| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Windows 10: audacity.de Installer NOCH in der Ausführung. Soll ich ihn schließen? PC Neustarten?Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
13.10.2021, 16:17
| #1 |
 |  Windows 10: audacity.de Installer NOCH in der Ausführung. Soll ich ihn schließen? PC Neustarten? Hallo allerseits, ich recherchiere eigentlich immer bevor ich etwas downloade... dieses Mal habe ich vorschnell geklickt. Jetzt habe ich den Salat: audacity.de scheint bekanntermaßen eine fake Seite zu sein. Windows Defender schlägt bei einer Schnellüberprüfung nicht an, auch wenn ich jetzt den Installer gezielt prüfe. Ich habe den Installer audacity-win3.0.0.exe heruntergeladen, darauf geklickt und den Installationsvorgang gestartet. Der Installer fragte mich, ob ich 2 Tools installiert bekommen möchte, ich verneinte. Audacity würde nun "heruntergeladen". Jetzt ist der Installer durchgelaufen und es steht da: "Sie können das Installationsproramm für audacity starten indem Sie auf "Jetzt installieren" klicken, oder das Program beenden, indem sie auf "Schließen" klicken. Wenn sie das Programm schließen, ohne Ihre Software zu installieren, können Sie es jederzeit erneut ausführen." Da bin ich stutzig geworden. Ich habe noch auf nichts geklickt, nehme aber an, dass was auch immer für malware möglich ist jetzt schon runtergeladen wurde... Ich hänge schonmal alle logfiles an, hoffe, das ist okay in dieser Rubrik des Forums. Was soll ich klicken? Oder den PC neustarten? Ich versuche den Installer offen zu lassen, bis ich eine Antwort bekomme. FRST.TXT Code:
ATTFilter ==================== Registry (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412736 2021-09-07] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [301880 2018-08-23] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [8091424 2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] => C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe [766464 2016-02-29] (Cisco Systems, Inc. -> Cisco Systems, Inc.)
HKLM-x32\...\Run: [KeePass 2 PreLoad] => C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [3331264 2020-01-20] (Open Source Developer, Dominik Reichl -> Dominik Reichl)
HKLM-x32\...\Run: [PDFPrint] => C:\Program Files (x86)\PDF24\pdf24.exe [210432 2016-07-05] (Geek Software GmbH -> Geek Software GmbH)
HKLM-x32\...\Run: [DBAgent] => C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\DBAgent.exe [1563424 2016-06-28] (Seagate Technology LLC -> Seagate Technology LLC)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2095672 2020-10-10] (Adobe Inc. -> Adobe Inc.)
HKLM-x32\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\\isuspm.exe [2075480 2013-06-24] (Flexera Software LLC -> Flexera Software LLC.)
HKLM-x32\...\Run: [DNS7reminder] => C:\Program Files (x86)\Nuance\NaturallySpeaking15\Ereg\Ereg.exe [3146120 2016-05-06] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [588704 2018-03-28] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Nikon Message Center 2] => C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe [588288 2016-01-08] (Nikon Corporation) [Datei ist nicht signiert]
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [114824 2020-10-10] (Adobe Inc. -> )
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Run: [f.lux] => C:\Users\xxxx\AppData\Local\FluxSoftware\Flux\flux.exe [1515848 2021-06-18] (F.lux Software LLC -> f.lux Software LLC)
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe [2075480 2013-06-24] (Flexera Software LLC -> Flexera Software LLC.)
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2018-10-01] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [67896 2018-10-01] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Run: [Spotify] => C:\Users\xxxx\AppData\Roaming\Spotify\Spotify.exe [23592304 2020-12-22] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\xxxx\AppData\Local\Microsoft\Teams\Update.exe [2453656 2021-02-21] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Run: [vidnotifier.exe] => C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\vidnotifier\vidnotifier.exe [1814848 2019-08-22] (Digital Wave Ltd -> Digital Wave Ltd)
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Run: [CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [114824 2020-10-10] (Adobe Inc. -> )
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Run: [EyeDefender] => C:\Program Files (x86)\EyeDefender\EyeDefender.exe [163840 2009-11-18] () [Datei ist nicht signiert]
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Run: [Adobe Reader Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe [5397216 2021-09-25] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Run: [HP Deskjet 3520 series (NET)] => C:\Program Files\HP\HP Deskjet 3520 series\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett Packard -> Hewlett-Packard Co.)
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Run: [Bitrix24] => C:\Program Files (x86)\Bitrix24\Bitrix24.exe [18171480 2021-06-09] (Bitrix, Inc. -> Bitrix)
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Run: [Opera Browser Assistant] => C:\Users\xxxx\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [4105424 2021-10-05] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\xxxx\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe"
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\xxxx\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe"
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\RunOnce: [Uninstall 21.170.0822.0002] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\xxxx\AppData\Local\Microsoft\OneDrive\21.170.0822.0002"
HKLM\...\Print\Monitors\HP B011 Status Monitor: C:\Windows\System32\hpinkstsB011LM.dll [331664 2012-06-13] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP Deskjet 3520 series): C:\Windows\System32\HPDiscoPMB011.dll [741480 2012-10-17] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\Nitro PDF Port Monitor: C:\Windows\System32\nitrolocalmon11.dll [31944 2017-03-09] (Nitro Software, Inc. -> Nitro Software, Inc.)
HKLM\...\Print\Monitors\PDF-XChange Lite Port Monitor: C:\WINDOWS\system32\pxcpmL.dll [2147072 2020-01-06] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
HKLM\Software\...\AppCompatFlags\Custom\H3Blade.exe: [{62a24b39-0106-4990-90ea-3a09e9dda7a6}.sdb] -> HoMM III Compatibility Database
HKLM\Software\...\AppCompatFlags\Custom\Heroes3.exe: [{62a24b39-0106-4990-90ea-3a09e9dda7a6}.sdb] -> HoMM III Compatibility Database
HKLM\Software\...\AppCompatFlags\InstalledSDB\{62a24b39-0106-4990-90ea-3a09e9dda7a6}: [DatabasePath] -> C:\WINDOWS\AppPatch\CustomSDB\{62a24b39-0106-4990-90ea-3a09e9dda7a6}.sdb [2021-01-02]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\94.0.4606.81\Installer\chrmstp.exe [2021-10-13] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Dell Display Manager.lnk [2016-07-20]
ShortcutTarget: Dell Display Manager.lnk -> C:\Program Files (x86)\Dell\Dell Display Manager\ddm.exe (EnTech Taiwan -> EnTech Taiwan)
Startup: C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\An OneNote senden.lnk [2018-10-07]
ShortcutTarget: An OneNote senden.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
Startup: C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ausschneiden shortcut.ahs - Verknüpfung.lnk [2020-11-17]
ShortcutTarget: ausschneiden shortcut.ahs - Verknüpfung.lnk -> C:\Users\xxxx\Documents\Desktop aufräum 16Nov20\Aufräum22Aug20\ausschneiden shortcut.ahs (Keine Datei)
Startup: C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Tintenwarnungen überwachen - HP Deskjet 3520 series (Netzwerk).lnk [2021-10-07]
ShortcutAndArgument: Tintenwarnungen überwachen - HP Deskjet 3520 series (Netzwerk).lnk -> C:\WINDOWS\system32\RunDll32.exe => "C:\Program Files\HP\HP Deskjet 3520 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN27J1204Q05SY;CONNECTION=NW;MONITOR=1;
GroupPolicy: Beschränkung ? <==== ACHTUNG
Policies: C:\ProgramData\NTUSER.pol: Beschränkung <==== ACHTUNG
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\SOFTWARE\Policies\Google: Beschränkung <==== ACHTUNG
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {0347E766-D2FD-4818-AC8F-EAE3C7F11598} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1758792 2021-09-22] (Lenovo -> )
Task: {07F8865C-7AD5-45D3-BB07-1C47B52D830E} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1562376 2021-08-16] (Adobe Inc. -> Adobe Inc.)
Task: {085C3489-F63D-4F6C-A032-3B946FD25D1F} - System32\Tasks\{013997F2-8BC7-4E13-8F7F-314FA024B459} => C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\EA Games\Battlefield 2\BF2.exe" -d "C:\Program Files (x86)\EA Games\Battlefield 2"
Task: {120070D7-88E7-4D51-953B-37890A9A08CE} - \Microsoft\Windows\UNP\RunCampaignManager -> Keine Datei <==== ACHTUNG
Task: {124DAE38-187A-449B-9BD4-673E69107ABC} - System32\Tasks\G2MUpdateTask-S-1-5-21-2977029141-1010321603-2543741146-1001 => C:\Users\xxxx\AppData\Local\GoToMeeting\19796\g2mupdate.exe [31176 2021-07-02] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {133A42DF-0438-4F80-9BA7-C10883E7E669} - System32\Tasks\Lenovo\Power Manager\Uninstall task => C:\WINDOWS\SysWOW64\PowerMgrInst.exe [62136 2021-07-11] (Lenovo -> )
Task: {1B36DE3D-3946-45B2-9F22-5C8F1F95E351} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [677344 2021-02-03] (Mozilla Corporation -> Mozilla Foundation)
Task: {1F326534-2093-477B-B292-41517537BE0E} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3618088 2020-07-21] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {1FB09E97-8905-4FB7-9EB4-5F1FC5C72FB8} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-2977029141-1010321603-2543741146-1001 => "C:\WINDOWS\system32\rundll32.exe" dfshim.dll,ShOpenVerbShortcut C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo\Lenovo Service Bridge.appref-ms
Task: {280B69A7-35E3-4D2B-8BFB-C8F766495CAF} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {2DB5B364-0264-43A0-91E1-3035B2FAD9F6} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [110440 2021-10-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {3ACA6790-B706-4443-86FA-B4F06BFC92F8} - System32\Tasks\G2MUploadTask-S-1-5-21-2977029141-1010321603-2543741146-1001 => C:\Users\Tino\AppData\Local\GoToMeeting\19796\g2mupload.exe [31176 2021-07-02] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {3CD48984-98B2-4B12-AAB5-056D0EB27C3F} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [129808 2021-08-16] (Dropbox, Inc -> Dropbox, Inc.)
Task: {471DCC8B-7628-41BC-AC38-8486419A1CE5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MpCmdRun.exe [884544 2021-10-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4DBF32E2-8203-4161-A52A-09BBB290CFD4} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21976976 2021-09-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {5B75D761-9B2A-4818-A8AE-3D8E0B50FFA4} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4255680 2021-10-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {5EE5EE4B-0A1B-4DA2-88E3-0F54B04DCA4C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MpCmdRun.exe [884544 2021-10-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6198F25E-F891-4497-8707-2DDB5D9557B1} - System32\Tasks\{80D29C8F-D447-49C9-8258-37B82F03453E} => C:\WINDOWS\system32\pcalua.exe -a "C:\Users\Tino\Documents\Games\Warcraft III\Frozen Throne.exe" -d "C:\Users\Tino\Documents\Games\Warcraft III"
Task: {647193AF-B5F1-45CD-B52E-EEC335422AF9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-03-28] (Google Inc -> Google Inc.)
Task: {6C845043-ABE1-4700-9B16-95C644899DA3} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [110440 2021-10-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {726ABB6F-2264-4603-9D1D-D4C97A07BA9A} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-ZENSIERT => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {85C90DFE-E99B-43AF-AD4E-1E63A67DB880} - System32\Tasks\Microsoft\Office\Office Serviceability Manager => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe [4103280 2021-09-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {8B27B185-8776-45B5-A85E-85B006703283} - System32\Tasks\{D0AF2B37-7844-4D3F-8F1E-40653F6642AD} => C:\WINDOWS\system32\pcalua.exe -a "C:\Users\Tino\Documents\Games\Battlefield 2\BF2.exe" -d "C:\Users\Tino\Documents\Games\Battlefield 2"
Task: {9B6B607A-47E8-42C8-AEB3-8665CD751170} - System32\Tasks\Lenovo\Power Manager\Background monitor => C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe [112824 2021-07-11] (Lenovo -> Lenovo)
Task: {A3DE6174-5DE4-49CE-9BEF-4EC46DBB9460} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1758792 2021-09-22] (Lenovo -> )
Task: {AAFC4740-76D0-4846-BF4C-C2AF6DBA0C9E} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412736 2021-09-07] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {AD7218D6-A02C-455D-815A-2597B63AA670} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MpCmdRun.exe [884544 2021-10-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {AE109CE3-699E-4C21-9C3F-08D382B22983} - System32\Tasks\RtHDVBg_Dolby => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3618088 2020-07-21] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {B5D885D4-864F-4F26-99D1-B3F8B4AB4231} - System32\Tasks\Opera scheduled Autoupdate 1631522888 => C:\Users\Tino\AppData\Local\Programs\Opera\launcher.exe [42731728 2021-09-28] (Opera Software AS -> Opera Software)
Task: {B63A8BFC-47B6-4D00-A453-4D1040B5CE6C} - System32\Tasks\Lenovo Power Management Driver PnP Task => C:\WINDOWS\System32\ibmpmsvc.exe [949632 2019-12-11] (Lenovo -> Lenovo.)
Task: {C0668F73-BEC3-4D8B-8144-C8FFD6304080} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21976976 2021-09-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {C67F174E-8388-48C0-A03F-F51174497229} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [651400 2017-09-20] (Hewlett Packard -> HP Inc.)
Task: {CAD6B928-F79E-408C-88A7-C908E609223F} - System32\Tasks\Opera scheduled assistant Autoupdate 1631522903 => C:\Users\Tino\AppData\Local\Programs\Opera\launcher.exe [42731728 2021-09-28] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Tino\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {D78E358B-13FA-4B84-ACDC-4AB41FE247C7} - System32\Tasks\Optimize Push Notification Data File-S-1-5-21-2977029141-1010321603-2543741146-1001 => {201600D8-6EFF-48CE-B842-E14D37A0682D} C:\WINDOWS\System32\wpninprc.dll [24064 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Task: {D8D50A53-B829-4CA4-9A3E-82EA56C43499} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MpCmdRun.exe [884544 2021-10-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {DDF2E756-B2F4-428D-A586-1A7EC980992A} - System32\Tasks\Microsoft\Windows\Display\Brightness\BrightnessReset => {2755524D-68F2-4B39-A816-9DB31839C897}
Task: {DFAB118F-BC0E-4054-A149-CF0E76A6D44D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [136056 2019-01-02] (HP Inc. -> HP Inc.)
Task: {E09EC5E7-FEBC-4332-A1E9-1510F60005DC} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [129808 2021-08-16] (Dropbox, Inc -> Dropbox, Inc.)
Task: {E17C663A-4B5D-468E-ADC9-EF3071FEFD0E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4255680 2021-10-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {E31270B0-F9F4-4023-B880-C8F878C4F7DC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-03-28] (Google Inc -> Google Inc.)
Task: {E4C14D83-AD24-4737-87FC-462045AFB77D} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1153408 2021-10-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {FCC9C19A-B9FB-4D22-AD81-B4B670A509EE} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616320 2018-01-08] (Apple Inc. -> Apple Inc.)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-2977029141-1010321603-2543741146-1001.job => C:\Users\Tino\AppData\Local\GoToMeeting\19796\g2mupdate.exe
Task: C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-2977029141-1010321603-2543741146-1001.job => C:\Users\Tino\AppData\Local\GoToMeeting\19796\g2mupload.exe
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Hosts: Es ist mehr als ein Eintrag in der Hosts Datei zu finden. Siehe Hosts-Bereich in Addition.txt
Tcpip\..\Interfaces\{74f2711d-31a5-4cd1-acb2-da289773e58b}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{8615153c-5251-43cd-854c-39b15bffcf27}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{9c782f4b-dc60-4c43-b3a5-e71060c318ce}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{b855478f-1909-4465-92c3-e2e3e88c021a}: [DhcpNameServer] 192.168.2.1
Edge:
=======
Edge Extension: (Kein Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [nicht gefunden]
Edge Extension: (Kein Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [nicht gefunden]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Tino\AppData\Local\Microsoft\Edge\User Data\Default [2021-10-13]
Edge DownloadDir: Default -> C:\Users\Tino\Downloads
Edge Notifications: Default -> hxxps://www.spartanien.de
Edge HomePage: Default -> hxxps://start.duckduckgo.com/
Edge Extension: (Google Scholar-Schaltfläche) - C:\Users\Tino\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fciokoalnclhnonofghacdplgpafdcgl [2020-08-12]
Edge HKLM-x32\...\Edge\Extension: [mielbhbkcliienpdicphhecpodcaeefg]
FireFox:
========
FF DefaultProfile: nsk17f5j.default
FF ProfilePath: C:\Users\Tino\AppData\Roaming\Mozilla\Firefox\Profiles\nsk17f5j.default [2021-09-13]
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2017-08-11] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @java.com/DTPlugin,version=11.171.2 -> C:\Program Files\Java\jre1.8.0_171\bin\dtplugin\npDeployJava1.dll [2018-04-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.171.2 -> C:\Program Files\Java\jre1.8.0_171\bin\plugin2\npjp2.dll [2018-04-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-01-06] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-01-06] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-01-06] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2020-10-10] (Adobe Inc. -> Adobe Systems)
FF Plugin: nuance.com/DgnRia2_x86_64 -> C:\Program Files (x86)\Nuance\NaturallySpeaking15\Program\x64\npDgnRia2_x64.dll [2016-08-23] (Nuance Communication, Inc. -> Nuance Communications, Inc.)
FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2017-08-11] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-05-26] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-05-26] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nitropdf.com/NitroPDF -> C:\Program Files (x86)\Nitro\Pro 11\npnitromozilla.dll [2017-03-09] (Nitro Software, Inc. -> Nitro PDF)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2020-01-06] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2020-01-06] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2020-01-06] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-09-25] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2020-10-10] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: nuance.com/DgnRia2 -> C:\Program Files (x86)\Nuance\NaturallySpeaking15\Program\npDgnRia2.dll [2016-08-23] (Nuance Communication, Inc. -> Nuance Communications, Inc.)
FF Plugin HKU\.DEFAULT: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-01-06] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\.DEFAULT: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-01-06] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\.DEFAULT: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-01-06] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-2977029141-1010321603-2543741146-1001: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2017-08-11] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-2977029141-1010321603-2543741146-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-01-06] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-2977029141-1010321603-2543741146-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-01-06] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-2977029141-1010321603-2543741146-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-01-06] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-2977029141-1010321603-2543741146-1001: tdameritrade.com/thinkorswim -> C:\Program Files\thinkorswim\npthinkorswim.dll [2018-10-28] (TD Ameritrade -> TD Ameritrade)
FF Plugin HKU\S-1-5-21-2977029141-1010321603-2543741146-1001: tdameritrade.com/tossc -> C:\Program Files\thinkorswim\nptossc.dll [2018-10-28] (TD Ameritrade -> TD Ameritrade)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2021-02-03]
Chrome:
=======
CHR Profile: C:\Users\Tino\AppData\Local\Google\Chrome\User Data\Default [2021-10-13]
CHR DownloadDir: C:\Users\Tino\Downloads
CHR HomePage: Default -> hxxps://start.duckduckgo.com/
CHR Session Restore: Default -> ist aktiviert.
CHR Extension: (Präsentationen) - C:\Users\Tino\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Docs) - C:\Users\Tino\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Google Drive) - C:\Users\Tino\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-25]
CHR Extension: (RescueTime for Chrome and Chrome OS) - C:\Users\Tino\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdakmnplckeopfghnlpocafcepegjeap [2020-06-01]
CHR Extension: (YouTube) - C:\Users\Tino\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-03-28]
CHR Extension: (Adblock Plus - kostenloser Adblocker) - C:\Users\Tino\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-09-07]
CHR Extension: (Tabellen) - C:\Users\Tino\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (Google Docs Offline) - C:\Users\Tino\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-09-30]
CHR Extension: (Shoop Cashback & Gutscheine) - C:\Users\Tino\AppData\Local\Google\Chrome\User Data\Default\Extensions\hacngjmphfcjdfpmfmlngemhddjdncpe [2021-09-07]
CHR Extension: (Google Scholar-Schaltfläche) - C:\Users\Tino\AppData\Local\Google\Chrome\User Data\Default\Extensions\ldipcbpaocekfooobnbcddclnhejkcpn [2020-10-10]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Tino\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30]
CHR Extension: (Citavi Picker) - C:\Users\Tino\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohgndokldibnndfnjnagojmheejlengn [2021-04-27]
CHR Extension: (Google Mail) - C:\Users\Tino\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Profile: C:\Users\Tino\AppData\Local\Google\Chrome\User Data\System Profile [2020-09-09]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [ohgndokldibnndfnjnagojmheejlengn]
Opera:
=======
OPR Profile: C:\Users\Tino\AppData\Roaming\Opera Software\Opera Stable [2021-10-07]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\Tino\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2021-09-27]
OPR Extension: (Amazon Assistant Promotion) - C:\Users\Tino\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2021-09-13]
==================== Dienste (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-08-16] (Adobe Inc. -> Adobe Inc.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [852024 2020-10-10] (Adobe Inc. -> Adobe Inc.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3833088 2021-09-07] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3603200 2021-09-07] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2018-08-23] (Apple Inc. -> Apple Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9250696 2021-10-03] (Microsoft Corporation -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [129808 2021-08-16] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [129808 2021-08-16] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44328 2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [441664 2019-08-22] (Digital Wave Ltd -> Digital Wave Ltd)
R2 Dolby DAX2 API Service; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [189464 2020-06-02] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.)
R2 DragonLoggerService; C:\Program Files (x86)\Common Files\Nuance\loggerservice.exe [166280 2016-08-23] (Nuance Communication, Inc. -> Nuance Communications, Inc.)
S3 ESLoadService; C:\Program Files (x86)\EaseUS\EaseUS MobiMover\bin\ESLoadService.exe [47840 2018-10-15] (CHENGDU YIWO Tech Development Co., Ltd. -> TODO: <Company name>) [Datei ist nicht signiert]
R2 FoxitReaderUpdateService; C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe [2357880 2021-07-21] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [1728072 2020-10-01] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6821960 2020-10-01] (GOG Sp. z o.o. -> GOG.com)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [347512 2018-12-06] (HP Inc. -> HP Inc.)
R2 KinoniSvc; C:\Program Files (x86)\Kinoni\EpocCam_and_Barcode_drivers\KinoniSvc.exe [525312 2013-02-26] () [Datei ist nicht signiert]
R2 Lenovo Instant On; C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\EasyResume.exe [2351320 2021-07-11] (Lenovo -> Lenovo Group Limited)
S2 LPlatSvc; C:\WINDOWS\System32\LPlatSvc.exe [892288 2019-12-11] (Lenovo -> Lenovo.)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6933272 2020-06-05] (Malwarebytes Inc -> Malwarebytes)
R2 NitroDriverReadSpool11; C:\Program Files\Nitro\Pro 11\NitroPDFDriverService11x64.exe [327368 2017-03-09] (Nitro Software, Inc. -> Nitro Software, Inc.)
R2 NitroUpdateService; C:\Program Files\Nitro\Pro 11\Nitro_UpdateService.exe [419016 2017-03-09] (Nitro Software, Inc. -> )
R2 nlsX86cc; C:\WINDOWS\SysWOW64\NLSSRV32.EXE [71880 2017-03-09] (Nitro Software, Inc. -> Nalpeiron Ltd.)
S3 OfficeSvcManagerAddons; C:\WINDOWS\system32\dllhost.exe /Processid:{2CA2E202-932F-4BA2-8771-195BB86398F5} [21312 2020-12-22] (Microsoft Windows -> Microsoft Corporation)
S3 ProtonVPN Service; C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPNService.exe [98624 2020-07-22] (ProtonVPN AG -> )
S3 ProtonVPN Update Service; C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.UpdateService.exe [61760 2020-07-22] (ProtonVPN AG -> )
R2 Seagate Dashboard Services; C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\Seagate.Dashboard.DASWindowsService.exe [16216 2016-06-28] (Seagate Technology LLC -> Seagate Technology LLC)
R2 Seagate MobileBackup Service; C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\MobileService.exe [143656 2016-06-28] (Seagate Technology LLC -> Seagate Technology LLC)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5394872 2021-09-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 ss_conn_launcher_service; C:\WINDOWS\System32\Samsung\EasySetup\ss_conn_launcher.exe [182128 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10884848 2017-05-23] (TeamViewer GmbH -> TeamViewer GmbH)
R2 TunnelBearMaintenance; C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.exe [139896 2019-06-19] (TunnelBear -> TunnelBear)
R2 valWBFPolicyService; C:\WINDOWS\system32\valWBFPolicyService.exe [77792 2018-04-25] (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated)
R2 valWbioSyncSvc; C:\WINDOWS\system32\valWbioSyncSvc.exe [48608 2018-04-25] (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\NisSrv.exe [2855512 2021-10-03] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MsMpEng.exe [128392 2021-10-03] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 ZeroTierOneService; C:\ProgramData\ZeroTier\One\zerotier-one_x64.exe [1879160 2020-12-18] (ZeroTier, Inc. -> )
===================== Treiber (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Datei ist nicht signiert]
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159864 2021-06-29] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 KINONI_Wave; C:\WINDOWS\system32\drivers\kinonivad.sys [32360 2016-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-06-05] (Microsoft Windows Early Launch Anti-Malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-06-05] (Malwarebytes Inc -> Malwarebytes)
R3 MpKslb90082a1; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{4285186A-C9DA-4BFC-9C15-76B8065811E1}\MpKslDrv.sys [130272 2021-10-13] (Microsoft Windows -> Microsoft Corporation)
R0 PMDRVS; C:\WINDOWS\System32\drivers\pmdrvs.sys [38160 2019-12-11] (Lenovo -> Lenovo.)
S3 ProtonVPNSplitTunnel; C:\Program Files (x86)\Proton Technologies\ProtonVPN\x64\Win10\ProtonVPN.SplitTunnelDriver.sys [31584 2020-06-03] (Microsoft Windows Hardware Compatibility Publisher -> Proton Technologies AG)
R1 SMIDriverGen; C:\WINDOWS\system32\DRIVERS\smi.sys [31440 2018-04-25] (Synaptics Inc. -> Synaptics Incorporated)
S3 SPUVCbv; C:\WINDOWS\System32\Drivers\SPUVCbv64.sys [735744 2016-03-11] (Sunplus Innovation Technology Inc. -> Sunplus)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [43376 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 tap-tb-0901; C:\WINDOWS\System32\drivers\tap-tb-0901.sys [38656 2019-06-19] (TunnelBear, Inc. -> The OpenVPN Project)
S3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [44896 2018-07-24] (TEFINCOM S.A. -> The OpenVPN Project)
R3 tapprotonvpn; C:\WINDOWS\System32\drivers\tapprotonvpn.sys [49008 2020-04-06] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S3 vpnva; C:\WINDOWS\System32\drivers\vpnva64-6.sys [52592 2016-02-29] (Cisco Systems, Inc. -> Cisco Systems, Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48520 2021-10-03] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [434424 2021-10-03] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86264 2021-10-03] (Microsoft Windows -> Microsoft Corporation)
S3 WirelessKeyboardFilter; C:\WINDOWS\System32\drivers\WirelessKeyboardFilter.sys [49336 2018-03-11] (Microsoft Corporation -> Microsoft Corporation)
R3 zttap300; C:\WINDOWS\System32\drivers\zttap300.sys [31744 2020-11-24] (Microsoft Windows Hardware Compatibility Publisher -> ZeroTier Networks LLC)
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat (erstellte) (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2021-10-13 16:41 - 2021-10-13 16:41 - 002310656 _____ (Farbar) C:\Users\Tino\Downloads\FRST64 (1).exe
2021-10-13 16:24 - 2021-10-13 16:24 - 000000000 ____D C:\Users\Tino\AppData\Local\AC001
2021-10-13 16:23 - 2021-10-13 16:24 - 032560504 _____ (Audacity Team) C:\Users\Tino\Downloads\audacity-win3.0.0.exe
2021-10-13 14:49 - 2021-10-13 14:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\lenovo
2021-10-13 14:49 - 2021-10-13 14:49 - 000000000 ____D C:\Program Files (x86)\Lenovo
2021-10-13 14:28 - 2021-10-13 14:34 - 000000289 ____C C:\Users\Tino\Documents\Lumas Rabattcode.txt
2021-10-13 12:52 - 2021-10-13 12:52 - 000000000 ___HD C:\$WinREAgent
2021-10-12 09:41 - 2021-10-12 09:41 - 000070542 _____ C:\Users\Tino\Downloads\ssl-erklärung_1_0 (2).pdf
2021-10-12 09:41 - 2021-10-12 09:41 - 000070542 _____ C:\Users\Tino\Downloads\ssl-erklärung_1_0 (1).pdf
2021-10-12 09:37 - 2021-10-12 09:42 - 000077696 _____ C:\Users\Tino\Downloads\ssl-erklärung_1_0.pdf
2021-10-05 17:49 - 2021-10-06 15:56 - 000000000 ___DC C:\Users\Tino\Documents\*****
2021-10-05 17:47 - 2021-10-05 17:47 - 000131636 ____C C:\Users\Tino\Documents\*****
2021-10-04 16:21 - 2021-10-04 16:21 - 000183239 _____ C:\Users\Tino\Downloads\*******
2021-10-03 19:05 - 2021-10-03 19:06 - 001729024 ____C C:\Users\Tino\Documents\*****
2021-10-03 17:19 - 2021-10-03 19:00 - 001728512 ____C C:\Users\Tino\Documents\*******
2021-10-02 13:47 - 2021-10-02 13:47 - 000032794 _____ C:\Users\Tino\Downloads\Dein REWE eBon vom 01.10.2021.pdf
2021-10-02 13:18 - 2021-10-02 13:18 - 000099919 _____ C:\Users\Tino\Downloads\12166745.pdf
2021-09-30 07:58 - 2021-09-30 07:58 - 000011569 _____ C:\Users\Tino\Downloads\anforderungsliste.zip
2021-09-29 23:02 - 2021-09-29 23:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2021-09-28 21:24 - 2021-09-28 21:24 - 000028577 _____ C:\Users\Tino\Downloads\******
2021-09-28 09:18 - 2021-09-30 15:03 - 000000000 ____D C:\Users\Tino\AppData\Roaming\gitmind-electron
2021-09-28 09:17 - 2021-09-28 09:17 - 001886192 _____ (Apowersoft) C:\Users\Tino\Downloads\gitmind-setup.exe
2021-09-28 09:17 - 2021-09-28 09:17 - 000002234 _____ C:\Users\Public\Desktop\GitMind.lnk
2021-09-28 09:17 - 2021-09-28 09:17 - 000000000 ____D C:\Users\Tino\AppData\Local\gitmind-electron-updater
2021-09-28 09:01 - 2021-09-29 22:58 - 000000000 ____D C:\Users\Tino\AppData\Roaming\Archi4
2021-09-28 09:01 - 2021-09-28 09:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Archi4
2021-09-28 09:01 - 2021-09-28 09:01 - 000000000 ____D C:\Program Files\Archi4
2021-09-27 20:55 - 2021-09-27 20:55 - 001360684 ____C C:\Users\Tino\Desktop\Cooler Jingle Idea DAK Hotline 27Sept21.wav
2021-09-27 16:40 - 2021-09-27 16:40 - 001357720 _____ C:\Users\Tino\Downloads\Offener Brief D.pdf
2021-09-27 16:40 - 2021-09-27 16:40 - 000159458 _____ C:\Users\Tino\Downloads\iCRM_Projekt D.pdf
2021-09-27 15:51 - 2021-09-27 15:51 - 000001411 _____ C:\Users\Tino\Downloads\xxxxx.CSV
2021-09-27 15:43 - 2021-09-27 15:43 - 000001145 _____ C:\Users\Tino\Downloads\xxxxx.CSV
2021-09-27 09:45 - 2021-09-27 09:45 - 112561399 _____ (Phillip Beauvoir ) C:\Users\Tino\Downloads\Archi-Win64-Setup-4.8.1.exe
2021-09-26 23:17 - 2021-09-27 20:58 - 000021381 _____ C:\Users\Tino\Documents\*******
2021-09-26 00:01 - 2021-09-26 00:01 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2021-09-26 00:01 - 2021-09-26 00:01 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2021-09-26 00:01 - 2021-09-26 00:01 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2021-09-26 00:01 - 2021-09-26 00:01 - 000044328 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2021-09-25 13:28 - 2021-09-25 13:28 - 000116034 _____ C:\Users\Tino\Downloads\102538831_20210909_176.pdf
2021-09-25 13:27 - 2021-09-25 13:27 - 000689221 _____ C:\Users\Tino\Downloads\NW_08094600001781.pdf
2021-09-22 22:30 - 2021-10-04 20:32 - 000000000 ___DC C:\Users\Tino\Documents\Desktop Aufräum 22Sept21
2021-09-22 22:28 - 2021-09-22 22:28 - 000000423 ____C C:\Users\Tino\Documents\Mama Corona Maßnahmen Prävention.txt
2021-09-22 22:06 - 2021-09-22 22:06 - 000062706 _____ C:\Users\Tino\Downloads\Protokoll
2021-09-22 09:49 - 2021-10-12 18:24 - 000000000 __RDC C:\Users\Tino\Documents\Bitrix24
2021-09-21 13:28 - 2021-09-21 13:28 - 000001062 _____ C:\Users\Tino\Downloads\BAHN_Fahrplan.ics
2021-09-21 09:07 - 2021-09-21 09:07 - 000000083 ____C C:\Users\Tino\Documents\Bahn ecoupon bis 11Dez21.txt
2021-09-21 08:57 - 2021-09-21 08:57 - 001343290 _____ C:\Users\Tino\Downloads\tarifbestimmungen_nrw.pdf
2021-09-20 18:39 - 2021-09-20 18:39 - 000005910 ____C C:\Users\Tino\Documents\Microphone Test_LavalierAKGIntern.aup
2021-09-20 18:39 - 2021-09-20 18:39 - 000000000 ___DC C:\Users\Tino\Documents\Microphone Test_LavalierAKGIntern_data
2021-09-20 18:13 - 2021-09-20 18:13 - 001717874 ____C C:\Users\Tino\Documents\test.pdf
2021-09-20 18:01 - 2021-09-20 18:01 - 000000000 ___DC C:\Users\Tino\AppData\LocalLow\Foxit
2021-09-20 17:56 - 2021-09-20 17:56 - 000000000 ____D C:\Users\Public\Foxit Software
2021-09-20 17:55 - 2021-09-20 18:04 - 000000000 ____D C:\Users\Tino\AppData\Roaming\Foxit Software
2021-09-20 17:55 - 2021-09-20 17:55 - 000000000 ____D C:\Users\Tino\AppData\Roaming\Foxit AgentInformation
2021-09-20 17:55 - 2021-09-20 17:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit PDF Reader
2021-09-20 17:55 - 2021-09-20 17:55 - 000000000 ____D C:\ProgramData\Foxit Software
2021-09-20 17:55 - 2021-09-20 17:55 - 000000000 ____D C:\ProgramData\Foxit ContentPlatform
2021-09-20 17:54 - 2021-09-20 17:54 - 000000000 ____D C:\Program Files (x86)\Foxit Software
2021-09-20 17:45 - 2021-09-20 17:45 - 000000109 _____ C:\Users\Public\Documents\pre_fileassoc.tmp
2021-09-20 17:26 - 2021-09-20 17:44 - 190417320 _____ (Foxit Software Inc. ) C:\Users\Tino\Downloads\FoxitPDFReader1101_L10N_Setup_Prom.exe
2021-09-20 17:21 - 2021-09-20 18:17 - 000000000 ___DC C:\Users\Tino\Documents\Congstar Rechnung Mama für Logitel
2021-09-20 09:29 - 2021-09-20 09:39 - 000000000 ____D C:\Program Files (x86)\Bitrix24
2021-09-20 09:29 - 2021-09-20 09:29 - 000001080 _____ C:\Users\Public\Desktop\Bitrix24.lnk
2021-09-20 09:29 - 2021-09-20 09:29 - 000000000 ___DC C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bitrix24
2021-09-20 09:29 - 2021-09-20 09:29 - 000000000 ____D C:\Users\Tino\AppData\Roaming\Bitrix
2021-09-20 09:29 - 2021-09-20 09:29 - 000000000 ____D C:\Users\Tino\AppData\Local\Bitrix24
2021-09-20 09:29 - 2021-09-20 09:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitrix24
2021-09-20 09:29 - 2021-09-20 09:29 - 000000000 ____D C:\ProgramData\Bitrix
2021-09-20 09:05 - 2021-09-20 09:09 - 191920504 _____ (Bitrix, Inc) C:\Users\Tino\Downloads\bitrix24_desktop.exe
2021-09-19 13:04 - 2021-09-19 13:04 - 001217366 _____ C:\Users\Tino\Downloads\Aktien.studieren Guide.pdf
2021-09-18 12:51 - 2021-09-19 16:06 - 000058251 _____ C:\Users\Tino\Documents\*******
2021-09-17 23:27 - 2021-09-18 00:35 - 000054915 _____ C:\Users\Tino\Documents\********
2021-09-17 23:25 - 2021-09-17 23:25 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2021-09-17 23:25 - 2021-09-17 23:25 - 000170496 _____ C:\WINDOWS\system32\DeviceUpdateCenterCsp.dll
2021-09-17 23:24 - 2021-09-17 23:24 - 002295296 _____ (Digimarc) C:\WINDOWS\system32\DMRCDecoder.dll
2021-09-17 23:24 - 2021-09-17 23:24 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-09-17 23:24 - 2021-09-17 23:24 - 002111488 _____ (Digimarc) C:\WINDOWS\SysWOW64\DMRCDecoder.dll
2021-09-17 23:24 - 2021-09-17 23:24 - 001823304 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-09-17 23:24 - 2021-09-17 23:24 - 001393480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-09-17 23:24 - 2021-09-17 23:24 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-09-17 23:24 - 2021-09-17 23:24 - 001313608 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-09-17 23:24 - 2021-09-17 23:24 - 001164288 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-09-17 23:24 - 2021-09-17 23:24 - 000672768 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-09-17 23:24 - 2021-09-17 23:24 - 000570368 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2021-09-17 23:24 - 2021-09-17 23:24 - 000566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-09-17 23:24 - 2021-09-17 23:24 - 000426496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-09-17 23:24 - 2021-09-17 23:24 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-09-17 23:24 - 2021-09-17 23:24 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-09-17 23:24 - 2021-09-17 23:24 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-09-17 23:24 - 2021-09-17 23:24 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshom.ocx
2021-09-17 23:24 - 2021-09-17 23:24 - 000122880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshom.ocx
2021-09-17 23:24 - 2021-09-17 23:24 - 000098816 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-09-17 23:24 - 2021-09-17 23:24 - 000011355 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-09-16 23:36 - 2021-09-16 23:36 - 000125398 _____ C:\Users\Tino\Documents\*******
2021-09-16 14:15 - 2021-09-16 18:02 - 000125413 _____ C:\Users\Tino\Documents\************
2021-09-15 16:13 - 2021-09-15 16:13 - 000000064 ____C C:\Users\Tino\Documents\Medikamente kaufen September 21.txt
2021-09-15 16:13 - 2021-09-15 16:13 - 000000032 ____C C:\Users\Tino\Documents\Auto das gegen mülleimer gefahren ist.txt
2021-09-15 15:06 - 2021-09-15 15:06 - 000001427 ____C C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2021-09-14 14:15 - 2021-09-14 14:15 - 012842099 _____ C:\Users\Tino\Downloads\0_Info_APM21.pdf
2021-09-13 10:48 - 2021-10-06 08:21 - 000004220 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1631522888
2021-09-13 10:48 - 2021-10-06 08:21 - 000001406 ____C C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Opera-Browser.lnk
2021-09-13 10:48 - 2021-10-05 15:01 - 000004450 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1631522903
2021-09-13 10:48 - 2021-09-13 10:48 - 000000000 ____D C:\Users\Tino\AppData\Local\Opera Software
2021-09-13 10:46 - 2021-09-13 10:46 - 000000000 ____D C:\Users\Tino\AppData\Roaming\Opera Software
2021-09-13 10:45 - 2021-09-13 10:45 - 002602664 _____ (Opera Software) C:\Users\Tino\Downloads\OperaSetup.exe
2021-09-13 10:41 - 2021-09-13 10:41 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
==================== Ein Monat (geänderte) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2021-10-13 16:43 - 2018-01-12 13:12 - 000040884 _____ C:\Users\Tino\Downloads\FRST.txt
2021-10-13 16:42 - 2018-01-12 13:12 - 000000000 ____D C:\FRST
2021-10-13 16:36 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-10-13 16:28 - 2021-09-10 10:53 - 000000000 ___DC C:\Users\Tino\Documents\ZENSIERT
2021-10-13 16:24 - 2017-03-10 19:12 - 000000000 ___DC C:\Users\Tino\AppData\Roaming\Audacity
2021-10-13 16:22 - 2016-03-28 22:33 - 000000000 ____D C:\Program Files (x86)\Google
2021-10-13 16:18 - 2020-05-16 14:01 - 000000000 ___DC C:\Users\Tino\Documents\Zoom
2021-10-13 16:17 - 2020-12-22 15:39 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-10-13 15:50 - 2020-12-22 15:54 - 000003220 _____ C:\WINDOWS\system32\Tasks\Optimize Push Notification Data File-S-1-5-21-2977029141-1010321603-2543741146-1001
2021-10-13 15:24 - 2017-10-04 00:28 - 000000000 ___DC C:\Users\Tino\AppData\Local\DF6777BF-E7E1-4488-8623-6223146A9D8A.aplzod
2021-10-13 14:49 - 2020-12-22 15:54 - 000000000 ____D C:\WINDOWS\system32\Tasks\TVT
2021-10-13 14:49 - 2019-11-20 15:59 - 000000000 ____D C:\WINDOWS\TempInst
2021-10-13 14:48 - 2019-09-25 14:50 - 000003226 _____ C:\WINDOWS\SysWOW64\InstallUtil.InstallLog
2021-10-13 14:48 - 2018-12-04 22:10 - 000000000 ____D C:\ProgramData\Lenovo
2021-10-13 13:38 - 2019-10-03 18:06 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2021-10-13 09:49 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-10-13 09:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-10-13 08:21 - 2020-08-12 18:13 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-10-13 08:21 - 2020-08-12 18:13 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-10-13 08:21 - 2016-03-28 22:34 - 000002293 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-10-12 13:09 - 2020-12-22 15:54 - 000003522 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
2021-10-12 07:57 - 2016-03-29 15:03 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-10-11 21:00 - 2021-09-03 17:08 - 000021830 _____ C:\Users\Tino\Documents\Internet Strom Mobilfunk 2021.xlsx
2021-10-10 23:44 - 2021-01-11 21:57 - 000003606 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6d868dc8bc866
2021-10-10 23:44 - 2020-12-22 15:54 - 000003700 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-10-08 08:52 - 2016-09-26 00:17 - 000000000 ___DC C:\Users\Tino\AppData\Local\ElevatedDiagnostics
2021-10-08 08:29 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-10-07 17:45 - 2020-12-22 15:54 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2977029141-1010321603-2543741146-1001
2021-10-07 17:45 - 2020-12-22 15:41 - 000002396 ____C C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-10-07 17:40 - 2016-03-28 02:24 - 000000000 __SHD C:\Users\Tino\IntelGraphicsProfiles
2021-10-07 08:59 - 2018-04-15 14:19 - 000043838 _____ C:\Users\Tino\Downloads\Keepass Datenbank_15Apr18.kdbx
2021-10-07 08:59 - 2016-05-20 17:18 - 000000000 ___DC C:\Users\Tino\AppData\Roaming\KeePass
2021-10-07 08:57 - 2021-08-15 19:30 - 000013860 _____ C:\Users\Tino\Documents\*****
2021-10-06 11:44 - 2016-07-28 13:49 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2021-10-06 10:33 - 2021-06-02 14:28 - 000115021 _____ C:\Users\Tino\Downloads\******
2021-10-05 19:55 - 2017-12-13 21:07 - 000000000 ___DC C:\Users\Tino\AppData\Local\Packages
2021-10-03 17:14 - 2019-01-18 16:31 - 000001955 _____ C:\Users\Tino\AppData\Roaming\SAS7_000.DAT
2021-10-03 13:49 - 2018-03-31 23:32 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-10-02 23:08 - 2016-03-31 18:55 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-10-01 08:16 - 2021-02-21 20:53 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-09-30 23:13 - 2020-12-22 15:54 - 000003632 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-09-30 23:13 - 2020-12-22 15:54 - 000003508 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-09-29 23:03 - 2016-04-07 13:41 - 000000000 ____D C:\Program Files (x86)\Dropbox
2021-09-29 15:04 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-09-29 08:11 - 2016-02-13 19:34 - 000000000 __RHD C:\Users\Public\AccountPictures
2021-09-28 09:17 - 2019-03-15 11:56 - 000000000 ___DC C:\Users\Tino\AppData\Roaming\Apowersoft
2021-09-28 09:17 - 2017-07-19 11:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apowersoft
2021-09-28 09:17 - 2017-07-19 11:45 - 000000000 ____D C:\Program Files (x86)\Apowersoft
2021-09-28 08:57 - 2021-03-24 20:06 - 000000000 ___DC C:\Users\Tino\Documents\Bewerbung Johanniter
2021-09-27 08:32 - 2018-07-08 18:54 - 000000000 ___DC C:\Users\Tino\AppData\Local\D3DSCache
2021-09-26 23:17 - 2020-12-22 15:41 - 000000000 ____D C:\Users\Tino
2021-09-25 18:20 - 2020-12-22 15:50 - 002333496 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-09-25 18:20 - 2020-12-22 15:14 - 000478006 _____ C:\WINDOWS\system32\perfh011.dat
2021-09-25 18:20 - 2020-12-22 15:14 - 000132884 _____ C:\WINDOWS\system32\perfc011.dat
2021-09-25 18:20 - 2019-12-07 16:51 - 000744968 _____ C:\WINDOWS\system32\perfh007.dat
2021-09-25 18:20 - 2019-12-07 16:51 - 000150354 _____ C:\WINDOWS\system32\perfc007.dat
2021-09-25 18:12 - 2020-12-22 15:54 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-09-25 18:12 - 2020-12-22 15:39 - 000008192 ___SH C:\DumpStack.log.tmp
2021-09-25 18:12 - 2019-09-25 07:42 - 000000000 ____D C:\Program Files (x86)\TunnelBear
2021-09-25 18:12 - 2017-05-27 18:11 - 000000000 ____D C:\ProgramData\Synaptics
2021-09-25 18:12 - 2016-03-28 02:22 - 000000000 ___DC C:\Intel
2021-09-23 07:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2021-09-23 07:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Macromed
2021-09-22 22:36 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-09-22 22:35 - 2020-12-22 15:39 - 000707328 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-09-22 22:34 - 2019-12-07 16:54 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-09-22 22:34 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2021-09-16 08:37 - 2016-03-29 03:49 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-09-16 08:34 - 2020-12-22 15:54 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-09-16 08:29 - 2016-03-29 03:49 - 135637312 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-09-15 16:12 - 2016-04-27 16:48 - 000000000 ___DC C:\Users\Tino\Documents\Gesundheit
2021-09-15 16:11 - 2021-08-06 20:55 - 000027692 _____ C:\Users\Tino\Documents\******f
2021-09-13 11:02 - 2021-02-03 19:32 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-09-13 11:02 - 2017-07-03 20:30 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-09-13 10:50 - 2017-07-03 20:30 - 000000000 ___DC C:\Users\Tino\AppData\LocalLow\Mozilla
2021-09-13 10:42 - 2020-12-07 23:08 - 000000000 ____D C:\ProgramData\Mozilla
2021-09-13 10:41 - 2017-07-03 20:30 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========
2021-04-28 12:31 - 2021-04-28 12:06 - 001053600 _____ (ESET) C:\Users\Tino\esetuninstaller.exe
2019-01-18 16:31 - 2021-10-03 17:14 - 000001955 _____ () C:\Users\Tino\AppData\Roaming\SAS7_000.DAT
2018-09-29 15:38 - 2018-09-29 15:38 - 000000000 ____C () C:\Users\Tino\AppData\Local\oobelibMkey.log
2021-03-05 23:23 - 2021-03-05 23:23 - 000005743 _____ () C:\Users\Tino\AppData\Local\recently-used.xbel
==================== SigCheck ============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
==================== BCD ================================
Windows-Start-Manager
---------------------
Bezeichner {bootmgr}
device partition=\Device\HarddiskVolume1
description Windows Boot Manager
locale de-DE
inherit {globalsettings}
default {current}
resumeobject {117971dc-445b-11eb-b48e-9e2b7ae55565}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Windows-Startladeprogramm
-------------------------
Bezeichner {0e7e7c11-8505-11e6-8163-fbcda2a83ae8}
device ramdisk=[unknown]\Recovery\WindowsRE\Winre.wim,{0e7e7c12-8505-11e6-8163-fbcda2a83ae8}
path \windows\system32\winload.exe
description Windows Recovery Environment
locale de-DE
inherit {bootloadersettings}
displaymessage Recovery
displaymessageoverride Recovery
osdevice ramdisk=[unknown]\Recovery\WindowsRE\Winre.wim,{0e7e7c12-8505-11e6-8163-fbcda2a83ae8}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Windows-Startladeprogramm
-------------------------
Bezeichner {current}
device partition=C:
path \WINDOWS\system32\winload.exe
description Windows 10
locale de-DE
inherit {bootloadersettings}
recoverysequence {35056cfa-445b-11eb-be55-b7c080c423d0}
displaymessageoverride Recovery
recoveryenabled Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {117971dc-445b-11eb-b48e-9e2b7ae55565}
nx OptIn
bootmenupolicy Standard
Windows-Startladeprogramm
-------------------------
Bezeichner {35056cfa-445b-11eb-be55-b7c080c423d0}
device ramdisk=[\Device\HarddiskVolume3]\Recovery\WindowsRE\Winre.wim,{35056cfb-445b-11eb-be55-b7c080c423d0}
path \windows\system32\winload.exe
description Windows Recovery Environment
locale de-DE
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume3]\Recovery\WindowsRE\Winre.wim,{35056cfb-445b-11eb-be55-b7c080c423d0}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Wiederaufnahme aus dem Ruhezustand
----------------------------------
Bezeichner {117971dc-445b-11eb-b48e-9e2b7ae55565}
device partition=C:
path \WINDOWS\system32\winresume.exe
description Windows Resume Application
locale de-DE
inherit {resumeloadersettings}
recoverysequence {35056cfa-445b-11eb-be55-b7c080c423d0}
recoveryenabled Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Windows-Speichertestprogramm
----------------------------
Bezeichner {memdiag}
device partition=\Device\HarddiskVolume1
path \boot\memtest.exe
description Windows-Speicherdiagnose
locale de-DE
inherit {globalsettings}
badmemoryaccess Yes
EMS-Einstellungen
-----------------
Bezeichner {emssettings}
bootems No
Debuggereinstellungen
---------------------
Bezeichner {dbgsettings}
debugtype Serial
debugport 1
baudrate 115200
RAM-Defekte
-----------
Bezeichner {badmemory}
Globale Einstellungen
---------------------
Bezeichner {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
Startladeprogramm-Einstellungen
-------------------------------
Bezeichner {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
Hypervisoreinstellungen
-----------------------
Bezeichner {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
Einstellungen zur Ladeprogrammfortsetzung
-----------------------------------------
Bezeichner {resumeloadersettings}
inherit {globalsettings}
Ger„teoptionen
--------------
Bezeichner {35056cfb-445b-11eb-be55-b7c080c423d0}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume3
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== Ende von FRST.txt ========================
Geändert von M-K-D-B (18.10.2021 um 17:38 Uhr) |
|
13.10.2021, 16:22
| #2 |
| | Windows 10: audacity.de Installer NOCH in der Ausführung. Soll ich ihn schließen? PC Neustarten? Addition.txt
__________________Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 12-10-2021
durchgeführt von Tino (13-10-2021 16:47:45)
Gestartet von C:\Users\Tino\Downloads
Microsoft Windows 10 Education Version 20H2 19042.1237 (X64) (2020-12-22 13:54:32)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
Administrator (S-1-5-21-2977029141-1010321603-2543741146-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2977029141-1010321603-2543741146-503 - Limited - Disabled)
Gast (S-1-5-21-2977029141-1010321603-2543741146-501 - Limited - Disabled)
Tino (S-1-5-21-2977029141-1010321603-2543741146-1001 - Administrator - Enabled) => C:\Users\Tino
WDAGUtilityAccount (S-1-5-21-2977029141-1010321603-2543741146-504 - Limited - Disabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
4K Video Downloader 4.3 (HKLM-x32\...\{D0CA3944-0FD5-40FF-97A1-FEDFFB5EE31F}) (Version: 4.3.2.2215 - Open Media LLC)
7-Zip 16.02 (x64) (HKLM\...\7-Zip) (Version: 16.02 - Igor Pavlov)
Ableton Live 10 Lite (HKLM\...\{3A42CB85-CCF2-470C-9086-C7D72B32B331}) (Version: 10.0.0.0 - Ableton)
Activ8 (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\b25a083cc8c5730f) (Version: 2.1.0.48 - Remedy Distribution Ltd)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 21.007.20095 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 5.3.1.470 - Adobe Inc.)
