: Lokaler Computer
Erkennungstype: Konkret
Erkennungsquelle: Echtzeitschutz
Benutzer: STUDIO-B\Andre
Prozessname: C:\Windows\explorer.exe
Sicherheitsversion: AV: 1.409.546.0, AS: 1.409.546.0, NIS: 1.409.546.0
Modulversion: AM: 1.1.24030.4, NIS: 1.1.24030.4
Event[0]
Date: 2023-12-30 20:52:47
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.
Neue Version der Sicherheitsinformationen:
%Vorherige Version der Sicherheitsinformationen: 1.403.1351.0
Update Source: Microsoft Update-Server
Sicherheitstyp: AntiVirus
Updatetyp: Voll
Benutzer: NT-AUTORITÄT\SYSTEM
Aktuelle Modulversion:
%Vorherige Modulversion: 1.1.23110.2
Fehlercode: 0x80240022
Fehlerbeschreibung: Die Suche des Programms nach Definitionsaktualisierungen ist nicht möglich.
Date: 2023-12-30 20:52:47
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.
Neue Version der Sicherheitsinformationen:
%Vorherige Version der Sicherheitsinformationen: 1.403.1351.0
Update Source: Microsoft Update-Server
Sicherheitstyp: AntiVirus
Updatetyp: Voll
Benutzer: NT-AUTORITÄT\SYSTEM
Aktuelle Modulversion:
%Vorherige Modulversion: 1.1.23110.2
Fehlercode: 0x80240022
Fehlerbeschreibung: Die Suche des Programms nach Definitionsaktualisierungen ist nicht möglich.
Date: 2023-12-30 20:41:05
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.
Neue Version der Sicherheitsinformationen:
%Vorherige Version der Sicherheitsinformationen: 1.403.1351.0
Update Source: Microsoft Update-Server
Sicherheitstyp: AntiVirus
Updatetyp: Voll
Benutzer: NT-AUTORITÄT\SYSTEM
Aktuelle Modulversion:
%Vorherige Modulversion: 1.1.23110.2
Fehlercode: 0x80240022
Fehlerbeschreibung: Die Suche des Programms nach Definitionsaktualisierungen ist nicht möglich.
Date: 2023-12-30 20:41:05
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.
Neue Version der Sicherheitsinformationen:
%Vorherige Version der Sicherheitsinformationen: 1.403.1351.0
Update Source: Microsoft Update-Server
Sicherheitstyp: AntiVirus
Updatetyp: Voll
Benutzer: NT-AUTORITÄT\SYSTEM
Aktuelle Modulversion:
%Vorherige Modulversion: 1.1.23110.2
Fehlercode: 0x80240022
Fehlerbeschreibung: Die Suche des Programms nach Definitionsaktualisierungen ist nicht möglich.
Date: 2023-07-26 04:41:15
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.
Neue Version der Sicherheitsinformationen:
%Vorherige Version der Sicherheitsinformationen: 1.393.1373.0
Update Source: Microsoft Update-Server
Sicherheitstyp: AntiVirus
Updatetyp: Voll
Benutzer: NT-AUTORITÄT\SYSTEM
Aktuelle Modulversion:
%Vorherige Modulversion: 1.1.23060.1005
Fehlercode: 0x80240438
Fehlerbeschreibung: Unerwartetes Problem bei der Überprüfung auf Updates. Informationen zum Installieren von Updates oder zur Problembehandlung finden Sie unter "Hilfe und Support".
CodeIntegrity:
===============
Date: 2024-04-29 09:16:52
Description:
Code Integrity determined that a process (\Device\HarddiskVolume8\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume8\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
==================== Speicherinformationen ===========================
BIOS: LENOVO O3AKT25A 04/30/2019
Hauptplatine: LENOVO 36D9
Prozessor: Intel(R) Core(TM) i7-7700 CPU @ 3.60GHz
Prozentuale Nutzung des RAM: 38%
Installierter physikalischer RAM: 16298.11 MB
Verfügbarer physikalischer RAM: 10078.78 MB
Summe virtueller Speicher: 19754.11 MB
Verfügbarer virtueller Speicher: 11807.72 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:118.44 GB) (Free:7.89 GB) (Model: SAMSUNG MZVLW128HEGR-000L1) NTFS
Drive d: (Volume) (Fixed) (Total:232.88 GB) (Free:183.73 GB) (Model: Samsung SSD 850 EVO 250GB) NTFS
Drive e: (Aktive Spiele) (Fixed) (Total:1862.4 GB) (Free:1830.12 GB) (Model: ST2000DM001-1ER164) NTFS
\\?\Volume{1583d2e0-2e10-4849-9a8d-c475764ebe7c}\ () (Fixed) (Total:0.5 GB) (Free:0.08 GB) NTFS
\\?\Volume{ab9c1cfe-189f-4a4f-88b3-ff26c79dbb50}\ () (Fixed) (Total:0.69 GB) (Free:0.08 GB) NTFS
\\?\Volume{f71b3926-24a2-43ee-b5ff-b84f51df4b9e}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
\\?\Volume{d40ddf62-0a91-4dc9-bce0-f597f35d6184}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partitionstabelle ====================
==========================================================
Disk: 0 (Size: 1863 GB) (Disk ID: 4A27AC30)
Partition: GPT.
==========================================================
Disk: 1 (Size: 232.9 GB) (Disk ID: 51E430AE)
Partition: GPT.
==========================================================
Disk: 2 (Size: 119.2 GB) (Disk ID: 4A27AC0C)
Partition: GPT.
==================== Ende von Addition.txt =======================
--- --- ---
Die Waren gemeint, oder? |
Cracks, Keygens und andere illegale Software