Adobe Digital Editions 4.5 (HKLM-x32\...\Adobe Digital Editions 4.5) (Version: 4.5.11 - Adobe Systems Incorporated)
Adobe Genuine Service (HKLM-x32\...\AdobeGenuineService) (Version: - Adobe)
Adobe Illustrator 2020 (HKLM-x32\...\ILST_24_3) (Version: 24.3 - Adobe Inc.)
Amazon Kindle (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Amazon Kindle) (Version: 1.20.1.47037 - Amazon)
Amazon Redshift ODBC Driver 64-bit (HKLM\...\{960BF695-03D5-48CF-9DC2-6AC5800C4FBE}) (Version: 1.4.10.1000 - Amazon Web Services, Inc.)
AnyTrans (HKLM-x32\...\AnyTrans) (Version: 5.5.4.0 - iMobie Inc.)
ApowerManager V3.2.3 (HKLM-x32\...\{D02368A2-6D57-4AE0-BECC-9E7DDE20B865}_is1) (Version: 3.2.3 - Apowersoft LIMITED)
ApowerMirror Version 1.4.5.3 (HKLM-x32\...\{a9482532-9c34-478c-80c3-85bdccbb981f}_is1) (Version: 1.4.5.3 - APOWERSOFT LIMITED)
Apple Application Support (32-Bit) (HKLM-x32\...\{308F2F8C-9D33-4B22-8A6C-D9C13DBEF8C6}) (Version: 7.0.2 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{0CB84A7D-9697-4526-A819-60FB050E8F05}) (Version: 7.0.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{77F8C879-88CD-4145-945A-541C35285285}) (Version: 12.0.0.1039 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.)
Archi 4.8.1 (HKLM\...\{17490178-4BB9-40A0-A9C4-F82027FF49B8}_is1) (Version: 4.8.1 - Phillip Beauvoir)
Artensoft Photo Collage Maker Pro (HKLM\...\Artensoft Photo Collage Maker Pro_is1) (Version: 2.0 - Artensoft)
Audacity 2.1.2 (HKLM-x32\...\Audacity_is1) (Version: 2.1.2 - Audacity Team)
AutoHotkey 1.1.32.00 (HKLM\...\AutoHotkey) (Version: 1.1.32.00 - Lexikos)
bf2battlelog (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\bf2battlelog) (Version: 0.8.6 - Spencer Sharkey)
Bitrix24 for Windows (HKLM-x32\...\Bitrix24) (Version: 12.0.26.60 - Bitrix)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
calibre 64bit (HKLM\...\{0F55D3CE-F390-494F-924A-A4204D649DE3}) (Version: 4.16.0 - Kovid Goyal)
Camera Mouse 2018 (HKLM-x32\...\{F5E6727D-0969-4C4A-A669-71F1A3913A03}}_is1) (Version: 1.1 - Boston College)
Chessmaster Grandmaster Edition (HKLM-x32\...\InstallShield_{27614800-84A9-484E-9CCB-43ED2F1205F5}) (Version: 1.02.0000 - Ubisoft)
Cisco AnyConnect Secure Mobility Client (HKLM-x32\...\Cisco AnyConnect Secure Mobility Client) (Version: 3.1.14018 - Cisco Systems, Inc.)
Cisco AnyConnect Secure Mobility Client (HKLM-x32\...\{C706092D-491F-4D29-BB49-FF7B47CD12F2}) (Version: 3.1.14018 - Cisco Systems, Inc.) Hidden
Citavi 6 (HKLM-x32\...\{6A331045-8FF4-4BC9-9C56-E593ACAE28C2}) (Version: 6.5.0.0 - Swiss Academic Software)
ClipGrab 3.8.14 (HKLM-x32\...\{8A1033B0-EF33-4FB5-97A1-C47A7DCDD7E6}_is1) (Version: - The ClipGrab Project)
CopyTrans Control Center deinstallieren (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\CopyTrans Suite) (Version: 4.008 - WindSolutions)
Cossacks - Back To War (HKLM-x32\...\1207662833_is1) (Version: 2.1.0.18 - GOG.com)
CPUID HWMonitor 1.28 (HKLM\...\CPUID HWMonitor_is1) (Version: - )
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
DB Browser for SQLite (HKLM-x32\...\DB Browser for SQLite) (Version: 3.10.1 - DB Browser for SQLite Team)
Dell Display Manager (HKLM-x32\...\{AC50C05D-9D57-40F5-B2EF-AC402F14312B}_is1) (Version: - EnTech Taiwan)
Dolby Audio X2 Windows API SDK (HKLM\...\{FA0735B6-9E18-437A-A1CD-9152650FC52B}) (Version: 0.8.8.90 - Dolby Laboratories, Inc.)
Dolby Audio X2 Windows APP (HKLM\...\{D0D32569-4680-490A-905C-5117CEAAB3EF}) (Version: 0.8.8.76 - Dolby Laboratories, Inc.)
Dragon 15 (HKLM-x32\...\{768AC460-237E-45B6-99B8-1DE6D0F391E8}) (Version: 15.00.000 - Nuance Communications Inc.)
Dropbox (HKLM-x32\...\Dropbox) (Version: 132.4.3800 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.503.1 - Dropbox, Inc.) Hidden
EaseUS MobiMover 4.5 (HKLM-x32\...\EaseUS MobiMover_is1) (Version: - EaseUS)
EVEREST Home Edition v2.20 (HKLM-x32\...\EVEREST Home Edition_is1) (Version: 2.20 - Lavalys Inc)
Evernote v. 6.1.2 (HKLM-x32\...\{A46ABD1E-2837-11E6-9E7C-005056951CAD}) (Version: 6.1.2.2292 - Evernote Corp.)
EyeDefender 1.08 (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\EyeDefender) (Version: - )
f.lux (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Flux) (Version: - f.lux Software LLC)
FootSwitch 7.0.3 (HKLM-x32\...\{7BD5E046-6535-4983-AD88-D6C9A9FA8081}) (Version: 2.0.5 - PCsensor)
Fotogalerie (HKLM-x32\...\{41BF4A3B-D60A-4E92-883F-C88C8C157261}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Foxit PDF Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 11.0.1.49938 - Foxit Software Inc.)
Free YouTube To MP3 Converter (HKLM-x32\...\Free YouTube To MP3 Converter_is1) (Version: 4.2.18.820 - Digital Wave Ltd)
G*Power 3.1.9.7 (HKLM-x32\...\{FA3666A9-FF30-4777-B906-305B1EF0486E}) (Version: 3.1.97 - Franz Faul, Uni Kiel, Germany)
GameSessions Data Delivery x86 (HKLM-x32\...\{9AA2C827-8AF8-40C5-B500-5A6DB3233D71}) (Version: 1.28.488.0 - Tangentix Ltd)
GameSessions Runtime x86 (HKLM-x32\...\{79DD8AE4-FAA0-44DB-A42F-F09252B5B99A}) (Version: 1.28.488.0 - Tangentix Ltd)
GCFScape 1.8.6 (HKLM\...\GCFScape_is1) (Version: - Ryan Gregg)
GIMP 2.10.22 (HKLM\...\GIMP-2_is1) (Version: 2.10.22 - The GIMP Team)
GitMind 1.0.5 (HKLM-x32\...\a0e10d84-6512-552f-a0ec-5dd2e61ffe64) (Version: 1.0.5 - Apowersoft)
GNU Privacy Guard (HKLM-x32\...\GnuPG) (Version: 2.2.7 - The GnuPG Project)
GOG GALAXY (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 94.0.4606.81 - Google LLC)
GoTo Opener (HKLM-x32\...\{C0F33C38-345C-4C02-B161-11389350C2A5}) (Version: 1.0.533 - LogMeIn, Inc.)
GoToMeeting 10.17.0.19796 (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\GoToMeeting) (Version: 10.17.0.19796 - LogMeIn, Inc.)
Gpg4win (3.1.1) (HKLM-x32\...\Gpg4win) (Version: 3.1.1 - The Gpg4win Project)
Grammarly for Microsoft Office Suite (HKLM\...\{DE46CC28-5477-4CFB-9AE2-8C7C111E3EE7}) (Version: 6.8.261 - Grammarly) Hidden
Grammarly for Microsoft Office Suite (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\{ee962c45-b827-4262-a720-3a939910ce37}) (Version: 6.8.261 - Grammarly)
gretl version 2016d (x86_64) (HKLM\...\gretl_is1) (Version: 2016d - The gretl team)
Heroes of Might and Magic 3 Complete (HKLM-x32\...\1207658787_is1) (Version: 4.0 - GOG.com)
Heroes of Might and Magic III: Horn of the Abyss + HD mod (HKLM-x32\...\HotA + HD_is1) (Version: 1.6.1 - )
HoMM III Compatibility Database (HKLM\...\{62a24b39-0106-4990-90ea-3a09e9dda7a6}.sdb) (Version: - )
HP Deskjet 3520 series - Grundlegende Software für das Gerät (HKLM\...\{15B2F0E3-3FAC-4495-B0FD-398EECFA4100}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Deskjet 3520 series Hilfe (HKLM-x32\...\{6B953497-169C-4929-9AA9-A9F510347468}) (Version: 27.0.0 - Hewlett Packard)
HP Deskjet 3520 series Setup Guide (HKLM-x32\...\{AEEDCEB7-00B8-4BE1-B492-AB04803D5F1E}) (Version: 27.0.0 - Hewlett Packard)
HP Support Solutions Framework (HKLM-x32\...\{3A1CB1B8-8646-41A0-B496-35DC48916904}) (Version: 12.10.49.21 - HP)
IBM SPSS Statistics 24 (HKLM\...\{4762AE15-E5A3-43BF-8822-1CFC70FB147A}) (Version: 24.0.0.0 - IBM Corp)
iCloud (HKLM\...\{29C6B346-C29C-40CE-89EB-DF7C149E0EB9}) (Version: 7.7.0.27 - Apple Inc.)
iMazing 2.6.4.0 (HKLM\...\iMazing_is1) (Version: 2.6.4.0 - DigiDNA)
Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{F70BCE36-25F2-4475-A918-6209B3D85BF3}) (Version: 15.0.179 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 2112.15.0.2221 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.62.321.1 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{c3964069-17c1-45dd-85a5-949576ceeaa3}) (Version: 1.62.321.1 - Intel Corporation) Hidden
Intel PROSet/Wireless Software (HKLM-x32\...\{ebb135fb-d587-4f7a-8c91-eca79031d792}) (Version: 21.30.2 - Intel Corporation)
iTunes (HKLM\...\{9E84991B-6078-4311-A714-0A1360C3706C}) (Version: 12.9.0.167 - Apple Inc.)
Java 8 Update 171 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180171F0}) (Version: 8.0.1710.11 - Oracle Corporation)
Java SE Development Kit 8 Update 111 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180111}) (Version: 8.0.1110.14 - Oracle Corporation)
Kalo24 - der Freeware-Kaloreinexperte 1.0.0.0 (HKLM-x32\...\Kalo24 - der Freeware-Kaloreinexperte) (Version: 1.0.0.0 - Ralph Borchert)
KeePass Password Safe 2.44 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version: 2.44 - Dominik Reichl)
KinoniDrivers 2.8.1 (HKLM-x32\...\KinoniDrivers) (Version: 2.8.1 - Kinoni)
Lenovo Anzeige am Bildschirm (HKLM\...\OnScreenDisplay) (Version: 8.78.00 - Lenovo)
Lenovo Power Management Driver (HKLM\...\Power Management Driver) (Version: 1.67.12.07 - Lenovo) Hidden
Lenovo Service Bridge (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\dda9ca0b023f4c56) (Version: 1.6.6.0 - Lenovo)
Lenovo System Update (HKLM-x32\...\TVSU_is1) (Version: 5.07.0131 - Lenovo)
LibreOffice 6.3.6.2 (HKLM\...\{6664E413-D143-48B3-823F-50084561A0B6}) (Version: 6.3.6.2 - The Document Foundation)
LispWorks 6.1 Personal (HKLM-x32\...\{844E2E8E-ED3D-4054-99C7-26ED070BDEFB}) (Version: 6.1.1 - LispWorks Ltd)
LRZ Sync+Share (HKLM-x32\...\LRZ_Sync_Share) (Version: 15.1.100.0 - Leibniz-Rechenzentrum)
Macabacus 2016 (HKLM-x32\...\{F577D9CC-6C1F-432B-9B76-2B8206D25221}) (Version: 8.9.6 - Macabacus, LLC)
Malwarebytes version 4.1.0.56 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.0.56 - Malwarebytes)
Microsoft 365 Apps for Enterprise - de-de (HKLM\...\O365ProPlusRetail - de-de) (Version: 16.0.14430.20270 - Microsoft Corporation)
Microsoft ASP.NET MVC 2 (HKLM-x32\...\{DD8FF2F3-0D97-4CF3-AF78-FA0E1B242244}) (Version: 2.0.60926.0 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 94.0.992.47 - Microsoft Corporation)
Microsoft Edge WebView2-Laufzeit (HKLM-x32\...\Microsoft EdgeWebView) (Version: 94.0.992.31 - Microsoft Corporation)
Microsoft Keyboard Layout Creator 1.4 (HKLM-x32\...\{99E66BC9-E4B6-485F-ABFC-31EFCE36DFDF}) (Version: 1.4.6000 - Microsoft Corp.)
Microsoft ODBC Driver 17 for SQL Server (HKLM\...\{E36FFC78-D25E-4962-872B-9CE0E50E62CD}) (Version: 17.5.1.1 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\OneDriveSetup.exe) (Version: 21.180.0905.0007 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Teams) (Version: 1.4.00.2879 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{29B15818-E79F-4AB0-8938-9410C807AD76}) (Version: 2.84.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40649 (HKLM-x32\...\{5d0723d3-cff7-4e07-8d0b-ada737deb5e6}) (Version: 12.0.40649.5 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.23.27820 (HKLM-x32\...\{852adda4-4c78-4a38-b583-c0b360a329d6}) (Version: 14.23.27820.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.23.27820 (HKLM-x32\...\{45231ab4-69fd-486a-859d-7a59fcd11013}) (Version: 14.23.27820.0 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{70C91B91-61E8-4D06-86D6-A9DCC291983A}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 85.0 (x64 de) (HKLM\...\Mozilla Firefox 85.0 (x64 de)) (Version: 85.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 54.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 85.0.0.7688 - Mozilla)
Mozilla Thunderbird 60.9.1 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 60.9.1 (x86 de)) (Version: 60.9.1 - Mozilla)
Mplus Version 8.4 Demo (64-bit) (HKLM\...\{9654A20E-7892-4EB5-87C1-58BEBBB981F8}) (Version: 8.4 - Muthen & Muthen)
Nikon Message Center 2 (HKLM-x32\...\{B014EE44-9197-4513-9613-71E6EB1B514E}) (Version: 2.3.0 - Nikon Corporation)
Nikon Transfer 2 (HKLM-x32\...\{4D5EE11A-0D0A-4214-ABAC-72419F7BE24D}) (Version: 2.13.2 - Nikon Corporation)
Nitro Pro (HKLM\...\{0F088B7C-E593-438F-AABB-1B393864EE78}) (Version: 11.0.3.173 - Nitro) Hidden
Nitro Pro (HKLM-x32\...\{15459ba7-7bcf-4b1f-8631-b6b5b980a8cc}) (Version: 11.0.3.173 - Nitro)
Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 7.9.1 - Notepad++ Team)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.14430.20276 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.14430.20234 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.14430.20276 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0407-0000-0000000FF1CE}) (Version: 16.0.14430.20234 - Microsoft Corporation) Hidden
Opera Stable 79.0.4143.72 (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Opera 79.0.4143.72) (Version: 79.0.4143.72 - Opera Software)
PDF24 Creator 7.9.0 (HKLM-x32\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version: - PDF24.org)
PDF-Viewer (HKLM\...\{A278382D-4F1B-4D47-9885-8523F7261E8D}_is1) (Version: 2.5.322.7 - Tracker Software Products Ltd)
PDF-XChange Editor (HKLM\...\{3BB66258-EB01-4052-9558-D9353DC5AC89}) (Version: 8.0.336.0 - Tracker Software Products (Canada) Ltd.) Hidden
PDF-XChange Editor (HKLM-x32\...\{797baf93-803d-4306-9b2f-9ff5972f040c}) (Version: 8.0.336.0 - Tracker Software Products (Canada) Ltd.)
Picture Control Utility 2 (HKLM\...\{46BEAB85-B86A-4AAB-B085-136ECA032CF4}) (Version: 2.4.2 - Nikon Corporation)
ProtonVPN (HKLM-x32\...\{2E5B3FB1-FDCC-4BC8-AA99-E0EE5343CAF8}) (Version: 1.16.3 - Proton Technologies AG) Hidden
ProtonVPN (HKLM-x32\...\ProtonVPN 1.16.3) (Version: 1.16.3 - Proton Technologies AG)
ProtonVPNTap (HKLM-x32\...\{BCB82CD9-F514-4F93-A6D9-F898494DC927}) (Version: 1.1.0 - Proton Technologies AG)
psqlODBC_x64 (HKLM\...\{3F8971B0-061B-4163-9D3F-EA94151B2FCF}) (Version: 09.06.0504 - PostgreSQL Global Development Group)
Python 3.6.2 (32-bit) (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\{8388fa07-1617-4b8d-8ad8-6a940ad8052c}) (Version: 3.6.2150.0 - Python Software Foundation)
Python 3.6.2 Core Interpreter (32-bit) (HKLM-x32\...\{4542573C-6216-4584-BA90-72BAF7954404}) (Version: 3.6.2150.0 - Python Software Foundation) Hidden
Python 3.6.2 Development Libraries (32-bit) (HKLM-x32\...\{69E3E4A6-2A0F-4A32-9C2D-591EEC107289}) (Version: 3.6.2150.0 - Python Software Foundation) Hidden
Python 3.6.2 Documentation (32-bit) (HKLM-x32\...\{796410A7-1669-4FE4-8332-F684B61269E2}) (Version: 3.6.2150.0 - Python Software Foundation) Hidden
Python 3.6.2 Executables (32-bit) (HKLM-x32\...\{348C0EFF-60B1-4E68-88B8-33D7DF70DFCF}) (Version: 3.6.2150.0 - Python Software Foundation) Hidden
Python 3.6.2 pip Bootstrap (32-bit) (HKLM-x32\...\{6B2D61BA-C42D-4324-B23F-1D7B5A2808EF}) (Version: 3.6.2150.0 - Python Software Foundation) Hidden
Python 3.6.2 Standard Library (32-bit) (HKLM-x32\...\{79B4337D-166F-4BC0-B67A-F73806CC730E}) (Version: 3.6.2150.0 - Python Software Foundation) Hidden
Python 3.6.2 Tcl/Tk Support (32-bit) (HKLM-x32\...\{DF24AFFD-23AB-4A7D-A0E0-6410CE3B6B9D}) (Version: 3.6.2150.0 - Python Software Foundation) Hidden
Python 3.6.2 Test Suite (32-bit) (HKLM-x32\...\{433FD2E2-839C-4211-88B7-45C90F738842}) (Version: 3.6.2150.0 - Python Software Foundation) Hidden
Python 3.6.2 Utility Scripts (32-bit) (HKLM-x32\...\{9B79DE7E-E864-4758-8DFC-85DA43B19671}) (Version: 3.6.2150.0 - Python Software Foundation) Hidden
Python Launcher (HKLM-x32\...\{2636F1E4-2BC5-4B19-BFFD-A08F72598309}) (Version: 3.6.6032.0 - Python Software Foundation)
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
R for Windows 3.3.1 (HKLM\...\R for Windows 3.3.1_is1) (Version: 3.3.1 - R Core Team)
R for Windows 4.0.0 (HKLM\...\R for Windows 4.0.0_is1) (Version: 4.0.0 - R Core Team)
RStudio (HKLM-x32\...\RStudio) (Version: 1.3.1093 - RStudio)
Seagate Dashboard (HKLM-x32\...\{EA266F00-A8E7-43A0-8DED-FBFE3F076934}) (Version: 4.4.19.0 - Seagate)
Shotcut (HKLM\...\Shotcut) (Version: 20.10.31 - Meltytech, LLC)
Sky Ticket 6.6.0.0 (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\com.bskyb.skyticket_is1) (Version: 6.6.0.0 - Sky Ticket)
Smyle Mouse (HKLM-x32\...\{09786633-20A6-48F4-932B-3AF58F730AD0}_is1) (Version: 1.5.4.2 - )
Spotify (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Spotify) (Version: 1.1.48.625.g1c87c7f7 - Spotify AB)
STAR WARS Battlefront II (HKLM-x32\...\1421404701_is1) (Version: 1.1 - GOG.com)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SteuerSparErklärung 2016 (HKLM-x32\...\{D331D50C-C578-423B-8BC7-94D3133CE315}) (Version: 21.41.113 - Akademische Arbeitsgemeinschaft)
Tableau 2020.3 (20203.20.0801.1333) (HKLM\...\{EFE6DB45-0575-40DA-9DF5-FD92CD78B01A}) (Version: 20.3.25268 - Tableau Software) Hidden
Tableau 2020.3 (20203.20.0801.1333) (HKLM-x32\...\{973a434a-9566-4323-97f7-d47c68bf1b22}) (Version: 20.3.25268 - Tableau Software)
Tableau Public 2020.3 (20203.20.0801.1333) (HKLM\...\{F02547AA-E4F3-4149-94F4-821D7F8117DD}) (Version: 20.3.25268 - Tableau Software) Hidden
Tableau Public 2020.3 (20203.20.0801.1333) (HKLM-x32\...\{8f6fc2fc-a962-4086-8ed7-9305397cecb1}) (Version: 20.3.25268 - Tableau Software)
Teams Machine-Wide Installer (HKLM-x32\...\{39AF0813-FA7B-4860-ADBE-93B9B214B914}) (Version: 1.2.0.17057 - Microsoft Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.5.6 - TeamSpeak Systems GmbH)
TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.78313 - TeamViewer)
thinkorswim (HKLM\...\9968-4488-2169-7623) (Version: desktop - thinkorswim, Inc)
Tinypic 3.18 (HKLM-x32\...\{E3723A04-A894-4036-A78E-282E18F43C0A}_is1) (Version: Tinypic 3.18 - E. Fiedler)
Toolkit (HKLM-x32\...\Toolkit) (Version: 1.8.1.71 - Seagate)
Trading (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\5556-0001-2700-0000) (Version: latest (979.4x) 20200630 11:44:03 - IB Exchange Corp.)
TreeSize Free V4.3.1 (HKLM-x32\...\TreeSize Free_is1) (Version: 4.3.1 - JAM Software)
TunnelBear (HKLM-x32\...\{A7784574-2299-423F-9DF8-385D5FC2A10E}) (Version: 3.7.12.0 - TunnelBear) Hidden
TunnelBear (HKLM-x32\...\{dc847d12-97d0-44e5-a95f-f0ef81c071a7}) (Version: 3.7.12.0 - TunnelBear)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{0BAA0A93-3AD3-4B19-9105-4C8C3FA92A83}) (Version: 2.67.0.0 - Microsoft Corporation) Hidden
Update for Windows 10 for x64-based Systems (KB4480730) (HKLM\...\{0746492E-47B6-4251-940C-44462DFD74BB}) (Version: 2.55.0.0 - Microsoft Corporation)
ViewNX-i (HKLM\...\{C02E1F40-7EB2-4084-991B-EBFC7F586E26}) (Version: 1.3.3 - Nikon Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.4 - VideoLAN)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows Resource Kit Tools (HKLM-x32\...\{FA237125-51FF-408C-8BB8-30C2B3DFFF9C}) (Version: 5.2.3790 - Microsoft Corporation)
WinMerge 2.14.0 (HKLM-x32\...\WinMerge_is1) (Version: 2.14.0 - Thingamahoochie Software)
Worms Reloaded - GameSessions Edition (HKLM-x32\...\{eea75da8-b7ea-43fc-b128-2383ea4b7d9e}) (Version: 2.2.6537.24689 - GameSessions)
Worms Reloaded (HKLM-x32\...\{CB69AE49-9423-4B3E-8325-A5B1C2869D5E}) (Version: 2.2.0.0 - GameSessions) Hidden
ZeroTier One (HKLM-x32\...\{AEB4CE16-0CE9-4F87-976E-79D7B2416613}) (Version: 1.6.2 - ZeroTier, Inc.) Hidden
ZeroTier One (HKLM-x32\...\ZeroTier One 1.6.2) (Version: 1.6.2 - ZeroTier, Inc.)
ZeroTier One Virtual Network Port (HKLM\...\{272B1192-65BE-4BDE-894B-6D3AD8BF7FD2}) (Version: 1.0.1 - ZeroTier) Hidden
Zoom (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\ZoomUMX) (Version: 5.7.7 (1105) - Zoom Video Communications, Inc.)
Packages:
=========
Adobe Notification Client -> C:\Program Files\WindowsApps\AdobeNotificationClient_2.0.1.8_x86__enpm4xejd91yc [2020-12-22] (Adobe Systems Incorporated)
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.203.500.0_x86__kgqvnymyfvs32 [2021-10-01] (king.com)
Fotos-Add-On -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-05-04] (Microsoft Corporation)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_131.1.242.0_x64__v10z8vjag6ke6 [2021-09-28] (HP Inc.)
Media Engine-Add-On für Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-09-14] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-16] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-16] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.10.9220.0_x64__8wekyb3d8bbwe [2021-10-12] (Microsoft Studios) [MS Ad]
Reader Notification Client -> C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r [2020-04-02] (Adobe Systems Incorporated)
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.TWITTER_7.0.1.0_neutral__wgeqdkkx372wm [2021-06-13] (Twitter Inc.)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-2977029141-1010321603-2543741146-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-8BA2368BC411} -> [Creative Cloud Files] => C:\Users\Tino\Creative Cloud Files [2017-07-17 20:23]
CustomCLSID: HKU\S-1-5-21-2977029141-1010321603-2543741146-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\Tino\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20289.5\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2977029141-1010321603-2543741146-1001_Classes\CLSID\{2AD206F1-152C-4F9D-A24E-6F93FE7A4AFC}\InprocServer32 -> C:\Users\Tino\AppData\Local\Grammarly\Grammarly for Microsoft Office Suite\6.8.261\8B2AC1D301\GrammarlyShim64.dll (Grammarly, Inc. -> CompanyName)
CustomCLSID: HKU\S-1-5-21-2977029141-1010321603-2543741146-1001_Classes\CLSID\{4BE56754-B616-4998-B825-D16983AEE1B2}\InprocServer32 -> C:\Users\Tino\AppData\Local\Grammarly\Grammarly for Microsoft Office Suite\6.8.261\8B2AC1D301\Grammarly.AddIn.Connect.ActiveX.dll (Grammarly, Inc. -> Grammarly)
CustomCLSID: HKU\S-1-5-21-2977029141-1010321603-2543741146-1001_Classes\CLSID\{84B5A313-CD5D-4904-8BA2-AFDC81C1B309}\InprocServer32 -> C:\Users\Tino\AppData\Local\GoToMeeting\16786\G2MOutlookAddin64.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-2977029141-1010321603-2543741146-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\Tino\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.19127.3\x64\Microsoft.Teams.AddinLoader.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-2977029141-1010321603-2543741146-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\Tino\Dropbox [2016-04-07 13:43]
CustomCLSID: HKU\S-1-5-21-2977029141-1010321603-2543741146-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems)
ShellIconOverlayIdentifiers: [ 00BitrixShellExt_1] -> {A11A1EE5-F9F8-4BE0-907F-D74A49CC506B} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers: [ 00BitrixShellExt_2] -> {A11A1EE5-F9F8-4BE0-907F-D74A49CC506C} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers: [ 00BitrixShellExt_3] -> {A11A1EE5-F9F8-4BE0-907F-D74A49CC506D} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers: [ 00BitrixShellExt_4] -> {A11A1EE5-F9F8-4BE0-907F-D74A49CC506E} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers: [ 00BitrixShellExt_5] -> {A11A1EE5-F9F8-4BE0-907F-D74A49CC506F} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers: [ 00BitrixShellExt_6] -> {8009C378-F2BE-42A6-8ADD-083AAFBDC4EB} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers: [ 00BitrixShellExt_7] -> {057E631A-726E-4193-BB37-377DBD42812A} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers: [ 00BitrixShellExt_8] -> {86627476-D173-4FBC-B206-3A19447FF8CC} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-10-10] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-10-10] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-10-10] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ PowerFolderIgnored] -> {0800cf35-8302-4030-8add-40ac1e3f8834} => C:\Program Files (x86)\Leibniz-Rechenzentrum\LRZ_Sync_Share\IgnoredOverlay_x64.dll [2020-03-15] () [Datei ist nicht signiert]
ShellIconOverlayIdentifiers: [ PowerFolderLocked] -> {0800cf35-8302-4030-8add-40ac1e3f8835} => C:\Program Files (x86)\Leibniz-Rechenzentrum\LRZ_Sync_Share\LockedOverlay_x64.dll [2020-03-15] () [Datei ist nicht signiert]
ShellIconOverlayIdentifiers: [ PowerFolderOK] -> {0800cf35-8302-4030-8add-40ac1e3f8831} => C:\Program Files (x86)\Leibniz-Rechenzentrum\LRZ_Sync_Share\OKOverlay_x64.dll [2020-03-15] () [Datei ist nicht signiert]
ShellIconOverlayIdentifiers: [ PowerFolderSyncing] -> {0800cf35-8302-4030-8add-40ac1e3f8832} => C:\Program Files (x86)\Leibniz-Rechenzentrum\LRZ_Sync_Share\SyncingOverlay_x64.dll [2020-03-15] () [Datei ist nicht signiert]
ShellIconOverlayIdentifiers: [ PowerFolderWarning] -> {0800cf35-8302-4030-8add-40ac1e3f8833} => C:\Program Files (x86)\Leibniz-Rechenzentrum\LRZ_Sync_Share\WarningOverlay_x64.dll [2020-03-15] () [Datei ist nicht signiert]
ShellIconOverlayIdentifiers-x32: [ 00BitrixShellExt_1] -> {A11A1EE5-F9F8-4BE0-907F-D74A49CC506B} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers-x32: [ 00BitrixShellExt_2] -> {A11A1EE5-F9F8-4BE0-907F-D74A49CC506C} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers-x32: [ 00BitrixShellExt_3] -> {A11A1EE5-F9F8-4BE0-907F-D74A49CC506D} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers-x32: [ 00BitrixShellExt_4] -> {A11A1EE5-F9F8-4BE0-907F-D74A49CC506E} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers-x32: [ 00BitrixShellExt_5] -> {A11A1EE5-F9F8-4BE0-907F-D74A49CC506F} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers-x32: [ 00BitrixShellExt_6] -> {8009C378-F2BE-42A6-8ADD-083AAFBDC4EB} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers-x32: [ 00BitrixShellExt_7] -> {057E631A-726E-4193-BB37-377DBD42812A} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers-x32: [ 00BitrixShellExt_8] -> {86627476-D173-4FBC-B206-3A19447FF8CC} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-05-21] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-10-10] (Adobe Inc. -> )
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files\Notepad++\NppShell_06.dll [2020-11-02] (Notepad++ -> )
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> Keine Datei
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [LiferayNativityContextMenus] -> {0800cf35-8302-4030-8add-40ac1e3f8830} => C:\Program Files (x86)\Leibniz-Rechenzentrum\LRZ_Sync_Share\LiferayNativityContextMenus_x64.dll [2020-03-15] () [Datei ist nicht signiert]
ContextMenuHandlers1: [NP8ShellExtension] -> {9C4B85B8-956C-49BF-9BA5-101384E562B2} => C:\Program Files\Nitro\Pro 11\NPShellExtension.dll [2017-03-09] (Nitro Software, Inc. -> Nitro PDF)
ContextMenuHandlers1: [PDFXChange Editor Context menu] -> {2ACD35AB-F74A-4C20-AA9B-2DE80081626D} => C:\Program Files\Tracker Software\Shell Extensions\XCShellMenu.x64.dll [2020-01-06] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2018-10-01] (Apple Inc. -> Apple Inc.)
ContextMenuHandlers1: [WinMerge] -> {4E716236-AA30-4C65-B225-D68BBA81E9C2} => C:\Program Files (x86)\WinMerge\ShellExtensionX64.dll [2013-02-02] (hxxp://winmerge.org) [Datei ist nicht signiert]
ContextMenuHandlers2: [WinMerge] -> {4E716236-AA30-4C65-B225-D68BBA81E9C2} => C:\Program Files (x86)\WinMerge\ShellExtensionX64.dll [2013-02-02] (hxxp://winmerge.org) [Datei ist nicht signiert]
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-06-05] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> Keine Datei
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-05-21] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers4: [LiferayNativityContextMenus] -> {0800cf35-8302-4030-8add-40ac1e3f8830} => C:\Program Files (x86)\Leibniz-Rechenzentrum\LRZ_Sync_Share\LiferayNativityContextMenus_x64.dll [2020-03-15] () [Datei ist nicht signiert]
ContextMenuHandlers4: [WinMerge] -> {4E716236-AA30-4C65-B225-D68BBA81E9C2} => C:\Program Files (x86)\WinMerge\ShellExtensionX64.dll [2013-02-02] (hxxp://winmerge.org) [Datei ist nicht signiert]
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Keine Datei
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_fce0c2dbe15e0d9a\igfxDTCM.dll [2021-02-02] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [WinMerge] -> {4E716236-AA30-4C65-B225-D68BBA81E9C2} => C:\Program Files (x86)\WinMerge\ShellExtensionX64.dll [2013-02-02] (hxxp://winmerge.org) [Datei ist nicht signiert]
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-05-21] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-10-10] (Adobe Inc. -> )
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> Keine Datei
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-06-05] (Malwarebytes Corporation -> Malwarebytes)
==================== Codecs (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Drivers32: [msacm.pspgru] => C:\Windows\SysWOW64\pspgru.acm [401920 2010-03-22] (Philips Austria GmbH - Speech Processing) [Datei ist nicht signiert]
==================== Verknüpfungen & WMI ========================
==================== Geladene Module (Nicht auf der Ausnahmeliste) =============
2019-06-19 15:24 - 2019-06-19 15:24 - 000030720 _____ () [Datei ist nicht signiert] [Datei wird verwendet] C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.Wrapper.dll
2019-06-19 15:24 - 2019-06-19 15:24 - 000167424 _____ () [Datei ist nicht signiert] [Datei wird verwendet] C:\Program Files (x86)\TunnelBear\TunnelBear.VigilantBear.Wrapper.dll
2021-05-05 12:28 - 2021-05-05 12:28 - 138710528 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Bitrix24\libcef.dll
2021-01-29 12:45 - 2021-01-29 12:45 - 000392192 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Bitrix24\libEGL.dll
2021-01-29 12:45 - 2021-01-29 12:45 - 006333440 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Bitrix24\libGLESv2.dll
2020-03-15 00:15 - 2020-03-15 00:15 - 000046592 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Leibniz-Rechenzentrum\LRZ_Sync_Share\LiferayNativityContextMenus_x64.dll
2020-03-15 00:15 - 2020-03-15 00:15 - 000169472 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Leibniz-Rechenzentrum\LRZ_Sync_Share\LiferayNativityUtil_x64.dll
2016-06-07 18:48 - 2013-02-02 15:41 - 000079360 _____ (hxxp://winmerge.org) [Datei ist nicht signiert] C:\Program Files (x86)\WinMerge\ShellExtensionX64.dll
2016-09-28 13:06 - 2016-05-21 10:19 - 000077312 _____ (Igor Pavlov) [Datei ist nicht signiert] C:\Program Files\7-Zip\7-zip.dll
2021-01-29 12:45 - 2021-01-29 12:45 - 001006080 _____ (The Chromium Authors) [Datei ist nicht signiert] C:\Program Files (x86)\Bitrix24\chrome_elf.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================
==================== Internet Explorer (Nicht auf der Ausnahmeliste) ==========
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/de-de/?ocid=iehp
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2021-10-06] (Microsoft Corporation -> Microsoft Corporation)
BHO: Dragon Web Extension For Internet Explorer -> {609C0837-8DD3-4F9B-AAC5-446F36BC0353} -> C:\Program Files (x86)\Nuance\NaturallySpeaking15\Program\x64\dgnriaie_x64.dll [2016-08-23] (Nuance Communication, Inc. -> Nuance Communications, Inc.)
BHO: Citavi Picker -> {609D670F-B735-4da7-AC6D-F3BD358E325E} -> C:/Program Files (x86)/Internet Explorer/Citavi Picker/x64/SwissAcademic.Citavi.IEPicker.DLL => Keine Datei
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_171\bin\ssv.dll [2018-04-30] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_171\bin\jp2ssv.dll [2018-04-30] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2021-10-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Dragon Web Extension For Internet Explorer -> {609C0837-8DD3-4F9B-AAC5-446F36BC0353} -> C:\Program Files (x86)\Nuance\NaturallySpeaking15\Program\dgnriaie.dll [2016-08-23] (Nuance Communication, Inc. -> Nuance Communications, Inc.)
BHO-x32: Citavi Picker -> {609D670F-B735-4da7-AC6D-F3BD358E325E} -> C:/Program Files (x86)/Internet Explorer/Citavi Picker/SwissAcademic.Citavi.IEPicker.DLL => Keine Datei
BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2016-06-01] (EVERNOTE CORPORATION -> Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
IE Session Restore: HKU\S-1-5-21-2977029141-1010321603-2543741146-1001 -> ist aktiviert.
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-06] (Microsoft Corporation -> Microsoft Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE trusted site: HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\sharepoint.com -> hxxps://forstudents-files.sharepoint.com
==================== Hosts Inhalt: =========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2015-10-30 09:24 - 2021-09-25 18:12 - 000000893 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 reddit.com
127.0.0.1 netflix.com
127.0.0.1 netflix.de
==================== Andere Bereiche ===========================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%INTEL_DEV_REDIST%redist\intel64\compiler;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Windows Resource Kits\Tools\;C:\Windows\System32;C:\Windows;C:\Windows\System32\wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files\IBM\SPSS\Statistics\24\JRE\bin;C:\Program Files (x86)\Windows Live\Shared;C:\Program Files (x86)\QuickTime\QTSystem\;C:\Python36;C:\Program Files (x86)\GnuPG\bin;C:\Windows\System32\OpenSSH\;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;C:\Program Files\Calibre2\;C:\Program Files\Mplus Demo\;C:\Program Files (x86)\ZeroTier\One\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img13.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run32: => "ISUSPM"
HKLM\...\StartupApproved\Run32: => "Cisco AnyConnect Secure Mobility Agent for Windows"
HKLM\...\StartupApproved\Run32: => "Dropbox"
HKLM\...\StartupApproved\Run32: => "PDFPrint"
HKLM\...\StartupApproved\Run32: => "DBAgent"
HKLM\...\StartupApproved\Run32: => "Nikon Message Center 2"
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\StartupApproved\StartupFolder: => "An OneNote senden.lnk"
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\StartupApproved\Run: => "RESTART_STICKY_NOTES"
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\StartupApproved\Run: => "Spotify Web Helper"
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\StartupApproved\Run: => "iCloudServices"
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\StartupApproved\Run: => "ISUSPM"
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\StartupApproved\Run: => "ApplePhotoStreams"
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\StartupApproved\Run: => "vidnotifier.exe"
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\StartupApproved\Run: => "com.squirrel.Teams.Teams"
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\StartupApproved\Run: => "CCXProcess"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [UDP Query User{4901AD59-7A0F-4587-AD99-2A9B95AAC996}C:\users\tino\desktop\garrysmodserver\srcds.exe] => (Allow) C:\users\tino\desktop\garrysmodserver\srcds.exe => Keine Datei
FirewallRules: [TCP Query User{769D8141-203D-4219-9B51-053085B9E85A}C:\users\tino\desktop\garrysmodserver\srcds.exe] => (Allow) C:\users\tino\desktop\garrysmodserver\srcds.exe => Keine Datei
FirewallRules: [UDP Query User{BF6F0EFD-3C98-49AA-924C-21F16E8D0B92}C:\users\tino\documents\spiele\age of empires2\empires2.exe] => (Block) C:\users\tino\documents\spiele\age of empires2\empires2.exe (Microsoft Corporation) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{91369A6B-AB2B-4492-9C98-1315CBBF12C2}C:\users\tino\documents\spiele\age of empires2\empires2.exe] => (Block) C:\users\tino\documents\spiele\age of empires2\empires2.exe (Microsoft Corporation) [Datei ist nicht signiert]
FirewallRules: [{204D7375-5973-4853-B5F8-D00F53E029DF}] => (Block) C:\users\tino\documents\warcraft iii frozen throne\warcraft iii\war3.exe => Keine Datei
FirewallRules: [{BB75EE5C-BD1A-4B9A-BCFE-9C75D5FF2C45}] => (Block) C:\users\tino\documents\warcraft iii frozen throne\warcraft iii\war3.exe => Keine Datei
FirewallRules: [UDP Query User{051B91EF-14F1-45D3-B4EF-F25A091A17A1}C:\users\tino\documents\warcraft iii frozen throne\warcraft iii\war3.exe] => (Allow) C:\users\tino\documents\warcraft iii frozen throne\warcraft iii\war3.exe => Keine Datei
FirewallRules: [TCP Query User{8800C3B0-CD76-4132-A598-7411EEDAA43C}C:\users\tino\documents\warcraft iii frozen throne\warcraft iii\war3.exe] => (Allow) C:\users\tino\documents\warcraft iii frozen throne\warcraft iii\war3.exe => Keine Datei
FirewallRules: [{70EE06D2-E4A5-42CD-8804-0C2E2B3C0CCC}] => (Allow) C:\ProgramData\ZeroTier\One\zerotier-one_x64.exe (ZeroTier, Inc. -> )
FirewallRules: [{8F6B475C-E729-4C81-BC3C-9DF687B934AD}] => (Allow) LPort=9993
FirewallRules: [{69127A78-4854-4661-9FE1-05378040E6B6}] => (Allow) LPort=9993
FirewallRules: [UDP Query User{193E39FC-5641-4143-97D3-8D358D43B695}C:\users\tino\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\tino\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{C9E72A9F-558F-41CD-9A56-8EF9563AE617}C:\users\tino\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\tino\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{ECC79DD5-0A07-45B8-AC5E-7BB00E6E26D7}C:\program files\tableau\tableau 2020.3\bin\jre\bin\java.exe] => (Allow) C:\program files\tableau\tableau 2020.3\bin\jre\bin\java.exe
FirewallRules: [TCP Query User{7BDE41DC-4ABE-4742-A292-A78FB94B8B33}C:\program files\tableau\tableau 2020.3\bin\jre\bin\java.exe] => (Allow) C:\program files\tableau\tableau 2020.3\bin\jre\bin\java.exe
FirewallRules: [UDP Query User{6B8B25C4-43A5-43BF-9DFD-40CEEACAA1AF}C:\program files\calibre2\calibre.exe] => (Block) C:\program files\calibre2\calibre.exe (Kovid Goyal -> )
FirewallRules: [TCP Query User{7C694A61-9BDB-4D8E-BEE9-B7381EC22DED}C:\program files\calibre2\calibre.exe] => (Block) C:\program files\calibre2\calibre.exe (Kovid Goyal -> )
FirewallRules: [{18AADF5E-2FB3-4A3B-A524-16A5B605DE9E}] => (Allow) C:\Users\Tino\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{C7E49A12-0511-4B9B-B406-1FB281F81284}] => (Allow) C:\Users\Tino\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{62EF9F01-96AB-4863-A5AF-8EF2FF1F4196}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes 2\RelicCoH2.exe => Keine Datei
FirewallRules: [{A05D236E-75B7-4B48-B76B-B9E416643382}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes 2\RelicCoH2.exe => Keine Datei
FirewallRules: [UDP Query User{5BD87418-F90D-4F8E-A26E-20C4E1BAD80C}C:\users\tino\documents\spiele\warcraft iii frozen throne\warcraft iii\war3.exe] => (Allow) C:\users\tino\documents\spiele\warcraft iii frozen throne\warcraft iii\war3.exe (Blizzard Entertainment) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{06D026C2-E87F-44C8-B43E-8EF1B2A9F228}C:\users\tino\documents\spiele\warcraft iii frozen throne\warcraft iii\war3.exe] => (Allow) C:\users\tino\documents\spiele\warcraft iii frozen throne\warcraft iii\war3.exe (Blizzard Entertainment) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{A21D10D2-340D-4B20-B852-4118069427BA}C:\gog games\star wars - battlefront 2\gamedata\battlefrontii.exe] => (Allow) C:\gog games\star wars - battlefront 2\gamedata\battlefrontii.exe => Keine Datei
FirewallRules: [TCP Query User{4C88BE04-116F-46D7-91A1-D675BCBEA436}C:\gog games\star wars - battlefront 2\gamedata\battlefrontii.exe] => (Allow) C:\gog games\star wars - battlefront 2\gamedata\battlefrontii.exe => Keine Datei
FirewallRules: [UDP Query User{6DD4627F-4562-473A-97D0-F5FC205BCB39}C:\users\tino\documents\spiele\cs 1.6 version 3\hl.exe] => (Block) C:\users\tino\documents\spiele\cs 1.6 version 3\hl.exe => Keine Datei
FirewallRules: [TCP Query User{DC876CD0-368F-49CF-A6E5-52E782856C0E}C:\users\tino\documents\spiele\cs 1.6 version 3\hl.exe] => (Block) C:\users\tino\documents\spiele\cs 1.6 version 3\hl.exe => Keine Datei
FirewallRules: [UDP Query User{864165D1-F4FF-4C73-93F9-FAD0C670E471}C:\gog games\star wars - battlefront 2\gamedata\battlefrontii.exe] => (Allow) C:\gog games\star wars - battlefront 2\gamedata\battlefrontii.exe => Keine Datei
FirewallRules: [TCP Query User{4EA96063-C978-4AA5-8416-4E546C577E44}C:\gog games\star wars - battlefront 2\gamedata\battlefrontii.exe] => (Allow) C:\gog games\star wars - battlefront 2\gamedata\battlefrontii.exe => Keine Datei
FirewallRules: [{8291CA73-DCE0-4B2C-82E8-B10866CC9B2E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe () [Datei ist nicht signiert]
FirewallRules: [{76E796FE-D618-489F-ACAA-032769B5FCB9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe () [Datei ist nicht signiert]
FirewallRules: [{AD8E8A38-6A84-47C2-A497-70591CBFCA88}] => (Allow) C:\Program Files (x86)\Remote Mouse\RemoteMouseCore.exe => Keine Datei
FirewallRules: [{6FE57E1A-2A21-4E16-8BBF-DECCC1C7E079}] => (Allow) C:\Program Files (x86)\Remote Mouse\RemoteMouseCore.exe => Keine Datei
FirewallRules: [{ADDD8FC1-B064-4679-9B1D-81C7C04D1038}] => (Allow) C:\Program Files (x86)\Remote Mouse\RemoteMouse.exe => Keine Datei
FirewallRules: [{B4A6EC90-5008-4B7A-92D2-A9949C1173AD}] => (Allow) C:\Program Files (x86)\Remote Mouse\RemoteMouse.exe => Keine Datei
FirewallRules: [UDP Query User{91EE4BD7-E106-4448-8987-2343E8FA7A6A}C:\users\tino\desktop\stronghold crusader\stronghold crusader.exe] => (Block) C:\users\tino\desktop\stronghold crusader\stronghold crusader.exe => Keine Datei
FirewallRules: [TCP Query User{EFC85E96-D383-495E-B77F-4EEF7E909C34}C:\users\tino\desktop\stronghold crusader\stronghold crusader.exe] => (Block) C:\users\tino\desktop\stronghold crusader\stronghold crusader.exe => Keine Datei
FirewallRules: [UDP Query User{A9013084-A90D-4504-8B4E-19AC015307B4}C:\users\tino\desktop\cs 1.6 version 2\hl.exe] => (Allow) C:\users\tino\desktop\cs 1.6 version 2\hl.exe => Keine Datei
FirewallRules: [TCP Query User{387AF839-5F8E-4ACB-8953-BD1253A67AA0}C:\users\tino\desktop\cs 1.6 version 2\hl.exe] => (Allow) C:\users\tino\desktop\cs 1.6 version 2\hl.exe => Keine Datei
FirewallRules: [UDP Query User{0C68E773-28F2-4537-A3CF-DFA404F7B71D}C:\users\tino\desktop\warcraft iii frozen throne\warcraft iii\war3.exe] => (Allow) C:\users\tino\desktop\warcraft iii frozen throne\warcraft iii\war3.exe => Keine Datei
FirewallRules: [TCP Query User{C88B17E0-204C-4636-8825-BCF56DAD3499}C:\users\tino\desktop\warcraft iii frozen throne\warcraft iii\war3.exe] => (Allow) C:\users\tino\desktop\warcraft iii frozen throne\warcraft iii\war3.exe => Keine Datei
FirewallRules: [UDP Query User{8CF53BB4-5F4B-43E2-93D4-437F5849ADE4}C:\windows\syswow64\dplaysvr.exe] => (Allow) C:\windows\syswow64\dplaysvr.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{401E15C9-E039-499E-AB31-9A95D6EDDE3C}C:\windows\syswow64\dplaysvr.exe] => (Allow) C:\windows\syswow64\dplaysvr.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [UDP Query User{075DEDEA-BB8A-48B5-B0EC-AFBED882EB6E}C:\gog games\cossacks - back to war\dmcr.exe] => (Allow) C:\gog games\cossacks - back to war\dmcr.exe => Keine Datei
FirewallRules: [TCP Query User{A497522F-B651-4391-91CF-22F1F71B3B90}C:\gog games\cossacks - back to war\dmcr.exe] => (Allow) C:\gog games\cossacks - back to war\dmcr.exe => Keine Datei
FirewallRules: [{F1509304-4D1A-4A82-847F-CB59EB4117FF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe => Keine Datei
FirewallRules: [{36D026C4-36B6-4F29-AEB8-C9B0E99CF4AF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe => Keine Datei
FirewallRules: [{61F6DAF4-D1D9-4C35-B990-DCEBC52A9D99}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{840B2732-B7F2-4A47-B43D-0A0244971364}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{85473B21-919F-48A3-803C-3E5385F16368}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerManager\ApowerManagerCoreServices.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [{BC60BC50-1670-4806-A572-D5B0007A2BCA}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerManager\ApowerManagerCoreServices.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [{034A5D83-C365-47D9-BC89-94E79363D530}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerManager\ApowerManager.exe (Apowersoft Ltd -> Apowersoft Ltd.) [Datei ist nicht signiert]
FirewallRules: [{3E5F82C7-3622-4B44-A8C7-1B6A8658BBFA}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerManager\ApowerManager.exe (Apowersoft Ltd -> Apowersoft Ltd.) [Datei ist nicht signiert]
FirewallRules: [{9EAD0071-5EBE-4668-B63D-910BF3D63CD2}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{DB45D751-AF8A-4B5F-9A85-796DD721AB2C}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{E745BD7A-8027-4620-A4D3-5672AE9A35B3}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerMirror\ApowerMirror.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [{B2D8892C-32D2-498A-A833-7FB048B71B27}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerMirror\ApowerMirror.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [{ED5D026B-357C-4B6B-840C-63E66E33EDD2}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{CF783B61-4CA2-4ED5-A0C4-A840795FDE05}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{DADC8B15-0102-471C-A730-5AB63ED902B2}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{BF5779CB-D8CA-47CD-A82D-02B2E56CD8EC}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{8A3AEBDF-8D53-4CFC-817C-F90E07529F29}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{187923FB-BA86-4670-B6FE-7A7AC1CF666E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{8D8B1286-F8D4-41C7-B621-6B84F77F0A9E}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe => Keine Datei
FirewallRules: [{73DBA93D-B0D7-472D-8E98-3A6D3A0F46EE}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe => Keine Datei
FirewallRules: [{62101A78-FF60-4AC3-ABAB-80A591051292}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{EAEE4EB7-A006-4B02-90EC-D5C0A530E9E2}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{EDEB25F4-4C2F-43E0-8566-0793E937C7A2}] => (Block) C:\users\tino\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{0810B12D-E321-442D-902B-4F935CAE0353}] => (Block) C:\users\tino\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{455F49F7-0AC5-430C-89F0-6DF42633E0F7}C:\users\tino\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\tino\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{F07AEC7A-B70A-4F89-A23A-58B828BD59B1}C:\users\tino\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\tino\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{1069AB92-846E-4685-A787-07E34D7E29A3}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{F95E6A99-A713-4EAC-80EF-18B6A3728451}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{5B289905-82E7-4C3F-A968-FCF8C36391EA}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{DE8090E3-C912-48E5-8D15-9F770E9E0F44}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{F35C59CE-C50D-43E0-B789-278D379BF624}] => (Allow) LPort=5055
FirewallRules: [TCP Query User{E78B90FD-B87A-40E9-B74C-2D8ACF809429}C:\program files (x86)\ea games\battlefield 2\bf2.exe] => (Block) C:\program files (x86)\ea games\battlefield 2\bf2.exe => Keine Datei
FirewallRules: [UDP Query User{D963B0CA-0681-4CE7-85D9-AC13ADC36C9E}C:\program files (x86)\ea games\battlefield 2\bf2.exe] => (Block) C:\program files (x86)\ea games\battlefield 2\bf2.exe => Keine Datei
FirewallRules: [TCP Query User{ECA1BDDD-0060-454D-A5D0-C481A5B7A27F}C:\users\tino\documents\games\officialcnctiberiansun\officialcnctiberiansun\ea games\command & conquer the first decade\command & conquer(tm) tiberian sun(tm)\sun\game.exe] => (Block) C:\users\tino\documents\games\officialcnctiberiansun\officialcnctiberiansun\ea games\command & conquer the first decade\command & conquer(tm) tiberian sun(tm)\sun\game.exe => Keine Datei
FirewallRules: [UDP Query User{90DE7618-9900-4621-A311-B201103F928E}C:\users\tino\documents\games\officialcnctiberiansun\officialcnctiberiansun\ea games\command & conquer the first decade\command & conquer(tm) tiberian sun(tm)\sun\game.exe] => (Block) C:\users\tino\documents\games\officialcnctiberiansun\officialcnctiberiansun\ea games\command & conquer the first decade\command & conquer(tm) tiberian sun(tm)\sun\game.exe => Keine Datei
FirewallRules: [TCP Query User{20B07216-97C9-477A-AD90-A2896E488D96}C:\users\tino\eclipse\java-neon\eclipse\eclipse.exe] => (Block) C:\users\tino\eclipse\java-neon\eclipse\eclipse.exe () [Datei ist nicht signiert]
FirewallRules: [UDP Query User{61806311-F86C-4F86-A6DB-2D0D4436B13B}C:\users\tino\eclipse\java-neon\eclipse\eclipse.exe] => (Block) C:\users\tino\eclipse\java-neon\eclipse\eclipse.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{EAD8F2C7-71D8-49AB-B09E-CB9D06E0482F}C:\users\tino\eclipse\java-neon\eclipse\eclipse.exe] => (Block) C:\users\tino\eclipse\java-neon\eclipse\eclipse.exe () [Datei ist nicht signiert]
FirewallRules: [UDP Query User{4FC056FE-4DC4-4E76-9746-3D454D71327A}C:\users\tino\eclipse\java-neon\eclipse\eclipse.exe] => (Block) C:\users\tino\eclipse\java-neon\eclipse\eclipse.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{CD434139-6E26-4D5F-89DD-A8A5DDDACBB8}C:\users\tino\documents\games\battlefield 2\bf2.exe] => (Allow) C:\users\tino\documents\games\battlefield 2\bf2.exe => Keine Datei
FirewallRules: [UDP Query User{E77960D8-537F-4C8F-8B0E-31ADC2582D3F}C:\users\tino\documents\games\battlefield 2\bf2.exe] => (Allow) C:\users\tino\documents\games\battlefield 2\bf2.exe => Keine Datei
FirewallRules: [{F11747E2-ECFE-422D-A5AE-5C1523203B93}] => (Block) C:\users\tino\documents\games\battlefield 2\bf2.exe => Keine Datei
FirewallRules: [{C84206A6-F778-4795-B322-824FF1E8B252}] => (Block) C:\users\tino\documents\games\battlefield 2\bf2.exe => Keine Datei
FirewallRules: [TCP Query User{21B9B721-CD4B-487C-A72B-3C576FCC8DEB}C:\users\tino\documents\games\officialcnctiberiansun\officialcnctiberiansun\ea games\command & conquer the first decade\command & conquer(tm) tiberian sun(tm)\sun\game.exe] => (Block) C:\users\tino\documents\games\officialcnctiberiansun\officialcnctiberiansun\ea games\command & conquer the first decade\command & conquer(tm) tiberian sun(tm)\sun\game.exe => Keine Datei
FirewallRules: [UDP Query User{98995CEC-D9A0-4718-85CD-E66D2BB2B760}C:\users\tino\documents\games\officialcnctiberiansun\officialcnctiberiansun\ea games\command & conquer the first decade\command & conquer(tm) tiberian sun(tm)\sun\game.exe] => (Block) C:\users\tino\documents\games\officialcnctiberiansun\officialcnctiberiansun\ea games\command & conquer the first decade\command & conquer(tm) tiberian sun(tm)\sun\game.exe => Keine Datei
FirewallRules: [TCP Query User{8E864215-06E4-49CF-8B88-42FF0CF33716}C:\users\tino\documents\games\age of empires2\empires2.exe] => (Block) C:\users\tino\documents\games\age of empires2\empires2.exe => Keine Datei
FirewallRules: [UDP Query User{3E02DA7E-AC91-4CAF-A8A7-E78A3E9848A4}C:\users\tino\documents\games\age of empires2\empires2.exe] => (Block) C:\users\tino\documents\games\age of empires2\empires2.exe => Keine Datei
FirewallRules: [TCP Query User{E0FF2AAB-24CB-4025-BFAC-A9037BC252ED}C:\users\tino\documents\games\age of empires2\empires2.exe] => (Block) C:\users\tino\documents\games\age of empires2\empires2.exe => Keine Datei
FirewallRules: [UDP Query User{6398BA8C-392F-4198-96D2-52ED9BFEF2F7}C:\users\tino\documents\games\age of empires2\empires2.exe] => (Block) C:\users\tino\documents\games\age of empires2\empires2.exe => Keine Datei
FirewallRules: [TCP Query User{0A8FA7E7-47E0-4CA8-A0BC-1D7F6AE321B8}C:\windows\syswow64\dplaysvr.exe] => (Block) C:\windows\syswow64\dplaysvr.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [UDP Query User{FB6E3A15-53E5-4240-AE4A-F6399A4BD8C5}C:\windows\syswow64\dplaysvr.exe] => (Block) C:\windows\syswow64\dplaysvr.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{43132692-0230-4E61-9B31-D9EEEB0A8412}C:\users\tino\documents\games\lan\w3 updatet\warcraft iii\war3.exe] => (Block) C:\users\tino\documents\games\lan\w3 updatet\warcraft iii\war3.exe => Keine Datei
FirewallRules: [UDP Query User{04CE05A8-432A-41AD-9494-320917605012}C:\users\tino\documents\games\lan\w3 updatet\warcraft iii\war3.exe] => (Block) C:\users\tino\documents\games\lan\w3 updatet\warcraft iii\war3.exe => Keine Datei
FirewallRules: [TCP Query User{7D519C32-7E60-42DE-9183-1C54D394C266}C:\users\tino\documents\games\battlefield 2142\bf2142.exe] => (Allow) C:\users\tino\documents\games\battlefield 2142\bf2142.exe => Keine Datei
FirewallRules: [UDP Query User{BB4DE934-6FD8-436A-A471-B80FEF06331D}C:\users\tino\documents\games\battlefield 2142\bf2142.exe] => (Allow) C:\users\tino\documents\games\battlefield 2142\bf2142.exe => Keine Datei
FirewallRules: [{C52415BB-C5C8-4887-B0CA-AE27B07E5B87}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\24\WinWrapIDE.exe (IBM -> IBM Corp.) [Datei ist nicht signiert]
FirewallRules: [{7FACDD01-D0E5-4C96-B283-1851250D8D92}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\24\WinWrapIDE.exe (IBM -> IBM Corp.) [Datei ist nicht signiert]
FirewallRules: [{11B777D3-7702-43DA-B41E-DB1109DA3EC1}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\24\stats.com (IBM -> IBM Corp.) [Datei ist nicht signiert]
FirewallRules: [{77A1CAE9-E6B0-436F-BCE6-C71C71DB089B}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\24\stats.com (IBM -> IBM Corp.) [Datei ist nicht signiert]
FirewallRules: [{09EB3109-6CFB-4B0B-A1ED-FAC3F9FD6741}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\24\stats.exe (IBM -> IBM Corp.) [Datei ist nicht signiert]
FirewallRules: [{9251A0D1-1693-4EA3-875B-6EDE060CA0B5}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\24\stats.exe (IBM -> IBM Corp.) [Datei ist nicht signiert]
FirewallRules: [{0309243F-AE39-4046-AD05-47F3B1DB3F62}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{EA6A914E-7F17-47D2-B512-8DE562C51A38}] => (Allow) LPort=2869
FirewallRules: [{55CAA3B5-FBBA-4CC9-A40B-EB216CB6F18D}] => (Allow) LPort=1900
FirewallRules: [{E9E49D6B-6A5F-48D4-99C0-99239594C5BD}] => (Allow) LPort=8888
FirewallRules: [{B28ABA6F-A2F7-4418-BF3C-3EF2C6E10BAB}] => (Allow) LPort=8888
FirewallRules: [TCP Query User{3619BC9D-039E-4CC6-8931-BC7D45CD4626}C:\program files (x86)\leibniz-rechenzentrum\lrz_sync_share\jre\launch4j-tmp\lrz_sync_share.exe] => (Allow) C:\program files (x86)\leibniz-rechenzentrum\lrz_sync_share\jre\launch4j-tmp\lrz_sync_share.exe (Oracle America, Inc. -> Oracle Corporation)
FirewallRules: [UDP Query User{AD02C3EE-B16D-4E90-B25E-C57B29961417}C:\program files (x86)\leibniz-rechenzentrum\lrz_sync_share\jre\launch4j-tmp\lrz_sync_share.exe] => (Allow) C:\program files (x86)\leibniz-rechenzentrum\lrz_sync_share\jre\launch4j-tmp\lrz_sync_share.exe (Oracle America, Inc. -> Oracle Corporation)
FirewallRules: [{1EE675F5-0BE6-4AD1-8CF8-6378322DE828}] => (Block) C:\program files (x86)\leibniz-rechenzentrum\lrz_sync_share\jre\launch4j-tmp\lrz_sync_share.exe (Oracle America, Inc. -> Oracle Corporation)
FirewallRules: [{836758E2-B218-4F24-B987-2799F972B53A}] => (Block) C:\program files (x86)\leibniz-rechenzentrum\lrz_sync_share\jre\launch4j-tmp\lrz_sync_share.exe (Oracle America, Inc. -> Oracle Corporation)
FirewallRules: [{2ED826D2-4C5B-4154-B911-2BE5E40879E8}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Keine Datei
FirewallRules: [{CBAF8AB0-6212-4B8F-B789-407AD4C2736E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Keine Datei
FirewallRules: [{A1B9A075-A9F3-44AA-8748-CD3E509DA307}] => (Allow) C:\Program Files (x86)\GameSessions\Worms Reloaded\DataTools\DLM.exe (Tangentix Ltd -> GameSessions)
FirewallRules: [{75F14CDA-2318-4CA4-A91C-4458DC25B0E3}] => (Allow) C:\Program Files (x86)\Tangentix\DDRuntime\GSLauncher.exe (Tangentix Ltd -> Tangentix Ltd)
FirewallRules: [{66C87831-24A1-4C11-A038-97FF611DAC6C}] => (Allow) LPort=8733
FirewallRules: [TCP Query User{C983046A-8B74-4ED3-A014-5919DD08FE72}C:\users\tino\documents\games\warcraft iii\war3.exe] => (Allow) C:\users\tino\documents\games\warcraft iii\war3.exe => Keine Datei
FirewallRules: [UDP Query User{2022341D-9147-42DB-A2CB-723BECD57E1A}C:\users\tino\documents\games\warcraft iii\war3.exe] => (Allow) C:\users\tino\documents\games\warcraft iii\war3.exe => Keine Datei
FirewallRules: [TCP Query User{D4A45AC4-DEF2-4A22-9959-392496266843}C:\users\tino\documents\games\lan\cs 1.6\hl.exe] => (Allow) C:\users\tino\documents\games\lan\cs 1.6\hl.exe => Keine Datei
FirewallRules: [UDP Query User{2EA9DA41-B7C9-409C-A83F-EC138F98398A}C:\users\tino\documents\games\lan\cs 1.6\hl.exe] => (Allow) C:\users\tino\documents\games\lan\cs 1.6\hl.exe => Keine Datei
FirewallRules: [TCP Query User{9401D351-EFE0-4846-AF9C-F9FC82D305B7}C:\users\tino\documents\games\lan\age of empires2\age2_x1\age2_x1.exe] => (Block) C:\users\tino\documents\games\lan\age of empires2\age2_x1\age2_x1.exe => Keine Datei
FirewallRules: [UDP Query User{D164E113-2560-4E96-B6B9-E839CADE8545}C:\users\tino\documents\games\lan\age of empires2\age2_x1\age2_x1.exe] => (Block) C:\users\tino\documents\games\lan\age of empires2\age2_x1\age2_x1.exe => Keine Datei
FirewallRules: [TCP Query User{4D7CCD71-F6EA-46DE-A28F-8AE9C51EB133}C:\program files (x86)\gnupg\bin\dirmngr.exe] => (Allow) C:\program files (x86)\gnupg\bin\dirmngr.exe () [Datei ist nicht signiert]
FirewallRules: [UDP Query User{16A40AED-3EBC-416F-A00D-C7B52066C4D3}C:\program files (x86)\gnupg\bin\dirmngr.exe] => (Allow) C:\program files (x86)\gnupg\bin\dirmngr.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{24E22959-3BD0-43D4-A681-38498BFB1854}C:\users\tino\documents\spiele\warcraft iii frozen throne\warcraft iii\war3.exe] => (Allow) C:\users\tino\documents\spiele\warcraft iii frozen throne\warcraft iii\war3.exe (Blizzard Entertainment) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{E97CA51E-393B-44A6-B2B2-A796551EFB53}C:\users\tino\documents\spiele\warcraft iii frozen throne\warcraft iii\war3.exe] => (Allow) C:\users\tino\documents\spiele\warcraft iii frozen throne\warcraft iii\war3.exe (Blizzard Entertainment) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{ACBD7209-A170-4619-90CA-0CDB1FCEDBE5}C:\games\heroes3_hota\h3hota hd.exe] => (Allow) C:\games\heroes3_hota\h3hota hd.exe (The 3DO Company) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{6354C32F-4DD0-4B97-A924-CB15DE54AB42}C:\games\heroes3_hota\h3hota hd.exe] => (Allow) C:\games\heroes3_hota\h3hota hd.exe (The 3DO Company) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{DCC30970-1885-4834-9D58-233EA8CA4D5A}C:\gog games\homm 3 complete\heroes3.exe] => (Block) C:\gog games\homm 3 complete\heroes3.exe (The 3DO Company) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{AF96591C-6CA7-490D-BC7C-2F13F36952D6}C:\gog games\homm 3 complete\heroes3.exe] => (Block) C:\gog games\homm 3 complete\heroes3.exe (The 3DO Company) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{31382D12-C20C-4798-AB62-1AD800811DA8}C:\users\tino\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\tino\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{84D5F300-68B5-470B-9503-571A5506D77E}C:\users\tino\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\tino\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{2277DC35-0B15-46FD-A2EF-FAF47DB4141D}] => (Allow) C:\Program Files\HP\HP Deskjet 3520 series\Bin\DeviceSetup.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{1F04FE85-E1BB-4D14-B7F6-43338FD9D362}] => (Allow) C:\Program Files\HP\HP Deskjet 3520 series\Bin\HPNetworkCommunicator.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{96258AD9-C380-41B1-987A-3FABD2FA2863}] => (Allow) C:\Program Files\HP\HP Deskjet 3520 series\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{B56B482D-2468-4E3E-8D0F-C079A3F638C7}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{233D3AAB-0936-485A-8D40-CA2D14BCA012}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F0929751-EBE9-40D2-BF78-D6BB2A9AFCBC}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{A549F28D-87E9-45EF-A72A-526D6BEAE6FA}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{A8C02968-3DBE-4182-9232-75D7FE17CBB4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D683811C-ABFB-41F7-8001-48A7AB08A1D1}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E9068E04-87ED-4B54-AD51-86A24F998B3F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{1EDD1CA2-D599-4CFA-BFED-F1ADDE4A32B9}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{C0DE37EE-557B-4EE9-AFC8-006BB75C2C36}] => (Allow) C:\ProgramData\ZeroTier\One\zerotier-one_x64.exe (ZeroTier, Inc. -> )
FirewallRules: [{B0D473DB-50EB-40D2-B054-EEAFE943A1F6}] => (Allow) C:\ProgramData\ZeroTier\One\zerotier-one_x64.exe (ZeroTier, Inc. -> )
FirewallRules: [{5E1976D0-2ACD-478A-BDF3-5B2715F47A67}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\94.0.992.31\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{E398CE2F-B003-4831-A7C7-BA629ACA7E18}C:\program files (x86)\apowersoft\gitmind\gitmind.exe] => (Block) C:\program files (x86)\apowersoft\gitmind\gitmind.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [UDP Query User{58D674BE-02B6-4C11-9740-907950463D8F}C:\program files (x86)\apowersoft\gitmind\gitmind.exe] => (Block) C:\program files (x86)\apowersoft\gitmind\gitmind.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [{6F751C24-59EB-453B-BA24-C1199ECED815}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
FirewallRules: [TCP Query User{71020423-F200-4E90-88F5-ADA17FBC112F}C:\program files (x86)\bitrix24\bitrix24.exe] => (Block) C:\program files (x86)\bitrix24\bitrix24.exe (Bitrix, Inc. -> Bitrix)
FirewallRules: [UDP Query User{30FDAB61-FC7C-4F7A-8E51-91D7C0EB054B}C:\program files (x86)\bitrix24\bitrix24.exe] => (Block) C:\program files (x86)\bitrix24\bitrix24.exe (Bitrix, Inc. -> Bitrix)
FirewallRules: [{603A54F8-1521-42DC-813F-DFF4D72932C3}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B5BBF9E3-D1E8-4BB0-871B-3CD14021BFE6}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{1AAD2631-0AED-439F-ACDF-DA1FE2E9FD38}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe (Lenovo -> )
FirewallRules: [{E62228F3-2684-4792-9CA1-2AB24EC4BB9C}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe (Lenovo -> )
==================== Wiederherstellungspunkte =========================
08-10-2021 08:27:35 Windows Modules Installer
==================== Fehlerhafte Geräte im Gerätemanager ============
Name: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Description: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Cisco Systems
Service: vpnva
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Fehlereinträge in der Ereignisanzeige: ========================
Applikationsfehler:
==================
Error: (10/13/2021 03:24:28 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 25 3.9.B.8.B.4.9.2.3.5.D.6.C.0.9.4.0.0.0.0.0.0.0.0.0.0.0.0.0.8.E.F.ip6.arpa. PTR DESKTOP-BB502MH-2.local.
Error: (10/13/2021 03:24:28 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from FE80:0000:0000:0000:490C:6D53:294B:8B93:5353 23 3.9.B.8.B.4.9.2.3.5.D.6.C.0.9.4.0.0.0.0.0.0.0.0.0.0.0.0.0.8.E.F.ip6.arpa. PTR DESKTOP-BB502MH.local.
Error: (10/13/2021 03:24:28 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Local Hostname DESKTOP-BB502MH.local already in use; will try DESKTOP-BB502MH-2.local instead
Error: (10/13/2021 03:24:28 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: ProbeCount 2; will deregister 16 DESKTOP-BB502MH.local. AAAA FE80:0000:0000:0000:490C:6D53:294B:8B93
Error: (10/13/2021 03:24:28 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from FE80:0000:0000:0000:490C:6D53:294B:8B93:5353 4 DESKTOP-BB502MH.local. Addr 192.168.192.181
Error: (10/13/2021 03:24:28 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Ignoring response received before we even began probing: 16 DESKTOP-BB502MH.local. AAAA FE80:0000:0000:0000:490C:6D53:294B:8B93
Error: (10/13/2021 09:48:48 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Local Hostname DESKTOP-BB502MH.local already in use; will try DESKTOP-BB502MH-2.local instead
Error: (10/13/2021 09:48:48 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: ProbeCount 2; will deregister 16 DESKTOP-BB502MH.local. AAAA FE80:0000:0000:0000:490C:6D53:294B:8B93
Systemfehler:
=============
Error: (10/13/2021 08:19:31 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-BB502MH)
Description: Der Server "microsoft.windowscommunicationsapps_16005.14326.20436.0_x64__8wekyb3d8bbwe!microsoft.windowslive.calendar.AppXwkn9j84yh1kvnt49k5r8h6y1ecsv09hs.mca" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (10/12/2021 04:29:12 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-BB502MH)
Description: Der Server "microsoft.windowscommunicationsapps_16005.14326.20436.0_x64__8wekyb3d8bbwe!microsoft.windowslive.calendar.AppXwkn9j84yh1kvnt49k5r8h6y1ecsv09hs.mca" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (10/12/2021 08:01:07 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80073d02 fehlgeschlagen: 9NMPJ99VJBWV-Microsoft.YourPhone
Error: (10/11/2021 08:22:36 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-BB502MH)
Description: Der Server "microsoft.windowscommunicationsapps_16005.14326.20436.0_x64__8wekyb3d8bbwe!microsoft.windowslive.calendar.AppXwkn9j84yh1kvnt49k5r8h6y1ecsv09hs.mca" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (10/10/2021 11:08:07 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-BB502MH)
Description: Der Server "microsoft.windowscommunicationsapps_16005.14326.20436.0_x64__8wekyb3d8bbwe!microsoft.windowslive.calendar.AppXwkn9j84yh1kvnt49k5r8h6y1ecsv09hs.mca" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (10/06/2021 03:22:15 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-BB502MH)
Description: Der Server "microsoft.windowscommunicationsapps_16005.14326.20436.0_x64__8wekyb3d8bbwe!microsoft.windowslive.calendar.AppXwkn9j84yh1kvnt49k5r8h6y1ecsv09hs.mca" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (10/05/2021 02:58:07 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-BB502MH)
Description: Der Server "microsoft.windowscommunicationsapps_16005.14326.20436.0_x64__8wekyb3d8bbwe!microsoft.windowslive.calendar.AppXwkn9j84yh1kvnt49k5r8h6y1ecsv09hs.mca" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (10/05/2021 11:10:08 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-BB502MH)
Description: Der Server "microsoft.windowscommunicationsapps_16005.14326.20436.0_x64__8wekyb3d8bbwe!microsoft.windowslive.calendar.AppXwkn9j84yh1kvnt49k5r8h6y1ecsv09hs.mca" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Windows Defender:
================
Date: 2021-10-12 14:51:12
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {839A0DD1-1852-41EC-A969-EA1E77DBA478}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Date: 2021-10-12 09:43:31
Description:
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe wurde durch den überwachten Ordnerzugriff daran gehindert, %userprofile%\Documents zu ändern.
Erkennungszeit: 2021-10-12T07:43:31.274Z
Benutzer: DESKTOP-BB502MH\Tino
Pfad: %userprofile%\Documents
Prozessname: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
Sicherheitsversion: 1.351.239.0
Modulversion: 1.1.18600.4
Produktversion: 4.18.2109.6
Date: 2021-10-08 08:52:29
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {11F55FD6-638C-4F2F-900D-C9FA773D33A0}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Date: 2021-10-07 18:10:07
Description:
C:\Program Files (x86)\Microsoft Office\Root\Office16\WINWORD.EXE wurde durch den überwachten Ordnerzugriff daran gehindert, %userprofile%\Documents\ZENSIERT\ zu ändern.
Erkennungszeit: 2021-10-07T16:10:07.081Z
Benutzer: DESKTOP-BB502MH\Tino
Pfad: %userprofile%\Documents\ZENSIERT\
Prozessname: C:\Program Files (x86)\Microsoft Office\Root\Office16\WINWORD.EXE
Sicherheitsversion: 1.349.2068.0
Modulversion: 1.1.18600.4
Produktversion: 4.18.2109.6
Date: 2021-10-06 18:56:34
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {F7F54832-87C6-4F0B-ADAD-838F3C6E101E}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Date: 2021-09-24 08:25:25
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.
Neue Version der Sicherheitsinformationen:
%Vorherige Version der Sicherheitsinformationen: 1.349.1201.0
Update Source: Microsoft Center zum Schutz vor Schadsoftware
Sicherheitstyp: AntiVirus
Updatetyp: Voll
Benutzer: NT-AUTORITÄT\Netzwerkdienst
Aktuelle Modulversion:
%Vorherige Modulversion: 1.1.18500.10
Fehlercode: 0x80072ee7
Fehlerbeschreibung: Der Servername oder die Serveradresse konnte nicht verarbeitet werden.
Date: 2021-09-24 08:25:25
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.
Neue Version der Sicherheitsinformationen:
%Vorherige Version der Sicherheitsinformationen: 1.349.1201.0
Update Source: Microsoft Center zum Schutz vor Schadsoftware
Sicherheitstyp: AntiSpyware
Updatetyp: Voll
Benutzer: NT-AUTORITÄT\Netzwerkdienst
Aktuelle Modulversion:
%Vorherige Modulversion: 1.1.18500.10
Fehlercode: 0x80072ee7
Fehlerbeschreibung: Der Servername oder die Serveradresse konnte nicht verarbeitet werden.
Date: 2021-09-24 08:25:25
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.
Neue Version der Sicherheitsinformationen:
%Vorherige Version der Sicherheitsinformationen: 1.349.1201.0
Update Source: Microsoft Center zum Schutz vor Schadsoftware
Sicherheitstyp: AntiVirus
Updatetyp: Voll
Benutzer: NT-AUTORITÄT\Netzwerkdienst
Aktuelle Modulversion:
%Vorherige Modulversion: 1.1.18500.10
Fehlercode: 0x80072ee7
Fehlerbeschreibung: Der Servername oder die Serveradresse konnte nicht verarbeitet werden.
Date: 2021-09-24 08:25:25
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.
Neue Version der Sicherheitsinformationen:
%Vorherige Version der Sicherheitsinformationen: 1.349.1201.0
Update Source: Microsoft Center zum Schutz vor Schadsoftware
Sicherheitstyp: AntiVirus
Updatetyp: Voll
Benutzer: NT-AUTORITÄT\Netzwerkdienst
Aktuelle Modulversion:
%Vorherige Modulversion: 1.1.18500.10
Fehlercode: 0x80072ee7
Fehlerbeschreibung: Der Servername oder die Serveradresse konnte nicht verarbeitet werden.
Date: 2021-09-24 08:25:25
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.
Neue Version der Sicherheitsinformationen:
%Vorherige Version der Sicherheitsinformationen: 1.349.1201.0
Update Source: Microsoft Center zum Schutz vor Schadsoftware
Sicherheitstyp: AntiSpyware
Updatetyp: Voll
Benutzer: NT-AUTORITÄT\Netzwerkdienst
Aktuelle Modulversion:
%Vorherige Modulversion: 1.1.18500.10
Fehlercode: 0x80072ee7
Fehlerbeschreibung: Der Servername oder die Serveradresse konnte nicht verarbeitet werden.
CodeIntegrity:
===============
Date: 2021-10-03 17:18:45
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\dllhost.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Nuance\NaturallySpeaking15\Program\x64\dgniedct_x64.dll that did not meet the Microsoft signing level requirements.
Date: 2021-08-01 15:08:01
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\aepic.dll because the set of per-page image hashes could not be found on the system.
Date: 2021-07-20 17:19:46
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Nuance\NaturallySpeaking15\Program\x64\dd10axa_x64.dll that did not meet the Microsoft signing level requirements.
Date: 2021-07-20 17:19:46
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Nuance\NaturallySpeaking15\Program\x64\dd10hook_x64.dll that did not meet the Microsoft signing level requirements.
Date: 2021-07-20 17:19:46
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Nuance\NaturallySpeaking15\Program\x64\nlutmgrhook_x64.dll that did not meet the Microsoft signing level requirements.
Date: 2021-07-20 11:14:15
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\dllhost.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Nuance\NaturallySpeaking15\Program\x64\dd10hook_x64.dll that did not meet the Microsoft signing level requirements.
Date: 2021-07-20 11:14:15
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\dllhost.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Nuance\NaturallySpeaking15\Program\x64\nlutmgrhook_x64.dll that did not meet the Microsoft signing level requirements.
==================== Speicherinformationen ===========================
BIOS: LENOVO R06ET69W (1.43 ) 01/08/2020
Hauptplatine: LENOVO 20FMS03600
Prozessor: Intel(R) Core(TM) i5-6200U CPU @ 2.30GHz
Prozentuale Nutzung des RAM: 85%
Installierter physikalischer RAM: 7607.82 MB
Verfügbarer physikalischer RAM: 1102.27 MB
Summe virtueller Speicher: 17582.79 MB
Verfügbarer virtueller Speicher: 3598.79 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:237.13 GB) (Free:27.57 GB) NTFS
\\?\Volume{1a177e8d-0000-0000-0000-100000000000}\ (System-reserviert) (Fixed) (Total:0.49 GB) (Free:0.46 GB) NTFS
\\?\Volume{1a177e8d-0000-0000-0000-d0673b000000}\ () (Fixed) (Total:0.85 GB) (Free:0.31 GB) NTFS
==================== MBR & Partitionstabelle ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 238.5 GB) (Disk ID: 1A177E8D)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=237.1 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=871 MB) - (Type=27)
==================== Ende von Addition.txt =======================
|
|
13.10.2021, 16:24
| #3 |
| | Windows 10: audacity.de Installer NOCH in der Ausführung. Soll ich ihn schließen? PC Neustarten? Shortcut.txt
__________________Code:
ATTFilter Untersuchungsergebnis der Verknüpfungen des Benutzers (x64) Version: 12-10-2021
durchgeführt von Tino (13-10-2021 16:51:54)
Gestartet von C:\Users\Tino\Downloads
Start-Modus: Normal
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Software Updates.lnk -> C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe (Flexera Software LLC.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\MSACCESS.EXE (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe (Adobe Systems Incorporated)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk -> C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Digital Editions 4.5.lnk -> C:\Program Files (x86)\Adobe\Adobe Digital Editions 4.5\DigitalEditions.exe (Adobe Systems Incorporated)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Illustrator 2020.lnk -> C:\Program Files\Adobe\Adobe Illustrator 2020\Support Files\Contents\Windows\Illustrator.exe (Adobe Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk -> C:\Windows\Installer\{A30EA700-5515-48F0-88B0-9E99DC356B88}\AppleSoftwareUpdateIco.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk -> C:\Program Files (x86)\Audacity\audacity.exe (The Audacity Team)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\EXCEL.EXE (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk -> C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.10.22.lnk -> C:\Program Files\GIMP 2\bin\gimp-2.10.exe (Spencer Kimball, Peter Mattis and the GIMP Development Team)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Immersive Control Panel.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeePass 2.lnk -> C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe (Dominik Reichl)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk -> C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe (Malwarebytes)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Keyboard Layout Creator 1.4.lnk -> C:\Program Files (x86)\Microsoft Keyboard Layout Creator 1.4\MSKLC.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk -> C:\Program Files (x86)\Windows Live\Photo Gallery\MovieMaker.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk -> C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe (Mozilla Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nitro Pro.lnk -> C:\Program Files\Nitro\Pro 11\NitroPDF.exe (Nitro PDF)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++.lnk -> C:\Program Files\Notepad++\notepad++.exe (Don HO don.h@free.fr)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk -> C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\POWERPNT.EXE (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\MSPUB.EXE (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shotcut.lnk -> C:\Program Files\Shotcut\shotcut.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype for Business.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tableau 2020.3.lnk -> C:\Program Files\Tableau\Tableau 2020.3\bin\tableau.exe (Tableau Software)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tableau Public 2020.3.lnk -> C:\Program Files\Tableau\Tableau Public 2020.3\bin\tabpublic.exe (Tableau Software)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client.lnk -> C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe (TeamSpeak Systems GmbH)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 12.lnk -> C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\thinkorswim.lnk -> C:\Program Files\thinkorswim\thinkorswim.exe (thinkorswim, Inc)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Toolkit.lnk -> C:\Program Files (x86)\Toolkit\Toolkit.exe (Seagate Technology LLC)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\WINWORD.EXE (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZeroTier One.lnk -> C:\Program Files (x86)\ZeroTier\One\ZeroTier One.exe (ZeroTier, Inc)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinMerge\Benutzerhandbuch.lnk -> C:\Program Files (x86)\WinMerge\Docs\WinMerge.chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinMerge\LIESMICH-Datei.lnk -> C:\Program Files (x86)\WinMerge\Docs\ReadMe.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinMerge\WinMerge.lnk -> C:\Program Files (x86)\WinMerge\WinMergeU.exe (hxxp://winmerge.org)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Resource Kit Tools\Command Shell.lnk -> C:\Windows\SysWOW64\cmd.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Resource Kit Tools\Windows Resource Kit Tools Read Me.lnk -> C:\Program Files (x86)\Windows Resource Kits\Tools\readme.htm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell ISE (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell ISE.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ViewNX-i\Neueste Info zu ViewNX-i.lnk -> C:\Program Files\Nikon\ViewNX-i\ViewNX-i\Readme.rtf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ViewNX-i\ViewNX-i Hilfe.lnk -> C:\Program Files\Nikon\ViewNX-i\ViewNX-i\Helps\Index.html ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ViewNX-i\ViewNX-i.lnk -> C:\Program Files\Nikon\ViewNX-i\ViewNX-i\ViewNX-i.exe (Nikon Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\Documentation.lnk -> C:\Program Files\VideoLAN\VLC\Documentation.url ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\Release Notes.lnk -> C:\Program Files\VideoLAN\VLC\NEWS.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VideoLAN Website.lnk -> C:\Program Files\VideoLAN\VLC\VideoLAN Website.url ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VLC media player.lnk -> C:\Program Files\VideoLAN\VLC\vlc.exe (VideoLAN)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TunnelBear\TunnelBear.lnk -> C:\Program Files (x86)\TunnelBear\TunnelBear.exe (TunnelBear)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TreeSize Free\TreeSize Free (Administrator).lnk -> C:\Program Files (x86)\JAM Software\TreeSize Free\TreeSizeFree.exe (JAM Software)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TreeSize Free\TreeSize Free Hilfe.lnk -> C:\Program Files (x86)\JAM Software\TreeSize Free\TreeSizeFree.chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tracker Software\PDF-XChange Editor.lnk -> C:\Program Files\Tracker Software\PDF Editor\PDFXEdit.exe (Tracker Software Products (Canada) Ltd.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tracker Software\Tracker Updater.lnk -> C:\Program Files\Tracker Software\Update\TrackerUpdate.exe (Tracker Software Products (Canada) Ltd.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tracker Software\PDF-XChange Lite\PDF-XChange Lite License Agreement.lnk -> C:\Program Files\Tracker Software\PDF-XChange Lite\Help\PDFXLicense.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tracker Software\PDF-XChange Lite\PDF-XChange Lite User Manual.lnk -> C:\Program Files\Tracker Software\PDF-XChange Lite\Help\PDFX8ManLiteSm.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tracker Software\PDF-XChange Editor\PDF-XChange Editor Help.lnk -> C:\Program Files\Tracker Software\PDF Editor\Help\PDFXVE8Sm.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tracker Software\PDF-XChange Editor\PDF-XChange Editor License Agreement.lnk -> C:\Program Files\Tracker Software\PDF Editor\PDF_VE.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tinypic\Anleitung zu Tinypic.lnk -> C:\Program Files (x86)\Tinypic\AnleitungTinyPic.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tinypic\TinyPic.exe.lnk -> C:\Program Files (x86)\Tinypic\TinyPic.exe (Borland Software Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tinypic\Uninstall Tinypic.lnk -> C:\Program Files (x86)\Tinypic\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SteuerSparErklärung 2016\Start-Center 2016.lnk -> C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\SteuerSparErklaerung 2016\StartCenter.exe (Akademische Arbeitsgemeinschaft Verlag)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SteuerSparErklärung 2016\Informationen und Hilfe\Report erstellen.lnk -> C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\SteuerSparErklaerung 2016\ReportTool.exe (Akademische Arbeitsgemeinschaft Verlag)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SteuerSparErklärung 2016\Informationen und Hilfe\TeamViewer.lnk -> C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\SteuerSparErklaerung 2016\TeamViewerQS_AAV_Win.exe (TeamViewer)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam\Steam.lnk -> C:\Program Files (x86)\Steam\steam.exe (Valve Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp\Dell Display Manager.lnk -> C:\Program Files (x86)\Dell\Dell Display Manager\ddm.exe (EnTech Taiwan)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\STAR WARS Battlefront II [GOG.com]\Deinstallieren STAR WARS Battlefront II.lnk -> C:\GOG Games\Star Wars - Battlefront 2\unins000.exe (Keine Datei)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\STAR WARS Battlefront II [GOG.com]\STAR WARS Battlefront II.lnk -> C:\GOG Games\Star Wars - Battlefront 2\SWB2Launcher.exe (Keine Datei)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\STAR WARS Battlefront II [GOG.com]\Tools\Language Setup.lnk -> C:\GOG Games\Star Wars - Battlefront 2\language_setup.exe (Keine Datei)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\STAR WARS Battlefront II [GOG.com]\Dokumente\Manual.lnk -> C:\GOG Games\Star Wars - Battlefront 2\Manual.pdf (Keine Datei)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Seagate Dashboard 2.0\Seagate Dashboard 2.0.lnk -> C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\Dashboard.exe (Seagate Technology LLC)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RStudio\RStudio.lnk -> C:\Program Files\RStudio\bin\rstudio.exe (RStudio, PBC)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RStudio\Uninstall.lnk -> C:\Program Files\RStudio\Uninstall.exe (RStudio, PBC)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Realtek\Realtek HD Audio Manager.lnk -> C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Realtek\Realtek HD Audio-Manager.lnk -> C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R\R i386 3.3.1.lnk -> C:\Program Files\R\R-3.3.1\bin\i386\Rgui.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R\R x64 3.3.1.lnk -> C:\Program Files\R\R-3.3.1\bin\x64\Rgui.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime\QuickTime - Bitte lesen.lnk -> C:\Windows\Installer\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}\RichText.ico ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime\QuickTime Player.lnk -> C:\Windows\Installer\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}\QTPlayer.ico ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ProtonVPN\ProtonVPN.lnk -> C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picture Control Utility 2\Neueste Info zu Picture Control Utility 2.lnk -> C:\Program Files\Nikon\Picture Control Utility 2\Readme.rtf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picture Control Utility 2\Picture Control Utility 2 Hilfe.lnk -> C:\Program Files\Nikon\Picture Control Utility 2\Helps\index.html ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picture Control Utility 2\Picture Control Utility 2.lnk -> C:\Program Files\Nikon\Picture Control Utility 2\PictureControlUtil2.exe (Nikon Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Perceptive Devices\Smyle Mouse.lnk -> C:\Program Files (x86)\Perceptive Devices\Smyle Mouse\SmyleMouse.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Perceptive Devices\Uninstall Smyle Mouse.lnk -> C:\Program Files (x86)\Perceptive Devices\Smyle Mouse\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF24\PDF24.lnk -> C:\Program Files (x86)\PDF24\pdf24-Launcher.exe (Geek Software GmbH)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF-XChange PDF Viewer\PDF-Viewer License.lnk -> C:\Program Files\Tracker Software\PDF Viewer\Help\PDFVLicense.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF-XChange PDF Viewer\PDF-Viewer Users Manual.lnk -> C:\Program Files\Tracker Software\PDF Viewer\Help\PDFVwrManSm.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF-XChange PDF Viewer\PDF-Viewer.lnk -> C:\Program Files\Tracker Software\PDF Viewer\PDFXCview.exe (Tracker Software Products (Canada) Ltd.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF-XChange PDF Viewer\Tracker Updater.lnk -> C:\Program Files\Tracker Software\Update\TrackerUpdate.exe (Tracker Software Products (Canada) Ltd.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF-XChange PDF Viewer\Uninstall.lnk -> C:\Program Files\Tracker Software\PDF Viewer\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nikon Transfer 2\Nikon Transfer 2 Hilfe.lnk -> C:\Program Files (x86)\Nikon\Nikon Transfer 2\Helps\Index.html ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nikon Transfer 2\Nikon Transfer 2.lnk -> C:\Program Files (x86)\Nikon\Nikon Transfer 2\NktTransfer2.exe (Nikon Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nikon Message Center 2\Nikon Message Center 2-Hilfe.lnk -> C:\Program Files (x86)\Nikon\Nikon Message Center 2\Localization\DE\NikonMessageCenter2_DE.chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nikon Message Center 2\Nikon Message Center 2.lnk -> C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe (Nikon Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nem's Tools\GCFScape\GCFScape.lnk -> C:\Program Files\Nem's Tools\GCFScape\GCFScape.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nem's Tools\GCFScape\ReadMe.txt.lnk -> C:\Program Files\Nem's Tools\GCFScape\Readme.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nem's Tools\GCFScape\Uninstall GCFScape.lnk -> C:\Program Files\Nem's Tools\GCFScape\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight\Microsoft Silverlight.lnk -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\Silverlight.Configuration.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools\Aufzeichnungs-Manager von Skype for Business.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\OcPubMgr.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools\Office-Spracheinstellungen.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\SETLANG.EXE (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools\Telemetriedashboard für Office.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\msotd.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools\Telemetrieprotokoll für Office.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\msoev.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LRZ Sync+Share\LRZ Sync+Share Dokumentation.lnk -> C:\Windows\System32\shell32.dll (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LRZ Sync+Share\LRZ Sync+Share Homepage.lnk -> C:\Windows\System32\shell32.dll (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LRZ Sync+Share\LRZ Sync+Share.lnk -> C:\Program Files (x86)\Leibniz-Rechenzentrum\LRZ_Sync_Share\LRZ_Sync_Share.exe (Leibniz-Rechenzentrum)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LispWorks 6.1 Personal\HTML Documentation.lnk -> C:\Program Files (x86)\LispWorks Personal\lib\6-1-0-0\manual\online\intro.htm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LispWorks 6.1 Personal\LispWorks.lnk -> C:\Program Files (x86)\LispWorks Personal\lispworks-personal-6-1-1-x86-win32.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LispWorks 6.1 Personal\PDF Documentation\a - Release Notes and Installation Guide.lnk -> C:\Program Files (x86)\LispWorks Personal\lib\6-1-0-0\manual\offline\pdf\readme-6-1.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LispWorks 6.1 Personal\PDF Documentation\b - LispWorks User Guide and Reference Manual.lnk -> C:\Program Files (x86)\LispWorks Personal\lib\6-1-0-0\manual\offline\pdf\lw-6-1.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LispWorks 6.1 Personal\PDF Documentation\c - Foreign Language Interface User Guide and Reference Manual.lnk -> C:\Program Files (x86)\LispWorks Personal\lib\6-1-0-0\manual\offline\pdf\fli-6-1.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LispWorks 6.1 Personal\PDF Documentation\d - COM and Automation User Guide and Reference Manual.lnk -> C:\Program Files (x86)\LispWorks Personal\lib\6-1-0-0\manual\offline\pdf\com-6-1.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LispWorks 6.1 Personal\PDF Documentation\e - IDE User Guide.lnk -> C:\Program Files (x86)\LispWorks Personal\lib\6-1-0-0\manual\offline\pdf\ide-w-6-1.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LispWorks 6.1 Personal\PDF Documentation\f - CAPI User Guide.lnk -> C:\Program Files (x86)\LispWorks Personal\lib\6-1-0-0\manual\offline\pdf\capiuser-w-6-1.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LispWorks 6.1 Personal\PDF Documentation\g - CAPI Reference Manual.lnk -> C:\Program Files (x86)\LispWorks Personal\lib\6-1-0-0\manual\offline\pdf\capiref-6-1.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LispWorks 6.1 Personal\PDF Documentation\h - Editor User Guide.lnk -> C:\Program Files (x86)\LispWorks Personal\lib\6-1-0-0\manual\offline\pdf\eduser-w-6-1.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LispWorks 6.1 Personal\PDF Documentation\i - Delivery User Guide.lnk -> C:\Program Files (x86)\LispWorks Personal\lib\6-1-0-0\manual\offline\pdf\delivery-6-1.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LispWorks 6.1 Personal\PDF Documentation\j - KnowledgeWorks and Prolog User Guide and Reference Manual.lnk -> C:\Program Files (x86)\LispWorks Personal\lib\6-1-0-0\manual\offline\pdf\kwprolog-w-6-1.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LispWorks 6.1 Personal\PDF Documentation\k - CORBA User Guide.lnk -> C:\Program Files (x86)\LispWorks Personal\lib\6-1-0-0\manual\offline\pdf\corba-6-1.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LispWorks 6.1 Personal\PDF Documentation\l - CLIM User Guide.lnk -> C:\Program Files (x86)\LispWorks Personal\lib\6-1-0-0\manual\offline\pdf\climuser-6-1.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 6.3\LibreOffice Base.lnk -> C:\Program Files\LibreOffice\program\sbase.exe (The Document Foundation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 6.3\LibreOffice Calc.lnk -> C:\Program Files\LibreOffice\program\scalc.exe (The Document Foundation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 6.3\LibreOffice Draw.lnk -> C:\Program Files\LibreOffice\program\sdraw.exe (The Document Foundation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 6.3\LibreOffice Impress.lnk -> C:\Program Files\LibreOffice\program\simpress.exe (The Document Foundation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 6.3\LibreOffice Math.lnk -> C:\Program Files\LibreOffice\program\smath.exe (The Document Foundation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 6.3\LibreOffice Writer.lnk -> C:\Program Files\LibreOffice\program\swriter.exe (The Document Foundation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 6.3\LibreOffice.lnk -> C:\Program Files\LibreOffice\program\soffice.exe (The Document Foundation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\lenovo\System Update.lnk -> C:\Program Files (x86)\Lenovo\System Update\tvsu.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kinoni\EpocCam Viewer.lnk -> C:\Program Files (x86)\Kinoni\EpocCam_and_Barcode_drivers\EpocCamTest.exe (Kinoni)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit\Java Mission Control.lnk -> C:\Program Files\Java\jdk1.8.0_111\bin\jmc.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Java konfigurieren.lnk -> C:\Program Files\Java\jre1.8.0_171\bin\javacpl.exe (Oracle Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes\iTunes.lnk -> C:\Program Files\iTunes\iTunes.exe (Apple Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes\Über iTunes.lnk -> C:\Program Files\iTunes\iTunes.Resources\de.lproj\About iTunes.rtf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iMobie\AnyTrans\AnyTrans Online Help.lnk -> C:\Program Files (x86)\iMobie\AnyTrans\Help.ico ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iMobie\AnyTrans\AnyTrans.lnk -> C:\Program Files (x86)\iMobie\AnyTrans\AnyTrans.exe (iMobie Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iMobie\AnyTrans\uninstall.lnk -> C:\Program Files (x86)\iMobie\AnyTrans\uninstall.exe (iMobie Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iMazing\iMazing.lnk -> C:\Program Files\DigiDNA\iMazing\iMazing.exe (DigiDNA)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud\iCloud-Fotos.lnk -> C:\Program Files (x86)\Common Files\Apple\Internet Services\ShellStreamsShortcut.exe (Apple Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud\iCloud.lnk -> C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloud.exe (Apple Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IBM SPSS Statistics\IBM SPSS Statistics 24.lnk -> C:\Program Files\IBM\SPSS\Statistics\24\stats.exe (IBM Corp.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes of Might and Magic 3 Complete [GOG.com]\Deinstallieren Heroes of Might and Magic 3 Complete.lnk -> C:\GOG Games\HoMM 3 Complete\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes of Might and Magic 3 Complete [GOG.com]\Heroes of Might and Magic 3 Complete.lnk -> C:\GOG Games\HoMM 3 Complete\Heroes3.exe (The 3DO Company)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes of Might and Magic 3 Complete [GOG.com]\Tools\Campaign Editor.lnk -> C:\GOG Games\HoMM 3 Complete\h3ccmped.exe (The 3DO Company)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes of Might and Magic 3 Complete [GOG.com]\Tools\Map Editor.lnk -> C:\GOG Games\HoMM 3 Complete\h3maped.exe (The 3DO Company)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes of Might and Magic 3 Complete [GOG.com]\Dokumente\Manual - Armageddon's Blade.lnk -> C:\GOG Games\HoMM 3 Complete\Heroes3_AB_Manual.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes of Might and Magic 3 Complete [GOG.com]\Dokumente\Manual - The Shadow of Death.lnk -> C:\GOG Games\HoMM 3 Complete\Heroes3_SoD_Manual.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes of Might and Magic 3 Complete [GOG.com]\Dokumente\Manual.lnk -> C:\GOG Games\HoMM 3 Complete\Heroes3_Manual.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes of Might and Magic 3 Complete [GOG.com]\Dokumente\Tutorial.lnk -> C:\GOG Games\HoMM 3 Complete\Heroes3_Tutorial.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\gretl\Gretl Web Site.lnk -> C:\Program Files\gretl\gretl_website.url ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\gretl\gretl.lnk -> C:\Program Files\gretl\gretl.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\gretl\uninstall gretl.lnk -> C:\Program Files\gretl\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GPower\GPower 3.1.lnk -> C:\Windows\Installer\{FA3666A9-FF30-4777-B906-305B1EF0486E}\_9269BBB834ED7E7634C109.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com\GOG Galaxy\GOG GALAXY.lnk -> C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe (GOG.com)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GameSessions\Worms Reloaded.lnk -> C:\Windows\Installer\{CB69AE49-9423-4B3E-8325-A5B1C2869D5E}\LauncherIcon.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit PDF Reader\Foxit PDF Reader entfernen.lnk -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit PDF Reader\Foxit PDF Reader.lnk -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\FoxitPDFReader.exe (Foxit Software Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Evernote\Evernote.lnk -> C:\Windows\Installer\{A46ABD1E-2837-11E6-9E7C-005056951CAD}\Evernote.ico ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS MobiMover\EaseUS MobiMover entfernen.lnk -> C:\Program Files (x86)\EaseUS\EaseUS MobiMover\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS MobiMover\EaseUS MobiMover.lnk -> C:\Program Files (x86)\EaseUS\EaseUS MobiMover\bin\MobiMoverUI.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft\DVDVideoSoft Free Studio.lnk -> C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\FreeStudioManager.exe (Digital Wave Ltd)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft\Free YouTube To MP3 Converter.lnk -> C:\Program Files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\FreeYouTubeToMP3Converter.exe (Digital Wave Ltd)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft\Log Report.lnk -> C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\DVSSysReport.exe (DVDVideoSoft Ltd.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft\Premium Membership.lnk -> C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\PremiumMembershipOffer.exe (Digital Wave Ltd)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft\Uninstall.lnk -> C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\Uninstall.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dragon\Dragon.lnk -> C:\Windows\Installer\{768AC460-237E-45B6-99B8-1DE6D0F391E8}\NatSpeak_Shortcut_768AC460237E45B699B81DE6D0F391E8.exe (Flexera Software LLC)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dragon\Installationsprotokoll anzeigen.lnk -> C:\ProgramData\Nuance\NaturallySpeaking15\logs\dgnsetup20180224171514.log ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dragon\Dragon-Werkzeuge\Autoumsetzung.lnk -> C:\Windows\Installer\{768AC460-237E-45B6-99B8-1DE6D0F391E8}\TAgent_Shortcut_768AC460237E45B699B81DE6D0F391E8.exe (Flexera Software LLC)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dragon\Dragon-Werkzeuge\Benutzerprofile aktualisieren.lnk -> C:\Windows\Installer\{768AC460-237E-45B6-99B8-1DE6D0F391E8}\Upgrade_Shortcut_768AC460237E45B699B81DE6D0F391E8.exe (Flexera Software LLC)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dragon\Dragon-Werkzeuge\Dateien für Support sammeln.lnk -> C:\Windows\Installer\{768AC460-237E-45B6-99B8-1DE6D0F391E8}\SuppPack_Shortcut_768AC460237E45B699B81DE6D0F391E8.exe (Flexera Software LLC)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolby\Dolby Audio.lnk -> C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2DesktopUI.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Display Manager\Dell Display Manager entfernen.lnk -> C:\Program Files (x86)\Dell\Dell Display Manager\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Display Manager\Dell Display Manager Release notes.lnk -> C:\Program Files (x86)\Dell\Dell Display Manager\readme.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Display Manager\Dell Display Manager.lnk -> C:\Program Files (x86)\Dell\Dell Display Manager\ddm.exe (EnTech Taiwan)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DB Browser for SQLite\DB Browser for SQLite.lnk -> C:\Program Files\DB Browser for SQLite\DB Browser for SQLite.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DB Browser for SQLite\Uninstall.lnk -> C:\Program Files\DB Browser for SQLite\Uninstall.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID\HWMonitor\HWMonitor.lnk -> C:\Program Files\CPUID\HWMonitor\HWMonitor.exe (CPUID)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID\HWMonitor\Uninstall HWMonitor.lnk -> C:\Program Files\CPUID\HWMonitor\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cossacks - Back To War [GOG.com]\Cossacks - Back To War.lnk -> C:\GOG Games\Cossacks - Back To War\Cossacks.exe (Keine Datei)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cossacks - Back To War [GOG.com]\Uninstall Cossacks - Back To War.lnk -> C:\GOG Games\Cossacks - Back To War\unins000.exe (Keine Datei)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ClipGrab\ClipGrab entfernen.lnk -> C:\Program Files (x86)\ClipGrab\unins000.exe (Philipp Schmieder Medien )
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ClipGrab\ClipGrab.lnk -> C:\Program Files (x86)\ClipGrab\clipgrab.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Citavi 6\Citavi 6.lnk -> C:\Program Files (x86)\Citavi 6\bin\Citavi.exe (Swiss Academic Software)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cisco\Cisco AnyConnect Secure Mobility Client\Cisco AnyConnect Secure Mobility Client.lnk -> C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe (Cisco Systems, Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Camera Mouse 2018\Camera Mouse 2018.lnk -> C:\Program Files (x86)\Camera Mouse\Camera Mouse 2018\Camera Mouse 2018.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre 64bit - E-book Management\calibre 64bit - E-book management.lnk -> C:\Program Files\Calibre2\calibre.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre 64bit - E-book Management\E-book viewer 64bit.lnk -> C:\Program Files\Calibre2\ebook-viewer.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre 64bit - E-book Management\Edit E-book 64bit.lnk -> C:\Program Files\Calibre2\ebook-edit.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre 64bit - E-book Management\LRF viewer 64bit.lnk -> C:\Program Files\Calibre2\lrfviewer.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitrix24\Bitrix24.lnk -> C:\Program Files (x86)\Bitrix24\Bitrix24.exe (Bitrix)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoHotkey\AutoHotkey Help File.lnk -> C:\Program Files\AutoHotkey\AutoHotkey.chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoHotkey\AutoHotkey Setup.lnk -> C:\Program Files\AutoHotkey\Installer.ahk ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoHotkey\AutoHotkey.lnk -> C:\Program Files\AutoHotkey\AutoHotkey.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoHotkey\Convert .ahk to .exe.lnk -> C:\Program Files\AutoHotkey\Compiler\Ahk2Exe.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoHotkey\Website.lnk -> C:\Program Files\AutoHotkey\AutoHotkey Website.url ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoHotkey\Window Spy.lnk -> C:\Program Files\AutoHotkey\WindowSpy.ahk ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Artensoft Photo Collage Maker Pro\Artensoft Photo Collage Maker Pro entfernen.lnk -> C:\Program Files\Artensoft Photo Collage Maker Pro\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Artensoft Photo Collage Maker Pro\Artensoft Photo Collage Maker Pro Help.lnk -> C:\Program Files\Artensoft Photo Collage Maker Pro\Artensoft_Photo_Mosaic_Wizard_EN.chm (Keine Datei)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Artensoft Photo Collage Maker Pro\Artensoft Photo Collage Maker Pro.lnk -> C:\Program Files\Artensoft Photo Collage Maker Pro\Artensoft Photo Collage Maker Pro x64.exe (Artensoft Company)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Archi4\Archi.lnk -> C:\Program Files\Archi4\Archi.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Archi4\Docs.lnk -> C:\Program Files\Archi4\docs ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Archi4\Uninstall Archi.lnk -> C:\Program Files\Archi4\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apowersoft\GitMind.lnk -> C:\Program Files (x86)\Apowersoft\GitMind\GitMind.exe (Apowersoft)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apowersoft\ApowerMirror\ApowerMirror entfernen.lnk -> C:\Program Files (x86)\Apowersoft\ApowerMirror\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apowersoft\ApowerMirror\ApowerMirror.lnk -> C:\Program Files (x86)\Apowersoft\ApowerMirror\ApowerMirror.exe (Apowersoft)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apowersoft\ApowerManager\ApowerManager entfernen.lnk -> C:\Program Files (x86)\Apowersoft\ApowerManager\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apowersoft\ApowerManager\ApowerManager.lnk -> C:\Program Files (x86)\Apowersoft\ApowerManager\ApowerManager.exe (Apowersoft Ltd.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Amazon Redshift ODBC Driver (64-bit)\64-bit ODBC Administrator.lnk -> C:\Windows\System32\odbcad32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe\Adobe Digital Editions 4.5\Adobe Digital Editions 4.5.lnk -> C:\Program Files (x86)\Adobe\Adobe Digital Editions 4.5\DigitalEditions.exe (Adobe Systems Incorporated)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe\Adobe Digital Editions 4.5\Help.lnk -> C:\Program Files (x86)\Adobe\Adobe Digital Editions 4.5\DigitalEditions.exe (Adobe Systems Incorporated)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe\Adobe Digital Editions 4.5\Home Page.lnk -> C:\Program Files (x86)\Adobe\Adobe Digital Editions 4.5\DigitalEditions.exe (Adobe Systems Incorporated)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe\Adobe Digital Editions 4.5\Uninstall.lnk -> C:\Program Files (x86)\Adobe\Adobe Digital Editions 4.5\uninstall.exe (Adobe Systems Incorporated)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Component Services.lnk -> C:\Windows\System32\comexp.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\dfrgui.lnk -> C:\Windows\System32\dfrgui.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Disk Cleanup.lnk -> C:\Windows\System32\cleanmgr.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\iSCSI Initiator.lnk -> C:\Windows\System32\iscsicpl.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Memory Diagnostics Tool.lnk -> C:\Windows\System32\MdSched.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\ODBC Data Sources (32-bit).lnk -> C:\Windows\SysWOW64\odbcad32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\ODBC Data Sources (64-bit).lnk -> C:\Windows\System32\odbcad32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Print Management.lnk -> C:\Windows\System32\printmanagement.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\RecoveryDrive.lnk -> C:\Windows\System32\RecoveryDrive.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Registry Editor.lnk -> C:\Windows\regedit.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk -> C:\Windows\System32\services.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\System Configuration.lnk -> C:\Windows\System32\msconfig.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\System Information.lnk -> C:\Windows\System32\msinfo32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows Defender Firewall with Advanced Security.lnk -> C:\Windows\System32\WF.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Math Input Panel.lnk -> C:\Program Files\Common Files\Microsoft Shared\ink\mip.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Paint.lnk -> C:\Windows\System32\mspaint.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Quick Assist.lnk -> C:\Windows\System32\quickassist.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Remote Desktop Connection.lnk -> C:\Windows\System32\mstsc.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Snipping Tool.lnk -> C:\Windows\System32\SnippingTool.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Steps Recorder.lnk -> C:\Windows\System32\psr.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Fax and Scan.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Wordpad.lnk -> C:\Program Files\Windows NT\Accessories\wordpad.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\XPS Viewer.lnk -> C:\Windows\System32\xpsrchvw.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Character Map.lnk -> C:\Windows\System32\charmap.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip\7-Zip File Manager.lnk -> C:\Program Files\7-Zip\7zFM.exe (Igor Pavlov)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip\7-Zip Help.lnk -> C:\Program Files\7-Zip\7-zip.chm ()
Shortcut: C:\Users\Default\Links\OneDrive.lnk -> C:\Program Files (x86)\Microsoft OneDrive\OneDriveSetup.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive (1).lnk -> C:\Program Files (x86)\Microsoft OneDrive\OneDriveSetup.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk -> C:\Users\Tino\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\computer.lnk -> C:\Windows\explorer.exe,-30
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Control Panel.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\File Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Run.lnk -> C:\Windows\System32\shell32.dll (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\01 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\01a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\02 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\02a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\03 - Computer Management.lnk -> C:\Windows\System32\compmgmt.msc ()
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\04 - Disk Management.lnk -> C:\Windows\System32\diskmgmt.msc ()
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\07 - Event Viewer.lnk -> C:\Windows\System32\eventvwr.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\09 - Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\4 - Control Panel.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation)
Shortcut: C:\Users\defaultuser100000\Links\OneDrive.lnk -> C:\Program Files (x86)\Microsoft OneDrive\OneDriveSetup.exe (Microsoft Corporation)
Shortcut: C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive (1).lnk -> C:\Program Files (x86)\Microsoft OneDrive\OneDriveSetup.exe (Microsoft Corporation)
Shortcut: C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk -> C:\Users\Tino\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation)
Shortcut: C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\computer.lnk -> C:\Windows\explorer.exe,-30
Shortcut: C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Control Panel.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\File Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Run.lnk -> C:\Windows\System32\shell32.dll (Microsoft Corporation)
Shortcut: C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\defaultuser100000\AppData\Local\Microsoft\Windows\WinX\Group3\01 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\defaultuser100000\AppData\Local\Microsoft\Windows\WinX\Group3\01a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\defaultuser100000\AppData\Local\Microsoft\Windows\WinX\Group3\02 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\defaultuser100000\AppData\Local\Microsoft\Windows\WinX\Group3\02a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\defaultuser100000\AppData\Local\Microsoft\Windows\WinX\Group3\03 - Computer Management.lnk -> C:\Windows\System32\compmgmt.msc ()
Shortcut: C:\Users\defaultuser100000\AppData\Local\Microsoft\Windows\WinX\Group3\04 - Disk Management.lnk -> C:\Windows\System32\diskmgmt.msc ()
Shortcut: C:\Users\defaultuser100000\AppData\Local\Microsoft\Windows\WinX\Group3\07 - Event Viewer.lnk -> C:\Windows\System32\eventvwr.exe (Microsoft Corporation)
Shortcut: C:\Users\defaultuser100000\AppData\Local\Microsoft\Windows\WinX\Group3\09 - Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation)
Shortcut: C:\Users\defaultuser100000\AppData\Local\Microsoft\Windows\WinX\Group2\4 - Control Panel.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation)
Shortcut: C:\Users\Public\Desktop\Adobe Creative Cloud.lnk -> C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Inc.)
Shortcut: C:\Users\Public\Desktop\Bitrix24.lnk -> C:\Program Files (x86)\Bitrix24\Bitrix24.exe (Bitrix)
Shortcut: C:\Users\Public\Desktop\Citavi 6.lnk -> C:\Program Files (x86)\Citavi 6\bin\Citavi.exe (Swiss Academic Software)
Shortcut: C:\Users\Public\Desktop\ClipGrab.lnk -> C:\Program Files (x86)\ClipGrab\clipgrab.exe ()
Shortcut: C:\Users\Public\Desktop\GitMind.lnk -> C:\Program Files (x86)\Apowersoft\GitMind\GitMind.exe (Apowersoft)
Shortcut: C:\Users\Public\Desktop\GOG GALAXY.lnk -> C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe (GOG.com)
Shortcut: C:\Users\Public\Desktop\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation)
Shortcut: C:\Users\Public\Desktop\PDF-XChange Editor.lnk -> C:\Program Files\Tracker Software\PDF Editor\PDFXEdit.exe (Tracker Software Products (Canada) Ltd.)
Shortcut: C:\Users\Public\Desktop\ProtonVPN.lnk -> C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.exe ()
Shortcut: C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk -> C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe (TeamSpeak Systems GmbH)
Shortcut: C:\Users\Tino\Music\Downloads - Verknüpfung.lnk -> C:\Users\Tino\Downloads ()
Shortcut: C:\Users\Tino\Links\Bitrix24.lnk -> C:\Users\Tino\Documents\Bitrix24 ()
Shortcut: C:\Users\Tino\Links\Desktop.lnk -> C:\Users\Tino\Desktop ()
Shortcut: C:\Users\Tino\Links\Downloads.lnk -> C:\Users\Tino\Downloads ()
Shortcut: C:\Users\Tino\Links\Dropbox.lnk -> C:\Users\Tino\Dropbox ()
Shortcut: C:\Users\Tino\Links\LRZ Sync+Share.lnk -> C:\Users\Tino\LRZ Sync+Share ()
Shortcut: C:\Users\Tino\Documents\Verschiedenes\Zu Sortieren - Verschiedenes 11Mar20\Acrobat Reader DC.lnk -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe (Adobe Systems Incorporated)
Shortcut: C:\Users\Tino\Documents\Verschiedenes\Zu Sortieren - Verschiedenes 11Mar20\Adobe Creative Cloud.lnk -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Inc.)
Shortcut: C:\Users\Tino\Documents\Verschiedenes\Zu Sortieren - Verschiedenes 11Mar20\AnyTrans.lnk -> C:\Program Files (x86)\iMobie\AnyTrans\AnyTrans.exe (iMobie Inc.)
Shortcut: C:\Users\Tino\Documents\Verschiedenes\Zu Sortieren - Verschiedenes 11Mar20\ApowerMirror.lnk -> C:\Program Files (x86)\Apowersoft\ApowerMirror\ApowerMirror.exe (Apowersoft)
Shortcut: C:\Users\Tino\Documents\Verschiedenes\Zu Sortieren - Verschiedenes 11Mar20\Citavi 5.lnk -> C:\Program Files (x86)\Citavi 5\bin\Citavi.exe (Keine Datei)
Shortcut: C:\Users\Tino\Documents\Verschiedenes\Zu Sortieren - Verschiedenes 11Mar20\Cossacks - Back To War.lnk -> C:\GOG Games\Cossacks - Back To War\Cossacks.exe (Keine Datei)
Shortcut: C:\Users\Tino\Documents\Verschiedenes\Zu Sortieren - Verschiedenes 11Mar20\Dragon.lnk -> C:\Windows\Installer\{768AC460-237E-45B6-99B8-1DE6D0F391E8}\NatSpeakD_Shortcut_768AC460237E45B699B81DE6D0F391E8.exe (Flexera Software LLC)
Shortcut: C:\Users\Tino\Documents\Verschiedenes\Zu Sortieren - Verschiedenes 11Mar20\Evernote.lnk -> C:\Windows\Installer\{A46ABD1E-2837-11E6-9E7C-005056951CAD}\Evernote.ico ()
Shortcut: C:\Users\Tino\Documents\Verschiedenes\Zu Sortieren - Verschiedenes 11Mar20\iTunes.lnk -> C:\Program Files\iTunes\iTunes.exe (Apple Inc.)
Shortcut: C:\Users\Tino\Documents\Verschiedenes\Zu Sortieren - Verschiedenes 11Mar20\LRZ Sync+Share.lnk -> C:\Users\Tino\LRZ Sync+Share ()
Shortcut: C:\Users\Tino\Documents\Verschiedenes\Zu Sortieren - Verschiedenes 11Mar20\MAXQDA 12.lnk -> C:\Program Files (x86)\MAXQDA12\MAXQDA12.exe (Keine Datei)
Shortcut: C:\Users\Tino\Documents\Verschiedenes\Zu Sortieren - Verschiedenes 11Mar20\Microsoft Edge.lnk -> Tile and icon assets
Shortcut: C:\Users\Tino\Documents\Verschiedenes\Zu Sortieren - Verschiedenes 11Mar20\Mozilla Thunderbird.lnk -> C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe (Mozilla Corporation)
Shortcut: C:\Users\Tino\Documents\Verschiedenes\Zu Sortieren - Verschiedenes 11Mar20\Nitro Pro.lnk -> C:\Program Files\Nitro\Pro 11\NitroPDF.exe (Nitro PDF)
Shortcut: C:\Users\Tino\Documents\Verschiedenes\Zu Sortieren - Verschiedenes 11Mar20\QuickTime Player.lnk -> C:\Program Files (x86)\QuickTime\QuickTimePlayer.exe (Apple Inc.)
Shortcut: C:\Users\Tino\Documents\Verschiedenes\Zu Sortieren - Verschiedenes 11Mar20\Smyle Mouse.lnk -> C:\Program Files (x86)\Perceptive Devices\Smyle Mouse\SmyleMouse.exe ()
Shortcut: C:\Users\Tino\Documents\Verschiedenes\Zu Sortieren - Verschiedenes 11Mar20\Trading.lnk -> C:\Jts\generic\tws.exe (IB Exchange Corp.)
Shortcut: C:\Users\Tino\Documents\Spiele\Star Wars - Battlefront 2\Launch STAR WARS Battlefront II.lnk -> C:\GOG Games\Star Wars - Battlefront 2\SWB2Launcher.exe (Keine Datei)
Shortcut: C:\Users\Tino\Documents\Spiele\Age of Empires2\Support\The Conquerors - MFill.lnk -> I:\Programme\Age of Empires2\Age2_X1\age2_x1.Exe (Keine Datei)
Shortcut: C:\Users\Tino\Documents\Spiele\Age of Empires2\Support\The Conquerors - MSync.lnk -> I:\Programme\Age of Empires2\Age2_X1\age2_x1.Exe (Keine Datei)
Shortcut: C:\Users\Tino\Documents\Spiele\Age of Empires2\Support\The Conquerors - NoMusic.lnk -> I:\Programme\Age of Empires2\Age2_X1\age2_x1.Exe (Keine Datei)
Shortcut: C:\Users\Tino\Documents\Spiele\Age of Empires2\Support\The Conquerors - NormalMouse.lnk -> I:\Programme\Age of Empires2\Age2_X1\age2_x1.Exe (Keine Datei)
Shortcut: C:\Users\Tino\Documents\Spiele\Age of Empires2\Support\The Conquerors - NoSC.lnk -> I:\Programme\Age of Empires2\Age2_X1\age2_x1.Exe (Keine Datei)
Shortcut: C:\Users\Tino\Documents\Spiele\Age of Empires2\Support\The Conquerors - NoSound.lnk -> I:\Programme\Age of Empires2\Age2_X1\age2_x1.Exe (Keine Datei)
Shortcut: C:\Users\Tino\Documents\Spiele\Age of Empires2\Support\The Conquerors - NoStartup.lnk -> I:\Programme\Age of Empires2\Age2_X1\age2_x1.Exe (Keine Datei)
Shortcut: C:\Users\Tino\Documents\Spiele\Age of Empires2\Support\The Conquerors - NoTerrainSound.lnk -> I:\Programme\Age of Empires2\Age2_X1\age2_x1.Exe (Keine Datei)
Shortcut: C:\Users\Tino\Documents\Spiele\Age of Empires2\age2_x1\Verknüpfung mit age2_x1.exe.lnk -> I:\Programme\Age of Empires2\age2_x1\age2_x1.exe (Keine Datei)
Shortcut: C:\Users\Tino\Documents\Finanzen\Leo\Leo\Uni\Leo Standortplanung und strategisches SCM\Ubungen\Leo Standortplanung und strategisches SCM - Verknüpfung.lnk -> C:\Users\Tino\Documents\Leo Standortplanung und strategisches SCM (Keine Datei)
Shortcut: C:\Users\Tino\Documents\Desktop Aufräum 22Sept21\EyeDefender.lnk -> C:\Program Files (x86)\EyeDefender\EyeDefender.exe ()
Shortcut: C:\Users\Tino\Documents\Desktop Aufräum 22Sept21\Opera-Browser.lnk -> C:\Users\Tino\AppData\Local\Programs\Opera\launcher.exe (Opera Software)
Shortcut: C:\Users\Tino\Documents\Desktop Aufräum 22Sept21\Toolkit.lnk -> C:\Program Files (x86)\Toolkit\Toolkit.exe (Seagate Technology LLC)
Shortcut: C:\Users\Tino\Documents\Adobe\After Effects CC 2017\User Presets\(Adobe).lnk -> C:\Program Files\Adobe\Adobe After Effects CC 2017\Support Files\Presets (Keine Datei)
Shortcut: C:\Users\Tino\Creative Cloud Files\_Cloud-Dokumente.lnk -> C:\Program Files (x86)\Adobe\Adobe Sync\CoreSync\CoreSync.exe ()
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ableton Live 10 Lite.lnk -> C:\ProgramData\Ableton\Live 10 Lite\Program\Ableton Live 10 Lite.exe (Ableton)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\f.lux.lnk -> C:\Users\Tino\AppData\Local\FluxSoftware\Flux\flux.exe (f.lux Software LLC)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive (1).lnk -> C:\Program Files (x86)\Microsoft OneDrive\OneDriveSetup.exe (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive (2).lnk -> C:\Users\Tino\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk -> C:\Users\Tino\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Opera-Browser.lnk -> C:\Users\Tino\AppData\Local\Programs\Opera\launcher.exe (Opera Software)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Optionale Features.lnk -> C:\Windows\System32\fodhelper.exe (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Outlook.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk -> C:\Users\Tino\AppData\Roaming\Spotify\Spotify.exe (Spotify Ltd)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Toolkit.lnk -> C:\Program Files (x86)\Toolkit\Toolkit.exe (Seagate Technology LLC)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TreeSizeFree.lnk -> C:\Program Files (x86)\JAM Software\TreeSize Free\TreeSizeFree.exe (JAM Software)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom\Zoom.lnk -> C:\Users\Tino\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc.)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell ISE (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell ISE.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Trading\Trading Deinstallationsprogramm.lnk -> C:\Jts\generic\uninstall.exe (IB Exchange Corp.)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Trading\Trading.lnk -> C:\Jts\generic\tws.exe (IB Exchange Corp.)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\computer (1).lnk -> C:\Windows\explorer.exe,-30
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\computer.lnk -> C:\Windows\explorer.exe,-30
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Control Panel (1).lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Control Panel.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\File Explorer (1).lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\File Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Run (1).lnk -> C:\Windows\System32\shell32.dll (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Run.lnk -> C:\Windows\System32\shell32.dll (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\Steam.lnk -> C:\Program Files (x86)\Steam\steam.exe (Valve Corporation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ausschneiden shortcut.ahs - Verknüpfung.lnk -> C:\Users\Tino\Documents\Desktop aufräum 16Nov20\Aufräum22Aug20\ausschneiden shortcut.ahs (Keine Datei)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sky Ticket\Sky Ticket.lnk -> C:\Users\Tino\AppData\Roaming\Sky Ticket\Sky Ticket\Sky Ticket.exe (Sky Ticket)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Python 3.6\Python 3.6 (32-bit).lnk -> C:\Users\Tino\AppData\Local\Programs\Python\Python36-32\python.exe (Python Software Foundation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PCsensor\FootSwitch\FootSwitch V7.0.3.lnk -> C:\Users\Tino\AppData\Roaming\Microsoft\Installer\{7BD5E046-6535-4983-AD88-D6C9A9FA8081}\_23EC6EA8D137C9092B6088.exe ()
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mplus Version 8.4 Demo\Mplus Demo Editor.lnk -> C:\Users\Tino\AppData\Roaming\Microsoft\Installer\{9654A20E-7892-4EB5-87C1-58BEBBB981F8}\Mpdwin.exe_FC70C8F144E1413EA5B14DE5A608F0A0.exe (Flexera)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Eclipse\Eclipse Java Neon.lnk -> C:\Users\Tino\eclipse\java-neon\eclipse\eclipse.exe ()
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CopyTrans Control Center\CopyTrans Control Center.lnk -> C:\Users\Tino\AppData\Roaming\WindSolutions\CopyTransControlCenter\Applications\CopyTransControlCenter.exe (Keine Datei)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CopyTrans Control Center\Deinstallieren.lnk -> C:\Users\Tino\AppData\Roaming\WindSolutions\CopyTransControlCenter\Applications\CopyTransControlCenter.exe (Keine Datei)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Amazon\Amazon Kindle\Kindle.lnk -> C:\Users\Tino\AppData\Local\Amazon\Kindle\application\Kindle.exe (Amazon.com)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Amazon\Amazon Kindle\Uninstall Kindle.lnk -> C:\Users\Tino\AppData\Local\Amazon\Kindle\application\uninstall.exe (Amazon.com)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\4K Video Downloader\4K Video Downloader.lnk -> C:\Program Files (x86)\4KDownload\4kvideodownloader\4kvideodownloader.exe (Open Media LLC)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\SendTo\Bluetooth-Dateiübertragung.LNK -> C:\Windows\System32\fsquirt.exe (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\SendTo\Dropbox.lnk -> C:\Users\Tino\Dropbox ()
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\SendTo\Evernote.lnk -> C:\Program Files (x86)\Evernote\Evernote\Evernote.exe (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\SendTo\PDF24.lnk -> C:\Program Files (x86)\PDF24\pdf24-DocTool.exe (Geek Software GmbH)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\AnyTrans.lnk -> C:\Program Files (x86)\iMobie\AnyTrans\AnyTrans.exe (iMobie Inc.)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\LRZ Sync+Share.lnk -> C:\Program Files (x86)\Leibniz-Rechenzentrum\LRZ_Sync_Share\LRZ_Sync_Share.exe (Leibniz-Rechenzentrum)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop (1).lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Smyle Mouse.lnk -> C:\Program Files (x86)\Perceptive Devices\Smyle Mouse\SmyleMouse.exe ()
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher (1).lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Dragon DragonBar.lnk -> C:\Program Files (x86)\Common Files\Nuance\NaturallySpeaking15\dragonbar.exe (Nuance Communications, Inc.)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\File Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Opera-Browser.lnk -> C:\Users\Tino\AppData\Local\Programs\Opera\launcher.exe (Opera Software)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Spotify.lnk -> C:\Users\Tino\AppData\Roaming\Spotify\Spotify.exe (Spotify Ltd)
Shortcut: C:\Users\Tino\AppData\Local\Microsoft\Windows\WinX\Group3\01 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Local\Microsoft\Windows\WinX\Group3\01a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Local\Microsoft\Windows\WinX\Group3\02 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Local\Microsoft\Windows\WinX\Group3\02a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Local\Microsoft\Windows\WinX\Group3\03 - Computer Management.lnk -> C:\Windows\System32\compmgmt.msc ()
Shortcut: C:\Users\Tino\AppData\Local\Microsoft\Windows\WinX\Group3\04 - Disk Management.lnk -> C:\Windows\System32\diskmgmt.msc ()
Shortcut: C:\Users\Tino\AppData\Local\Microsoft\Windows\WinX\Group3\07 - Event Viewer.lnk -> C:\Windows\System32\eventvwr.exe (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Local\Microsoft\Windows\WinX\Group3\09 - Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Local\Microsoft\Windows\WinX\Group2\4 - Control Panel.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation)
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mouse Properties (Touchpad Clickpad Trackpad TrackPoint Mouse Pointer Pointing Pad).lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> mouse
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VLC media player - reset preferences and cache files.lnk -> C:\Program Files\VideoLAN\VLC\vlc.exe (VideoLAN) -> --reset-config --reset-plugins-cache vlc://quit
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VLC media player skinned.lnk -> C:\Program Files\VideoLAN\VLC\vlc.exe (VideoLAN) -> -Iskins
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TreeSize Free\TreeSize Free.lnk -> C:\Program Files (x86)\JAM Software\TreeSize Free\TreeSizeFree.exe (JAM Software) -> /NOADMIN
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tracker Software\PDF-XChange Lite\PDF-XChange Lite pdfSaver.lnk -> C:\Program Files\Tracker Software\PDF-XChange Lite\pdfSaverL.exe (Tracker Software Products (Canada) Ltd.) -> /Show
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools\Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /7
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SteuerSparErklärung 2016\Programm-Module\Feststellungserklärung 2015.lnk -> C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\SteuerSparErklaerung 2016\SSE.exe (Akademische Arbeitsgemeinschaft Verlag) -> -mfest
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SteuerSparErklärung 2016\Programm-Module\Gewinn-Erfassung 2016.lnk -> C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\SteuerSparErklaerung 2016\SSE.exe (Akademische Arbeitsgemeinschaft Verlag) -> -meinurvor
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SteuerSparErklärung 2016\Programm-Module\Gewinnermittlung 2015.lnk -> C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\SteuerSparErklaerung 2016\SSE.exe (Akademische Arbeitsgemeinschaft Verlag) -> -meinur
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SteuerSparErklärung 2016\Programm-Module\Lohnsteuer-Ermäßigung 2016.lnk -> C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\SteuerSparErklaerung 2016\SSE.exe (Akademische Arbeitsgemeinschaft Verlag) -> -mermaess
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SteuerSparErklärung 2016\Programm-Module\Steuererklärung 2015.lnk -> C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\SteuerSparErklaerung 2016\SSE.exe (Akademische Arbeitsgemeinschaft Verlag) -> -mnormal
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SteuerSparErklärung 2016\Programm-Module\Steuerprognose 2016.lnk -> C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\SteuerSparErklaerung 2016\SSE.exe (Akademische Arbeitsgemeinschaft Verlag) -> -mvorweg
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SteuerSparErklärung 2016\Informationen und Hilfe\SteuerSparErklärung 2016 deinstallieren.lnk -> C:\Windows\SysWOW64\msiexec.exe (Microsoft Corporation) -> /x {D331D50C-C578-423B-8BC7-94D3133CE315}
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R\R i386 4.0.0.lnk -> C:\Program Files\R\R-4.0.0\bin\i386\Rgui.exe () -> --cd-to-userdocs
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R\R x64 4.0.0.lnk -> C:\Program Files\R\R-4.0.0\bin\x64\Rgui.exe () -> --cd-to-userdocs
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime\QuickTime deinstallieren.lnk -> C:\Windows\SysWOW64\msiexec.exe (Microsoft Corporation) -> /i {FF59BD75-466A-4D5A-AD23-AAD87C5FD44C} /qf
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools\Database Compare.lnk -> C:\Program Files (x86)\Microsoft Office\root\client\AppVLP.exe (Microsoft Corporation) -> "C:\Program Files (x86)\Microsoft Office\Root\Office16\DCF\DATABASECOMPARE.EXE"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools\Spreadsheet Compare.lnk -> C:\Program Files (x86)\Microsoft Office\root\client\AppVLP.exe (Microsoft Corporation) -> "C:\Program Files (x86)\Microsoft Office\Root\Office16\DCF\SPREADSHEETCOMPARE.EXE"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2016-Tools\Database Compare.lnk -> C:\Program Files (x86)\Microsoft Office\root\client\AppVLP.exe (Microsoft Corporation) -> "C:\Program Files (x86)\Microsoft Office\Root\Office16\DCF\DATABASECOMPARE.EXE"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2016-Tools\Office Upload Center.lnk -> C:\Program Files (x86)\Microsoft Office\root\client\AppVLP.exe (Microsoft Corporation) -> "C:\Program Files (x86)\Microsoft Office\Root\Office16\MSOUC.EXE"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2016-Tools\Spreadsheet Compare.lnk -> C:\Program Files (x86)\Microsoft Office\root\client\AppVLP.exe (Microsoft Corporation) -> "C:\Program Files (x86)\Microsoft Office\Root\Office16\DCF\SPREADSHEETCOMPARE.EXE"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 6.3\LibreOffice (abgesicherter Modus).lnk -> C:\Program Files\LibreOffice\program\soffice.exe (The Document Foundation) -> --safe-mode
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Auf Updates prüfen.lnk -> C:\Program Files\Java\jre1.8.0_171\bin\javacpl.exe (Oracle Corporation) -> -tab update
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Info zu Java.lnk -> C:\Program Files\Java\jre1.8.0_171\bin\javacpl.exe (Oracle Corporation) -> -tab about
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud\E-Mails.lnk -> C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudWeb.exe (Apple Inc.) -> mail
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud\Erinnerungen.lnk -> C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudWeb.exe (Apple Inc.) -> reminders
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud\iPhone suchen.lnk -> C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudWeb.exe (Apple Inc.) -> find
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud\Kalender.lnk -> C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudWeb.exe (Apple Inc.) -> calendar
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud\Keynote.lnk -> C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudWeb.exe (Apple Inc.) -> keynote
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud\Kontakte.lnk -> C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudWeb.exe (Apple Inc.) -> contacts
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud\Notizen.lnk -> C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudWeb.exe (Apple Inc.) -> notes
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud\Numbers.lnk -> C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudWeb.exe (Apple Inc.) -> numbers
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud\Pages.lnk -> C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudWeb.exe (Apple Inc.) -> pages
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IBM SPSS Statistics\IBM SPSS Statistics 24 Lizenzautorisierungsassistent.lnk -> C:\Program Files\IBM\SPSS\Statistics\24\law.exe (IBM Corp.) -> -is:javahome "C:\Program Files\IBM\SPSS\Statistics\24\JRE" -s:silent
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IBM SPSS Statistics\IBM SPSS Statistics 24 Pendlerlizenz.lnk -> C:\Program Files\IBM\SPSS\Statistics\24\JRE\bin\javaw.exe (IBM) -> -Djava.library.path=. -jar licensecommute.jar
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP Deskjet 3520 series\HP Deskjet 3520 series.lnk -> C:\Program Files\HP\HP Deskjet 3520 series\Bin\HP Deskjet 3520 series.exe (Hewlett-Packard Co.) -> -Start UDCDevicePage
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox\Dropbox.lnk -> C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc.) -> /home
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dragon\Beispielskripts.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> C:\ProgramData\Nuance\NaturallySpeaking15\Data\deu\samplecommands
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dragon\Dragon.log anzeigen.lnk -> C:\Windows\Installer\{768AC460-237E-45B6-99B8-1DE6D0F391E8}\Dragonlog_Shortcut_768AC460237E45B699B81DE6D0F391E8.exe (Flexera Software LLC) -> /finddragonlog
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dragon\Info über Dragon.lnk -> C:\Program Files (x86)\Nuance\NaturallySpeaking15\Program\natspeak.exe (Nuance Communications, Inc.) -> /About
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dragon\Dragon-Werkzeuge\Dragon service.lnk -> C:\Windows\SysWOW64\cmd.exe (Microsoft Corporation) -> /k "C:\Program Files (x86)\Common Files\Nuance\dgnsvc.exe"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dragon\Dragon-Werkzeuge\Konvertierung von XML zu DAT.lnk -> C:\Windows\SysWOW64\cmd.exe (Microsoft Corporation) -> /k "C:\Program Files (x86)\Nuance\NaturallySpeaking15\Program\mycmdsxml2dat.exe"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dragon\Dragon-Werkzeuge\MyCommands Protection Utility.lnk -> C:\Windows\SysWOW64\cmd.exe (Microsoft Corporation) -> /k "C:\Program Files (x86)\Nuance\NaturallySpeaking15\Program\protectcmds.exe"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dragon\Dragon-Werkzeuge\NSAdmin.lnk -> C:\Windows\SysWOW64\cmd.exe (Microsoft Corporation) -> /k "C: && cd "C:\Program Files (x86)\Nuance\NaturallySpeaking15\Program" && "C:\Program Files (x86)\Nuance\NaturallySpeaking15\Program\nsadmin.exe""
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Amazon Redshift ODBC Driver (64-bit)\Uninstall Amazon Redshift (x64).lnk -> C:\Windows\System32\msiexec.exe (Microsoft Corporation) -> /x {960BF695-03D5-48CF-9DC2-6AC5800C4FBE}
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Computer Management.lnk -> C:\Windows\System32\compmgmt.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Event Viewer.lnk -> C:\Windows\System32\eventvwr.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Performance Monitor.lnk -> C:\Windows\System32\perfmon.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Resource Monitor.lnk -> C:\Windows\System32\perfmon.exe (Microsoft Corporation) -> /res
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Security Configuration Management.lnk -> C:\Windows\System32\secpol.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Task Scheduler.lnk -> C:\Windows\System32\taskschd.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Media Player.lnk -> C:\Program Files (x86)\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility\Speech Recognition.lnk -> C:\Windows\Speech\Common\sapisvr.exe (Microsoft Corporation) -> -SpeechUX
ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Administrative Tools.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.AdministrativeTools
ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\SendTo\TeamViewer.lnk -> C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH) -> --sendto
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\04-1 - NetworkStatus.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageNetworkStatus
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\05 - Device Manager.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DeviceManager
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\06 - SystemAbout.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPagePCSystemInfo
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\08 - PowerAndSleep.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageScreenPowerAndSleep
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\10 - AppsAndFeatures.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageAppsSizes
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\1 - Run.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f3-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\2 - Search.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f8-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\3 - Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{52205fd8-5dfb-447d-801a-d0b52f2e83e1}
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\5 - Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /0
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group1\1 - Desktop.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{3080F90D-D7AD-11D9-BD98-0000947B0257}
ShortcutWithArgument: C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Administrative Tools.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.AdministrativeTools
ShortcutWithArgument: C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Windows\SendTo\TeamViewer.lnk -> C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH) -> --sendto
ShortcutWithArgument: C:\Users\defaultuser100000\AppData\Local\Microsoft\Windows\WinX\Group3\04-1 - NetworkStatus.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageNetworkStatus
ShortcutWithArgument: C:\Users\defaultuser100000\AppData\Local\Microsoft\Windows\WinX\Group3\05 - Device Manager.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DeviceManager
ShortcutWithArgument: C:\Users\defaultuser100000\AppData\Local\Microsoft\Windows\WinX\Group3\06 - SystemAbout.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPagePCSystemInfo
ShortcutWithArgument: C:\Users\defaultuser100000\AppData\Local\Microsoft\Windows\WinX\Group3\08 - PowerAndSleep.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageScreenPowerAndSleep
ShortcutWithArgument: C:\Users\defaultuser100000\AppData\Local\Microsoft\Windows\WinX\Group3\10 - AppsAndFeatures.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageAppsSizes
ShortcutWithArgument: C:\Users\defaultuser100000\AppData\Local\Microsoft\Windows\WinX\Group2\1 - Run.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f3-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\defaultuser100000\AppData\Local\Microsoft\Windows\WinX\Group2\2 - Search.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f8-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\defaultuser100000\AppData\Local\Microsoft\Windows\WinX\Group2\3 - Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{52205fd8-5dfb-447d-801a-d0b52f2e83e1}
ShortcutWithArgument: C:\Users\defaultuser100000\AppData\Local\Microsoft\Windows\WinX\Group2\5 - Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /0
ShortcutWithArgument: C:\Users\defaultuser100000\AppData\Local\Microsoft\Windows\WinX\Group1\1 - Desktop.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{3080F90D-D7AD-11D9-BD98-0000947B0257}
ShortcutWithArgument: C:\Users\Tino\Documents\Desktop Aufräum 22Sept21\Microsoft Teams.lnk -> C:\Users\Tino\AppData\Local\Microsoft\Teams\Update.exe (Microsoft Corporation) -> --processStart "Teams.exe"
ShortcutWithArgument: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk -> C:\Users\Tino\AppData\Local\Microsoft\Teams\Update.exe (Microsoft Corporation) -> --processStart "Teams.exe"
ShortcutWithArgument: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom\Uninstall Zoom.lnk -> C:\Users\Tino\AppData\Roaming\Zoom\uninstall\Installer.exe (Zoom Video Communications, Inc.) -> /uninstall
ShortcutWithArgument: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Administrative Tools.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.AdministrativeTools
ShortcutWithArgument: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\An OneNote senden.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation) -> /tsr
ShortcutWithArgument: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Tintenwarnungen überwachen - HP Deskjet 3520 series (Netzwerk).lnk -> C:\Windows\System32\rundll32.exe (Microsoft Corporation) -> "C:\Program Files\HP\HP Deskjet 3520 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN27J1204Q05SY;CONNECTION=NW;MONITOR=1;
ShortcutWithArgument: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spencer Sharkey\Revive Launcher.lnk -> C:\Users\Tino\AppData\Local\bf2battlelog\Update.exe (GitHub) -> --processStart Revive-Launcher.exe
ShortcutWithArgument: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Python 3.6\IDLE (Python 3.6 32-bit).lnk -> C:\Users\Tino\AppData\Local\Programs\Python\Python36-32\pythonw.exe (Python Software Foundation) -> "C:\Users\Tino\AppData\Local\Programs\Python\Python36-32\Lib\idlelib\idle.pyw"
ShortcutWithArgument: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Python 3.6\Python 3.6 Module Docs (32-bit).lnk -> C:\Users\Tino\AppData\Local\Programs\Python\Python36-32\python.exe (Python Software Foundation) -> -m pydoc -b
ShortcutWithArgument: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mplus Version 8.4 Demo\Uninstall Mplus Demo.lnk -> C:\Windows\SysWOW64\msiexec.exe (Microsoft Corporation) -> /x {9654A20E-7892-4EB5-87C1-58BEBBB981F8}
ShortcutWithArgument: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bitrix24\Bitrix24.lnk -> C:\Program Files (x86)\Bitrix24\Bitrix24.exe (Bitrix) -> --from-start-menu
ShortcutWithArgument: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\SendTo\Faxempfänger.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\SendTo\TeamViewer.lnk -> C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH) -> --sendto
ShortcutWithArgument: C:\Users\Tino\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Microsoft Outlook.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE (Microsoft Corporation) -> /recycle
ShortcutWithArgument: C:\Users\Tino\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation) -> --profile-directory=Default
ShortcutWithArgument: C:\Users\Tino\AppData\Local\Microsoft\Windows\WinX\Group3\04-1 - Network Connections.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> ::{7007ACC7-3202-11D1-AAD2-00805FC1270E}
ShortcutWithArgument: C:\Users\Tino\AppData\Local\Microsoft\Windows\WinX\Group3\04-1 - NetworkStatus.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageNetworkStatus
ShortcutWithArgument: C:\Users\Tino\AppData\Local\Microsoft\Windows\WinX\Group3\05 - Device Manager.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DeviceManager
ShortcutWithArgument: C:\Users\Tino\AppData\Local\Microsoft\Windows\WinX\Group3\06 - System.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.System
ShortcutWithArgument: C:\Users\Tino\AppData\Local\Microsoft\Windows\WinX\Group3\06 - SystemAbout.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPagePCSystemInfo
ShortcutWithArgument: C:\Users\Tino\AppData\Local\Microsoft\Windows\WinX\Group3\08 - Power Options.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.PowerOptions
ShortcutWithArgument: C:\Users\Tino\AppData\Local\Microsoft\Windows\WinX\Group3\08 - PowerAndSleep.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageScreenPowerAndSleep
ShortcutWithArgument: C:\Users\Tino\AppData\Local\Microsoft\Windows\WinX\Group3\10 - AppsAndFeatures.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageAppsSizes
ShortcutWithArgument: C:\Users\Tino\AppData\Local\Microsoft\Windows\WinX\Group3\10 - Programs and Features.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.ProgramsAndFeatures
ShortcutWithArgument: C:\Users\Tino\AppData\Local\Microsoft\Windows\WinX\Group2\1 - Run.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f3-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\Tino\AppData\Local\Microsoft\Windows\WinX\Group2\2 - Search.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f8-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\Tino\AppData\Local\Microsoft\Windows\WinX\Group2\3 - Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{52205fd8-5dfb-447d-801a-d0b52f2e83e1}
ShortcutWithArgument: C:\Users\Tino\AppData\Local\Microsoft\Windows\WinX\Group2\5 - Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /0
ShortcutWithArgument: C:\Users\Tino\AppData\Local\Microsoft\Windows\WinX\Group1\1 - Desktop.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{3080F90D-D7AD-11D9-BD98-0000947B0257}
ShortcutWithArgument: C:\Users\Tino\AppData\Local\Microsoft\Edge\User Data\Default\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation) -> --profile-directory=Default
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinMerge\WinMerge im Internet.url -> URL: hxxp://winmerge.org/
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam\Steam Support Center.url -> URL: hxxp://support.steampowered.com/
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\STAR WARS Battlefront II [GOG.com]\Dokumente\Support.url -> URL: hxxp://www.gog.com/support/star_wars_battlefront_ii
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nem's Tools\GCFScape\GCFScape on the Web.url -> URL: hxxp://nemesis.thewavelength.net/index.php?p=25
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Link to Nikon\Camera Control Pro-Download Kostenlose Testversion für 30 Tage.url -> URL: hxxp://9k3x1jrq3kwx.nikonimaging.com/crosspoint/jump.cgi?R=eur&L=de&O=w&P=CCPTRI
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Link to Nikon\Capture NX-D - Download.url -> URL: hxxp://crossgate.nikonimglib.com/dsd_redirect/redirect.do?P=SwvDb60&R=uY2tB04&L=nW8Z401&O=3gGOe00
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Link to Nikon\NIKON IMAGE SPACE.url -> URL: hxxp://9k3x1jrq3kwx.nikonimaging.com/crosspoint/jump.cgi?R=eur&L=de&O=w&P=PITUTN
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Link to Nikon\Nikon Imaging-Website.url -> URL: hxxp://www.europe-nikon.com/
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Link to Nikon\Nikon RAW Codec NEF Codec-Download.url -> URL: hxxp://9k3x1jrq3kwx.nikonimaging.com/crosspoint/jump.cgi?R=eur&L=de&O=w&P=WINRCODE
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit\Referenzdokumentation.url -> URL: hxxp://docs.oracle.com/javase/8/docs
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Besuchen Sie Java.com.url -> URL: hxxp://java.com/
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Hilfe aufrufen.url -> URL: hxxp://java.com/help
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes of Might and Magic 3 Complete [GOG.com]\Dokumente\Support.url -> URL: hxxp://www.gog.com/support/heroes_of_might_and_magic_3_complete_edition
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox\Dropbox Website.URL ->
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Display Manager\Dell Display Manager im Internet.url -> URL: hxxp://www.entechtaiwan.com/
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cossacks - Back To War [GOG.com]\Documents\Support.url -> URL: hxxp://www.gog.com/support/cossacks_anthology
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ClipGrab\ClipGrab im Internet.url -> URL: hxxp://clipgrab.org
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre 64bit - E-book Management\Get Involved.url -> URL: hxxps://calibre-ebook.com/get-involved
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre 64bit - E-book Management\User Manual.url -> URL: hxxps://manual.calibre-ebook.com/
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apowersoft\ApowerMirror\ApowerMirror im Internet.url -> URL: hxxps://www.apowersoft.com/
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apowersoft\ApowerManager\ApowerManager im Internet.url -> URL: hxxps://www.apowersoft.de
InternetURL: C:\Users\Tino\Favorites\3D Raumplaner 3D Planer online kostenlos Räume einrichten.url -> URL: hxxp://www.homesolute.com/3d-raumplaner/
InternetURL: C:\Users\Tino\Favorites\American History The Modern Era - Chapter 13 Overview.url -> URL: hxxp://www.glencoe.com/sec/socialstudies/ushistory/ahme2001/chapter13/overview.html
InternetURL: C:\Users\Tino\Favorites\Barack Obama's Victory Speech - Election Results 2008 - The New York Times#.url -> URL: hxxp://elections.nytimes.com/2008/results/president/speeches/obama-victory-speech.html#
InternetURL: C:\Users\Tino\Favorites\BidVertiser - Pay Per Click Advertising On Sites Of Your Choice..url -> URL: hxxp://www.bidvertiser.com/
InternetURL: C:\Users\Tino\Favorites\Bing.url -> URL: hxxp://go.microsoft.com/fwlink/p/?LinkId=255142
InternetURL: C:\Users\Tino\Favorites\Bodybuilding.com - Paul Becker - Workout WITHOUT Weights Dynamic Tension Revised!.url -> URL: hxxp://www.bodybuilding.com/fun/becker20.htm
InternetURL: C:\Users\Tino\Favorites\Carnegie Mellon University.url -> URL: hxxp://www.cmu.edu/index.shtml
InternetURL: C:\Users\Tino\Favorites\Chiemsee Sports & Travel Bags Reisetasche auf Rollen Print M Premium 70 cm - koffer-direkt.de.url -> URL: hxxp://www.koffer-direkt.de/chiemsee-sports-travel-bags-reisetasche-auf-rollen-m-70-cm.html
InternetURL: C:\Users\Tino\Favorites\Galerie Karneval 2009, Ihr Foto vom Kölner Karneval bei report-K.de Strüßjewerfer IMG_3781.url -> URL: hxxp://www.report-k.de/karneval09/view_photo.php?set_albumName=struesjewerfer&id=IMG_3781
InternetURL: C:\Users\Tino\Favorites\GameSpot Video Star Wars The Old Republic Revealed.url -> URL: hxxp://www.gamespot.com/pc/rpg/starwarstheoldrepublic/video/6199708
InternetURL: C:\Users\Tino\Favorites\GBS Physics Home Page.url -> URL: hxxp://www.glenbrook.k12.il.us/GBSSCI/PHYS/phys.html
InternetURL: C:\Users\Tino\Favorites\Gleichsetzen von Funktionen.url -> URL: hxxp://www.mathe1.de/mathematikbuch/funktionen_gleichsetzen_165.htm
InternetURL: C:\Users\Tino\Favorites\Guitar Jam Machine.url -> URL: hxxp://www.all-guitar-chords.com/guitar_chords_jam.php
InternetURL: C:\Users\Tino\Favorites\HONORS PHYSICS.url -> URL: hxxp://www.nscollegeprep.cps.k12.il.us/ncphs/depts/science/avites/physics.htm
InternetURL: C:\Users\Tino\Favorites\Hotelreservierung.de - Best Western Cristoforo Colombo.url -> URL: hxxp://www.hotelreservierung.de/hotel/details/s2/36313/c/Mailand/t/845/type/1/la/45.4666667/lo/9.2/co/145/p/1
InternetURL: C:\Users\Tino\Favorites\How to Do Wall Pushups eHow.com.url -> URL: hxxp://www.ehow.com/how_4476298_do-wall-pushups.html
InternetURL: C:\Users\Tino\Favorites\How to earn money on the Web.url -> URL: hxxp://www.freebyte.com/makemoney/
InternetURL: C:\Users\Tino\Favorites\How to Smooth Talk Your Way out of Trouble - wikiHow.url -> URL: hxxp://www.wikihow.com/Smooth-Talk-Your-Way-out-of-Trouble
InternetURL: C:\Users\Tino\Favorites\How To Stretch Your Wrists For A Better Front Squat Experience StrongLifts.com.url -> URL: hxxp://stronglifts.com/how-to-stretch-your-wrists-for-a-better-front-squat-experience/
InternetURL: C:\Users\Tino\Favorites\http--curriculum.new-albany.k12.oh.us-krusnak-documents-reviewpage2.pdf.url -> URL: hxxp://curriculum.new-albany.k12.oh.us/krusnak/documents/reviewpage2.pdf
InternetURL: C:\Users\Tino\Favorites\http--extreme.pcgameshardware.de-rollenspiele-adventures-25176-pcgh-de-gothic-3-goetterdaemmerung-neue-screenshots-und-erste-leistungseinschaetzung-zum-add-2.html.url -> URL: hxxp://extreme.pcgameshardware.de/rollenspiele-adventures/25176-pcgh-de-gothic-3-goetterdaemmerung-neue-screenshots-und-erste-leistungseinschaetzung-zum-add-2.html
InternetURL: C:\Users\Tino\Favorites\http--homepage.mac.com-john.burk98-2nd%20Per%20Physics%201-Oct032008-U3%20Review%20Soln.pdf.pdf.url -> URL: hxxp://homepage.mac.com/john.burk98/2nd%20Per%20Physics%201/Oct032008/U3%20Review%20Soln.pdf.pdf
InternetURL: C:\Users\Tino\Favorites\http--picture.immobilienscout24.de-files-video001-619-A-541-51213207-V_S_1.pdf2891697675.url -> URL: hxxp://picture.immobilienscout24.de/files/video001/619/A/541/51213207/V_S_1.pdf?2891697675
InternetURL: C:\Users\Tino\Favorites\http--www.enotes.com-crucible-q-and-a-find-write-out-deux-quotes-for-each-following-8227.url -> URL: hxxp://www.enotes.com/crucible/q-and-a/find-write-out-deux-quotes-for-each-following-8227
InternetURL: C:\Users\Tino\Favorites\http--www.midomi.com-index.phpaction=main.search&searchTerm=sb5j02dqmgu67riigmj7ica913_1227903913491&type=voice&length=11&token=&from=landing&genre_id=&language_id=&keyword=.url -> URL: hxxp://www.midomi.com/index.php?action=main.search&searchTerm=sb5j02dqmgu67riigmj7ica913_1227903913491&type=voice&length=11&token=&from=landing&genre_id=&language_id=&keyword=
InternetURL: C:\Users\Tino\Favorites\http--www.nscollegeprep.cps.k12.il.us-ncphs-depts-science-avites-Phy-U3%20ws%204-modified%20and%20intersection.pdf.url -> URL: hxxp://www.nscollegeprep.cps.k12.il.us/ncphs/depts/science/avites/Phy-U3%20ws%204-modified%20and%20intersection.pdf
InternetURL: C:\Users\Tino\Favorites\http--www.ridetherapid.org-includes-files-routes-largeImages-1179760406_route06.jpg.url -> URL: hxxp://www.ridetherapid.org/includes/files/routes/largeImages/1179760406_route06.jpg
InternetURL: C:\Users\Tino\Favorites\iPhone 4 und 3G S News, Apps, Games - Spiele, Zubehör.url -> URL: hxxp://www.iphone-magazine.de/
InternetURL: C:\Users\Tino\Favorites\Lineare Gleichungen lösen.url -> URL: hxxp://www.mathepower.com/gleichungen.php
InternetURL: C:\Users\Tino\Favorites\List of all Bible characters and stories.url -> URL: hxxp://www.sicumc.org/oldsicumc/media/Bible_characters/Bible_Index.asp
InternetURL: C:\Users\Tino\Favorites\Mondgesänge - Comics.url -> URL: hxxp://mondgesaenge.de/ART/
InternetURL: C:\Users\Tino\Favorites\Pandora Radio - Listen to Free Internet Radio, Find New Music.url -> URL: hxxp://www.pandora.com/
InternetURL: C:\Users\Tino\Favorites\Partition Of India.url -> URL: hxxp://www.slideshare.net/jcrowder/partition-of-india
InternetURL: C:\Users\Tino\Favorites\pensive definition Dictionary.com.url -> URL: hxxp://dictionary.reference.com/browse/pensive
InternetURL: C:\Users\Tino\Favorites\Please help me. I am dieing on these problems..url -> URL: hxxp://www.physicsforums.com/showthread.php?t=133865
InternetURL: C:\Users\Tino\Favorites\Proteine Whey Protein.url -> URL: hxxp://www.whey-proteine.de/
InternetURL: C:\Users\Tino\Favorites\Redewendungen - Schreiben - Französisch - Lern-Online.net.url -> URL: hxxp://www.lern-online.net/franzoesisch/schreiben/redewendungen/redeabsicht3.php
InternetURL: C:\Users\Tino\Favorites\REMC8 Virtual Learning Environment Login to the site.url -> URL: hxxp://moodle.remc8.k12.mi.us/login/index.php
InternetURL: C:\Users\Tino\Favorites\Reverso Deutsch - English On-line Translator, Free Automatic Translation, Dictionary.url -> URL: hxxp://www.reverso.net/text_translation.asp?lang=EN&dir=german-english
InternetURL: C:\Users\Tino\Favorites\Skittles Vodka Tutorial Mix That Drink.url -> URL: hxxp://mixthatdrink.com/skittles-vodka-tutorial/
InternetURL: C:\Users\Tino\Favorites\Spot on Health.url -> URL: hxxp://www.spot-on-health.com/
InternetURL: C:\Users\Tino\Favorites\To Kill a Mockingbird Book Notes Summary by Harper Lee Plot Summary Book Notes Summary.url -> URL: hxxp://www.bookrags.com/notes/tkm/SUM.html
InternetURL: C:\Users\Tino\Favorites\Umrechnungsmasse Cup in Gramm und Fahrenheit in Celcius -amerikanisch-deutsch Sonstige Küchenthemen Forum.url -> URL: hxxp://www.chefkoch.de/forum/2,52,151781/Umrechnungsmasse-Cup-in-Gramm-und-Fahrenheit-in-Celcius-amerikanisch-deutsch.html
InternetURL: C:\Users\Tino\Favorites\UNIT III Worksheet 3.url -> URL: hxxp://www.docstoc.com/docs/2785480/UNIT-III-Worksheet-3
InternetURL: C:\Users\Tino\Favorites\USA kulinarisch - amerikanische Cup-Maße in deutsche umrechnen.url -> URL: hxxp://www.usa-kulinarisch.de/cup_tabelle1.htm
InternetURL: C:\Users\Tino\Favorites\Verb pouvoir auf Französisch konjugieren, Konjugator, Konjugationstabellen.url -> URL: hxxp://konjugator.reverso.net/konjugation-franzosisch-verb-pouvoir.html
InternetURL: C:\Users\Tino\Favorites\Wohnung Miete, Köln, Helle Wohnung im Herzen Kölns.....url -> URL: hxxp://www.immobilienscout24.de/51213207?exposeAction=ShowPictureOnPicturesTab&pictureIndexControl=0&sourceOfDoTabActionControl=LINK_TO_GALLERY&style=is24&is24EC=IS24&navigationbarurl=
InternetURL: C:\Users\Tino\Favorites\YouTube - DSDS-Birthe.url -> URL: hxxp://www.youtube.com/watch?v=XEtjJFk1Nvw
InternetURL: C:\Users\Tino\Favorites\YouTube - TV Total DSF Rätsel Beschiss!.url -> URL: hxxp://www.youtube.com/watch?v=8NHsNK8jL80&NR=1
InternetURL: C:\Users\Tino\Favorites\[Major nutrition-related risk factors of ischemic ...[Orv Hetil. 1999] - PubMed Result.url -> URL: hxxp://www.ncbi.nlm.nih.gov/pubmed/10443132?ordinalpos=3&itool=EntrezSystem2.PEntrez.Pubmed.Pubmed_ResultsPanel.Pubmed_DefaultReportPanel.Pubmed_RVDocSum
InternetURL: C:\Users\Tino\Favorites\Übersicht - GothicEditingWiki.url -> URL: hxxp://wiki.worldofgothic.de/
InternetURL: C:\Users\Tino\Favorites\Windows Live\Windows Live Gallery.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=70742
InternetURL: C:\Users\Tino\Favorites\Windows Live\Windows Live Ideas.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=72700
InternetURL: C:\Users\Tino\Favorites\Windows Live\Windows Live Mail.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=72681
InternetURL: C:\Users\Tino\Favorites\Windows Live\Windows Live Spaces.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=72682
InternetURL: C:\Users\Tino\Favorites\MSN-Websites\MSN Auto.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=72680
InternetURL: C:\Users\Tino\Favorites\MSN-Websites\MSN Fernsehen.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=72659
InternetURL: C:\Users\Tino\Favorites\MSN-Websites\MSN Money.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=72640
InternetURL: C:\Users\Tino\Favorites\MSN-Websites\MSN Nachrichten.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=72636
InternetURL: C:\Users\Tino\Favorites\MSN-Websites\MSN Sport.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=72635
InternetURL: C:\Users\Tino\Favorites\MSN-Websites\MSN.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=72630
InternetURL: C:\Users\Tino\Favorites\Microsoft-Websites\IE-Site auf Microsoft.com.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=72186
InternetURL: C:\Users\Tino\Favorites\Microsoft-Websites\Marketplace.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=72411
InternetURL: C:\Users\Tino\Favorites\Microsoft-Websites\Microsoft Deutschland GmbH.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=72520
InternetURL: C:\Users\Tino\Favorites\Microsoft-Websites\Microsoft Store.url -> URL: hxxp://go.microsoft.com/fwlink/?linkid=140813
InternetURL: C:\Users\Tino\Favorites\Microsoft-Websites\Microsoft Windows - Start.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=72629
InternetURL: C:\Users\Tino\Favorites\Microsoft-Websites\Microsoft zu Hause.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=72406
InternetURL: C:\Users\Tino\Favorites\Microsoft-Websites\Microsoft.com durchsuchen.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=72893
InternetURL: C:\Users\Tino\Favorites\Microsoft-Websites\Willkommen zu IE7.url -> URL: hxxp://go.microsoft.com/fwlink/?linkid=68919
InternetURL: C:\Users\Tino\Favorites\Links\10061_Pulheim_Titel_2011.indd.url -> URL: hxxp://www.pulheim.de/hosts/002/files/21532/9553.pdf
InternetURL: C:\Users\Tino\Favorites\Links\23 Things That Look Totally Bizarre Under A Microscope.url -> URL: hxxps://www.buzzfeed.com/kellyoakes/things-that-look-weird-under-a-microscope?utm_term=.js2KDg7La#.pvEomlrBQ
InternetURL: C:\Users\Tino\Favorites\Links\Abireise Rimini, Italien 2011 - Jugendreisen = fun-REISEN.url -> URL: hxxp://www.fun-reisen.de/Rimini-Abi
InternetURL: C:\Users\Tino\Favorites\Links\Apple.url -> URL: hxxp://www.apple.com/de/
InternetURL: C:\Users\Tino\Favorites\Links\Bing.url -> URL: hxxp://www.bing.com/
InternetURL: C:\Users\Tino\Favorites\Links\Can You Rewire Your Brain In Two Weeks- One Mans Attempt
- The Blog of Author Tim Ferriss.url -> URL: hxxp://fourhourworkweek.com/2014/09/12/muse-interaxon/
InternetURL: C:\Users\Tino\Favorites\Links\Core-Training- wie viel ist nötig- Rumpfmuskeln, Stabilisierungstraining, Krafttraining, Leistungssteigerung, Core-Stabilität - Krafttraining.url -> URL: hxxp://www.trainingsworld.com/training/krafttraining/core-training-viel-noetig-1277595.html
InternetURL: C:\Users\Tino\Favorites\Links\EISA-Awards- Fernseher von Panasonic, Philips, Samsung und Sony gewinnen.url -> URL: hxxp://www.flimmerkisten.de/eisa-awards-fernseher-panasonic-philips-samsung-sony-gewinnen-17646.html
InternetURL: C:\Users\Tino\Favorites\Links\Facebook.url -> URL: hxxps://m.facebook.com/home.php
InternetURL: C:\Users\Tino\Favorites\Links\Fahrgastrechte.url -> URL: hxxp://www.fahrgastbeirat.org/fahrgastrechte.html
InternetURL: C:\Users\Tino\Favorites\Links\Favela Wo Brasilien arm ist (WISSENSWERTES) - Stadtmagazin Witten.url -> URL: hxxp://www.stadtmag.de/cgi-bin/db/aktuell.cgi?stadt=witten&artikel=48_74
InternetURL: C:\Users\Tino\Favorites\Links\FooDDB iPhone- - iPad-App - Download - CHIP Handy Welt.url -> URL: hxxp://www.chip.de/downloads/FooDDB-iPhone-_-iPad-App_50099006.html
InternetURL: C:\Users\Tino\Favorites\Links\Gebratene Nudeln - Sonstige Kochrezepte Forum - Chefkoch.de.url -> URL: hxxp://www.chefkoch.de/forum/2,1,35214,4/Gebratene-Nudeln.html
InternetURL: C:\Users\Tino\Favorites\Links\Gen-Food- Wie groß ist das Risiko für manipuliertes Soja- - FIT FOR FUN.url -> URL: hxxp://www.fitforfun.de/abnehmen/gesund-essen/soja/gen-food-wie-gross-ist-das-risiko-fuer-genmanipuliertes-soja_aid_6889.html
InternetURL: C:\Users\Tino\Favorites\Links\Gewinnspiel zu Unknown Identity- Gewinnt eine Blu-Ray sowie eine Digitalkamera für Cinema - Seite 1 - Eurogamer.de.url -> URL: hxxp://www.eurogamer.de/articles/2011-10-08-unknown-identity-gewinnt-eine-blu-ray-sowie-eine-digitalkamera-gewinnspiel
InternetURL: C:\Users\Tino\Favorites\Links\Google.url -> URL: hxxps://www.google.com/?client=safari&channel=iphone_bm
InternetURL: C:\Users\Tino\Favorites\Links\How To Design The Perfect Nap - Lifehack.url -> URL: hxxp://www.lifehack.org/articles/lifestyle/how-to-design-the-perfect-nap.html
InternetURL: C:\Users\Tino\Favorites\Links\http--www.grantspasssportscards.com-images-1063.url -> URL: hxxp://www.grantspasssportscards.com/images/1063.jpg
InternetURL: C:\Users\Tino\Favorites\Links\Ingwer - heilsame Wurzel und exotisches Gewürz- Zingiber officinale - Eines jener Würzmittel, die immunwirksam sind.url -> URL: hxxp://www.suite101.de/content/ingwer-heilsame-wurzel-und-exotisches-gewuerz-a59977
InternetURL: C:\Users\Tino\Favorites\Links\iPhone 4 und 3G S News, Apps, Games - Spiele, Zubehör.url -> URL: hxxp://www.iphone-magazine.de/
InternetURL: C:\Users\Tino\Favorites\Links\Last Minute Reisen Lastminute Urlaub Günstig buchen!.url -> URL: hxxp://www.tce-reisen.de/query/?SF=2&msk=2&DVON=02&MVON=07.11&VON=&DBIS=17&MBIS=07.11&BIS=&reisedauer=7-7&RW=-®ION=B&ZIEL=PMI&RA=2&KA1=18&KA2=18&KA3=18&ZA=0&VA=0&ST=-&PMAX=&HOTEL=Don+Miguel+Playa&APS=10&SORT=
InternetURL: C:\Users\Tino\Favorites\Links\LEDs with more natural light developed - UPI.com.url -> URL: hxxp://m.upi.com/story/UPI-87211358548787/
InternetURL: C:\Users\Tino\Favorites\Links\Lieber ertrinken als ausbluten - Men's Health.url -> URL: hxxp://www.menshealth.de/artikel/lieber-ertrinken-als-ausbluten.6290.html
InternetURL: C:\Users\Tino\Favorites\Links\Lonely Planet- (Eine Alternative zur neuen UN-Prognose) - Demografie-Blog.url -> URL: hxxp://www.demografie-blog.de/2013/06/lonely-planet-eine-alternative-zur-neuen-un-prognose/
InternetURL: C:\Users\Tino\Favorites\Links\News- Nvidia-Skyrim-Schnitzeljagd - GameStar-PC Ultra im Wert von 1.500 Euro gewinnen - GameStar.de Mobile.url -> URL: hxxp://m.gamestar.de/news/nvidia-skyrim-schnitzeljagd,2566096.html
InternetURL: C:\Users\Tino\Favorites\Links\Notice Blechschild bei AllPosters.de.url -> URL: hxxp://www.allposters.de/-sp/Notice-Poster_i2881876_.htm
InternetURL: C:\Users\Tino\Favorites\Links\Partition Of India.url -> URL: hxxp://www.slideshare.net/jcrowder/partition-of-india
InternetURL: C:\Users\Tino\Favorites\Links\rbb Preußen-Chronik - Thema- Deutsche Einheit unter Preußens Hegemonie.url -> URL: hxxp://www.preussen-chronik.de/thema_jsp/key=thema_deutsche+einheit+unter+preu%25dfens+hegemonie.html
InternetURL: C:\Users\Tino\Favorites\Links\REM - Phasen.url -> URL: hxxp://www.infoquelle.de/Gesundheit/Wellness/REM-Phasen.php
InternetURL: C:\Users\Tino\Favorites\Links\Selbstmotivation Den inneren Schweinehund überwinden.url -> URL: hxxp://www.officeteam.de/selbstmotivation
InternetURL: C:\Users\Tino\Favorites\Links\Sicherheit im Auto- Die Hand am Lenkrad - Auto - STERN.DE.url -> URL: hxxp://www.stern.de/auto/service/sicherheit-im-auto-die-hand-am-lenkrad-599312.html
InternetURL: C:\Users\Tino\Favorites\Links\Sleeping, Dreaming, and Dying- An Exploration of Consciousness-Amazon.de-Englische Bücher.url -> URL: hxxp://www.amazon.de/gp/aw/d/0861711238/ref=mp_s_a_1_6?qid=1382352846&sr=8-6&pi=AC_SX110_SY165_QL70
InternetURL: C:\Users\Tino\Favorites\Links\Strengthen Your Neck Muscles - Men's Health News.url -> URL: hxxp://news.menshealth.com/your-body%E2%80%99s-most-neglected-muscles/2011/12/16/
InternetURL: C:\Users\Tino\Favorites\Links\Techniken für luzides Träumen.url -> URL: hxxp://www.mind-shop.de/newsdesk_info.php?newsPath=11&newsdesk_id=16
InternetURL: C:\Users\Tino\Favorites\Links\The 3 Decisions That Will Change Your Financial Life.url -> URL: hxxp://www.entrepreneur.com/article/239312
InternetURL: C:\Users\Tino\Favorites\Links\Voluntary activation of the sympathetic nervous system and attenuation of the innate immune response in humans.url -> URL: hxxps://www.ncbi.nlm.nih.gov/pmc/articles/PMC4034215/#!po=16.6667
InternetURL: C:\Users\Tino\Favorites\Links\Vorgeschlagene Sites.url -> URL: hxxps://ieonline.microsoft.com/#ieslice
InternetURL: C:\Users\Tino\Favorites\Links\Wawerko - krümelmonster kostüm - Anleitungen zum Selbermachen - Seite 2.url -> URL: hxxp://www.wawerko.de/suche/kr%C3%BCmelmonster%20kost%C3%BCm.html?start=10
InternetURL: C:\Users\Tino\Favorites\Links\Web Slice-Katalog.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=121315
InternetURL: C:\Users\Tino\Favorites\Links\WELT ONLINE.url -> URL: hxxp://m.welt.de/article.do?id=%252Fdebatte%252Fkommentare%252Farticle13939962%252FGeneration-Maybe-hat-sich-im-Entweder-oder-verrannt.html
InternetURL: C:\Users\Tino\Favorites\Links\Westerng. bis 700 Euro- Yamaha DW-15, FG-502, oder oder ---.url -> URL: hxxp://www.musiker-board.de/westerngitarren-steelstrings-git/10081-westerng-bis-700-euro-yamaha-dw-15-fg-502-oder-oder.html
InternetURL: C:\Users\Tino\Favorites\Links\www.FighterFitnessForum.com -- Thema anzeigen - Bauch beim Mann ab Ende 30 -) und sonstige Fragen.url -> URL: hxxp://www.fighterfitnessforum.com/ftopic8887-0-asc-15.html
InternetURL: C:\Users\Tino\Favorites\Links\Yahoo.url -> URL: hxxps://de.yahoo.com/
InternetURL: C:\Users\Tino\Favorites\Links\Zahlreiche Chancen auf Stipendien - Sponsoren fürs Studium - Special - Stiftung Warentest.url -> URL: hxxp://m.test.de/themen/bildung-soziales/special/Zahlreiche-Chancen-auf-Stipendien-Sponsoren-fuers-Studium-1486257-2486257/
InternetURL: C:\Users\Tino\Favorites\HP\eBay.url -> URL: hxxp://redirect.hp.com/svs/rdr?TYPE=4&tp=iefavs&s=ebay&pf=cnnb&locale=de_de&bd=all&c=83
InternetURL: C:\Users\Tino\Favorites\HP\My HP Games.url -> URL: hxxp://redirect.hp.com/svs/rdr?TYPE=4&tp=iefavs&s=myhpgames&pf=cnnb&locale=DE_DE&bd=all&c=83
InternetURL: C:\Users\Tino\Favorites\HP\Yahoo Shopping.url -> URL: hxxp://redirect.hp.com/svs/rdr?TYPE=4&tp=iefavs&s=kelkoo&pf=cnnb&locale=de_de&bd=all&c=83
InternetURL: C:\Users\Tino\Dropbox\www.dropbox.com.url -> URL: hxxps://www.dropbox.com/home
InternetURL: C:\Users\Tino\Documents\Spiele\Warcraft III Frozen Throne\Warcraft III\Register Frozen Throne.url -> URL: hxxp://www.blizzard.com/register/
InternetURL: C:\Users\Tino\Documents\Spiele\Warcraft III Frozen Throne\Warcraft III\Register Warcraft III.url -> URL: hxxp://www.blizzard.com/register/
InternetURL: C:\Users\Tino\Documents\Spiele\Warcraft III Frozen Throne\Warcraft III\TechSupport.url -> BASEURL: hxxp://www.blizzard.com/support/ URL: hxxp://www.blizzard.com/support/
InternetURL: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\Company of Heroes 2.url -> URL: steam://rungameid/231430
==================== Ende vom Shortcut.txt =============================
|
|
13.10.2021, 16:58
| #4 |
| /// TB-Ausbilder   | Windows 10: audacity.de Installer NOCH in der Ausführung. Soll ich ihn schließen? PC Neustarten? Mein Name ist Matthias und ich werde dir bei der Analyse und der eventuell notwendigen Bereinigung deines Computers helfen. Rechner neu starten! Audacity deinstallieren! FRST erneut ausführen und die Logdateien posten! |
|
13.10.2021, 17:47
| #5 |
| | Windows 10: audacity.de Installer NOCH in der Ausführung. Soll ich ihn schließen? PC Neustarten? Danke Matthias! Wird gemacht! Im Folgenden die Logfiles nach Neustart und Deinstallation von Audacity. Ich glaube, bei den logfiles, die ich zuvor gepostet habe, war auch der optionale Suchlauf "BCD auflisten" angekreuzt. Diesmal war es nicht angekreuzt. FRST.txt Code:
ATTFilter ==================== Registry (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412736 2021-09-07] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [301880 2018-08-23] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [8091424 2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] => C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe [766464 2016-02-29] (Cisco Systems, Inc. -> Cisco Systems, Inc.)
HKLM-x32\...\Run: [KeePass 2 PreLoad] => C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [3331264 2020-01-20] (Open Source Developer, Dominik Reichl -> Dominik Reichl)
HKLM-x32\...\Run: [PDFPrint] => C:\Program Files (x86)\PDF24\pdf24.exe [210432 2016-07-05] (Geek Software GmbH -> Geek Software GmbH)
HKLM-x32\...\Run: [DBAgent] => C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\DBAgent.exe [1563424 2016-06-28] (Seagate Technology LLC -> Seagate Technology LLC)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2095672 2020-10-10] (Adobe Inc. -> Adobe Inc.)
HKLM-x32\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\\isuspm.exe [2075480 2013-06-24] (Flexera Software LLC -> Flexera Software LLC.)
HKLM-x32\...\Run: [DNS7reminder] => C:\Program Files (x86)\Nuance\NaturallySpeaking15\Ereg\Ereg.exe [3146120 2016-05-06] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [588704 2018-03-28] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Nikon Message Center 2] => C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe [588288 2016-01-08] (Nikon Corporation) [Datei ist nicht signiert]
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [114824 2020-10-10] (Adobe Inc. -> )
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Run: [f.lux] => C:\Users\Tino\AppData\Local\FluxSoftware\Flux\flux.exe [1515848 2021-06-18] (F.lux Software LLC -> f.lux Software LLC)
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe [2075480 2013-06-24] (Flexera Software LLC -> Flexera Software LLC.)
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2018-10-01] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [67896 2018-10-01] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Run: [Spotify] => C:\Users\Tino\AppData\Roaming\Spotify\Spotify.exe [23592304 2020-12-22] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Tino\AppData\Local\Microsoft\Teams\Update.exe [2453656 2021-02-21] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Run: [vidnotifier.exe] => C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\vidnotifier\vidnotifier.exe [1814848 2019-08-22] (Digital Wave Ltd -> Digital Wave Ltd)
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Run: [CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [114824 2020-10-10] (Adobe Inc. -> )
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Run: [EyeDefender] => C:\Program Files (x86)\EyeDefender\EyeDefender.exe [163840 2009-11-18] () [Datei ist nicht signiert]
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Run: [Adobe Reader Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe [5397216 2021-09-25] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Run: [HP Deskjet 3520 series (NET)] => C:\Program Files\HP\HP Deskjet 3520 series\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett Packard -> Hewlett-Packard Co.)
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Run: [Bitrix24] => C:\Program Files (x86)\Bitrix24\Bitrix24.exe [18171480 2021-06-09] (Bitrix, Inc. -> Bitrix)
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Run: [Opera Browser Assistant] => C:\Users\Tino\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [4105424 2021-10-05] (Opera Software AS -> Opera Software)
HKLM\...\Print\Monitors\HP B011 Status Monitor: C:\Windows\System32\hpinkstsB011LM.dll [331664 2012-06-13] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP Deskjet 3520 series): C:\Windows\System32\HPDiscoPMB011.dll [741480 2012-10-17] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\Nitro PDF Port Monitor: C:\Windows\System32\nitrolocalmon11.dll [31944 2017-03-09] (Nitro Software, Inc. -> Nitro Software, Inc.)
HKLM\...\Print\Monitors\PDF-XChange Lite Port Monitor: C:\WINDOWS\system32\pxcpmL.dll [2147072 2020-01-06] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
HKLM\Software\...\AppCompatFlags\Custom\H3Blade.exe: [{62a24b39-0106-4990-90ea-3a09e9dda7a6}.sdb] -> HoMM III Compatibility Database
HKLM\Software\...\AppCompatFlags\Custom\Heroes3.exe: [{62a24b39-0106-4990-90ea-3a09e9dda7a6}.sdb] -> HoMM III Compatibility Database
HKLM\Software\...\AppCompatFlags\InstalledSDB\{62a24b39-0106-4990-90ea-3a09e9dda7a6}: [DatabasePath] -> C:\WINDOWS\AppPatch\CustomSDB\{62a24b39-0106-4990-90ea-3a09e9dda7a6}.sdb [2021-01-02]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\94.0.4606.81\Installer\chrmstp.exe [2021-10-13] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Dell Display Manager.lnk [2016-07-20]
ShortcutTarget: Dell Display Manager.lnk -> C:\Program Files (x86)\Dell\Dell Display Manager\ddm.exe (EnTech Taiwan -> EnTech Taiwan)
Startup: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\An OneNote senden.lnk [2018-10-07]
ShortcutTarget: An OneNote senden.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
Startup: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ausschneiden shortcut.ahs - Verknüpfung.lnk [2020-11-17]
ShortcutTarget: ausschneiden shortcut.ahs - Verknüpfung.lnk -> C:\Users\Tino\Documents\Desktop aufräum 16Nov20\Aufräum22Aug20\ausschneiden shortcut.ahs (Keine Datei)
Startup: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Tintenwarnungen überwachen - HP Deskjet 3520 series (Netzwerk).lnk [2021-10-13]
ShortcutAndArgument: Tintenwarnungen überwachen - HP Deskjet 3520 series (Netzwerk).lnk -> C:\WINDOWS\system32\RunDll32.exe => "C:\Program Files\HP\HP Deskjet 3520 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN27J1204Q05SY;CONNECTION=NW;MONITOR=1;
GroupPolicy: Beschränkung ? <==== ACHTUNG
Policies: C:\ProgramData\NTUSER.pol: Beschränkung <==== ACHTUNG
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\SOFTWARE\Policies\Google: Beschränkung <==== ACHTUNG
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {0347E766-D2FD-4818-AC8F-EAE3C7F11598} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1758792 2021-09-22] (Lenovo -> )
Task: {07F8865C-7AD5-45D3-BB07-1C47B52D830E} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1562376 2021-08-16] (Adobe Inc. -> Adobe Inc.)
Task: {085C3489-F63D-4F6C-A032-3B946FD25D1F} - System32\Tasks\{013997F2-8BC7-4E13-8F7F-314FA024B459} => C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\EA Games\Battlefield 2\BF2.exe" -d "C:\Program Files (x86)\EA Games\Battlefield 2"
Task: {120070D7-88E7-4D51-953B-37890A9A08CE} - \Microsoft\Windows\UNP\RunCampaignManager -> Keine Datei <==== ACHTUNG
Task: {124DAE38-187A-449B-9BD4-673E69107ABC} - System32\Tasks\G2MUpdateTask-S-1-5-21-2977029141-1010321603-2543741146-1001 => C:\Users\Tino\AppData\Local\GoToMeeting\19796\g2mupdate.exe [31176 2021-07-02] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {133A42DF-0438-4F80-9BA7-C10883E7E669} - System32\Tasks\Lenovo\Power Manager\Uninstall task => C:\WINDOWS\SysWOW64\PowerMgrInst.exe [62136 2021-07-11] (Lenovo -> )
Task: {1B36DE3D-3946-45B2-9F22-5C8F1F95E351} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [677344 2021-02-03] (Mozilla Corporation -> Mozilla Foundation)
Task: {1F326534-2093-477B-B292-41517537BE0E} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3618088 2020-07-21] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {1FB09E97-8905-4FB7-9EB4-5F1FC5C72FB8} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-2977029141-1010321603-2543741146-1001 => "C:\WINDOWS\system32\rundll32.exe" dfshim.dll,ShOpenVerbShortcut C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo\Lenovo Service Bridge.appref-ms
Task: {280B69A7-35E3-4D2B-8BFB-C8F766495CAF} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {2DB5B364-0264-43A0-91E1-3035B2FAD9F6} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [110440 2021-10-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {3ACA6790-B706-4443-86FA-B4F06BFC92F8} - System32\Tasks\G2MUploadTask-S-1-5-21-2977029141-1010321603-2543741146-1001 => C:\Users\Tino\AppData\Local\GoToMeeting\19796\g2mupload.exe [31176 2021-07-02] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {3CD48984-98B2-4B12-AAB5-056D0EB27C3F} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [129808 2021-08-16] (Dropbox, Inc -> Dropbox, Inc.)
Task: {471DCC8B-7628-41BC-AC38-8486419A1CE5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MpCmdRun.exe [884544 2021-10-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4DBF32E2-8203-4161-A52A-09BBB290CFD4} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21976976 2021-09-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {5B75D761-9B2A-4818-A8AE-3D8E0B50FFA4} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4255680 2021-10-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {5EE5EE4B-0A1B-4DA2-88E3-0F54B04DCA4C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MpCmdRun.exe [884544 2021-10-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6198F25E-F891-4497-8707-2DDB5D9557B1} - System32\Tasks\{80D29C8F-D447-49C9-8258-37B82F03453E} => C:\WINDOWS\system32\pcalua.exe -a "C:\Users\Tino\Documents\Games\Warcraft III\Frozen Throne.exe" -d "C:\Users\Tino\Documents\Games\Warcraft III"
Task: {647193AF-B5F1-45CD-B52E-EEC335422AF9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-03-28] (Google Inc -> Google Inc.)
Task: {6C845043-ABE1-4700-9B16-95C644899DA3} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [110440 2021-10-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {726ABB6F-2264-4603-9D1D-D4C97A07BA9A} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-***** => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {85C90DFE-E99B-43AF-AD4E-1E63A67DB880} - System32\Tasks\Microsoft\Office\Office Serviceability Manager => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe [4103280 2021-09-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {8B27B185-8776-45B5-A85E-85B006703283} - System32\Tasks\{D0AF2B37-7844-4D3F-8F1E-40653F6642AD} => C:\WINDOWS\system32\pcalua.exe -a "C:\Users\Tino\Documents\Games\Battlefield 2\BF2.exe" -d "C:\Users\Tino\Documents\Games\Battlefield 2"
Task: {9B6B607A-47E8-42C8-AEB3-8665CD751170} - System32\Tasks\Lenovo\Power Manager\Background monitor => C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe [112824 2021-07-11] (Lenovo -> Lenovo)
Task: {A3DE6174-5DE4-49CE-9BEF-4EC46DBB9460} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1758792 2021-09-22] (Lenovo -> )
Task: {AAFC4740-76D0-4846-BF4C-C2AF6DBA0C9E} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412736 2021-09-07] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {AD7218D6-A02C-455D-815A-2597B63AA670} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MpCmdRun.exe [884544 2021-10-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {AE109CE3-699E-4C21-9C3F-08D382B22983} - System32\Tasks\RtHDVBg_Dolby => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3618088 2020-07-21] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {B5D885D4-864F-4F26-99D1-B3F8B4AB4231} - System32\Tasks\Opera scheduled Autoupdate 1631522888 => C:\Users\Tino\AppData\Local\Programs\Opera\launcher.exe [42731728 2021-09-28] (Opera Software AS -> Opera Software)
Task: {B63A8BFC-47B6-4D00-A453-4D1040B5CE6C} - System32\Tasks\Lenovo Power Management Driver PnP Task => C:\WINDOWS\System32\ibmpmsvc.exe [949632 2019-12-11] (Lenovo -> Lenovo.)
Task: {C0668F73-BEC3-4D8B-8144-C8FFD6304080} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21976976 2021-09-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {C67F174E-8388-48C0-A03F-F51174497229} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [651400 2017-09-20] (Hewlett Packard -> HP Inc.)
Task: {CAD6B928-F79E-408C-88A7-C908E609223F} - System32\Tasks\Opera scheduled assistant Autoupdate 1631522903 => C:\Users\Tino\AppData\Local\Programs\Opera\launcher.exe [42731728 2021-09-28] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Tino\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {D78E358B-13FA-4B84-ACDC-4AB41FE247C7} - System32\Tasks\Optimize Push Notification Data File-S-1-5-21-2977029141-1010321603-2543741146-1001 => {201600D8-6EFF-48CE-B842-E14D37A0682D} C:\WINDOWS\System32\wpninprc.dll [24064 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Task: {D8D50A53-B829-4CA4-9A3E-82EA56C43499} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MpCmdRun.exe [884544 2021-10-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {DDF2E756-B2F4-428D-A586-1A7EC980992A} - System32\Tasks\Microsoft\Windows\Display\Brightness\BrightnessReset => {2755524D-68F2-4B39-A816-9DB31839C897}
Task: {DFAB118F-BC0E-4054-A149-CF0E76A6D44D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [136056 2019-01-02] (HP Inc. -> HP Inc.)
Task: {E09EC5E7-FEBC-4332-A1E9-1510F60005DC} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [129808 2021-08-16] (Dropbox, Inc -> Dropbox, Inc.)
Task: {E17C663A-4B5D-468E-ADC9-EF3071FEFD0E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4255680 2021-10-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {E31270B0-F9F4-4023-B880-C8F878C4F7DC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-03-28] (Google Inc -> Google Inc.)
Task: {E4C14D83-AD24-4737-87FC-462045AFB77D} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1153408 2021-10-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {FCC9C19A-B9FB-4D22-AD81-B4B670A509EE} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616320 2018-01-08] (Apple Inc. -> Apple Inc.)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-2977029141-1010321603-2543741146-1001.job => C:\Users\Tino\AppData\Local\GoToMeeting\19796\g2mupdate.exe
Task: C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-2977029141-1010321603-2543741146-1001.job => C:\Users\Tino\AppData\Local\GoToMeeting\19796\g2mupload.exe
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Hosts: Es ist mehr als ein Eintrag in der Hosts Datei zu finden. Siehe Hosts-Bereich in Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{74f2711d-31a5-4cd1-acb2-da289773e58b}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{8615153c-5251-43cd-854c-39b15bffcf27}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{9c782f4b-dc60-4c43-b3a5-e71060c318ce}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{b855478f-1909-4465-92c3-e2e3e88c021a}: [DhcpNameServer] 192.168.2.1
Edge:
=======
Edge Extension: (Kein Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [nicht gefunden]
Edge Extension: (Kein Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [nicht gefunden]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Tino\AppData\Local\Microsoft\Edge\User Data\Default [2021-10-13]
Edge DownloadDir: Default -> C:\Users\Tino\Downloads
Edge Notifications: Default -> hxxps://www.spartanien.de
Edge HomePage: Default -> hxxps://start.duckduckgo.com/
Edge Extension: (Google Scholar-Schaltfläche) - C:\Users\Tino\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fciokoalnclhnonofghacdplgpafdcgl [2020-08-12]
Edge HKLM-x32\...\Edge\Extension: [mielbhbkcliienpdicphhecpodcaeefg]
FireFox:
========
FF DefaultProfile: nsk17f5j.default
FF ProfilePath: C:\Users\Tino\AppData\Roaming\Mozilla\Firefox\Profiles\nsk17f5j.default [2021-09-13]
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2017-08-11] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @java.com/DTPlugin,version=11.171.2 -> C:\Program Files\Java\jre1.8.0_171\bin\dtplugin\npDeployJava1.dll [2018-04-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.171.2 -> C:\Program Files\Java\jre1.8.0_171\bin\plugin2\npjp2.dll [2018-04-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-01-06] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-01-06] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-01-06] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2020-10-10] (Adobe Inc. -> Adobe Systems)
FF Plugin: nuance.com/DgnRia2_x86_64 -> C:\Program Files (x86)\Nuance\NaturallySpeaking15\Program\x64\npDgnRia2_x64.dll [2016-08-23] (Nuance Communication, Inc. -> Nuance Communications, Inc.)
FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2017-08-11] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-05-26] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-05-26] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nitropdf.com/NitroPDF -> C:\Program Files (x86)\Nitro\Pro 11\npnitromozilla.dll [2017-03-09] (Nitro Software, Inc. -> Nitro PDF)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2020-01-06] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2020-01-06] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2020-01-06] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-09-25] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2020-10-10] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: nuance.com/DgnRia2 -> C:\Program Files (x86)\Nuance\NaturallySpeaking15\Program\npDgnRia2.dll [2016-08-23] (Nuance Communication, Inc. -> Nuance Communications, Inc.)
FF Plugin HKU\.DEFAULT: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-01-06] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\.DEFAULT: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-01-06] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\.DEFAULT: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-01-06] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-2977029141-1010321603-2543741146-1001: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2017-08-11] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-2977029141-1010321603-2543741146-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-01-06] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-2977029141-1010321603-2543741146-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-01-06] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-2977029141-1010321603-2543741146-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-01-06] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-2977029141-1010321603-2543741146-1001: tdameritrade.com/thinkorswim -> C:\Program Files\thinkorswim\npthinkorswim.dll [2018-10-28] (TD Ameritrade -> TD Ameritrade)
FF Plugin HKU\S-1-5-21-2977029141-1010321603-2543741146-1001: tdameritrade.com/tossc -> C:\Program Files\thinkorswim\nptossc.dll [2018-10-28] (TD Ameritrade -> TD Ameritrade)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2021-02-03]
Chrome:
=======
CHR Profile: C:\Users\Tino\AppData\Local\Google\Chrome\User Data\Default [2021-10-13]
CHR DownloadDir: C:\Users\Tino\Downloads
CHR HomePage: Default -> hxxps://start.duckduckgo.com/
CHR Session Restore: Default -> ist aktiviert.
CHR Extension: (Präsentationen) - C:\Users\Tino\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Docs) - C:\Users\Tino\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Google Drive) - C:\Users\Tino\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-25]
CHR Extension: (RescueTime for Chrome and Chrome OS) - C:\Users\Tino\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdakmnplckeopfghnlpocafcepegjeap [2020-06-01]
CHR Extension: (YouTube) - C:\Users\Tino\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-03-28]
CHR Extension: (Adblock Plus - kostenloser Adblocker) - C:\Users\Tino\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-09-07]
CHR Extension: (Tabellen) - C:\Users\Tino\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (Google Docs Offline) - C:\Users\Tino\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-09-30]
CHR Extension: (Shoop Cashback & Gutscheine) - C:\Users\Tino\AppData\Local\Google\Chrome\User Data\Default\Extensions\hacngjmphfcjdfpmfmlngemhddjdncpe [2021-09-07]
CHR Extension: (Google Scholar-Schaltfläche) - C:\Users\Tino\AppData\Local\Google\Chrome\User Data\Default\Extensions\ldipcbpaocekfooobnbcddclnhejkcpn [2020-10-10]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Tino\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30]
CHR Extension: (Citavi Picker) - C:\Users\Tino\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohgndokldibnndfnjnagojmheejlengn [2021-04-27]
CHR Extension: (Google Mail) - C:\Users\Tino\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Profile: C:\Users\Tino\AppData\Local\Google\Chrome\User Data\System Profile [2020-09-09]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [ohgndokldibnndfnjnagojmheejlengn]
Opera:
=======
OPR Profile: C:\Users\Tino\AppData\Roaming\Opera Software\Opera Stable [2021-10-13]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\Tino\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2021-09-27]
OPR Extension: (Amazon Assistant Promotion) - C:\Users\Tino\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2021-09-13]
==================== Dienste (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-08-16] (Adobe Inc. -> Adobe Inc.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [852024 2020-10-10] (Adobe Inc. -> Adobe Inc.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3833088 2021-09-07] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3603200 2021-09-07] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2018-08-23] (Apple Inc. -> Apple Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9250696 2021-10-03] (Microsoft Corporation -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [129808 2021-08-16] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [129808 2021-08-16] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44328 2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [441664 2019-08-22] (Digital Wave Ltd -> Digital Wave Ltd)
R2 Dolby DAX2 API Service; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [189464 2020-06-02] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.)
R2 DragonLoggerService; C:\Program Files (x86)\Common Files\Nuance\loggerservice.exe [166280 2016-08-23] (Nuance Communication, Inc. -> Nuance Communications, Inc.)
S3 ESLoadService; C:\Program Files (x86)\EaseUS\EaseUS MobiMover\bin\ESLoadService.exe [47840 2018-10-15] (CHENGDU YIWO Tech Development Co., Ltd. -> TODO: <Company name>) [Datei ist nicht signiert]
R2 FoxitReaderUpdateService; C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe [2357880 2021-07-21] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [1728072 2020-10-01] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6821960 2020-10-01] (GOG Sp. z o.o. -> GOG.com)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [347512 2018-12-06] (HP Inc. -> HP Inc.)
R2 KinoniSvc; C:\Program Files (x86)\Kinoni\EpocCam_and_Barcode_drivers\KinoniSvc.exe [525312 2013-02-26] () [Datei ist nicht signiert]
R2 Lenovo Instant On; C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\EasyResume.exe [2351320 2021-07-11] (Lenovo -> Lenovo Group Limited)
S2 LPlatSvc; C:\WINDOWS\System32\LPlatSvc.exe [892288 2019-12-11] (Lenovo -> Lenovo.)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6933272 2020-06-05] (Malwarebytes Inc -> Malwarebytes)
R2 NitroDriverReadSpool11; C:\Program Files\Nitro\Pro 11\NitroPDFDriverService11x64.exe [327368 2017-03-09] (Nitro Software, Inc. -> Nitro Software, Inc.)
R2 NitroUpdateService; C:\Program Files\Nitro\Pro 11\Nitro_UpdateService.exe [419016 2017-03-09] (Nitro Software, Inc. -> )
R2 nlsX86cc; C:\WINDOWS\SysWOW64\NLSSRV32.EXE [71880 2017-03-09] (Nitro Software, Inc. -> Nalpeiron Ltd.)
S3 OfficeSvcManagerAddons; C:\WINDOWS\system32\dllhost.exe /Processid:{2CA2E202-932F-4BA2-8771-195BB86398F5} [21312 2020-12-22] (Microsoft Windows -> Microsoft Corporation)
S3 ProtonVPN Service; C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPNService.exe [98624 2020-07-22] (ProtonVPN AG -> )
S3 ProtonVPN Update Service; C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.UpdateService.exe [61760 2020-07-22] (ProtonVPN AG -> )
R2 Seagate Dashboard Services; C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\Seagate.Dashboard.DASWindowsService.exe [16216 2016-06-28] (Seagate Technology LLC -> Seagate Technology LLC)
R2 Seagate MobileBackup Service; C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\MobileService.exe [143656 2016-06-28] (Seagate Technology LLC -> Seagate Technology LLC)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5394872 2021-09-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 ss_conn_launcher_service; C:\WINDOWS\System32\Samsung\EasySetup\ss_conn_launcher.exe [182128 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10884848 2017-05-23] (TeamViewer GmbH -> TeamViewer GmbH)
R2 TunnelBearMaintenance; C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.exe [139896 2019-06-19] (TunnelBear -> TunnelBear)
R2 valWBFPolicyService; C:\WINDOWS\system32\valWBFPolicyService.exe [77792 2018-04-25] (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated)
R2 valWbioSyncSvc; C:\WINDOWS\system32\valWbioSyncSvc.exe [48608 2018-04-25] (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\NisSrv.exe [2855512 2021-10-03] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MsMpEng.exe [128392 2021-10-03] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 ZeroTierOneService; C:\ProgramData\ZeroTier\One\zerotier-one_x64.exe [1879160 2020-12-18] (ZeroTier, Inc. -> )
===================== Treiber (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Datei ist nicht signiert]
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159864 2021-06-29] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 KINONI_Wave; C:\WINDOWS\system32\drivers\kinonivad.sys [32360 2016-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-06-05] (Microsoft Windows Early Launch Anti-Malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-06-05] (Malwarebytes Inc -> Malwarebytes)
R0 PMDRVS; C:\WINDOWS\System32\drivers\pmdrvs.sys [38160 2019-12-11] (Lenovo -> Lenovo.)
S3 ProtonVPNSplitTunnel; C:\Program Files (x86)\Proton Technologies\ProtonVPN\x64\Win10\ProtonVPN.SplitTunnelDriver.sys [31584 2020-06-03] (Microsoft Windows Hardware Compatibility Publisher -> Proton Technologies AG)
R1 SMIDriverGen; C:\WINDOWS\system32\DRIVERS\smi.sys [31440 2018-04-25] (Synaptics Inc. -> Synaptics Incorporated)
S3 SPUVCbv; C:\WINDOWS\System32\Drivers\SPUVCbv64.sys [735744 2016-03-11] (Sunplus Innovation Technology Inc. -> Sunplus)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [43376 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 tap-tb-0901; C:\WINDOWS\System32\drivers\tap-tb-0901.sys [38656 2019-06-19] (TunnelBear, Inc. -> The OpenVPN Project)
S3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [44896 2018-07-24] (TEFINCOM S.A. -> The OpenVPN Project)
R3 tapprotonvpn; C:\WINDOWS\System32\drivers\tapprotonvpn.sys [49008 2020-04-06] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S3 vpnva; C:\WINDOWS\System32\drivers\vpnva64-6.sys [52592 2016-02-29] (Cisco Systems, Inc. -> Cisco Systems, Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48520 2021-10-03] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [434424 2021-10-03] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86264 2021-10-03] (Microsoft Windows -> Microsoft Corporation)
S3 WirelessKeyboardFilter; C:\WINDOWS\System32\drivers\WirelessKeyboardFilter.sys [49336 2018-03-11] (Microsoft Corporation -> Microsoft Corporation)
R3 zttap300; C:\WINDOWS\System32\drivers\zttap300.sys [31744 2020-11-24] (Microsoft Windows Hardware Compatibility Publisher -> ZeroTier Networks LLC)
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat (erstellte) (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2021-10-13 18:23 - 2021-10-13 18:23 - 002310656 _____ (Farbar) C:\Users\Tino\Downloads\FRST64 (2).exe
2021-10-13 16:41 - 2021-10-13 16:41 - 002310656 _____ (Farbar) C:\Users\Tino\Downloads\FRST64 (1).exe
2021-10-13 16:24 - 2021-10-13 16:24 - 000000000 ____D C:\Users\Tino\AppData\Local\AC001
2021-10-13 16:23 - 2021-10-13 16:24 - 032560504 _____ (Audacity Team) C:\Users\Tino\Downloads\audacity-win3.0.0.exe
2021-10-13 14:49 - 2021-10-13 14:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\lenovo
2021-10-13 14:49 - 2021-10-13 14:49 - 000000000 ____D C:\Program Files (x86)\Lenovo
2021-10-13 14:28 - 2021-10-13 14:34 - 000000289 ____C C:\Users\Tino\Documents\Lumas Rabattcode.txt
2021-10-13 12:52 - 2021-10-13 12:52 - 000000000 ___HD C:\$WinREAgent
2021-10-12 09:41 - 2021-10-12 09:41 - 000070542 _____ C:\Users\Tino\Downloads\ssl-erklärung_1_0 (2).pdf
2021-10-12 09:41 - 2021-10-12 09:41 - 000070542 _____ C:\Users\Tino\Downloads\ssl-erklärung_1_0 (1).pdf
2021-10-12 09:37 - 2021-10-12 09:42 - 000077696 _____ C:\Users\Tino\Downloads\ssl-erklärung_1_0.pdf
2021-10-05 17:49 - 2021-10-06 15:56 - 000000000 ___DC C:\Users\Tino\Documents\*****
2021-10-05 17:47 - 2021-10-05 17:47 - 000131636 ____C C:\Users\Tino\Documents\*****
2021-10-04 16:21 - 2021-10-04 16:21 - 000183239 _____ C:\Users\Tino\Downloads\*****
2021-10-03 19:05 - 2021-10-03 19:06 - 001729024 ____C C:\Users\Tino\Documents\*****
2021-10-03 17:19 - 2021-10-03 19:00 - 001728512 ____C C:\Users\Tino\Documents\*****
2021-10-02 13:47 - 2021-10-02 13:47 - 000032794 _____ C:\Users\Tino\Downloads\Dein REWE eBon vom 01.10.2021.pdf
2021-10-02 13:18 - 2021-10-02 13:18 - 000099919 _____ C:\Users\Tino\Downloads\12166745.pdf
2021-09-30 07:58 - 2021-09-30 07:58 - 000011569 _____ C:\Users\Tino\Downloads\anforderungsliste.zip
2021-09-29 23:02 - 2021-09-29 23:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2021-09-28 21:24 - 2021-09-28 21:24 - 000028577 _____ C:\Users\Tino\Downloads\****
2021-09-28 09:18 - 2021-09-30 15:03 - 000000000 ____D C:\Users\Tino\AppData\Roaming\gitmind-electron
2021-09-28 09:17 - 2021-09-28 09:17 - 001886192 _____ (Apowersoft) C:\Users\Tino\Downloads\gitmind-setup.exe
2021-09-28 09:17 - 2021-09-28 09:17 - 000002234 _____ C:\Users\Public\Desktop\GitMind.lnk
2021-09-28 09:17 - 2021-09-28 09:17 - 000000000 ____D C:\Users\Tino\AppData\Local\gitmind-electron-updater
2021-09-28 09:01 - 2021-09-29 22:58 - 000000000 ____D C:\Users\Tino\AppData\Roaming\Archi4
2021-09-28 09:01 - 2021-09-28 09:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Archi4
2021-09-28 09:01 - 2021-09-28 09:01 - 000000000 ____D C:\Program Files\Archi4
2021-09-27 20:55 - 2021-09-27 20:55 - 001360684 ____C C:\Users\Tino\Desktop\Cooler Jingle Idea DAK Hotline 27Sept21.wav
2021-09-27 16:40 - 2021-09-27 16:40 - 001357720 _____ C:\Users\Tino\Downloads\Offener Brief D.pdf
2021-09-27 16:40 - 2021-09-27 16:40 - 000159458 _____ C:\Users\Tino\Downloads\iCRM_Projekt D.pdf
2021-09-27 15:51 - 2021-09-27 15:51 - 000001411 _____ C:\Users\Tino\Downloads\xxxxx.CSV
2021-09-27 15:43 - 2021-09-27 15:43 - 000001145 _____ C:\Users\Tino\Downloads\xxxxx.CSV
2021-09-27 09:45 - 2021-09-27 09:45 - 112561399 _____ (Phillip Beauvoir ) C:\Users\Tino\Downloads\Archi-Win64-Setup-4.8.1.exe
2021-09-26 23:17 - 2021-09-27 20:58 - 000021381 _____ C:\Users\Tino\Documents\Gehaltsrechner Werkstudent 21_v2.xlsx
2021-09-26 00:01 - 2021-09-26 00:01 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2021-09-26 00:01 - 2021-09-26 00:01 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2021-09-26 00:01 - 2021-09-26 00:01 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2021-09-26 00:01 - 2021-09-26 00:01 - 000044328 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2021-09-25 13:28 - 2021-09-25 13:28 - 000116034 _____ C:\Users\Tino\Downloads\102538831_20210909_176.pdf
2021-09-25 13:27 - 2021-09-25 13:27 - 000689221 _____ C:\Users\Tino\Downloads\NW_08094600001781.pdf
2021-09-22 22:30 - 2021-10-04 20:32 - 000000000 ___DC C:\Users\Tino\Documents\Desktop Aufräum 22Sept21
2021-09-22 22:28 - 2021-09-22 22:28 - 000000423 ____C C:\Users\Tino\Documents\Mama Corona Maßnahmen Prävention.txt
2021-09-22 22:06 - 2021-09-22 22:06 - 000062706 _____ C:\Users\Tino\Downloads\*****
2021-09-22 09:49 - 2021-10-12 18:24 - 000000000 __RDC C:\Users\Tino\Documents\Bitrix24
2021-09-21 13:28 - 2021-09-21 13:28 - 000001062 _____ C:\Users\Tino\Downloads\BAHN_Fahrplan.ics
2021-09-21 09:07 - 2021-09-21 09:07 - 000000083 ____C C:\Users\Tino\Documents\Bahn ecoupon bis 11Dez21.txt
2021-09-21 08:57 - 2021-09-21 08:57 - 001343290 _____ C:\Users\Tino\Downloads\tarifbestimmungen_nrw.pdf
2021-09-20 18:39 - 2021-09-20 18:39 - 000005910 ____C C:\Users\Tino\Documents\Microphone Test_LavalierAKGIntern.aup
2021-09-20 18:39 - 2021-09-20 18:39 - 000000000 ___DC C:\Users\Tino\Documents\Microphone Test_LavalierAKGIntern_data
2021-09-20 18:13 - 2021-09-20 18:13 - 001717874 ____C C:\Users\Tino\Documents\test.pdf
2021-09-20 18:01 - 2021-09-20 18:01 - 000000000 ___DC C:\Users\Tino\AppData\LocalLow\Foxit
2021-09-20 17:56 - 2021-09-20 17:56 - 000000000 ____D C:\Users\Public\Foxit Software
2021-09-20 17:55 - 2021-09-20 18:04 - 000000000 ____D C:\Users\Tino\AppData\Roaming\Foxit Software
2021-09-20 17:55 - 2021-09-20 17:55 - 000000000 ____D C:\Users\Tino\AppData\Roaming\Foxit AgentInformation
2021-09-20 17:55 - 2021-09-20 17:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit PDF Reader
2021-09-20 17:55 - 2021-09-20 17:55 - 000000000 ____D C:\ProgramData\Foxit Software
2021-09-20 17:55 - 2021-09-20 17:55 - 000000000 ____D C:\ProgramData\Foxit ContentPlatform
2021-09-20 17:54 - 2021-09-20 17:54 - 000000000 ____D C:\Program Files (x86)\Foxit Software
2021-09-20 17:45 - 2021-09-20 17:45 - 000000109 _____ C:\Users\Public\Documents\pre_fileassoc.tmp
2021-09-20 17:26 - 2021-09-20 17:44 - 190417320 _____ (Foxit Software Inc. ) C:\Users\Tino\Downloads\FoxitPDFReader1101_L10N_Setup_Prom.exe
2021-09-20 17:21 - 2021-09-20 18:17 - 000000000 ___DC C:\Users\Tino\Documents\Congstar Rechnung Mama für Logitel
2021-09-20 09:29 - 2021-09-20 09:39 - 000000000 ____D C:\Program Files (x86)\Bitrix24
2021-09-20 09:29 - 2021-09-20 09:29 - 000001080 _____ C:\Users\Public\Desktop\Bitrix24.lnk
2021-09-20 09:29 - 2021-09-20 09:29 - 000000000 ___DC C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bitrix24
2021-09-20 09:29 - 2021-09-20 09:29 - 000000000 ____D C:\Users\Tino\AppData\Roaming\Bitrix
2021-09-20 09:29 - 2021-09-20 09:29 - 000000000 ____D C:\Users\Tino\AppData\Local\Bitrix24
2021-09-20 09:29 - 2021-09-20 09:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitrix24
2021-09-20 09:29 - 2021-09-20 09:29 - 000000000 ____D C:\ProgramData\Bitrix
2021-09-20 09:05 - 2021-09-20 09:09 - 191920504 _____ (Bitrix, Inc) C:\Users\Tino\Downloads\bitrix24_desktop.exe
2021-09-19 13:04 - 2021-09-19 13:04 - 001217366 _____ C:\Users\Tino\Downloads\Aktien.studieren Guide.pdf
2021-09-18 12:51 - 2021-09-19 16:06 - 000058251 _____ C:\Users\Tino\Documents\****
2021-09-17 23:27 - 2021-09-18 00:35 - 000054915 _____ C:\Users\Tino\Documents\****
2021-09-17 23:25 - 2021-09-17 23:25 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2021-09-17 23:25 - 2021-09-17 23:25 - 000170496 _____ C:\WINDOWS\system32\DeviceUpdateCenterCsp.dll
2021-09-17 23:24 - 2021-09-17 23:24 - 002295296 _____ (Digimarc) C:\WINDOWS\system32\DMRCDecoder.dll
2021-09-17 23:24 - 2021-09-17 23:24 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-09-17 23:24 - 2021-09-17 23:24 - 002111488 _____ (Digimarc) C:\WINDOWS\SysWOW64\DMRCDecoder.dll
2021-09-17 23:24 - 2021-09-17 23:24 - 001823304 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-09-17 23:24 - 2021-09-17 23:24 - 001393480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-09-17 23:24 - 2021-09-17 23:24 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-09-17 23:24 - 2021-09-17 23:24 - 001313608 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-09-17 23:24 - 2021-09-17 23:24 - 001164288 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-09-17 23:24 - 2021-09-17 23:24 - 000672768 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-09-17 23:24 - 2021-09-17 23:24 - 000570368 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2021-09-17 23:24 - 2021-09-17 23:24 - 000566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-09-17 23:24 - 2021-09-17 23:24 - 000426496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-09-17 23:24 - 2021-09-17 23:24 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-09-17 23:24 - 2021-09-17 23:24 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-09-17 23:24 - 2021-09-17 23:24 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-09-17 23:24 - 2021-09-17 23:24 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshom.ocx
2021-09-17 23:24 - 2021-09-17 23:24 - 000122880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshom.ocx
2021-09-17 23:24 - 2021-09-17 23:24 - 000098816 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-09-17 23:24 - 2021-09-17 23:24 - 000011355 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-09-16 23:36 - 2021-09-16 23:36 - 000125398 _____ C:\Users\Tino\Documents\Haushaltsbuch_Mama_30Jul21_v6.xlsx
2021-09-16 14:15 - 2021-09-16 18:02 - 000125413 _____ C:\Users\Tino\Documents\Haushaltsbuch_Mama_30Jul21_v5.xlsx
2021-09-15 16:13 - 2021-09-15 16:13 - 000000064 ____C C:\Users\Tino\Documents\Medikamente kaufen September 21.txt
2021-09-15 16:13 - 2021-09-15 16:13 - 000000032 ____C C:\Users\Tino\Documents\Auto das gegen mülleimer gefahren ist.txt
2021-09-15 15:06 - 2021-09-15 15:06 - 000001427 ____C C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2021-09-14 14:15 - 2021-09-14 14:15 - 012842099 _____ C:\Users\Tino\Downloads\0_Info_APM21.pdf
2021-09-13 10:48 - 2021-10-06 08:21 - 000004220 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1631522888
2021-09-13 10:48 - 2021-10-06 08:21 - 000001406 ____C C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Opera-Browser.lnk
2021-09-13 10:48 - 2021-10-05 15:01 - 000004450 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1631522903
2021-09-13 10:48 - 2021-09-13 10:48 - 000000000 ____D C:\Users\Tino\AppData\Local\Opera Software
2021-09-13 10:46 - 2021-09-13 10:46 - 000000000 ____D C:\Users\Tino\AppData\Roaming\Opera Software
2021-09-13 10:45 - 2021-09-13 10:45 - 002602664 _____ (Opera Software) C:\Users\Tino\Downloads\OperaSetup.exe
2021-09-13 10:41 - 2021-09-13 10:41 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
==================== Ein Monat (geänderte) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2021-10-13 18:28 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-10-13 18:27 - 2018-01-12 13:12 - 000040078 _____ C:\Users\Tino\Downloads\FRST.txt
2021-10-13 18:27 - 2018-01-12 13:12 - 000000000 ____D C:\FRST
2021-10-13 18:25 - 2017-03-10 19:11 - 000000000 ____D C:\Program Files (x86)\Audacity
2021-10-13 18:23 - 2020-12-22 15:54 - 000003220 _____ C:\WINDOWS\system32\Tasks\Optimize Push Notification Data File-S-1-5-21-2977029141-1010321603-2543741146-1001
2021-10-13 18:21 - 2020-12-22 15:50 - 002333496 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-10-13 18:21 - 2020-12-22 15:14 - 000478006 _____ C:\WINDOWS\system32\perfh011.dat
2021-10-13 18:21 - 2020-12-22 15:14 - 000132884 _____ C:\WINDOWS\system32\perfc011.dat
2021-10-13 18:21 - 2019-12-07 16:51 - 000744968 _____ C:\WINDOWS\system32\perfh007.dat
2021-10-13 18:21 - 2019-12-07 16:51 - 000150354 _____ C:\WINDOWS\system32\perfc007.dat
2021-10-13 18:21 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-10-13 18:18 - 2016-03-28 22:33 - 000000000 ____D C:\Program Files (x86)\Google
2021-10-13 18:16 - 2019-10-03 18:06 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2021-10-13 18:15 - 2018-12-04 22:10 - 000000000 ____D C:\ProgramData\Lenovo
2021-10-13 18:14 - 2016-03-28 02:24 - 000000000 __SHD C:\Users\Tino\IntelGraphicsProfiles
2021-10-13 18:13 - 2020-12-22 15:54 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-10-13 18:13 - 2020-12-22 15:39 - 000008192 ___SH C:\DumpStack.log.tmp
2021-10-13 18:13 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-10-13 18:13 - 2019-11-20 15:59 - 000000000 ____D C:\WINDOWS\TempInst
2021-10-13 18:13 - 2019-09-25 07:42 - 000000000 ____D C:\Program Files (x86)\TunnelBear
2021-10-13 18:13 - 2017-05-27 18:11 - 000000000 ____D C:\ProgramData\Synaptics
2021-10-13 18:13 - 2016-03-28 02:22 - 000000000 ___DC C:\Intel
2021-10-13 18:12 - 2018-04-15 14:19 - 000044062 _____ C:\Users\Tino\Downloads\Keepass Datenbank_15Apr18.kdbx
2021-10-13 18:12 - 2016-05-20 17:18 - 000000000 ___DC C:\Users\Tino\AppData\Roaming\KeePass
2021-10-13 16:49 - 2021-09-10 10:53 - 000000000 ___DC C:\Users\Tino\Documents\*****
2021-10-13 16:24 - 2017-03-10 19:12 - 000000000 ___DC C:\Users\Tino\AppData\Roaming\Audacity
2021-10-13 16:18 - 2020-05-16 14:01 - 000000000 ___DC C:\Users\Tino\Documents\Zoom
2021-10-13 16:17 - 2020-12-22 15:39 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-10-13 15:24 - 2017-10-04 00:28 - 000000000 ___DC C:\Users\Tino\AppData\Local\DF6777BF-E7E1-4488-8623-6223146A9D8A.aplzod
2021-10-13 14:49 - 2020-12-22 15:54 - 000000000 ____D C:\WINDOWS\system32\Tasks\TVT
2021-10-13 14:48 - 2019-09-25 14:50 - 000003226 _____ C:\WINDOWS\SysWOW64\InstallUtil.InstallLog
2021-10-13 09:49 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-10-13 09:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-10-13 08:21 - 2020-08-12 18:13 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-10-13 08:21 - 2020-08-12 18:13 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-10-13 08:21 - 2016-03-28 22:34 - 000002293 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-10-12 13:09 - 2020-12-22 15:54 - 000003522 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
2021-10-12 07:57 - 2016-03-29 15:03 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-10-11 21:00 - 2021-09-03 17:08 - 000021830 _____ C:\Users\Tino\Documents\Internet Strom Mobilfunk 2021.xlsx
2021-10-10 23:44 - 2021-01-11 21:57 - 000003606 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6d868dc8bc866
2021-10-10 23:44 - 2020-12-22 15:54 - 000003700 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-10-08 08:52 - 2016-09-26 00:17 - 000000000 ___DC C:\Users\Tino\AppData\Local\ElevatedDiagnostics
2021-10-08 08:29 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-10-07 17:45 - 2020-12-22 15:54 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2977029141-1010321603-2543741146-1001
2021-10-07 17:45 - 2020-12-22 15:41 - 000002396 ____C C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-10-07 08:57 - 2021-08-15 19:30 - 000013860 _____ C:\Users\Tino\Documents\*****
2021-10-06 11:44 - 2016-07-28 13:49 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2021-10-06 10:33 - 2021-06-02 14:28 - 000115021 _____ C:\Users\Tino\Downloads\*****
2021-10-05 19:55 - 2017-12-13 21:07 - 000000000 ___DC C:\Users\Tino\AppData\Local\Packages
2021-10-03 17:14 - 2019-01-18 16:31 - 000001955 _____ C:\Users\Tino\AppData\Roaming\SAS7_000.DAT
2021-10-03 13:49 - 2018-03-31 23:32 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-10-02 23:08 - 2016-03-31 18:55 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-10-01 08:16 - 2021-02-21 20:53 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-09-30 23:13 - 2020-12-22 15:54 - 000003632 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-09-30 23:13 - 2020-12-22 15:54 - 000003508 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-09-29 23:03 - 2016-04-07 13:41 - 000000000 ____D C:\Program Files (x86)\Dropbox
2021-09-29 08:11 - 2016-02-13 19:34 - 000000000 __RHD C:\Users\Public\AccountPictures
2021-09-28 09:17 - 2019-03-15 11:56 - 000000000 ___DC C:\Users\Tino\AppData\Roaming\Apowersoft
2021-09-28 09:17 - 2017-07-19 11:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apowersoft
2021-09-28 09:17 - 2017-07-19 11:45 - 000000000 ____D C:\Program Files (x86)\Apowersoft
2021-09-28 08:57 - 2021-03-24 20:06 - 000000000 ___DC C:\Users\Tino\Documents\Bewerbung Johanniter
2021-09-27 08:32 - 2018-07-08 18:54 - 000000000 ___DC C:\Users\Tino\AppData\Local\D3DSCache
2021-09-26 23:17 - 2020-12-22 15:41 - 000000000 ____D C:\Users\Tino
2021-09-23 07:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2021-09-23 07:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Macromed
2021-09-22 22:35 - 2020-12-22 15:39 - 000707328 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-09-22 22:34 - 2019-12-07 16:54 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-09-22 22:34 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2021-09-16 08:37 - 2016-03-29 03:49 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-09-16 08:34 - 2020-12-22 15:54 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-09-16 08:29 - 2016-03-29 03:49 - 135637312 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-09-15 16:12 - 2016-04-27 16:48 - 000000000 ___DC C:\Users\Tino\Documents\Gesundheit
2021-09-15 16:11 - 2021-08-06 20:55 - 000027692 _____ C:\Users\Tino\Documents\****
2021-09-13 11:02 - 2021-02-03 19:32 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-09-13 11:02 - 2017-07-03 20:30 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-09-13 10:50 - 2017-07-03 20:30 - 000000000 ___DC C:\Users\Tino\AppData\LocalLow\Mozilla
2021-09-13 10:42 - 2020-12-07 23:08 - 000000000 ____D C:\ProgramData\Mozilla
2021-09-13 10:41 - 2017-07-03 20:30 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========
2021-04-28 12:31 - 2021-04-28 12:06 - 001053600 _____ (ESET) C:\Users\Tino\esetuninstaller.exe
2019-01-18 16:31 - 2021-10-03 17:14 - 000001955 _____ () C:\Users\Tino\AppData\Roaming\SAS7_000.DAT
2018-09-29 15:38 - 2018-09-29 15:38 - 000000000 ____C () C:\Users\Tino\AppData\Local\oobelibMkey.log
2021-03-05 23:23 - 2021-03-05 23:23 - 000005743 _____ () C:\Users\Tino\AppData\Local\recently-used.xbel
==================== SigCheck ============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
==================== Ende von FRST.txt ========================
Geändert von M-K-D-B (18.10.2021 um 17:38 Uhr) |
|
13.10.2021, 17:48
| #6 |
| | Windows 10: audacity.de Installer NOCH in der Ausführung. Soll ich ihn schließen? PC Neustarten? Addition.txt Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 12-10-2021
durchgeführt von Tino (13-10-2021 18:32:00)
Gestartet von C:\Users\Tino\Downloads
Microsoft Windows 10 Education Version 20H2 19042.1237 (X64) (2020-12-22 13:54:32)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
Administrator (S-1-5-21-2977029141-1010321603-2543741146-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2977029141-1010321603-2543741146-503 - Limited - Disabled)
Gast (S-1-5-21-2977029141-1010321603-2543741146-501 - Limited - Disabled)
Tino (S-1-5-21-2977029141-1010321603-2543741146-1001 - Administrator - Enabled) => C:\Users\Tino
WDAGUtilityAccount (S-1-5-21-2977029141-1010321603-2543741146-504 - Limited - Disabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
4K Video Downloader 4.3 (HKLM-x32\...\{D0CA3944-0FD5-40FF-97A1-FEDFFB5EE31F}) (Version: 4.3.2.2215 - Open Media LLC)
7-Zip 16.02 (x64) (HKLM\...\7-Zip) (Version: 16.02 - Igor Pavlov)
Ableton Live 10 Lite (HKLM\...\{3A42CB85-CCF2-470C-9086-C7D72B32B331}) (Version: 10.0.0.0 - Ableton)
Activ8 (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\b25a083cc8c5730f) (Version: 2.1.0.48 - Remedy Distribution Ltd)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 21.007.20095 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 5.3.1.470 - Adobe Inc.)
Adobe Digital Editions 4.5 (HKLM-x32\...\Adobe Digital Editions 4.5) (Version: 4.5.11 - Adobe Systems Incorporated)
Adobe Genuine Service (HKLM-x32\...\AdobeGenuineService) (Version: - Adobe)
Adobe Illustrator 2020 (HKLM-x32\...\ILST_24_3) (Version: 24.3 - Adobe Inc.)
Amazon Kindle (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Amazon Kindle) (Version: 1.20.1.47037 - Amazon)
Amazon Redshift ODBC Driver 64-bit (HKLM\...\{960BF695-03D5-48CF-9DC2-6AC5800C4FBE}) (Version: 1.4.10.1000 - Amazon Web Services, Inc.)
AnyTrans (HKLM-x32\...\AnyTrans) (Version: 5.5.4.0 - iMobie Inc.)
ApowerManager V3.2.3 (HKLM-x32\...\{D02368A2-6D57-4AE0-BECC-9E7DDE20B865}_is1) (Version: 3.2.3 - Apowersoft LIMITED)
ApowerMirror Version 1.4.5.3 (HKLM-x32\...\{a9482532-9c34-478c-80c3-85bdccbb981f}_is1) (Version: 1.4.5.3 - APOWERSOFT LIMITED)
Apple Application Support (32-Bit) (HKLM-x32\...\{308F2F8C-9D33-4B22-8A6C-D9C13DBEF8C6}) (Version: 7.0.2 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{0CB84A7D-9697-4526-A819-60FB050E8F05}) (Version: 7.0.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{77F8C879-88CD-4145-945A-541C35285285}) (Version: 12.0.0.1039 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.)
Archi 4.8.1 (HKLM\...\{17490178-4BB9-40A0-A9C4-F82027FF49B8}_is1) (Version: 4.8.1 - Phillip Beauvoir)
Artensoft Photo Collage Maker Pro (HKLM\...\Artensoft Photo Collage Maker Pro_is1) (Version: 2.0 - Artensoft)
AutoHotkey 1.1.32.00 (HKLM\...\AutoHotkey) (Version: 1.1.32.00 - Lexikos)
bf2battlelog (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\bf2battlelog) (Version: 0.8.6 - Spencer Sharkey)
Bitrix24 for Windows (HKLM-x32\...\Bitrix24) (Version: 12.0.26.60 - Bitrix)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
calibre 64bit (HKLM\...\{0F55D3CE-F390-494F-924A-A4204D649DE3}) (Version: 4.16.0 - Kovid Goyal)
Camera Mouse 2018 (HKLM-x32\...\{F5E6727D-0969-4C4A-A669-71F1A3913A03}}_is1) (Version: 1.1 - Boston College)
Chessmaster Grandmaster Edition (HKLM-x32\...\InstallShield_{27614800-84A9-484E-9CCB-43ED2F1205F5}) (Version: 1.02.0000 - Ubisoft)
Cisco AnyConnect Secure Mobility Client (HKLM-x32\...\Cisco AnyConnect Secure Mobility Client) (Version: 3.1.14018 - Cisco Systems, Inc.)
Cisco AnyConnect Secure Mobility Client (HKLM-x32\...\{C706092D-491F-4D29-BB49-FF7B47CD12F2}) (Version: 3.1.14018 - Cisco Systems, Inc.) Hidden
Citavi 6 (HKLM-x32\...\{6A331045-8FF4-4BC9-9C56-E593ACAE28C2}) (Version: 6.5.0.0 - Swiss Academic Software)
ClipGrab 3.8.14 (HKLM-x32\...\{8A1033B0-EF33-4FB5-97A1-C47A7DCDD7E6}_is1) (Version: - The ClipGrab Project)
CopyTrans Control Center deinstallieren (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\CopyTrans Suite) (Version: 4.008 - WindSolutions)
Cossacks - Back To War (HKLM-x32\...\1207662833_is1) (Version: 2.1.0.18 - GOG.com)
CPUID HWMonitor 1.28 (HKLM\...\CPUID HWMonitor_is1) (Version: - )
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
DB Browser for SQLite (HKLM-x32\...\DB Browser for SQLite) (Version: 3.10.1 - DB Browser for SQLite Team)
Dell Display Manager (HKLM-x32\...\{AC50C05D-9D57-40F5-B2EF-AC402F14312B}_is1) (Version: - EnTech Taiwan)
Dolby Audio X2 Windows API SDK (HKLM\...\{FA0735B6-9E18-437A-A1CD-9152650FC52B}) (Version: 0.8.8.90 - Dolby Laboratories, Inc.)
Dolby Audio X2 Windows APP (HKLM\...\{D0D32569-4680-490A-905C-5117CEAAB3EF}) (Version: 0.8.8.76 - Dolby Laboratories, Inc.)
Dragon 15 (HKLM-x32\...\{768AC460-237E-45B6-99B8-1DE6D0F391E8}) (Version: 15.00.000 - Nuance Communications Inc.)
Dropbox (HKLM-x32\...\Dropbox) (Version: 132.4.3800 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.503.1 - Dropbox, Inc.) Hidden
EaseUS MobiMover 4.5 (HKLM-x32\...\EaseUS MobiMover_is1) (Version: - EaseUS)
EVEREST Home Edition v2.20 (HKLM-x32\...\EVEREST Home Edition_is1) (Version: 2.20 - Lavalys Inc)
Evernote v. 6.1.2 (HKLM-x32\...\{A46ABD1E-2837-11E6-9E7C-005056951CAD}) (Version: 6.1.2.2292 - Evernote Corp.)
EyeDefender 1.08 (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\EyeDefender) (Version: - )
f.lux (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Flux) (Version: - f.lux Software LLC)
FootSwitch 7.0.3 (HKLM-x32\...\{7BD5E046-6535-4983-AD88-D6C9A9FA8081}) (Version: 2.0.5 - PCsensor)
Fotogalerie (HKLM-x32\...\{41BF4A3B-D60A-4E92-883F-C88C8C157261}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Foxit PDF Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 11.0.1.49938 - Foxit Software Inc.)
Free YouTube To MP3 Converter (HKLM-x32\...\Free YouTube To MP3 Converter_is1) (Version: 4.2.18.820 - Digital Wave Ltd)
G*Power 3.1.9.7 (HKLM-x32\...\{FA3666A9-FF30-4777-B906-305B1EF0486E}) (Version: 3.1.97 - Franz Faul, Uni Kiel, Germany)
GameSessions Data Delivery x86 (HKLM-x32\...\{9AA2C827-8AF8-40C5-B500-5A6DB3233D71}) (Version: 1.28.488.0 - Tangentix Ltd)
GameSessions Runtime x86 (HKLM-x32\...\{79DD8AE4-FAA0-44DB-A42F-F09252B5B99A}) (Version: 1.28.488.0 - Tangentix Ltd)
GCFScape 1.8.6 (HKLM\...\GCFScape_is1) (Version: - Ryan Gregg)
GIMP 2.10.22 (HKLM\...\GIMP-2_is1) (Version: 2.10.22 - The GIMP Team)
GitMind 1.0.5 (HKLM-x32\...\a0e10d84-6512-552f-a0ec-5dd2e61ffe64) (Version: 1.0.5 - Apowersoft)
GNU Privacy Guard (HKLM-x32\...\GnuPG) (Version: 2.2.7 - The GnuPG Project)
GOG GALAXY (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 94.0.4606.81 - Google LLC)
GoTo Opener (HKLM-x32\...\{C0F33C38-345C-4C02-B161-11389350C2A5}) (Version: 1.0.533 - LogMeIn, Inc.)
GoToMeeting 10.17.0.19796 (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\GoToMeeting) (Version: 10.17.0.19796 - LogMeIn, Inc.)
Gpg4win (3.1.1) (HKLM-x32\...\Gpg4win) (Version: 3.1.1 - The Gpg4win Project)
Grammarly for Microsoft Office Suite (HKLM\...\{DE46CC28-5477-4CFB-9AE2-8C7C111E3EE7}) (Version: 6.8.261 - Grammarly) Hidden
Grammarly for Microsoft Office Suite (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\{ee962c45-b827-4262-a720-3a939910ce37}) (Version: 6.8.261 - Grammarly)
gretl version 2016d (x86_64) (HKLM\...\gretl_is1) (Version: 2016d - The gretl team)
Heroes of Might and Magic 3 Complete (HKLM-x32\...\1207658787_is1) (Version: 4.0 - GOG.com)
Heroes of Might and Magic III: Horn of the Abyss + HD mod (HKLM-x32\...\HotA + HD_is1) (Version: 1.6.1 - )
HoMM III Compatibility Database (HKLM\...\{62a24b39-0106-4990-90ea-3a09e9dda7a6}.sdb) (Version: - )
HP Deskjet 3520 series - Grundlegende Software für das Gerät (HKLM\...\{15B2F0E3-3FAC-4495-B0FD-398EECFA4100}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Deskjet 3520 series Hilfe (HKLM-x32\...\{6B953497-169C-4929-9AA9-A9F510347468}) (Version: 27.0.0 - Hewlett Packard)
HP Deskjet 3520 series Setup Guide (HKLM-x32\...\{AEEDCEB7-00B8-4BE1-B492-AB04803D5F1E}) (Version: 27.0.0 - Hewlett Packard)
HP Support Solutions Framework (HKLM-x32\...\{3A1CB1B8-8646-41A0-B496-35DC48916904}) (Version: 12.10.49.21 - HP)
IBM SPSS Statistics 24 (HKLM\...\{4762AE15-E5A3-43BF-8822-1CFC70FB147A}) (Version: 24.0.0.0 - IBM Corp)
iCloud (HKLM\...\{29C6B346-C29C-40CE-89EB-DF7C149E0EB9}) (Version: 7.7.0.27 - Apple Inc.)
iMazing 2.6.4.0 (HKLM\...\iMazing_is1) (Version: 2.6.4.0 - DigiDNA)
Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{F70BCE36-25F2-4475-A918-6209B3D85BF3}) (Version: 15.0.179 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 2112.15.0.2221 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.62.321.1 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{c3964069-17c1-45dd-85a5-949576ceeaa3}) (Version: 1.62.321.1 - Intel Corporation) Hidden
Intel PROSet/Wireless Software (HKLM-x32\...\{ebb135fb-d587-4f7a-8c91-eca79031d792}) (Version: 21.30.2 - Intel Corporation)
iTunes (HKLM\...\{9E84991B-6078-4311-A714-0A1360C3706C}) (Version: 12.9.0.167 - Apple Inc.)
Java 8 Update 171 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180171F0}) (Version: 8.0.1710.11 - Oracle Corporation)
Java SE Development Kit 8 Update 111 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180111}) (Version: 8.0.1110.14 - Oracle Corporation)
Kalo24 - der Freeware-Kaloreinexperte 1.0.0.0 (HKLM-x32\...\Kalo24 - der Freeware-Kaloreinexperte) (Version: 1.0.0.0 - Ralph Borchert)
KeePass Password Safe 2.44 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version: 2.44 - Dominik Reichl)
KinoniDrivers 2.8.1 (HKLM-x32\...\KinoniDrivers) (Version: 2.8.1 - Kinoni)
Lenovo Anzeige am Bildschirm (HKLM\...\OnScreenDisplay) (Version: 8.78.00 - Lenovo)
Lenovo Power Management Driver (HKLM\...\Power Management Driver) (Version: 1.67.12.07 - Lenovo) Hidden
Lenovo Service Bridge (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\dda9ca0b023f4c56) (Version: 1.6.6.0 - Lenovo)
Lenovo System Update (HKLM-x32\...\TVSU_is1) (Version: 5.07.0131 - Lenovo)
LibreOffice 6.3.6.2 (HKLM\...\{6664E413-D143-48B3-823F-50084561A0B6}) (Version: 6.3.6.2 - The Document Foundation)
LispWorks 6.1 Personal (HKLM-x32\...\{844E2E8E-ED3D-4054-99C7-26ED070BDEFB}) (Version: 6.1.1 - LispWorks Ltd)
LRZ Sync+Share (HKLM-x32\...\LRZ_Sync_Share) (Version: 15.1.100.0 - Leibniz-Rechenzentrum)
Macabacus 2016 (HKLM-x32\...\{F577D9CC-6C1F-432B-9B76-2B8206D25221}) (Version: 8.9.6 - Macabacus, LLC)
Malwarebytes version 4.1.0.56 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.0.56 - Malwarebytes)
Microsoft 365 Apps for Enterprise - de-de (HKLM\...\O365ProPlusRetail - de-de) (Version: 16.0.14430.20270 - Microsoft Corporation)
Microsoft ASP.NET MVC 2 (HKLM-x32\...\{DD8FF2F3-0D97-4CF3-AF78-FA0E1B242244}) (Version: 2.0.60926.0 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 94.0.992.47 - Microsoft Corporation)
Microsoft Edge WebView2-Laufzeit (HKLM-x32\...\Microsoft EdgeWebView) (Version: 94.0.992.31 - Microsoft Corporation)
Microsoft Keyboard Layout Creator 1.4 (HKLM-x32\...\{99E66BC9-E4B6-485F-ABFC-31EFCE36DFDF}) (Version: 1.4.6000 - Microsoft Corp.)
Microsoft ODBC Driver 17 for SQL Server (HKLM\...\{E36FFC78-D25E-4962-872B-9CE0E50E62CD}) (Version: 17.5.1.1 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\OneDriveSetup.exe) (Version: 21.180.0905.0007 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Teams) (Version: 1.4.00.2879 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{29B15818-E79F-4AB0-8938-9410C807AD76}) (Version: 2.84.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40649 (HKLM-x32\...\{5d0723d3-cff7-4e07-8d0b-ada737deb5e6}) (Version: 12.0.40649.5 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.23.27820 (HKLM-x32\...\{852adda4-4c78-4a38-b583-c0b360a329d6}) (Version: 14.23.27820.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.23.27820 (HKLM-x32\...\{45231ab4-69fd-486a-859d-7a59fcd11013}) (Version: 14.23.27820.0 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{70C91B91-61E8-4D06-86D6-A9DCC291983A}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 85.0 (x64 de) (HKLM\...\Mozilla Firefox 85.0 (x64 de)) (Version: 85.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 54.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 85.0.0.7688 - Mozilla)
Mozilla Thunderbird 60.9.1 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 60.9.1 (x86 de)) (Version: 60.9.1 - Mozilla)
Mplus Version 8.4 Demo (64-bit) (HKLM\...\{9654A20E-7892-4EB5-87C1-58BEBBB981F8}) (Version: 8.4 - Muthen & Muthen)
Nikon Message Center 2 (HKLM-x32\...\{B014EE44-9197-4513-9613-71E6EB1B514E}) (Version: 2.3.0 - Nikon Corporation)
Nikon Transfer 2 (HKLM-x32\...\{4D5EE11A-0D0A-4214-ABAC-72419F7BE24D}) (Version: 2.13.2 - Nikon Corporation)
Nitro Pro (HKLM\...\{0F088B7C-E593-438F-AABB-1B393864EE78}) (Version: 11.0.3.173 - Nitro) Hidden
Nitro Pro (HKLM-x32\...\{15459ba7-7bcf-4b1f-8631-b6b5b980a8cc}) (Version: 11.0.3.173 - Nitro)
Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 7.9.1 - Notepad++ Team)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.14430.20276 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.14430.20234 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.14430.20276 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0407-0000-0000000FF1CE}) (Version: 16.0.14430.20234 - Microsoft Corporation) Hidden
Opera Stable 79.0.4143.72 (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Opera 79.0.4143.72) (Version: 79.0.4143.72 - Opera Software)
PDF24 Creator 7.9.0 (HKLM-x32\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version: - PDF24.org)
PDF-Viewer (HKLM\...\{A278382D-4F1B-4D47-9885-8523F7261E8D}_is1) (Version: 2.5.322.7 - Tracker Software Products Ltd)
PDF-XChange Editor (HKLM\...\{3BB66258-EB01-4052-9558-D9353DC5AC89}) (Version: 8.0.336.0 - Tracker Software Products (Canada) Ltd.) Hidden
PDF-XChange Editor (HKLM-x32\...\{797baf93-803d-4306-9b2f-9ff5972f040c}) (Version: 8.0.336.0 - Tracker Software Products (Canada) Ltd.)
Picture Control Utility 2 (HKLM\...\{46BEAB85-B86A-4AAB-B085-136ECA032CF4}) (Version: 2.4.2 - Nikon Corporation)
ProtonVPN (HKLM-x32\...\{2E5B3FB1-FDCC-4BC8-AA99-E0EE5343CAF8}) (Version: 1.16.3 - Proton Technologies AG) Hidden
ProtonVPN (HKLM-x32\...\ProtonVPN 1.16.3) (Version: 1.16.3 - Proton Technologies AG)
ProtonVPNTap (HKLM-x32\...\{BCB82CD9-F514-4F93-A6D9-F898494DC927}) (Version: 1.1.0 - Proton Technologies AG)
psqlODBC_x64 (HKLM\...\{3F8971B0-061B-4163-9D3F-EA94151B2FCF}) (Version: 09.06.0504 - PostgreSQL Global Development Group)
Python 3.6.2 (32-bit) (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\{8388fa07-1617-4b8d-8ad8-6a940ad8052c}) (Version: 3.6.2150.0 - Python Software Foundation)
Python 3.6.2 Core Interpreter (32-bit) (HKLM-x32\...\{4542573C-6216-4584-BA90-72BAF7954404}) (Version: 3.6.2150.0 - Python Software Foundation) Hidden
Python 3.6.2 Development Libraries (32-bit) (HKLM-x32\...\{69E3E4A6-2A0F-4A32-9C2D-591EEC107289}) (Version: 3.6.2150.0 - Python Software Foundation) Hidden
Python 3.6.2 Documentation (32-bit) (HKLM-x32\...\{796410A7-1669-4FE4-8332-F684B61269E2}) (Version: 3.6.2150.0 - Python Software Foundation) Hidden
Python 3.6.2 Executables (32-bit) (HKLM-x32\...\{348C0EFF-60B1-4E68-88B8-33D7DF70DFCF}) (Version: 3.6.2150.0 - Python Software Foundation) Hidden
Python 3.6.2 pip Bootstrap (32-bit) (HKLM-x32\...\{6B2D61BA-C42D-4324-B23F-1D7B5A2808EF}) (Version: 3.6.2150.0 - Python Software Foundation) Hidden
Python 3.6.2 Standard Library (32-bit) (HKLM-x32\...\{79B4337D-166F-4BC0-B67A-F73806CC730E}) (Version: 3.6.2150.0 - Python Software Foundation) Hidden
Python 3.6.2 Tcl/Tk Support (32-bit) (HKLM-x32\...\{DF24AFFD-23AB-4A7D-A0E0-6410CE3B6B9D}) (Version: 3.6.2150.0 - Python Software Foundation) Hidden
Python 3.6.2 Test Suite (32-bit) (HKLM-x32\...\{433FD2E2-839C-4211-88B7-45C90F738842}) (Version: 3.6.2150.0 - Python Software Foundation) Hidden
Python 3.6.2 Utility Scripts (32-bit) (HKLM-x32\...\{9B79DE7E-E864-4758-8DFC-85DA43B19671}) (Version: 3.6.2150.0 - Python Software Foundation) Hidden
Python Launcher (HKLM-x32\...\{2636F1E4-2BC5-4B19-BFFD-A08F72598309}) (Version: 3.6.6032.0 - Python Software Foundation)
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
R for Windows 3.3.1 (HKLM\...\R for Windows 3.3.1_is1) (Version: 3.3.1 - R Core Team)
R for Windows 4.0.0 (HKLM\...\R for Windows 4.0.0_is1) (Version: 4.0.0 - R Core Team)
RStudio (HKLM-x32\...\RStudio) (Version: 1.3.1093 - RStudio)
Seagate Dashboard (HKLM-x32\...\{EA266F00-A8E7-43A0-8DED-FBFE3F076934}) (Version: 4.4.19.0 - Seagate)
Shotcut (HKLM\...\Shotcut) (Version: 20.10.31 - Meltytech, LLC)
Sky Ticket 6.6.0.0 (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\com.bskyb.skyticket_is1) (Version: 6.6.0.0 - Sky Ticket)
Smyle Mouse (HKLM-x32\...\{09786633-20A6-48F4-932B-3AF58F730AD0}_is1) (Version: 1.5.4.2 - )
Spotify (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Spotify) (Version: 1.1.48.625.g1c87c7f7 - Spotify AB)
STAR WARS Battlefront II (HKLM-x32\...\1421404701_is1) (Version: 1.1 - GOG.com)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SteuerSparErklärung 2016 (HKLM-x32\...\{D331D50C-C578-423B-8BC7-94D3133CE315}) (Version: 21.41.113 - Akademische Arbeitsgemeinschaft)
Tableau 2020.3 (20203.20.0801.1333) (HKLM\...\{EFE6DB45-0575-40DA-9DF5-FD92CD78B01A}) (Version: 20.3.25268 - Tableau Software) Hidden
Tableau 2020.3 (20203.20.0801.1333) (HKLM-x32\...\{973a434a-9566-4323-97f7-d47c68bf1b22}) (Version: 20.3.25268 - Tableau Software)
Tableau Public 2020.3 (20203.20.0801.1333) (HKLM\...\{F02547AA-E4F3-4149-94F4-821D7F8117DD}) (Version: 20.3.25268 - Tableau Software) Hidden
Tableau Public 2020.3 (20203.20.0801.1333) (HKLM-x32\...\{8f6fc2fc-a962-4086-8ed7-9305397cecb1}) (Version: 20.3.25268 - Tableau Software)
Teams Machine-Wide Installer (HKLM-x32\...\{39AF0813-FA7B-4860-ADBE-93B9B214B914}) (Version: 1.2.0.17057 - Microsoft Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.5.6 - TeamSpeak Systems GmbH)
TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.78313 - TeamViewer)
thinkorswim (HKLM\...\9968-4488-2169-7623) (Version: desktop - thinkorswim, Inc)
Tinypic 3.18 (HKLM-x32\...\{E3723A04-A894-4036-A78E-282E18F43C0A}_is1) (Version: Tinypic 3.18 - E. Fiedler)
Toolkit (HKLM-x32\...\Toolkit) (Version: 1.8.1.71 - Seagate)
Trading (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\5556-0001-2700-0000) (Version: latest (979.4x) 20200630 11:44:03 - IB Exchange Corp.)
TreeSize Free V4.3.1 (HKLM-x32\...\TreeSize Free_is1) (Version: 4.3.1 - JAM Software)
TunnelBear (HKLM-x32\...\{A7784574-2299-423F-9DF8-385D5FC2A10E}) (Version: 3.7.12.0 - TunnelBear) Hidden
TunnelBear (HKLM-x32\...\{dc847d12-97d0-44e5-a95f-f0ef81c071a7}) (Version: 3.7.12.0 - TunnelBear)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{0BAA0A93-3AD3-4B19-9105-4C8C3FA92A83}) (Version: 2.67.0.0 - Microsoft Corporation) Hidden
Update for Windows 10 for x64-based Systems (KB4480730) (HKLM\...\{0746492E-47B6-4251-940C-44462DFD74BB}) (Version: 2.55.0.0 - Microsoft Corporation)
ViewNX-i (HKLM\...\{C02E1F40-7EB2-4084-991B-EBFC7F586E26}) (Version: 1.3.3 - Nikon Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.4 - VideoLAN)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows Resource Kit Tools (HKLM-x32\...\{FA237125-51FF-408C-8BB8-30C2B3DFFF9C}) (Version: 5.2.3790 - Microsoft Corporation)
WinMerge 2.14.0 (HKLM-x32\...\WinMerge_is1) (Version: 2.14.0 - Thingamahoochie Software)
Worms Reloaded - GameSessions Edition (HKLM-x32\...\{eea75da8-b7ea-43fc-b128-2383ea4b7d9e}) (Version: 2.2.6537.24689 - GameSessions)
Worms Reloaded (HKLM-x32\...\{CB69AE49-9423-4B3E-8325-A5B1C2869D5E}) (Version: 2.2.0.0 - GameSessions) Hidden
ZeroTier One (HKLM-x32\...\{AEB4CE16-0CE9-4F87-976E-79D7B2416613}) (Version: 1.6.2 - ZeroTier, Inc.) Hidden
ZeroTier One (HKLM-x32\...\ZeroTier One 1.6.2) (Version: 1.6.2 - ZeroTier, Inc.)
ZeroTier One Virtual Network Port (HKLM\...\{272B1192-65BE-4BDE-894B-6D3AD8BF7FD2}) (Version: 1.0.1 - ZeroTier) Hidden
Zoom (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\ZoomUMX) (Version: 5.7.7 (1105) - Zoom Video Communications, Inc.)
Packages:
=========
Adobe Notification Client -> C:\Program Files\WindowsApps\AdobeNotificationClient_2.0.1.8_x86__enpm4xejd91yc [2020-12-22] (Adobe Systems Incorporated)
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.203.500.0_x86__kgqvnymyfvs32 [2021-10-01] (king.com)
Fotos-Add-On -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-05-04] (Microsoft Corporation)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_131.1.242.0_x64__v10z8vjag6ke6 [2021-09-28] (HP Inc.)
Media Engine-Add-On für Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-09-14] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-16] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-16] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.10.9220.0_x64__8wekyb3d8bbwe [2021-10-12] (Microsoft Studios) [MS Ad]
Reader Notification Client -> C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r [2020-04-02] (Adobe Systems Incorporated)
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.TWITTER_7.0.1.0_neutral__wgeqdkkx372wm [2021-06-13] (Twitter Inc.)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-2977029141-1010321603-2543741146-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-8BA2368BC411} -> [Creative Cloud Files] => C:\Users\Tino\Creative Cloud Files [2017-07-17 20:23]
CustomCLSID: HKU\S-1-5-21-2977029141-1010321603-2543741146-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\Tino\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20289.5\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2977029141-1010321603-2543741146-1001_Classes\CLSID\{2AD206F1-152C-4F9D-A24E-6F93FE7A4AFC}\InprocServer32 -> C:\Users\Tino\AppData\Local\Grammarly\Grammarly for Microsoft Office Suite\6.8.261\8B2AC1D301\GrammarlyShim64.dll (Grammarly, Inc. -> CompanyName)
CustomCLSID: HKU\S-1-5-21-2977029141-1010321603-2543741146-1001_Classes\CLSID\{4BE56754-B616-4998-B825-D16983AEE1B2}\InprocServer32 -> C:\Users\Tino\AppData\Local\Grammarly\Grammarly for Microsoft Office Suite\6.8.261\8B2AC1D301\Grammarly.AddIn.Connect.ActiveX.dll (Grammarly, Inc. -> Grammarly)
CustomCLSID: HKU\S-1-5-21-2977029141-1010321603-2543741146-1001_Classes\CLSID\{84B5A313-CD5D-4904-8BA2-AFDC81C1B309}\InprocServer32 -> C:\Users\Tino\AppData\Local\GoToMeeting\16786\G2MOutlookAddin64.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-2977029141-1010321603-2543741146-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\Tino\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.19127.3\x64\Microsoft.Teams.AddinLoader.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-2977029141-1010321603-2543741146-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\Tino\Dropbox [2016-04-07 13:43]
CustomCLSID: HKU\S-1-5-21-2977029141-1010321603-2543741146-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems)
ShellIconOverlayIdentifiers: [ 00BitrixShellExt_1] -> {A11A1EE5-F9F8-4BE0-907F-D74A49CC506B} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers: [ 00BitrixShellExt_2] -> {A11A1EE5-F9F8-4BE0-907F-D74A49CC506C} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers: [ 00BitrixShellExt_3] -> {A11A1EE5-F9F8-4BE0-907F-D74A49CC506D} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers: [ 00BitrixShellExt_4] -> {A11A1EE5-F9F8-4BE0-907F-D74A49CC506E} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers: [ 00BitrixShellExt_5] -> {A11A1EE5-F9F8-4BE0-907F-D74A49CC506F} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers: [ 00BitrixShellExt_6] -> {8009C378-F2BE-42A6-8ADD-083AAFBDC4EB} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers: [ 00BitrixShellExt_7] -> {057E631A-726E-4193-BB37-377DBD42812A} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers: [ 00BitrixShellExt_8] -> {86627476-D173-4FBC-B206-3A19447FF8CC} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-10-10] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-10-10] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-10-10] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ PowerFolderIgnored] -> {0800cf35-8302-4030-8add-40ac1e3f8834} => C:\Program Files (x86)\Leibniz-Rechenzentrum\LRZ_Sync_Share\IgnoredOverlay_x64.dll [2020-03-15] () [Datei ist nicht signiert]
ShellIconOverlayIdentifiers: [ PowerFolderLocked] -> {0800cf35-8302-4030-8add-40ac1e3f8835} => C:\Program Files (x86)\Leibniz-Rechenzentrum\LRZ_Sync_Share\LockedOverlay_x64.dll [2020-03-15] () [Datei ist nicht signiert]
ShellIconOverlayIdentifiers: [ PowerFolderOK] -> {0800cf35-8302-4030-8add-40ac1e3f8831} => C:\Program Files (x86)\Leibniz-Rechenzentrum\LRZ_Sync_Share\OKOverlay_x64.dll [2020-03-15] () [Datei ist nicht signiert]
ShellIconOverlayIdentifiers: [ PowerFolderSyncing] -> {0800cf35-8302-4030-8add-40ac1e3f8832} => C:\Program Files (x86)\Leibniz-Rechenzentrum\LRZ_Sync_Share\SyncingOverlay_x64.dll [2020-03-15] () [Datei ist nicht signiert]
ShellIconOverlayIdentifiers: [ PowerFolderWarning] -> {0800cf35-8302-4030-8add-40ac1e3f8833} => C:\Program Files (x86)\Leibniz-Rechenzentrum\LRZ_Sync_Share\WarningOverlay_x64.dll [2020-03-15] () [Datei ist nicht signiert]
ShellIconOverlayIdentifiers-x32: [ 00BitrixShellExt_1] -> {A11A1EE5-F9F8-4BE0-907F-D74A49CC506B} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers-x32: [ 00BitrixShellExt_2] -> {A11A1EE5-F9F8-4BE0-907F-D74A49CC506C} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers-x32: [ 00BitrixShellExt_3] -> {A11A1EE5-F9F8-4BE0-907F-D74A49CC506D} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers-x32: [ 00BitrixShellExt_4] -> {A11A1EE5-F9F8-4BE0-907F-D74A49CC506E} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers-x32: [ 00BitrixShellExt_5] -> {A11A1EE5-F9F8-4BE0-907F-D74A49CC506F} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers-x32: [ 00BitrixShellExt_6] -> {8009C378-F2BE-42A6-8ADD-083AAFBDC4EB} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers-x32: [ 00BitrixShellExt_7] -> {057E631A-726E-4193-BB37-377DBD42812A} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers-x32: [ 00BitrixShellExt_8] -> {86627476-D173-4FBC-B206-3A19447FF8CC} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-05-21] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-10-10] (Adobe Inc. -> )
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files\Notepad++\NppShell_06.dll [2020-11-02] (Notepad++ -> )
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> Keine Datei
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [LiferayNativityContextMenus] -> {0800cf35-8302-4030-8add-40ac1e3f8830} => C:\Program Files (x86)\Leibniz-Rechenzentrum\LRZ_Sync_Share\LiferayNativityContextMenus_x64.dll [2020-03-15] () [Datei ist nicht signiert]
ContextMenuHandlers1: [NP8ShellExtension] -> {9C4B85B8-956C-49BF-9BA5-101384E562B2} => C:\Program Files\Nitro\Pro 11\NPShellExtension.dll [2017-03-09] (Nitro Software, Inc. -> Nitro PDF)
ContextMenuHandlers1: [PDFXChange Editor Context menu] -> {2ACD35AB-F74A-4C20-AA9B-2DE80081626D} => C:\Program Files\Tracker Software\Shell Extensions\XCShellMenu.x64.dll [2020-01-06] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2018-10-01] (Apple Inc. -> Apple Inc.)
ContextMenuHandlers1: [WinMerge] -> {4E716236-AA30-4C65-B225-D68BBA81E9C2} => C:\Program Files (x86)\WinMerge\ShellExtensionX64.dll [2013-02-02] (hxxp://winmerge.org) [Datei ist nicht signiert]
ContextMenuHandlers2: [WinMerge] -> {4E716236-AA30-4C65-B225-D68BBA81E9C2} => C:\Program Files (x86)\WinMerge\ShellExtensionX64.dll [2013-02-02] (hxxp://winmerge.org) [Datei ist nicht signiert]
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-06-05] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> Keine Datei
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-05-21] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers4: [LiferayNativityContextMenus] -> {0800cf35-8302-4030-8add-40ac1e3f8830} => C:\Program Files (x86)\Leibniz-Rechenzentrum\LRZ_Sync_Share\LiferayNativityContextMenus_x64.dll [2020-03-15] () [Datei ist nicht signiert]
ContextMenuHandlers4: [WinMerge] -> {4E716236-AA30-4C65-B225-D68BBA81E9C2} => C:\Program Files (x86)\WinMerge\ShellExtensionX64.dll [2013-02-02] (hxxp://winmerge.org) [Datei ist nicht signiert]
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Keine Datei
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_fce0c2dbe15e0d9a\igfxDTCM.dll [2021-02-02] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [WinMerge] -> {4E716236-AA30-4C65-B225-D68BBA81E9C2} => C:\Program Files (x86)\WinMerge\ShellExtensionX64.dll [2013-02-02] (hxxp://winmerge.org) [Datei ist nicht signiert]
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-05-21] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-10-10] (Adobe Inc. -> )
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> Keine Datei
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-06-05] (Malwarebytes Corporation -> Malwarebytes)
==================== Codecs (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Drivers32: [msacm.pspgru] => C:\Windows\SysWOW64\pspgru.acm [401920 2010-03-22] (Philips Austria GmbH - Speech Processing) [Datei ist nicht signiert]
==================== Verknüpfungen & WMI ========================
==================== Geladene Module (Nicht auf der Ausnahmeliste) =============
2019-06-19 15:24 - 2019-06-19 15:24 - 000030720 _____ () [Datei ist nicht signiert] [Datei wird verwendet] C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.Wrapper.dll
2019-06-19 15:24 - 2019-06-19 15:24 - 000167424 _____ () [Datei ist nicht signiert] [Datei wird verwendet] C:\Program Files (x86)\TunnelBear\TunnelBear.VigilantBear.Wrapper.dll
2021-05-05 12:28 - 2021-05-05 12:28 - 138710528 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Bitrix24\libcef.dll
2021-01-29 12:45 - 2021-01-29 12:45 - 000392192 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Bitrix24\libEGL.dll
2021-01-29 12:45 - 2021-01-29 12:45 - 006333440 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Bitrix24\libGLESv2.dll
2021-01-29 12:45 - 2021-01-29 12:45 - 001006080 _____ (The Chromium Authors) [Datei ist nicht signiert] C:\Program Files (x86)\Bitrix24\chrome_elf.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================
==================== Internet Explorer (Nicht auf der Ausnahmeliste) ==========
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/de-de/?ocid=iehp
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2021-10-06] (Microsoft Corporation -> Microsoft Corporation)
BHO: Dragon Web Extension For Internet Explorer -> {609C0837-8DD3-4F9B-AAC5-446F36BC0353} -> C:\Program Files (x86)\Nuance\NaturallySpeaking15\Program\x64\dgnriaie_x64.dll [2016-08-23] (Nuance Communication, Inc. -> Nuance Communications, Inc.)
BHO: Citavi Picker -> {609D670F-B735-4da7-AC6D-F3BD358E325E} -> C:/Program Files (x86)/Internet Explorer/Citavi Picker/x64/SwissAcademic.Citavi.IEPicker.DLL => Keine Datei
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_171\bin\ssv.dll [2018-04-30] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_171\bin\jp2ssv.dll [2018-04-30] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2021-10-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Dragon Web Extension For Internet Explorer -> {609C0837-8DD3-4F9B-AAC5-446F36BC0353} -> C:\Program Files (x86)\Nuance\NaturallySpeaking15\Program\dgnriaie.dll [2016-08-23] (Nuance Communication, Inc. -> Nuance Communications, Inc.)
BHO-x32: Citavi Picker -> {609D670F-B735-4da7-AC6D-F3BD358E325E} -> C:/Program Files (x86)/Internet Explorer/Citavi Picker/SwissAcademic.Citavi.IEPicker.DLL => Keine Datei
BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2016-06-01] (EVERNOTE CORPORATION -> Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
IE Session Restore: HKU\S-1-5-21-2977029141-1010321603-2543741146-1001 -> ist aktiviert.
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-06] (Microsoft Corporation -> Microsoft Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE trusted site: HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\sharepoint.com -> hxxps://forstudents-files.sharepoint.com
==================== Hosts Inhalt: =========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2015-10-30 09:24 - 2021-10-13 18:13 - 000000893 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 reddit.com
127.0.0.1 netflix.com
127.0.0.1 netflix.de
==================== Andere Bereiche ===========================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%INTEL_DEV_REDIST%redist\intel64\compiler;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Windows Resource Kits\Tools\;C:\Windows\System32;C:\Windows;C:\Windows\System32\wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files\IBM\SPSS\Statistics\24\JRE\bin;C:\Program Files (x86)\Windows Live\Shared;C:\Program Files (x86)\QuickTime\QTSystem\;C:\Python36;C:\Program Files (x86)\GnuPG\bin;C:\Windows\System32\OpenSSH\;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;C:\Program Files\Calibre2\;C:\Program Files\Mplus Demo\;C:\Program Files (x86)\ZeroTier\One\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img13.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run32: => "ISUSPM"
HKLM\...\StartupApproved\Run32: => "Cisco AnyConnect Secure Mobility Agent for Windows"
HKLM\...\StartupApproved\Run32: => "Dropbox"
HKLM\...\StartupApproved\Run32: => "PDFPrint"
HKLM\...\StartupApproved\Run32: => "DBAgent"
HKLM\...\StartupApproved\Run32: => "Nikon Message Center 2"
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\StartupApproved\StartupFolder: => "An OneNote senden.lnk"
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\StartupApproved\Run: => "RESTART_STICKY_NOTES"
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\StartupApproved\Run: => "Spotify Web Helper"
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\StartupApproved\Run: => "iCloudServices"
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\StartupApproved\Run: => "ISUSPM"
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\StartupApproved\Run: => "ApplePhotoStreams"
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\StartupApproved\Run: => "vidnotifier.exe"
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\StartupApproved\Run: => "com.squirrel.Teams.Teams"
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\StartupApproved\Run: => "CCXProcess"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [UDP Query User{4901AD59-7A0F-4587-AD99-2A9B95AAC996}C:\users\tino\desktop\garrysmodserver\srcds.exe] => (Allow) C:\users\tino\desktop\garrysmodserver\srcds.exe => Keine Datei
FirewallRules: [TCP Query User{769D8141-203D-4219-9B51-053085B9E85A}C:\users\tino\desktop\garrysmodserver\srcds.exe] => (Allow) C:\users\tino\desktop\garrysmodserver\srcds.exe => Keine Datei
FirewallRules: [UDP Query User{BF6F0EFD-3C98-49AA-924C-21F16E8D0B92}C:\users\tino\documents\spiele\age of empires2\empires2.exe] => (Block) C:\users\tino\documents\spiele\age of empires2\empires2.exe (Microsoft Corporation) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{91369A6B-AB2B-4492-9C98-1315CBBF12C2}C:\users\tino\documents\spiele\age of empires2\empires2.exe] => (Block) C:\users\tino\documents\spiele\age of empires2\empires2.exe (Microsoft Corporation) [Datei ist nicht signiert]
FirewallRules: [{204D7375-5973-4853-B5F8-D00F53E029DF}] => (Block) C:\users\tino\documents\warcraft iii frozen throne\warcraft iii\war3.exe => Keine Datei
FirewallRules: [{BB75EE5C-BD1A-4B9A-BCFE-9C75D5FF2C45}] => (Block) C:\users\tino\documents\warcraft iii frozen throne\warcraft iii\war3.exe => Keine Datei
FirewallRules: [UDP Query User{051B91EF-14F1-45D3-B4EF-F25A091A17A1}C:\users\tino\documents\warcraft iii frozen throne\warcraft iii\war3.exe] => (Allow) C:\users\tino\documents\warcraft iii frozen throne\warcraft iii\war3.exe => Keine Datei
FirewallRules: [TCP Query User{8800C3B0-CD76-4132-A598-7411EEDAA43C}C:\users\tino\documents\warcraft iii frozen throne\warcraft iii\war3.exe] => (Allow) C:\users\tino\documents\warcraft iii frozen throne\warcraft iii\war3.exe => Keine Datei
FirewallRules: [{70EE06D2-E4A5-42CD-8804-0C2E2B3C0CCC}] => (Allow) C:\ProgramData\ZeroTier\One\zerotier-one_x64.exe (ZeroTier, Inc. -> )
FirewallRules: [{8F6B475C-E729-4C81-BC3C-9DF687B934AD}] => (Allow) LPort=9993
FirewallRules: [{69127A78-4854-4661-9FE1-05378040E6B6}] => (Allow) LPort=9993
FirewallRules: [UDP Query User{193E39FC-5641-4143-97D3-8D358D43B695}C:\users\tino\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\tino\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{C9E72A9F-558F-41CD-9A56-8EF9563AE617}C:\users\tino\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\tino\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{ECC79DD5-0A07-45B8-AC5E-7BB00E6E26D7}C:\program files\tableau\tableau 2020.3\bin\jre\bin\java.exe] => (Allow) C:\program files\tableau\tableau 2020.3\bin\jre\bin\java.exe
FirewallRules: [TCP Query User{7BDE41DC-4ABE-4742-A292-A78FB94B8B33}C:\program files\tableau\tableau 2020.3\bin\jre\bin\java.exe] => (Allow) C:\program files\tableau\tableau 2020.3\bin\jre\bin\java.exe
FirewallRules: [UDP Query User{6B8B25C4-43A5-43BF-9DFD-40CEEACAA1AF}C:\program files\calibre2\calibre.exe] => (Block) C:\program files\calibre2\calibre.exe (Kovid Goyal -> )
FirewallRules: [TCP Query User{7C694A61-9BDB-4D8E-BEE9-B7381EC22DED}C:\program files\calibre2\calibre.exe] => (Block) C:\program files\calibre2\calibre.exe (Kovid Goyal -> )
FirewallRules: [{18AADF5E-2FB3-4A3B-A524-16A5B605DE9E}] => (Allow) C:\Users\Tino\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{C7E49A12-0511-4B9B-B406-1FB281F81284}] => (Allow) C:\Users\Tino\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{62EF9F01-96AB-4863-A5AF-8EF2FF1F4196}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes 2\RelicCoH2.exe => Keine Datei
FirewallRules: [{A05D236E-75B7-4B48-B76B-B9E416643382}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes 2\RelicCoH2.exe => Keine Datei
FirewallRules: [UDP Query User{5BD87418-F90D-4F8E-A26E-20C4E1BAD80C}C:\users\tino\documents\spiele\warcraft iii frozen throne\warcraft iii\war3.exe] => (Allow) C:\users\tino\documents\spiele\warcraft iii frozen throne\warcraft iii\war3.exe (Blizzard Entertainment) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{06D026C2-E87F-44C8-B43E-8EF1B2A9F228}C:\users\tino\documents\spiele\warcraft iii frozen throne\warcraft iii\war3.exe] => (Allow) C:\users\tino\documents\spiele\warcraft iii frozen throne\warcraft iii\war3.exe (Blizzard Entertainment) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{A21D10D2-340D-4B20-B852-4118069427BA}C:\gog games\star wars - battlefront 2\gamedata\battlefrontii.exe] => (Allow) C:\gog games\star wars - battlefront 2\gamedata\battlefrontii.exe => Keine Datei
FirewallRules: [TCP Query User{4C88BE04-116F-46D7-91A1-D675BCBEA436}C:\gog games\star wars - battlefront 2\gamedata\battlefrontii.exe] => (Allow) C:\gog games\star wars - battlefront 2\gamedata\battlefrontii.exe => Keine Datei
FirewallRules: [UDP Query User{6DD4627F-4562-473A-97D0-F5FC205BCB39}C:\users\tino\documents\spiele\cs 1.6 version 3\hl.exe] => (Block) C:\users\tino\documents\spiele\cs 1.6 version 3\hl.exe => Keine Datei
FirewallRules: [TCP Query User{DC876CD0-368F-49CF-A6E5-52E782856C0E}C:\users\tino\documents\spiele\cs 1.6 version 3\hl.exe] => (Block) C:\users\tino\documents\spiele\cs 1.6 version 3\hl.exe => Keine Datei
FirewallRules: [UDP Query User{864165D1-F4FF-4C73-93F9-FAD0C670E471}C:\gog games\star wars - battlefront 2\gamedata\battlefrontii.exe] => (Allow) C:\gog games\star wars - battlefront 2\gamedata\battlefrontii.exe => Keine Datei
FirewallRules: [TCP Query User{4EA96063-C978-4AA5-8416-4E546C577E44}C:\gog games\star wars - battlefront 2\gamedata\battlefrontii.exe] => (Allow) C:\gog games\star wars - battlefront 2\gamedata\battlefrontii.exe => Keine Datei
FirewallRules: [{8291CA73-DCE0-4B2C-82E8-B10866CC9B2E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe () [Datei ist nicht signiert]
FirewallRules: [{76E796FE-D618-489F-ACAA-032769B5FCB9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe () [Datei ist nicht signiert]
FirewallRules: [{AD8E8A38-6A84-47C2-A497-70591CBFCA88}] => (Allow) C:\Program Files (x86)\Remote Mouse\RemoteMouseCore.exe => Keine Datei
FirewallRules: [{6FE57E1A-2A21-4E16-8BBF-DECCC1C7E079}] => (Allow) C:\Program Files (x86)\Remote Mouse\RemoteMouseCore.exe => Keine Datei
FirewallRules: [{ADDD8FC1-B064-4679-9B1D-81C7C04D1038}] => (Allow) C:\Program Files (x86)\Remote Mouse\RemoteMouse.exe => Keine Datei
FirewallRules: [{B4A6EC90-5008-4B7A-92D2-A9949C1173AD}] => (Allow) C:\Program Files (x86)\Remote Mouse\RemoteMouse.exe => Keine Datei
FirewallRules: [UDP Query User{91EE4BD7-E106-4448-8987-2343E8FA7A6A}C:\users\tino\desktop\stronghold crusader\stronghold crusader.exe] => (Block) C:\users\tino\desktop\stronghold crusader\stronghold crusader.exe => Keine Datei
FirewallRules: [TCP Query User{EFC85E96-D383-495E-B77F-4EEF7E909C34}C:\users\tino\desktop\stronghold crusader\stronghold crusader.exe] => (Block) C:\users\tino\desktop\stronghold crusader\stronghold crusader.exe => Keine Datei
FirewallRules: [UDP Query User{A9013084-A90D-4504-8B4E-19AC015307B4}C:\users\tino\desktop\cs 1.6 version 2\hl.exe] => (Allow) C:\users\tino\desktop\cs 1.6 version 2\hl.exe => Keine Datei
FirewallRules: [TCP Query User{387AF839-5F8E-4ACB-8953-BD1253A67AA0}C:\users\tino\desktop\cs 1.6 version 2\hl.exe] => (Allow) C:\users\tino\desktop\cs 1.6 version 2\hl.exe => Keine Datei
FirewallRules: [UDP Query User{0C68E773-28F2-4537-A3CF-DFA404F7B71D}C:\users\tino\desktop\warcraft iii frozen throne\warcraft iii\war3.exe] => (Allow) C:\users\tino\desktop\warcraft iii frozen throne\warcraft iii\war3.exe => Keine Datei
FirewallRules: [TCP Query User{C88B17E0-204C-4636-8825-BCF56DAD3499}C:\users\tino\desktop\warcraft iii frozen throne\warcraft iii\war3.exe] => (Allow) C:\users\tino\desktop\warcraft iii frozen throne\warcraft iii\war3.exe => Keine Datei
FirewallRules: [UDP Query User{8CF53BB4-5F4B-43E2-93D4-437F5849ADE4}C:\windows\syswow64\dplaysvr.exe] => (Allow) C:\windows\syswow64\dplaysvr.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{401E15C9-E039-499E-AB31-9A95D6EDDE3C}C:\windows\syswow64\dplaysvr.exe] => (Allow) C:\windows\syswow64\dplaysvr.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [UDP Query User{075DEDEA-BB8A-48B5-B0EC-AFBED882EB6E}C:\gog games\cossacks - back to war\dmcr.exe] => (Allow) C:\gog games\cossacks - back to war\dmcr.exe => Keine Datei
FirewallRules: [TCP Query User{A497522F-B651-4391-91CF-22F1F71B3B90}C:\gog games\cossacks - back to war\dmcr.exe] => (Allow) C:\gog games\cossacks - back to war\dmcr.exe => Keine Datei
FirewallRules: [{F1509304-4D1A-4A82-847F-CB59EB4117FF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe => Keine Datei
FirewallRules: [{36D026C4-36B6-4F29-AEB8-C9B0E99CF4AF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe => Keine Datei
FirewallRules: [{61F6DAF4-D1D9-4C35-B990-DCEBC52A9D99}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{840B2732-B7F2-4A47-B43D-0A0244971364}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{85473B21-919F-48A3-803C-3E5385F16368}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerManager\ApowerManagerCoreServices.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [{BC60BC50-1670-4806-A572-D5B0007A2BCA}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerManager\ApowerManagerCoreServices.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [{034A5D83-C365-47D9-BC89-94E79363D530}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerManager\ApowerManager.exe (Apowersoft Ltd -> Apowersoft Ltd.) [Datei ist nicht signiert]
FirewallRules: [{3E5F82C7-3622-4B44-A8C7-1B6A8658BBFA}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerManager\ApowerManager.exe (Apowersoft Ltd -> Apowersoft Ltd.) [Datei ist nicht signiert]
FirewallRules: [{9EAD0071-5EBE-4668-B63D-910BF3D63CD2}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{DB45D751-AF8A-4B5F-9A85-796DD721AB2C}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{E745BD7A-8027-4620-A4D3-5672AE9A35B3}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerMirror\ApowerMirror.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [{B2D8892C-32D2-498A-A833-7FB048B71B27}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerMirror\ApowerMirror.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [{ED5D026B-357C-4B6B-840C-63E66E33EDD2}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{CF783B61-4CA2-4ED5-A0C4-A840795FDE05}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{DADC8B15-0102-471C-A730-5AB63ED902B2}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{BF5779CB-D8CA-47CD-A82D-02B2E56CD8EC}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{8A3AEBDF-8D53-4CFC-817C-F90E07529F29}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{187923FB-BA86-4670-B6FE-7A7AC1CF666E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{8D8B1286-F8D4-41C7-B621-6B84F77F0A9E}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe => Keine Datei
FirewallRules: [{73DBA93D-B0D7-472D-8E98-3A6D3A0F46EE}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe => Keine Datei
FirewallRules: [{62101A78-FF60-4AC3-ABAB-80A591051292}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{EAEE4EB7-A006-4B02-90EC-D5C0A530E9E2}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{EDEB25F4-4C2F-43E0-8566-0793E937C7A2}] => (Block) C:\users\tino\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{0810B12D-E321-442D-902B-4F935CAE0353}] => (Block) C:\users\tino\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{455F49F7-0AC5-430C-89F0-6DF42633E0F7}C:\users\tino\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\tino\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{F07AEC7A-B70A-4F89-A23A-58B828BD59B1}C:\users\tino\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\tino\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{1069AB92-846E-4685-A787-07E34D7E29A3}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{F95E6A99-A713-4EAC-80EF-18B6A3728451}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{5B289905-82E7-4C3F-A968-FCF8C36391EA}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{DE8090E3-C912-48E5-8D15-9F770E9E0F44}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{F35C59CE-C50D-43E0-B789-278D379BF624}] => (Allow) LPort=5055
FirewallRules: [TCP Query User{E78B90FD-B87A-40E9-B74C-2D8ACF809429}C:\program files (x86)\ea games\battlefield 2\bf2.exe] => (Block) C:\program files (x86)\ea games\battlefield 2\bf2.exe => Keine Datei
FirewallRules: [UDP Query User{D963B0CA-0681-4CE7-85D9-AC13ADC36C9E}C:\program files (x86)\ea games\battlefield 2\bf2.exe] => (Block) C:\program files (x86)\ea games\battlefield 2\bf2.exe => Keine Datei
FirewallRules: [TCP Query User{ECA1BDDD-0060-454D-A5D0-C481A5B7A27F}C:\users\tino\documents\games\officialcnctiberiansun\officialcnctiberiansun\ea games\command & conquer the first decade\command & conquer(tm) tiberian sun(tm)\sun\game.exe] => (Block) C:\users\tino\documents\games\officialcnctiberiansun\officialcnctiberiansun\ea games\command & conquer the first decade\command & conquer(tm) tiberian sun(tm)\sun\game.exe => Keine Datei
FirewallRules: [UDP Query User{90DE7618-9900-4621-A311-B201103F928E}C:\users\tino\documents\games\officialcnctiberiansun\officialcnctiberiansun\ea games\command & conquer the first decade\command & conquer(tm) tiberian sun(tm)\sun\game.exe] => (Block) C:\users\tino\documents\games\officialcnctiberiansun\officialcnctiberiansun\ea games\command & conquer the first decade\command & conquer(tm) tiberian sun(tm)\sun\game.exe => Keine Datei
FirewallRules: [TCP Query User{20B07216-97C9-477A-AD90-A2896E488D96}C:\users\tino\eclipse\java-neon\eclipse\eclipse.exe] => (Block) C:\users\tino\eclipse\java-neon\eclipse\eclipse.exe () [Datei ist nicht signiert]
FirewallRules: [UDP Query User{61806311-F86C-4F86-A6DB-2D0D4436B13B}C:\users\tino\eclipse\java-neon\eclipse\eclipse.exe] => (Block) C:\users\tino\eclipse\java-neon\eclipse\eclipse.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{EAD8F2C7-71D8-49AB-B09E-CB9D06E0482F}C:\users\tino\eclipse\java-neon\eclipse\eclipse.exe] => (Block) C:\users\tino\eclipse\java-neon\eclipse\eclipse.exe () [Datei ist nicht signiert]
FirewallRules: [UDP Query User{4FC056FE-4DC4-4E76-9746-3D454D71327A}C:\users\tino\eclipse\java-neon\eclipse\eclipse.exe] => (Block) C:\users\tino\eclipse\java-neon\eclipse\eclipse.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{CD434139-6E26-4D5F-89DD-A8A5DDDACBB8}C:\users\tino\documents\games\battlefield 2\bf2.exe] => (Allow) C:\users\tino\documents\games\battlefield 2\bf2.exe => Keine Datei
FirewallRules: [UDP Query User{E77960D8-537F-4C8F-8B0E-31ADC2582D3F}C:\users\tino\documents\games\battlefield 2\bf2.exe] => (Allow) C:\users\tino\documents\games\battlefield 2\bf2.exe => Keine Datei
FirewallRules: [{F11747E2-ECFE-422D-A5AE-5C1523203B93}] => (Block) C:\users\tino\documents\games\battlefield 2\bf2.exe => Keine Datei
FirewallRules: [{C84206A6-F778-4795-B322-824FF1E8B252}] => (Block) C:\users\tino\documents\games\battlefield 2\bf2.exe => Keine Datei
FirewallRules: [TCP Query User{21B9B721-CD4B-487C-A72B-3C576FCC8DEB}C:\users\tino\documents\games\officialcnctiberiansun\officialcnctiberiansun\ea games\command & conquer the first decade\command & conquer(tm) tiberian sun(tm)\sun\game.exe] => (Block) C:\users\tino\documents\games\officialcnctiberiansun\officialcnctiberiansun\ea games\command & conquer the first decade\command & conquer(tm) tiberian sun(tm)\sun\game.exe => Keine Datei
FirewallRules: [UDP Query User{98995CEC-D9A0-4718-85CD-E66D2BB2B760}C:\users\tino\documents\games\officialcnctiberiansun\officialcnctiberiansun\ea games\command & conquer the first decade\command & conquer(tm) tiberian sun(tm)\sun\game.exe] => (Block) C:\users\tino\documents\games\officialcnctiberiansun\officialcnctiberiansun\ea games\command & conquer the first decade\command & conquer(tm) tiberian sun(tm)\sun\game.exe => Keine Datei
FirewallRules: [TCP Query User{8E864215-06E4-49CF-8B88-42FF0CF33716}C:\users\tino\documents\games\age of empires2\empires2.exe] => (Block) C:\users\tino\documents\games\age of empires2\empires2.exe => Keine Datei
FirewallRules: [UDP Query User{3E02DA7E-AC91-4CAF-A8A7-E78A3E9848A4}C:\users\tino\documents\games\age of empires2\empires2.exe] => (Block) C:\users\tino\documents\games\age of empires2\empires2.exe => Keine Datei
FirewallRules: [TCP Query User{E0FF2AAB-24CB-4025-BFAC-A9037BC252ED}C:\users\tino\documents\games\age of empires2\empires2.exe] => (Block) C:\users\tino\documents\games\age of empires2\empires2.exe => Keine Datei
FirewallRules: [UDP Query User{6398BA8C-392F-4198-96D2-52ED9BFEF2F7}C:\users\tino\documents\games\age of empires2\empires2.exe] => (Block) C:\users\tino\documents\games\age of empires2\empires2.exe => Keine Datei
FirewallRules: [TCP Query User{0A8FA7E7-47E0-4CA8-A0BC-1D7F6AE321B8}C:\windows\syswow64\dplaysvr.exe] => (Block) C:\windows\syswow64\dplaysvr.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [UDP Query User{FB6E3A15-53E5-4240-AE4A-F6399A4BD8C5}C:\windows\syswow64\dplaysvr.exe] => (Block) C:\windows\syswow64\dplaysvr.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{43132692-0230-4E61-9B31-D9EEEB0A8412}C:\users\tino\documents\games\lan\w3 updatet\warcraft iii\war3.exe] => (Block) C:\users\tino\documents\games\lan\w3 updatet\warcraft iii\war3.exe => Keine Datei
FirewallRules: [UDP Query User{04CE05A8-432A-41AD-9494-320917605012}C:\users\tino\documents\games\lan\w3 updatet\warcraft iii\war3.exe] => (Block) C:\users\tino\documents\games\lan\w3 updatet\warcraft iii\war3.exe => Keine Datei
FirewallRules: [TCP Query User{7D519C32-7E60-42DE-9183-1C54D394C266}C:\users\tino\documents\games\battlefield 2142\bf2142.exe] => (Allow) C:\users\tino\documents\games\battlefield 2142\bf2142.exe => Keine Datei
FirewallRules: [UDP Query User{BB4DE934-6FD8-436A-A471-B80FEF06331D}C:\users\tino\documents\games\battlefield 2142\bf2142.exe] => (Allow) C:\users\tino\documents\games\battlefield 2142\bf2142.exe => Keine Datei
FirewallRules: [{C52415BB-C5C8-4887-B0CA-AE27B07E5B87}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\24\WinWrapIDE.exe (IBM -> IBM Corp.) [Datei ist nicht signiert]
FirewallRules: [{7FACDD01-D0E5-4C96-B283-1851250D8D92}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\24\WinWrapIDE.exe (IBM -> IBM Corp.) [Datei ist nicht signiert]
FirewallRules: [{11B777D3-7702-43DA-B41E-DB1109DA3EC1}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\24\stats.com (IBM -> IBM Corp.) [Datei ist nicht signiert]
FirewallRules: [{77A1CAE9-E6B0-436F-BCE6-C71C71DB089B}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\24\stats.com (IBM -> IBM Corp.) [Datei ist nicht signiert]
FirewallRules: [{09EB3109-6CFB-4B0B-A1ED-FAC3F9FD6741}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\24\stats.exe (IBM -> IBM Corp.) [Datei ist nicht signiert]
FirewallRules: [{9251A0D1-1693-4EA3-875B-6EDE060CA0B5}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\24\stats.exe (IBM -> IBM Corp.) [Datei ist nicht signiert]
FirewallRules: [{0309243F-AE39-4046-AD05-47F3B1DB3F62}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{EA6A914E-7F17-47D2-B512-8DE562C51A38}] => (Allow) LPort=2869
FirewallRules: [{55CAA3B5-FBBA-4CC9-A40B-EB216CB6F18D}] => (Allow) LPort=1900
FirewallRules: [{E9E49D6B-6A5F-48D4-99C0-99239594C5BD}] => (Allow) LPort=8888
FirewallRules: [{B28ABA6F-A2F7-4418-BF3C-3EF2C6E10BAB}] => (Allow) LPort=8888
FirewallRules: [TCP Query User{3619BC9D-039E-4CC6-8931-BC7D45CD4626}C:\program files (x86)\leibniz-rechenzentrum\lrz_sync_share\jre\launch4j-tmp\lrz_sync_share.exe] => (Allow) C:\program files (x86)\leibniz-rechenzentrum\lrz_sync_share\jre\launch4j-tmp\lrz_sync_share.exe (Oracle America, Inc. -> Oracle Corporation)
FirewallRules: [UDP Query User{AD02C3EE-B16D-4E90-B25E-C57B29961417}C:\program files (x86)\leibniz-rechenzentrum\lrz_sync_share\jre\launch4j-tmp\lrz_sync_share.exe] => (Allow) C:\program files (x86)\leibniz-rechenzentrum\lrz_sync_share\jre\launch4j-tmp\lrz_sync_share.exe (Oracle America, Inc. -> Oracle Corporation)
FirewallRules: [{1EE675F5-0BE6-4AD1-8CF8-6378322DE828}] => (Block) C:\program files (x86)\leibniz-rechenzentrum\lrz_sync_share\jre\launch4j-tmp\lrz_sync_share.exe (Oracle America, Inc. -> Oracle Corporation)
FirewallRules: [{836758E2-B218-4F24-B987-2799F972B53A}] => (Block) C:\program files (x86)\leibniz-rechenzentrum\lrz_sync_share\jre\launch4j-tmp\lrz_sync_share.exe (Oracle America, Inc. -> Oracle Corporation)
FirewallRules: [{2ED826D2-4C5B-4154-B911-2BE5E40879E8}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Keine Datei
FirewallRules: [{CBAF8AB0-6212-4B8F-B789-407AD4C2736E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Keine Datei
FirewallRules: [{A1B9A075-A9F3-44AA-8748-CD3E509DA307}] => (Allow) C:\Program Files (x86)\GameSessions\Worms Reloaded\DataTools\DLM.exe (Tangentix Ltd -> GameSessions)
FirewallRules: [{75F14CDA-2318-4CA4-A91C-4458DC25B0E3}] => (Allow) C:\Program Files (x86)\Tangentix\DDRuntime\GSLauncher.exe (Tangentix Ltd -> Tangentix Ltd)
FirewallRules: [{66C87831-24A1-4C11-A038-97FF611DAC6C}] => (Allow) LPort=8733
FirewallRules: [TCP Query User{C983046A-8B74-4ED3-A014-5919DD08FE72}C:\users\tino\documents\games\warcraft iii\war3.exe] => (Allow) C:\users\tino\documents\games\warcraft iii\war3.exe => Keine Datei
FirewallRules: [UDP Query User{2022341D-9147-42DB-A2CB-723BECD57E1A}C:\users\tino\documents\games\warcraft iii\war3.exe] => (Allow) C:\users\tino\documents\games\warcraft iii\war3.exe => Keine Datei
FirewallRules: [TCP Query User{D4A45AC4-DEF2-4A22-9959-392496266843}C:\users\tino\documents\games\lan\cs 1.6\hl.exe] => (Allow) C:\users\tino\documents\games\lan\cs 1.6\hl.exe => Keine Datei
FirewallRules: [UDP Query User{2EA9DA41-B7C9-409C-A83F-EC138F98398A}C:\users\tino\documents\games\lan\cs 1.6\hl.exe] => (Allow) C:\users\tino\documents\games\lan\cs 1.6\hl.exe => Keine Datei
FirewallRules: [TCP Query User{9401D351-EFE0-4846-AF9C-F9FC82D305B7}C:\users\tino\documents\games\lan\age of empires2\age2_x1\age2_x1.exe] => (Block) C:\users\tino\documents\games\lan\age of empires2\age2_x1\age2_x1.exe => Keine Datei
FirewallRules: [UDP Query User{D164E113-2560-4E96-B6B9-E839CADE8545}C:\users\tino\documents\games\lan\age of empires2\age2_x1\age2_x1.exe] => (Block) C:\users\tino\documents\games\lan\age of empires2\age2_x1\age2_x1.exe => Keine Datei
FirewallRules: [TCP Query User{4D7CCD71-F6EA-46DE-A28F-8AE9C51EB133}C:\program files (x86)\gnupg\bin\dirmngr.exe] => (Allow) C:\program files (x86)\gnupg\bin\dirmngr.exe () [Datei ist nicht signiert]
FirewallRules: [UDP Query User{16A40AED-3EBC-416F-A00D-C7B52066C4D3}C:\program files (x86)\gnupg\bin\dirmngr.exe] => (Allow) C:\program files (x86)\gnupg\bin\dirmngr.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{24E22959-3BD0-43D4-A681-38498BFB1854}C:\users\tino\documents\spiele\warcraft iii frozen throne\warcraft iii\war3.exe] => (Allow) C:\users\tino\documents\spiele\warcraft iii frozen throne\warcraft iii\war3.exe (Blizzard Entertainment) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{E97CA51E-393B-44A6-B2B2-A796551EFB53}C:\users\tino\documents\spiele\warcraft iii frozen throne\warcraft iii\war3.exe] => (Allow) C:\users\tino\documents\spiele\warcraft iii frozen throne\warcraft iii\war3.exe (Blizzard Entertainment) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{ACBD7209-A170-4619-90CA-0CDB1FCEDBE5}C:\games\heroes3_hota\h3hota hd.exe] => (Allow) C:\games\heroes3_hota\h3hota hd.exe (The 3DO Company) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{6354C32F-4DD0-4B97-A924-CB15DE54AB42}C:\games\heroes3_hota\h3hota hd.exe] => (Allow) C:\games\heroes3_hota\h3hota hd.exe (The 3DO Company) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{DCC30970-1885-4834-9D58-233EA8CA4D5A}C:\gog games\homm 3 complete\heroes3.exe] => (Block) C:\gog games\homm 3 complete\heroes3.exe (The 3DO Company) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{AF96591C-6CA7-490D-BC7C-2F13F36952D6}C:\gog games\homm 3 complete\heroes3.exe] => (Block) C:\gog games\homm 3 complete\heroes3.exe (The 3DO Company) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{31382D12-C20C-4798-AB62-1AD800811DA8}C:\users\tino\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\tino\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{84D5F300-68B5-470B-9503-571A5506D77E}C:\users\tino\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\tino\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{2277DC35-0B15-46FD-A2EF-FAF47DB4141D}] => (Allow) C:\Program Files\HP\HP Deskjet 3520 series\Bin\DeviceSetup.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{1F04FE85-E1BB-4D14-B7F6-43338FD9D362}] => (Allow) C:\Program Files\HP\HP Deskjet 3520 series\Bin\HPNetworkCommunicator.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{96258AD9-C380-41B1-987A-3FABD2FA2863}] => (Allow) C:\Program Files\HP\HP Deskjet 3520 series\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{B56B482D-2468-4E3E-8D0F-C079A3F638C7}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{233D3AAB-0936-485A-8D40-CA2D14BCA012}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F0929751-EBE9-40D2-BF78-D6BB2A9AFCBC}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{A549F28D-87E9-45EF-A72A-526D6BEAE6FA}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{A8C02968-3DBE-4182-9232-75D7FE17CBB4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D683811C-ABFB-41F7-8001-48A7AB08A1D1}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E9068E04-87ED-4B54-AD51-86A24F998B3F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{1EDD1CA2-D599-4CFA-BFED-F1ADDE4A32B9}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{5E1976D0-2ACD-478A-BDF3-5B2715F47A67}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\94.0.992.31\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{E398CE2F-B003-4831-A7C7-BA629ACA7E18}C:\program files (x86)\apowersoft\gitmind\gitmind.exe] => (Block) C:\program files (x86)\apowersoft\gitmind\gitmind.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [UDP Query User{58D674BE-02B6-4C11-9740-907950463D8F}C:\program files (x86)\apowersoft\gitmind\gitmind.exe] => (Block) C:\program files (x86)\apowersoft\gitmind\gitmind.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [{6F751C24-59EB-453B-BA24-C1199ECED815}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
FirewallRules: [TCP Query User{71020423-F200-4E90-88F5-ADA17FBC112F}C:\program files (x86)\bitrix24\bitrix24.exe] => (Block) C:\program files (x86)\bitrix24\bitrix24.exe (Bitrix, Inc. -> Bitrix)
FirewallRules: [UDP Query User{30FDAB61-FC7C-4F7A-8E51-91D7C0EB054B}C:\program files (x86)\bitrix24\bitrix24.exe] => (Block) C:\program files (x86)\bitrix24\bitrix24.exe (Bitrix, Inc. -> Bitrix)
FirewallRules: [{603A54F8-1521-42DC-813F-DFF4D72932C3}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B5BBF9E3-D1E8-4BB0-871B-3CD14021BFE6}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{1AAD2631-0AED-439F-ACDF-DA1FE2E9FD38}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe (Lenovo -> )
FirewallRules: [{E62228F3-2684-4792-9CA1-2AB24EC4BB9C}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe (Lenovo -> )
FirewallRules: [{645CCEE6-A59F-46B6-BC35-6FD808B55B38}] => (Allow) C:\ProgramData\ZeroTier\One\zerotier-one_x64.exe (ZeroTier, Inc. -> )
FirewallRules: [{4790CA8F-1B5C-4925-9861-F43790181C98}] => (Allow) C:\ProgramData\ZeroTier\One\zerotier-one_x64.exe (ZeroTier, Inc. -> )
==================== Wiederherstellungspunkte =========================
08-10-2021 08:27:35 Windows Modules Installer
==================== Fehlerhafte Geräte im Gerätemanager ============
Name: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Description: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Cisco Systems
Service: vpnva
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Fehlereinträge in der Ereignisanzeige: ========================
Applikationsfehler:
==================
Error: (10/13/2021 06:24:54 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Fehler in Manifest- oder Richtliniendatei "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" in Zeile 1.
Die im Manifest gefundene Komponenten-ID stimmt nicht mit der ID der angeforderten Komponente überein.
Verweis: UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definition: UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Verwenden Sie das Programm "sxstrace.exe" für eine detaillierte Diagnose.
Error: (10/13/2021 06:16:19 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Client application bug: DNSServiceResolve(mobile._epoccam._tcp.local.) active for over two minutes. This places considerable burden on the network.
Error: (10/13/2021 06:13:49 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT)
Description: Überspringen: Eap method DLL path Fehler bei der Überprüfung. Fehler: Type-ID=43, Autor-ID=9, Lieferant-ID=0, Lieferant-Typ=0
Error: (10/13/2021 06:13:49 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT)
Description: Überspringen: Eap method DLL path Fehler bei der Überprüfung. Fehler: Type-ID=25, Autor-ID=9, Lieferant-ID=0, Lieferant-Typ=0
Error: (10/13/2021 06:13:49 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT)
Description: Überspringen: Eap method DLL path Fehler bei der Überprüfung. Fehler: Type-ID=17, Autor-ID=9, Lieferant-ID=0, Lieferant-Typ=0
Error: (10/13/2021 06:13:49 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT)
Description: Überspringen: Eap method DLL path Fehler bei der Überprüfung. Fehler: Type-ID=43, Autor-ID=9, Lieferant-ID=0, Lieferant-Typ=0
Error: (10/13/2021 06:13:49 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT)
Description: Überspringen: Eap method DLL path Fehler bei der Überprüfung. Fehler: Type-ID=25, Autor-ID=9, Lieferant-ID=0, Lieferant-Typ=0
Error: (10/13/2021 06:13:49 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT)
Description: Überspringen: Eap method DLL path Fehler bei der Überprüfung. Fehler: Type-ID=17, Autor-ID=9, Lieferant-ID=0, Lieferant-Typ=0
Systemfehler:
=============
Error: (10/13/2021 06:13:55 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Funktionssuche-Ressourcenveröffentlichung" wurde mit folgendem Fehler beendet:
%%2147952449 = Die angeforderte Adresse ist in diesem Kontext ungültig.
Error: (10/13/2021 08:19:31 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-BB502MH)
Description: Der Server "microsoft.windowscommunicationsapps_16005.14326.20436.0_x64__8wekyb3d8bbwe!microsoft.windowslive.calendar.AppXwkn9j84yh1kvnt49k5r8h6y1ecsv09hs.mca" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (10/12/2021 04:29:12 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-BB502MH)
Description: Der Server "microsoft.windowscommunicationsapps_16005.14326.20436.0_x64__8wekyb3d8bbwe!microsoft.windowslive.calendar.AppXwkn9j84yh1kvnt49k5r8h6y1ecsv09hs.mca" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (10/12/2021 08:01:07 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80073d02 fehlgeschlagen: 9NMPJ99VJBWV-Microsoft.YourPhone
Error: (10/11/2021 08:22:36 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-BB502MH)
Description: Der Server "microsoft.windowscommunicationsapps_16005.14326.20436.0_x64__8wekyb3d8bbwe!microsoft.windowslive.calendar.AppXwkn9j84yh1kvnt49k5r8h6y1ecsv09hs.mca" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (10/10/2021 11:08:07 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-BB502MH)
Description: Der Server "microsoft.windowscommunicationsapps_16005.14326.20436.0_x64__8wekyb3d8bbwe!microsoft.windowslive.calendar.AppXwkn9j84yh1kvnt49k5r8h6y1ecsv09hs.mca" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (10/06/2021 03:22:15 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-BB502MH)
Description: Der Server "microsoft.windowscommunicationsapps_16005.14326.20436.0_x64__8wekyb3d8bbwe!microsoft.windowslive.calendar.AppXwkn9j84yh1kvnt49k5r8h6y1ecsv09hs.mca" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (10/05/2021 02:58:07 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-BB502MH)
Description: Der Server "microsoft.windowscommunicationsapps_16005.14326.20436.0_x64__8wekyb3d8bbwe!microsoft.windowslive.calendar.AppXwkn9j84yh1kvnt49k5r8h6y1ecsv09hs.mca" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Windows Defender:
================
Date: 2021-10-13 18:12:03
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {449653E0-18D4-4684-A5AA-F0E0C8A963CF}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Vollständige Überprüfung
Benutzer: DESKTOP-BB502MH\Tino
Date: 2021-10-13 17:29:23
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {6CA1294C-4421-401C-A4D9-6BF43A6886F0}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Date: 2021-10-12 14:51:12
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {839A0DD1-1852-41EC-A969-EA1E77DBA478}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Date: 2021-10-12 09:43:31
Description:
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe wurde durch den überwachten Ordnerzugriff daran gehindert, %userprofile%\Documents zu ändern.
Erkennungszeit: 2021-10-12T07:43:31.274Z
Benutzer: DESKTOP-BB502MH\Tino
Pfad: %userprofile%\Documents
Prozessname: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
Sicherheitsversion: 1.351.239.0
Modulversion: 1.1.18600.4
Produktversion: 4.18.2109.6
Date: 2021-10-08 08:52:29
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {11F55FD6-638C-4F2F-900D-C9FA773D33A0}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Date: 2021-09-24 08:25:25
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.
Neue Version der Sicherheitsinformationen:
%Vorherige Version der Sicherheitsinformationen: 1.349.1201.0
Update Source: Microsoft Center zum Schutz vor Schadsoftware
Sicherheitstyp: AntiVirus
Updatetyp: Voll
Benutzer: NT-AUTORITÄT\Netzwerkdienst
Aktuelle Modulversion:
%Vorherige Modulversion: 1.1.18500.10
Fehlercode: 0x80072ee7
Fehlerbeschreibung: Der Servername oder die Serveradresse konnte nicht verarbeitet werden.
Date: 2021-09-24 08:25:25
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.
Neue Version der Sicherheitsinformationen:
%Vorherige Version der Sicherheitsinformationen: 1.349.1201.0
Update Source: Microsoft Center zum Schutz vor Schadsoftware
Sicherheitstyp: AntiSpyware
Updatetyp: Voll
Benutzer: NT-AUTORITÄT\Netzwerkdienst
Aktuelle Modulversion:
%Vorherige Modulversion: 1.1.18500.10
Fehlercode: 0x80072ee7
Fehlerbeschreibung: Der Servername oder die Serveradresse konnte nicht verarbeitet werden.
Date: 2021-09-24 08:25:25
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.
Neue Version der Sicherheitsinformationen:
%Vorherige Version der Sicherheitsinformationen: 1.349.1201.0
Update Source: Microsoft Center zum Schutz vor Schadsoftware
Sicherheitstyp: AntiVirus
Updatetyp: Voll
Benutzer: NT-AUTORITÄT\Netzwerkdienst
Aktuelle Modulversion:
%Vorherige Modulversion: 1.1.18500.10
Fehlercode: 0x80072ee7
Fehlerbeschreibung: Der Servername oder die Serveradresse konnte nicht verarbeitet werden.
Date: 2021-09-24 08:25:25
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.
Neue Version der Sicherheitsinformationen:
%Vorherige Version der Sicherheitsinformationen: 1.349.1201.0
Update Source: Microsoft Center zum Schutz vor Schadsoftware
Sicherheitstyp: AntiVirus
Updatetyp: Voll
Benutzer: NT-AUTORITÄT\Netzwerkdienst
Aktuelle Modulversion:
%Vorherige Modulversion: 1.1.18500.10
Fehlercode: 0x80072ee7
Fehlerbeschreibung: Der Servername oder die Serveradresse konnte nicht verarbeitet werden.
Date: 2021-09-24 08:25:25
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.
Neue Version der Sicherheitsinformationen:
%Vorherige Version der Sicherheitsinformationen: 1.349.1201.0
Update Source: Microsoft Center zum Schutz vor Schadsoftware
Sicherheitstyp: AntiSpyware
Updatetyp: Voll
Benutzer: NT-AUTORITÄT\Netzwerkdienst
Aktuelle Modulversion:
%Vorherige Modulversion: 1.1.18500.10
Fehlercode: 0x80072ee7
Fehlerbeschreibung: Der Servername oder die Serveradresse konnte nicht verarbeitet werden.
CodeIntegrity:
===============
Date: 2021-10-03 17:18:45
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\dllhost.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Nuance\NaturallySpeaking15\Program\x64\dgniedct_x64.dll that did not meet the Microsoft signing level requirements.
Date: 2021-08-01 15:08:01
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\aepic.dll because the set of per-page image hashes could not be found on the system.
Date: 2021-07-20 17:19:46
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Nuance\NaturallySpeaking15\Program\x64\dd10axa_x64.dll that did not meet the Microsoft signing level requirements.
Date: 2021-07-20 17:19:46
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Nuance\NaturallySpeaking15\Program\x64\dd10hook_x64.dll that did not meet the Microsoft signing level requirements.
Date: 2021-07-20 17:19:46
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Nuance\NaturallySpeaking15\Program\x64\nlutmgrhook_x64.dll that did not meet the Microsoft signing level requirements.
Date: 2021-07-20 11:14:15
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\dllhost.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Nuance\NaturallySpeaking15\Program\x64\dd10hook_x64.dll that did not meet the Microsoft signing level requirements.
Date: 2021-07-20 11:14:15
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\dllhost.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Nuance\NaturallySpeaking15\Program\x64\nlutmgrhook_x64.dll that did not meet the Microsoft signing level requirements.
==================== Speicherinformationen ===========================
BIOS: LENOVO R06ET69W (1.43 ) 01/08/2020
Hauptplatine: LENOVO 20FMS03600
Prozessor: Intel(R) Core(TM) i5-6200U CPU @ 2.30GHz
Prozentuale Nutzung des RAM: 77%
Installierter physikalischer RAM: 7607.82 MB
Verfügbarer physikalischer RAM: 1719.79 MB
Summe virtueller Speicher: 17313.45 MB
Verfügbarer virtueller Speicher: 10279.87 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:237.13 GB) (Free:27.03 GB) NTFS
\\?\Volume{1a177e8d-0000-0000-0000-100000000000}\ (System-reserviert) (Fixed) (Total:0.49 GB) (Free:0.46 GB) NTFS
\\?\Volume{1a177e8d-0000-0000-0000-d0673b000000}\ () (Fixed) (Total:0.85 GB) (Free:0.31 GB) NTFS
==================== MBR & Partitionstabelle ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 238.5 GB) (Disk ID: 1A177E8D)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=237.1 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=871 MB) - (Type=27)
==================== Ende von Addition.txt =======================
|
|
13.10.2021, 17:49
| #7 |
| | Windows 10: audacity.de Installer NOCH in der Ausführung. Soll ich ihn schließen? PC Neustarten? Shortcut.txt Code:
ATTFilter Untersuchungsergebnis der Verknüpfungen des Benutzers (x64) Version: 12-10-2021
durchgeführt von Tino (13-10-2021 18:35:32)
Gestartet von C:\Users\Tino\Downloads
Start-Modus: Normal
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Software Updates.lnk -> C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe (Flexera Software LLC.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\MSACCESS.EXE (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe (Adobe Systems Incorporated)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk -> C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Digital Editions 4.5.lnk -> C:\Program Files (x86)\Adobe\Adobe Digital Editions 4.5\DigitalEditions.exe (Adobe Systems Incorporated)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Illustrator 2020.lnk -> C:\Program Files\Adobe\Adobe Illustrator 2020\Support Files\Contents\Windows\Illustrator.exe (Adobe Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk -> C:\Windows\Installer\{A30EA700-5515-48F0-88B0-9E99DC356B88}\AppleSoftwareUpdateIco.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\EXCEL.EXE (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk -> C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.10.22.lnk -> C:\Program Files\GIMP 2\bin\gimp-2.10.exe (Spencer Kimball, Peter Mattis and the GIMP Development Team)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Immersive Control Panel.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeePass 2.lnk -> C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe (Dominik Reichl)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk -> C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe (Malwarebytes)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Keyboard Layout Creator 1.4.lnk -> C:\Program Files (x86)\Microsoft Keyboard Layout Creator 1.4\MSKLC.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk -> C:\Program Files (x86)\Windows Live\Photo Gallery\MovieMaker.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk -> C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe (Mozilla Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nitro Pro.lnk -> C:\Program Files\Nitro\Pro 11\NitroPDF.exe (Nitro PDF)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++.lnk -> C:\Program Files\Notepad++\notepad++.exe (Don HO don.h@free.fr)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk -> C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\POWERPNT.EXE (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\MSPUB.EXE (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shotcut.lnk -> C:\Program Files\Shotcut\shotcut.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype for Business.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tableau 2020.3.lnk -> C:\Program Files\Tableau\Tableau 2020.3\bin\tableau.exe (Tableau Software)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tableau Public 2020.3.lnk -> C:\Program Files\Tableau\Tableau Public 2020.3\bin\tabpublic.exe (Tableau Software)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client.lnk -> C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe (TeamSpeak Systems GmbH)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 12.lnk -> C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\thinkorswim.lnk -> C:\Program Files\thinkorswim\thinkorswim.exe (thinkorswim, Inc)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Toolkit.lnk -> C:\Program Files (x86)\Toolkit\Toolkit.exe (Seagate Technology LLC)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\WINWORD.EXE (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZeroTier One.lnk -> C:\Program Files (x86)\ZeroTier\One\ZeroTier One.exe (ZeroTier, Inc)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinMerge\Benutzerhandbuch.lnk -> C:\Program Files (x86)\WinMerge\Docs\WinMerge.chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinMerge\LIESMICH-Datei.lnk -> C:\Program Files (x86)\WinMerge\Docs\ReadMe.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinMerge\WinMerge.lnk -> C:\Program Files (x86)\WinMerge\WinMergeU.exe (hxxp://winmerge.org)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Resource Kit Tools\Command Shell.lnk -> C:\Windows\SysWOW64\cmd.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Resource Kit Tools\Windows Resource Kit Tools Read Me.lnk -> C:\Program Files (x86)\Windows Resource Kits\Tools\readme.htm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell ISE (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell ISE.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ViewNX-i\Neueste Info zu ViewNX-i.lnk -> C:\Program Files\Nikon\ViewNX-i\ViewNX-i\Readme.rtf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ViewNX-i\ViewNX-i Hilfe.lnk -> C:\Program Files\Nikon\ViewNX-i\ViewNX-i\Helps\Index.html ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ViewNX-i\ViewNX-i.lnk -> C:\Program Files\Nikon\ViewNX-i\ViewNX-i\ViewNX-i.exe (Nikon Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\Documentation.lnk -> C:\Program Files\VideoLAN\VLC\Documentation.url ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\Release Notes.lnk -> C:\Program Files\VideoLAN\VLC\NEWS.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VideoLAN Website.lnk -> C:\Program Files\VideoLAN\VLC\VideoLAN Website.url ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VLC media player.lnk -> C:\Program Files\VideoLAN\VLC\vlc.exe (VideoLAN)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TunnelBear\TunnelBear.lnk -> C:\Program Files (x86)\TunnelBear\TunnelBear.exe (TunnelBear)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TreeSize Free\TreeSize Free (Administrator).lnk -> C:\Program Files (x86)\JAM Software\TreeSize Free\TreeSizeFree.exe (JAM Software)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TreeSize Free\TreeSize Free Hilfe.lnk -> C:\Program Files (x86)\JAM Software\TreeSize Free\TreeSizeFree.chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tracker Software\PDF-XChange Editor.lnk -> C:\Program Files\Tracker Software\PDF Editor\PDFXEdit.exe (Tracker Software Products (Canada) Ltd.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tracker Software\Tracker Updater.lnk -> C:\Program Files\Tracker Software\Update\TrackerUpdate.exe (Tracker Software Products (Canada) Ltd.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tracker Software\PDF-XChange Lite\PDF-XChange Lite License Agreement.lnk -> C:\Program Files\Tracker Software\PDF-XChange Lite\Help\PDFXLicense.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tracker Software\PDF-XChange Lite\PDF-XChange Lite User Manual.lnk -> C:\Program Files\Tracker Software\PDF-XChange Lite\Help\PDFX8ManLiteSm.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tracker Software\PDF-XChange Editor\PDF-XChange Editor Help.lnk -> C:\Program Files\Tracker Software\PDF Editor\Help\PDFXVE8Sm.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tracker Software\PDF-XChange Editor\PDF-XChange Editor License Agreement.lnk -> C:\Program Files\Tracker Software\PDF Editor\PDF_VE.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tinypic\Anleitung zu Tinypic.lnk -> C:\Program Files (x86)\Tinypic\AnleitungTinyPic.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tinypic\TinyPic.exe.lnk -> C:\Program Files (x86)\Tinypic\TinyPic.exe (Borland Software Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tinypic\Uninstall Tinypic.lnk -> C:\Program Files (x86)\Tinypic\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SteuerSparErklärung 2016\Start-Center 2016.lnk -> C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\SteuerSparErklaerung 2016\StartCenter.exe (Akademische Arbeitsgemeinschaft Verlag)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SteuerSparErklärung 2016\Informationen und Hilfe\Report erstellen.lnk -> C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\SteuerSparErklaerung 2016\ReportTool.exe (Akademische Arbeitsgemeinschaft Verlag)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SteuerSparErklärung 2016\Informationen und Hilfe\TeamViewer.lnk -> C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\SteuerSparErklaerung 2016\TeamViewerQS_AAV_Win.exe (TeamViewer)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam\Steam.lnk -> C:\Program Files (x86)\Steam\steam.exe (Valve Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp\Dell Display Manager.lnk -> C:\Program Files (x86)\Dell\Dell Display Manager\ddm.exe (EnTech Taiwan)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\STAR WARS Battlefront II [GOG.com]\Deinstallieren STAR WARS Battlefront II.lnk -> C:\GOG Games\Star Wars - Battlefront 2\unins000.exe (Keine Datei)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\STAR WARS Battlefront II [GOG.com]\STAR WARS Battlefront II.lnk -> C:\GOG Games\Star Wars - Battlefront 2\SWB2Launcher.exe (Keine Datei)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\STAR WARS Battlefront II [GOG.com]\Tools\Language Setup.lnk -> C:\GOG Games\Star Wars - Battlefront 2\language_setup.exe (Keine Datei)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\STAR WARS Battlefront II [GOG.com]\Dokumente\Manual.lnk -> C:\GOG Games\Star Wars - Battlefront 2\Manual.pdf (Keine Datei)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Seagate Dashboard 2.0\Seagate Dashboard 2.0.lnk -> C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\Dashboard.exe (Seagate Technology LLC)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RStudio\RStudio.lnk -> C:\Program Files\RStudio\bin\rstudio.exe (RStudio, PBC)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RStudio\Uninstall.lnk -> C:\Program Files\RStudio\Uninstall.exe (RStudio, PBC)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Realtek\Realtek HD Audio Manager.lnk -> C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Realtek\Realtek HD Audio-Manager.lnk -> C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R\R i386 3.3.1.lnk -> C:\Program Files\R\R-3.3.1\bin\i386\Rgui.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R\R x64 3.3.1.lnk -> C:\Program Files\R\R-3.3.1\bin\x64\Rgui.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime\QuickTime - Bitte lesen.lnk -> C:\Windows\Installer\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}\RichText.ico ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime\QuickTime Player.lnk -> C:\Windows\Installer\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}\QTPlayer.ico ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ProtonVPN\ProtonVPN.lnk -> C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picture Control Utility 2\Neueste Info zu Picture Control Utility 2.lnk -> C:\Program Files\Nikon\Picture Control Utility 2\Readme.rtf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picture Control Utility 2\Picture Control Utility 2 Hilfe.lnk -> C:\Program Files\Nikon\Picture Control Utility 2\Helps\index.html ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picture Control Utility 2\Picture Control Utility 2.lnk -> C:\Program Files\Nikon\Picture Control Utility 2\PictureControlUtil2.exe (Nikon Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Perceptive Devices\Smyle Mouse.lnk -> C:\Program Files (x86)\Perceptive Devices\Smyle Mouse\SmyleMouse.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Perceptive Devices\Uninstall Smyle Mouse.lnk -> C:\Program Files (x86)\Perceptive Devices\Smyle Mouse\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF24\PDF24.lnk -> C:\Program Files (x86)\PDF24\pdf24-Launcher.exe (Geek Software GmbH)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF-XChange PDF Viewer\PDF-Viewer License.lnk -> C:\Program Files\Tracker Software\PDF Viewer\Help\PDFVLicense.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF-XChange PDF Viewer\PDF-Viewer Users Manual.lnk -> C:\Program Files\Tracker Software\PDF Viewer\Help\PDFVwrManSm.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF-XChange PDF Viewer\PDF-Viewer.lnk -> C:\Program Files\Tracker Software\PDF Viewer\PDFXCview.exe (Tracker Software Products (Canada) Ltd.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF-XChange PDF Viewer\Tracker Updater.lnk -> C:\Program Files\Tracker Software\Update\TrackerUpdate.exe (Tracker Software Products (Canada) Ltd.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF-XChange PDF Viewer\Uninstall.lnk -> C:\Program Files\Tracker Software\PDF Viewer\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nikon Transfer 2\Nikon Transfer 2 Hilfe.lnk -> C:\Program Files (x86)\Nikon\Nikon Transfer 2\Helps\Index.html ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nikon Transfer 2\Nikon Transfer 2.lnk -> C:\Program Files (x86)\Nikon\Nikon Transfer 2\NktTransfer2.exe (Nikon Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nikon Message Center 2\Nikon Message Center 2-Hilfe.lnk -> C:\Program Files (x86)\Nikon\Nikon Message Center 2\Localization\DE\NikonMessageCenter2_DE.chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nikon Message Center 2\Nikon Message Center 2.lnk -> C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe (Nikon Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nem's Tools\GCFScape\GCFScape.lnk -> C:\Program Files\Nem's Tools\GCFScape\GCFScape.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nem's Tools\GCFScape\ReadMe.txt.lnk -> C:\Program Files\Nem's Tools\GCFScape\Readme.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nem's Tools\GCFScape\Uninstall GCFScape.lnk -> C:\Program Files\Nem's Tools\GCFScape\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight\Microsoft Silverlight.lnk -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\Silverlight.Configuration.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools\Aufzeichnungs-Manager von Skype for Business.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\OcPubMgr.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools\Office-Spracheinstellungen.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\SETLANG.EXE (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools\Telemetriedashboard für Office.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\msotd.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools\Telemetrieprotokoll für Office.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\msoev.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LRZ Sync+Share\LRZ Sync+Share Dokumentation.lnk -> C:\Windows\System32\shell32.dll (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LRZ Sync+Share\LRZ Sync+Share Homepage.lnk -> C:\Windows\System32\shell32.dll (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LRZ Sync+Share\LRZ Sync+Share.lnk -> C:\Program Files (x86)\Leibniz-Rechenzentrum\LRZ_Sync_Share\LRZ_Sync_Share.exe (Leibniz-Rechenzentrum)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LispWorks 6.1 Personal\HTML Documentation.lnk -> C:\Program Files (x86)\LispWorks Personal\lib\6-1-0-0\manual\online\intro.htm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LispWorks 6.1 Personal\LispWorks.lnk -> C:\Program Files (x86)\LispWorks Personal\lispworks-personal-6-1-1-x86-win32.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LispWorks 6.1 Personal\PDF Documentation\a - Release Notes and Installation Guide.lnk -> C:\Program Files (x86)\LispWorks Personal\lib\6-1-0-0\manual\offline\pdf\readme-6-1.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LispWorks 6.1 Personal\PDF Documentation\b - LispWorks User Guide and Reference Manual.lnk -> C:\Program Files (x86)\LispWorks Personal\lib\6-1-0-0\manual\offline\pdf\lw-6-1.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LispWorks 6.1 Personal\PDF Documentation\c - Foreign Language Interface User Guide and Reference Manual.lnk -> C:\Program Files (x86)\LispWorks Personal\lib\6-1-0-0\manual\offline\pdf\fli-6-1.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LispWorks 6.1 Personal\PDF Documentation\d - COM and Automation User Guide and Reference Manual.lnk -> C:\Program Files (x86)\LispWorks Personal\lib\6-1-0-0\manual\offline\pdf\com-6-1.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LispWorks 6.1 Personal\PDF Documentation\e - IDE User Guide.lnk -> C:\Program Files (x86)\LispWorks Personal\lib\6-1-0-0\manual\offline\pdf\ide-w-6-1.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LispWorks 6.1 Personal\PDF Documentation\f - CAPI User Guide.lnk -> C:\Program Files (x86)\LispWorks Personal\lib\6-1-0-0\manual\offline\pdf\capiuser-w-6-1.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LispWorks 6.1 Personal\PDF Documentation\g - CAPI Reference Manual.lnk -> C:\Program Files (x86)\LispWorks Personal\lib\6-1-0-0\manual\offline\pdf\capiref-6-1.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LispWorks 6.1 Personal\PDF Documentation\h - Editor User Guide.lnk -> C:\Program Files (x86)\LispWorks Personal\lib\6-1-0-0\manual\offline\pdf\eduser-w-6-1.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LispWorks 6.1 Personal\PDF Documentation\i - Delivery User Guide.lnk -> C:\Program Files (x86)\LispWorks Personal\lib\6-1-0-0\manual\offline\pdf\delivery-6-1.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LispWorks 6.1 Personal\PDF Documentation\j - KnowledgeWorks and Prolog User Guide and Reference Manual.lnk -> C:\Program Files (x86)\LispWorks Personal\lib\6-1-0-0\manual\offline\pdf\kwprolog-w-6-1.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LispWorks 6.1 Personal\PDF Documentation\k - CORBA User Guide.lnk -> C:\Program Files (x86)\LispWorks Personal\lib\6-1-0-0\manual\offline\pdf\corba-6-1.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LispWorks 6.1 Personal\PDF Documentation\l - CLIM User Guide.lnk -> C:\Program Files (x86)\LispWorks Personal\lib\6-1-0-0\manual\offline\pdf\climuser-6-1.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 6.3\LibreOffice Base.lnk -> C:\Program Files\LibreOffice\program\sbase.exe (The Document Foundation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 6.3\LibreOffice Calc.lnk -> C:\Program Files\LibreOffice\program\scalc.exe (The Document Foundation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 6.3\LibreOffice Draw.lnk -> C:\Program Files\LibreOffice\program\sdraw.exe (The Document Foundation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 6.3\LibreOffice Impress.lnk -> C:\Program Files\LibreOffice\program\simpress.exe (The Document Foundation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 6.3\LibreOffice Math.lnk -> C:\Program Files\LibreOffice\program\smath.exe (The Document Foundation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 6.3\LibreOffice Writer.lnk -> C:\Program Files\LibreOffice\program\swriter.exe (The Document Foundation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 6.3\LibreOffice.lnk -> C:\Program Files\LibreOffice\program\soffice.exe (The Document Foundation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\lenovo\System Update.lnk -> C:\Program Files (x86)\Lenovo\System Update\tvsu.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kinoni\EpocCam Viewer.lnk -> C:\Program Files (x86)\Kinoni\EpocCam_and_Barcode_drivers\EpocCamTest.exe (Kinoni)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit\Java Mission Control.lnk -> C:\Program Files\Java\jdk1.8.0_111\bin\jmc.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Java konfigurieren.lnk -> C:\Program Files\Java\jre1.8.0_171\bin\javacpl.exe (Oracle Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes\iTunes.lnk -> C:\Program Files\iTunes\iTunes.exe (Apple Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes\Über iTunes.lnk -> C:\Program Files\iTunes\iTunes.Resources\de.lproj\About iTunes.rtf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iMobie\AnyTrans\AnyTrans Online Help.lnk -> C:\Program Files (x86)\iMobie\AnyTrans\Help.ico ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iMobie\AnyTrans\AnyTrans.lnk -> C:\Program Files (x86)\iMobie\AnyTrans\AnyTrans.exe (iMobie Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iMobie\AnyTrans\uninstall.lnk -> C:\Program Files (x86)\iMobie\AnyTrans\uninstall.exe (iMobie Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iMazing\iMazing.lnk -> C:\Program Files\DigiDNA\iMazing\iMazing.exe (DigiDNA)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud\iCloud-Fotos.lnk -> C:\Program Files (x86)\Common Files\Apple\Internet Services\ShellStreamsShortcut.exe (Apple Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud\iCloud.lnk -> C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloud.exe (Apple Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IBM SPSS Statistics\IBM SPSS Statistics 24.lnk -> C:\Program Files\IBM\SPSS\Statistics\24\stats.exe (IBM Corp.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes of Might and Magic 3 Complete [GOG.com]\Deinstallieren Heroes of Might and Magic 3 Complete.lnk -> C:\GOG Games\HoMM 3 Complete\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes of Might and Magic 3 Complete [GOG.com]\Heroes of Might and Magic 3 Complete.lnk -> C:\GOG Games\HoMM 3 Complete\Heroes3.exe (The 3DO Company)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes of Might and Magic 3 Complete [GOG.com]\Tools\Campaign Editor.lnk -> C:\GOG Games\HoMM 3 Complete\h3ccmped.exe (The 3DO Company)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes of Might and Magic 3 Complete [GOG.com]\Tools\Map Editor.lnk -> C:\GOG Games\HoMM 3 Complete\h3maped.exe (The 3DO Company)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes of Might and Magic 3 Complete [GOG.com]\Dokumente\Manual - Armageddon's Blade.lnk -> C:\GOG Games\HoMM 3 Complete\Heroes3_AB_Manual.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes of Might and Magic 3 Complete [GOG.com]\Dokumente\Manual - The Shadow of Death.lnk -> C:\GOG Games\HoMM 3 Complete\Heroes3_SoD_Manual.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes of Might and Magic 3 Complete [GOG.com]\Dokumente\Manual.lnk -> C:\GOG Games\HoMM 3 Complete\Heroes3_Manual.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes of Might and Magic 3 Complete [GOG.com]\Dokumente\Tutorial.lnk -> C:\GOG Games\HoMM 3 Complete\Heroes3_Tutorial.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\gretl\Gretl Web Site.lnk -> C:\Program Files\gretl\gretl_website.url ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\gretl\gretl.lnk -> C:\Program Files\gretl\gretl.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\gretl\uninstall gretl.lnk -> C:\Program Files\gretl\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GPower\GPower 3.1.lnk -> C:\Windows\Installer\{FA3666A9-FF30-4777-B906-305B1EF0486E}\_9269BBB834ED7E7634C109.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com\GOG Galaxy\GOG GALAXY.lnk -> C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe (GOG.com)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GameSessions\Worms Reloaded.lnk -> C:\Windows\Installer\{CB69AE49-9423-4B3E-8325-A5B1C2869D5E}\LauncherIcon.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit PDF Reader\Foxit PDF Reader entfernen.lnk -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit PDF Reader\Foxit PDF Reader.lnk -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\FoxitPDFReader.exe (Foxit Software Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Evernote\Evernote.lnk -> C:\Windows\Installer\{A46ABD1E-2837-11E6-9E7C-005056951CAD}\Evernote.ico ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS MobiMover\EaseUS MobiMover entfernen.lnk -> C:\Program Files (x86)\EaseUS\EaseUS MobiMover\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS MobiMover\EaseUS MobiMover.lnk -> C:\Program Files (x86)\EaseUS\EaseUS MobiMover\bin\MobiMoverUI.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft\DVDVideoSoft Free Studio.lnk -> C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\FreeStudioManager.exe (Digital Wave Ltd)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft\Free YouTube To MP3 Converter.lnk -> C:\Program Files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\FreeYouTubeToMP3Converter.exe (Digital Wave Ltd)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft\Log Report.lnk -> C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\DVSSysReport.exe (DVDVideoSoft Ltd.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft\Premium Membership.lnk -> C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\PremiumMembershipOffer.exe (Digital Wave Ltd)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft\Uninstall.lnk -> C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\Uninstall.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dragon\Dragon.lnk -> C:\Windows\Installer\{768AC460-237E-45B6-99B8-1DE6D0F391E8}\NatSpeak_Shortcut_768AC460237E45B699B81DE6D0F391E8.exe (Flexera Software LLC)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dragon\Installationsprotokoll anzeigen.lnk -> C:\ProgramData\Nuance\NaturallySpeaking15\logs\dgnsetup20180224171514.log ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dragon\Dragon-Werkzeuge\Autoumsetzung.lnk -> C:\Windows\Installer\{768AC460-237E-45B6-99B8-1DE6D0F391E8}\TAgent_Shortcut_768AC460237E45B699B81DE6D0F391E8.exe (Flexera Software LLC)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dragon\Dragon-Werkzeuge\Benutzerprofile aktualisieren.lnk -> C:\Windows\Installer\{768AC460-237E-45B6-99B8-1DE6D0F391E8}\Upgrade_Shortcut_768AC460237E45B699B81DE6D0F391E8.exe (Flexera Software LLC)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dragon\Dragon-Werkzeuge\Dateien für Support sammeln.lnk -> C:\Windows\Installer\{768AC460-237E-45B6-99B8-1DE6D0F391E8}\SuppPack_Shortcut_768AC460237E45B699B81DE6D0F391E8.exe (Flexera Software LLC)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolby\Dolby Audio.lnk -> C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2DesktopUI.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Display Manager\Dell Display Manager entfernen.lnk -> C:\Program Files (x86)\Dell\Dell Display Manager\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Display Manager\Dell Display Manager Release notes.lnk -> C:\Program Files (x86)\Dell\Dell Display Manager\readme.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Display Manager\Dell Display Manager.lnk -> C:\Program Files (x86)\Dell\Dell Display Manager\ddm.exe (EnTech Taiwan)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DB Browser for SQLite\DB Browser for SQLite.lnk -> C:\Program Files\DB Browser for SQLite\DB Browser for SQLite.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DB Browser for SQLite\Uninstall.lnk -> C:\Program Files\DB Browser for SQLite\Uninstall.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID\HWMonitor\HWMonitor.lnk -> C:\Program Files\CPUID\HWMonitor\HWMonitor.exe (CPUID)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID\HWMonitor\Uninstall HWMonitor.lnk -> C:\Program Files\CPUID\HWMonitor\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cossacks - Back To War [GOG.com]\Cossacks - Back To War.lnk -> C:\GOG Games\Cossacks - Back To War\Cossacks.exe (Keine Datei)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cossacks - Back To War [GOG.com]\Uninstall Cossacks - Back To War.lnk -> C:\GOG Games\Cossacks - Back To War\unins000.exe (Keine Datei)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ClipGrab\ClipGrab entfernen.lnk -> C:\Program Files (x86)\ClipGrab\unins000.exe (Philipp Schmieder Medien )
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ClipGrab\ClipGrab.lnk -> C:\Program Files (x86)\ClipGrab\clipgrab.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Citavi 6\Citavi 6.lnk -> C:\Program Files (x86)\Citavi 6\bin\Citavi.exe (Swiss Academic Software)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cisco\Cisco AnyConnect Secure Mobility Client\Cisco AnyConnect Secure Mobility Client.lnk -> C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe (Cisco Systems, Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Camera Mouse 2018\Camera Mouse 2018.lnk -> C:\Program Files (x86)\Camera Mouse\Camera Mouse 2018\Camera Mouse 2018.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre 64bit - E-book Management\calibre 64bit - E-book management.lnk -> C:\Program Files\Calibre2\calibre.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre 64bit - E-book Management\E-book viewer 64bit.lnk -> C:\Program Files\Calibre2\ebook-viewer.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre 64bit - E-book Management\Edit E-book 64bit.lnk -> C:\Program Files\Calibre2\ebook-edit.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre 64bit - E-book Management\LRF viewer 64bit.lnk -> C:\Program Files\Calibre2\lrfviewer.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitrix24\Bitrix24.lnk -> C:\Program Files (x86)\Bitrix24\Bitrix24.exe (Bitrix)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoHotkey\AutoHotkey Help File.lnk -> C:\Program Files\AutoHotkey\AutoHotkey.chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoHotkey\AutoHotkey Setup.lnk -> C:\Program Files\AutoHotkey\Installer.ahk ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoHotkey\AutoHotkey.lnk -> C:\Program Files\AutoHotkey\AutoHotkey.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoHotkey\Convert .ahk to .exe.lnk -> C:\Program Files\AutoHotkey\Compiler\Ahk2Exe.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoHotkey\Website.lnk -> C:\Program Files\AutoHotkey\AutoHotkey Website.url ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoHotkey\Window Spy.lnk -> C:\Program Files\AutoHotkey\WindowSpy.ahk ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Artensoft Photo Collage Maker Pro\Artensoft Photo Collage Maker Pro entfernen.lnk -> C:\Program Files\Artensoft Photo Collage Maker Pro\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Artensoft Photo Collage Maker Pro\Artensoft Photo Collage Maker Pro Help.lnk -> C:\Program Files\Artensoft Photo Collage Maker Pro\Artensoft_Photo_Mosaic_Wizard_EN.chm (Keine Datei)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Artensoft Photo Collage Maker Pro\Artensoft Photo Collage Maker Pro.lnk -> C:\Program Files\Artensoft Photo Collage Maker Pro\Artensoft Photo Collage Maker Pro x64.exe (Artensoft Company)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Archi4\Archi.lnk -> C:\Program Files\Archi4\Archi.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Archi4\Docs.lnk -> C:\Program Files\Archi4\docs ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Archi4\Uninstall Archi.lnk -> C:\Program Files\Archi4\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apowersoft\GitMind.lnk -> C:\Program Files (x86)\Apowersoft\GitMind\GitMind.exe (Apowersoft)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apowersoft\ApowerMirror\ApowerMirror entfernen.lnk -> C:\Program Files (x86)\Apowersoft\ApowerMirror\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apowersoft\ApowerMirror\ApowerMirror.lnk -> C:\Program Files (x86)\Apowersoft\ApowerMirror\ApowerMirror.exe (Apowersoft)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apowersoft\ApowerManager\ApowerManager entfernen.lnk -> C:\Program Files (x86)\Apowersoft\ApowerManager\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apowersoft\ApowerManager\ApowerManager.lnk -> C:\Program Files (x86)\Apowersoft\ApowerManager\ApowerManager.exe (Apowersoft Ltd.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Amazon Redshift ODBC Driver (64-bit)\64-bit ODBC Administrator.lnk -> C:\Windows\System32\odbcad32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe\Adobe Digital Editions 4.5\Adobe Digital Editions 4.5.lnk -> C:\Program Files (x86)\Adobe\Adobe Digital Editions 4.5\DigitalEditions.exe (Adobe Systems Incorporated)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe\Adobe Digital Editions 4.5\Help.lnk -> C:\Program Files (x86)\Adobe\Adobe Digital Editions 4.5\DigitalEditions.exe (Adobe Systems Incorporated)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe\Adobe Digital Editions 4.5\Home Page.lnk -> C:\Program Files (x86)\Adobe\Adobe Digital Editions 4.5\DigitalEditions.exe (Adobe Systems Incorporated)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe\Adobe Digital Editions 4.5\Uninstall.lnk -> C:\Program Files (x86)\Adobe\Adobe Digital Editions 4.5\uninstall.exe (Adobe Systems Incorporated)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Component Services.lnk -> C:\Windows\System32\comexp.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\dfrgui.lnk -> C:\Windows\System32\dfrgui.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Disk Cleanup.lnk -> C:\Windows\System32\cleanmgr.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\iSCSI Initiator.lnk -> C:\Windows\System32\iscsicpl.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Memory Diagnostics Tool.lnk -> C:\Windows\System32\MdSched.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\ODBC Data Sources (32-bit).lnk -> C:\Windows\SysWOW64\odbcad32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\ODBC Data Sources (64-bit).lnk -> C:\Windows\System32\odbcad32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Print Management.lnk -> C:\Windows\System32\printmanagement.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\RecoveryDrive.lnk -> C:\Windows\System32\RecoveryDrive.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Registry Editor.lnk -> C:\Windows\regedit.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk -> C:\Windows\System32\services.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\System Configuration.lnk -> C:\Windows\System32\msconfig.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\System Information.lnk -> C:\Windows\System32\msinfo32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows Defender Firewall with Advanced Security.lnk -> C:\Windows\System32\WF.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Math Input Panel.lnk -> C:\Program Files\Common Files\Microsoft Shared\ink\mip.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Paint.lnk -> C:\Windows\System32\mspaint.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Quick Assist.lnk -> C:\Windows\System32\quickassist.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Remote Desktop Connection.lnk -> C:\Windows\System32\mstsc.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Snipping Tool.lnk -> C:\Windows\System32\SnippingTool.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Steps Recorder.lnk -> C:\Windows\System32\psr.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Fax and Scan.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Wordpad.lnk -> C:\Program Files\Windows NT\Accessories\wordpad.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\XPS Viewer.lnk -> C:\Windows\System32\xpsrchvw.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Character Map.lnk -> C:\Windows\System32\charmap.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip\7-Zip File Manager.lnk -> C:\Program Files\7-Zip\7zFM.exe (Igor Pavlov)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip\7-Zip Help.lnk -> C:\Program Files\7-Zip\7-zip.chm ()
Shortcut: C:\Users\Default\Links\OneDrive.lnk -> C:\Program Files (x86)\Microsoft OneDrive\OneDriveSetup.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive (1).lnk -> C:\Program Files (x86)\Microsoft OneDrive\OneDriveSetup.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk -> C:\Users\Tino\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\computer.lnk -> C:\Windows\explorer.exe,-30
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Control Panel.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\File Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Run.lnk -> C:\Windows\System32\shell32.dll (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\01 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\01a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\02 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\02a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\03 - Computer Management.lnk -> C:\Windows\System32\compmgmt.msc ()
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\04 - Disk Management.lnk -> C:\Windows\System32\diskmgmt.msc ()
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\07 - Event Viewer.lnk -> C:\Windows\System32\eventvwr.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\09 - Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\4 - Control Panel.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation)
Shortcut: C:\Users\defaultuser100000\Links\OneDrive.lnk -> C:\Program Files (x86)\Microsoft OneDrive\OneDriveSetup.exe (Microsoft Corporation)
Shortcut: C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive (1).lnk -> C:\Program Files (x86)\Microsoft OneDrive\OneDriveSetup.exe (Microsoft Corporation)
Shortcut: C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk -> C:\Users\Tino\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation)
Shortcut: C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\computer.lnk -> C:\Windows\explorer.exe,-30
Shortcut: C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Control Panel.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\File Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Run.lnk -> C:\Windows\System32\shell32.dll (Microsoft Corporation)
Shortcut: C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\defaultuser100000\AppData\Local\Microsoft\Windows\WinX\Group3\01 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\defaultuser100000\AppData\Local\Microsoft\Windows\WinX\Group3\01a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\defaultuser100000\AppData\Local\Microsoft\Windows\WinX\Group3\02 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\defaultuser100000\AppData\Local\Microsoft\Windows\WinX\Group3\02a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\defaultuser100000\AppData\Local\Microsoft\Windows\WinX\Group3\03 - Computer Management.lnk -> C:\Windows\System32\compmgmt.msc ()
Shortcut: C:\Users\defaultuser100000\AppData\Local\Microsoft\Windows\WinX\Group3\04 - Disk Management.lnk -> C:\Windows\System32\diskmgmt.msc ()
Shortcut: C:\Users\defaultuser100000\AppData\Local\Microsoft\Windows\WinX\Group3\07 - Event Viewer.lnk -> C:\Windows\System32\eventvwr.exe (Microsoft Corporation)
Shortcut: C:\Users\defaultuser100000\AppData\Local\Microsoft\Windows\WinX\Group3\09 - Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation)
Shortcut: C:\Users\defaultuser100000\AppData\Local\Microsoft\Windows\WinX\Group2\4 - Control Panel.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation)
Shortcut: C:\Users\Public\Desktop\Adobe Creative Cloud.lnk -> C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Inc.)
Shortcut: C:\Users\Public\Desktop\Bitrix24.lnk -> C:\Program Files (x86)\Bitrix24\Bitrix24.exe (Bitrix)
Shortcut: C:\Users\Public\Desktop\Citavi 6.lnk -> C:\Program Files (x86)\Citavi 6\bin\Citavi.exe (Swiss Academic Software)
Shortcut: C:\Users\Public\Desktop\ClipGrab.lnk -> C:\Program Files (x86)\ClipGrab\clipgrab.exe ()
Shortcut: C:\Users\Public\Desktop\GitMind.lnk -> C:\Program Files (x86)\Apowersoft\GitMind\GitMind.exe (Apowersoft)
Shortcut: C:\Users\Public\Desktop\GOG GALAXY.lnk -> C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe (GOG.com)
Shortcut: C:\Users\Public\Desktop\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation)
Shortcut: C:\Users\Public\Desktop\PDF-XChange Editor.lnk -> C:\Program Files\Tracker Software\PDF Editor\PDFXEdit.exe (Tracker Software Products (Canada) Ltd.)
Shortcut: C:\Users\Public\Desktop\ProtonVPN.lnk -> C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.exe ()
Shortcut: C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk -> C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe (TeamSpeak Systems GmbH)
Shortcut: C:\Users\Tino\Music\Downloads - Verknüpfung.lnk -> C:\Users\Tino\Downloads ()
Shortcut: C:\Users\Tino\Links\Bitrix24.lnk -> C:\Users\Tino\Documents\Bitrix24 ()
Shortcut: C:\Users\Tino\Links\Desktop.lnk -> C:\Users\Tino\Desktop ()
Shortcut: C:\Users\Tino\Links\Downloads.lnk -> C:\Users\Tino\Downloads ()
Shortcut: C:\Users\Tino\Links\Dropbox.lnk -> C:\Users\Tino\Dropbox ()
Shortcut: C:\Users\Tino\Links\LRZ Sync+Share.lnk -> C:\Users\Tino\LRZ Sync+Share ()
Shortcut: C:\Users\Tino\Documents\Verschiedenes\Zu Sortieren - Verschiedenes 11Mar20\Acrobat Reader DC.lnk -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe (Adobe Systems Incorporated)
Shortcut: C:\Users\Tino\Documents\Verschiedenes\Zu Sortieren - Verschiedenes 11Mar20\Adobe Creative Cloud.lnk -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Inc.)
Shortcut: C:\Users\Tino\Documents\Verschiedenes\Zu Sortieren - Verschiedenes 11Mar20\AnyTrans.lnk -> C:\Program Files (x86)\iMobie\AnyTrans\AnyTrans.exe (iMobie Inc.)
Shortcut: C:\Users\Tino\Documents\Verschiedenes\Zu Sortieren - Verschiedenes 11Mar20\ApowerMirror.lnk -> C:\Program Files (x86)\Apowersoft\ApowerMirror\ApowerMirror.exe (Apowersoft)
Shortcut: C:\Users\Tino\Documents\Verschiedenes\Zu Sortieren - Verschiedenes 11Mar20\Citavi 5.lnk -> C:\Program Files (x86)\Citavi 5\bin\Citavi.exe (Keine Datei)
Shortcut: C:\Users\Tino\Documents\Verschiedenes\Zu Sortieren - Verschiedenes 11Mar20\Cossacks - Back To War.lnk -> C:\GOG Games\Cossacks - Back To War\Cossacks.exe (Keine Datei)
Shortcut: C:\Users\Tino\Documents\Verschiedenes\Zu Sortieren - Verschiedenes 11Mar20\Dragon.lnk -> C:\Windows\Installer\{768AC460-237E-45B6-99B8-1DE6D0F391E8}\NatSpeakD_Shortcut_768AC460237E45B699B81DE6D0F391E8.exe (Flexera Software LLC)
Shortcut: C:\Users\Tino\Documents\Verschiedenes\Zu Sortieren - Verschiedenes 11Mar20\Evernote.lnk -> C:\Windows\Installer\{A46ABD1E-2837-11E6-9E7C-005056951CAD}\Evernote.ico ()
Shortcut: C:\Users\Tino\Documents\Verschiedenes\Zu Sortieren - Verschiedenes 11Mar20\iTunes.lnk -> C:\Program Files\iTunes\iTunes.exe (Apple Inc.)
Shortcut: C:\Users\Tino\Documents\Verschiedenes\Zu Sortieren - Verschiedenes 11Mar20\LRZ Sync+Share.lnk -> C:\Users\Tino\LRZ Sync+Share ()
Shortcut: C:\Users\Tino\Documents\Verschiedenes\Zu Sortieren - Verschiedenes 11Mar20\MAXQDA 12.lnk -> C:\Program Files (x86)\MAXQDA12\MAXQDA12.exe (Keine Datei)
Shortcut: C:\Users\Tino\Documents\Verschiedenes\Zu Sortieren - Verschiedenes 11Mar20\Microsoft Edge.lnk -> Tile and icon assets
Shortcut: C:\Users\Tino\Documents\Verschiedenes\Zu Sortieren - Verschiedenes 11Mar20\Mozilla Thunderbird.lnk -> C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe (Mozilla Corporation)
Shortcut: C:\Users\Tino\Documents\Verschiedenes\Zu Sortieren - Verschiedenes 11Mar20\Nitro Pro.lnk -> C:\Program Files\Nitro\Pro 11\NitroPDF.exe (Nitro PDF)
Shortcut: C:\Users\Tino\Documents\Verschiedenes\Zu Sortieren - Verschiedenes 11Mar20\QuickTime Player.lnk -> C:\Program Files (x86)\QuickTime\QuickTimePlayer.exe (Apple Inc.)
Shortcut: C:\Users\Tino\Documents\Verschiedenes\Zu Sortieren - Verschiedenes 11Mar20\Smyle Mouse.lnk -> C:\Program Files (x86)\Perceptive Devices\Smyle Mouse\SmyleMouse.exe ()
Shortcut: C:\Users\Tino\Documents\Verschiedenes\Zu Sortieren - Verschiedenes 11Mar20\Trading.lnk -> C:\Jts\generic\tws.exe (IB Exchange Corp.)
Shortcut: C:\Users\Tino\Documents\Spiele\Star Wars - Battlefront 2\Launch STAR WARS Battlefront II.lnk -> C:\GOG Games\Star Wars - Battlefront 2\SWB2Launcher.exe (Keine Datei)
Shortcut: C:\Users\Tino\Documents\Spiele\Age of Empires2\Support\The Conquerors - MFill.lnk -> I:\Programme\Age of Empires2\Age2_X1\age2_x1.Exe (Keine Datei)
Shortcut: C:\Users\Tino\Documents\Spiele\Age of Empires2\Support\The Conquerors - MSync.lnk -> I:\Programme\Age of Empires2\Age2_X1\age2_x1.Exe (Keine Datei)
Shortcut: C:\Users\Tino\Documents\Spiele\Age of Empires2\Support\The Conquerors - NoMusic.lnk -> I:\Programme\Age of Empires2\Age2_X1\age2_x1.Exe (Keine Datei)
Shortcut: C:\Users\Tino\Documents\Spiele\Age of Empires2\Support\The Conquerors - NormalMouse.lnk -> I:\Programme\Age of Empires2\Age2_X1\age2_x1.Exe (Keine Datei)
Shortcut: C:\Users\Tino\Documents\Spiele\Age of Empires2\Support\The Conquerors - NoSC.lnk -> I:\Programme\Age of Empires2\Age2_X1\age2_x1.Exe (Keine Datei)
Shortcut: C:\Users\Tino\Documents\Spiele\Age of Empires2\Support\The Conquerors - NoSound.lnk -> I:\Programme\Age of Empires2\Age2_X1\age2_x1.Exe (Keine Datei)
Shortcut: C:\Users\Tino\Documents\Spiele\Age of Empires2\Support\The Conquerors - NoStartup.lnk -> I:\Programme\Age of Empires2\Age2_X1\age2_x1.Exe (Keine Datei)
Shortcut: C:\Users\Tino\Documents\Spiele\Age of Empires2\Support\The Conquerors - NoTerrainSound.lnk -> I:\Programme\Age of Empires2\Age2_X1\age2_x1.Exe (Keine Datei)
Shortcut: C:\Users\Tino\Documents\Spiele\Age of Empires2\age2_x1\Verknüpfung mit age2_x1.exe.lnk -> I:\Programme\Age of Empires2\age2_x1\age2_x1.exe (Keine Datei)
Shortcut: C:\Users\Tino\Documents\Finanzen\Leo\Leo\Uni\Leo Standortplanung und strategisches SCM\Ubungen\Leo Standortplanung und strategisches SCM - Verknüpfung.lnk -> C:\Users\Tino\Documents\Leo Standortplanung und strategisches SCM (Keine Datei)
Shortcut: C:\Users\Tino\Documents\Desktop Aufräum 22Sept21\EyeDefender.lnk -> C:\Program Files (x86)\EyeDefender\EyeDefender.exe ()
Shortcut: C:\Users\Tino\Documents\Desktop Aufräum 22Sept21\Opera-Browser.lnk -> C:\Users\Tino\AppData\Local\Programs\Opera\launcher.exe (Opera Software)
Shortcut: C:\Users\Tino\Documents\Desktop Aufräum 22Sept21\Toolkit.lnk -> C:\Program Files (x86)\Toolkit\Toolkit.exe (Seagate Technology LLC)
Shortcut: C:\Users\Tino\Documents\Adobe\After Effects CC 2017\User Presets\(Adobe).lnk -> C:\Program Files\Adobe\Adobe After Effects CC 2017\Support Files\Presets (Keine Datei)
Shortcut: C:\Users\Tino\Creative Cloud Files\_Cloud-Dokumente.lnk -> C:\Program Files (x86)\Adobe\Adobe Sync\CoreSync\CoreSync.exe ()
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ableton Live 10 Lite.lnk -> C:\ProgramData\Ableton\Live 10 Lite\Program\Ableton Live 10 Lite.exe (Ableton)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\f.lux.lnk -> C:\Users\Tino\AppData\Local\FluxSoftware\Flux\flux.exe (f.lux Software LLC)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive (1).lnk -> C:\Program Files (x86)\Microsoft OneDrive\OneDriveSetup.exe (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive (2).lnk -> C:\Users\Tino\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk -> C:\Users\Tino\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Opera-Browser.lnk -> C:\Users\Tino\AppData\Local\Programs\Opera\launcher.exe (Opera Software)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Optionale Features.lnk -> C:\Windows\System32\fodhelper.exe (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Outlook.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk -> C:\Users\Tino\AppData\Roaming\Spotify\Spotify.exe (Spotify Ltd)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Toolkit.lnk -> C:\Program Files (x86)\Toolkit\Toolkit.exe (Seagate Technology LLC)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TreeSizeFree.lnk -> C:\Program Files (x86)\JAM Software\TreeSize Free\TreeSizeFree.exe (JAM Software)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom\Zoom.lnk -> C:\Users\Tino\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc.)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell ISE (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell ISE.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Trading\Trading Deinstallationsprogramm.lnk -> C:\Jts\generic\uninstall.exe (IB Exchange Corp.)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Trading\Trading.lnk -> C:\Jts\generic\tws.exe (IB Exchange Corp.)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\computer (1).lnk -> C:\Windows\explorer.exe,-30
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\computer.lnk -> C:\Windows\explorer.exe,-30
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Control Panel (1).lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Control Panel.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\File Explorer (1).lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\File Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Run (1).lnk -> C:\Windows\System32\shell32.dll (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Run.lnk -> C:\Windows\System32\shell32.dll (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\Steam.lnk -> C:\Program Files (x86)\Steam\steam.exe (Valve Corporation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ausschneiden shortcut.ahs - Verknüpfung.lnk -> C:\Users\Tino\Documents\Desktop aufräum 16Nov20\Aufräum22Aug20\ausschneiden shortcut.ahs (Keine Datei)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sky Ticket\Sky Ticket.lnk -> C:\Users\Tino\AppData\Roaming\Sky Ticket\Sky Ticket\Sky Ticket.exe (Sky Ticket)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Python 3.6\Python 3.6 (32-bit).lnk -> C:\Users\Tino\AppData\Local\Programs\Python\Python36-32\python.exe (Python Software Foundation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PCsensor\FootSwitch\FootSwitch V7.0.3.lnk -> C:\Users\Tino\AppData\Roaming\Microsoft\Installer\{7BD5E046-6535-4983-AD88-D6C9A9FA8081}\_23EC6EA8D137C9092B6088.exe ()
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mplus Version 8.4 Demo\Mplus Demo Editor.lnk -> C:\Users\Tino\AppData\Roaming\Microsoft\Installer\{9654A20E-7892-4EB5-87C1-58BEBBB981F8}\Mpdwin.exe_FC70C8F144E1413EA5B14DE5A608F0A0.exe (Flexera)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Eclipse\Eclipse Java Neon.lnk -> C:\Users\Tino\eclipse\java-neon\eclipse\eclipse.exe ()
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CopyTrans Control Center\CopyTrans Control Center.lnk -> C:\Users\Tino\AppData\Roaming\WindSolutions\CopyTransControlCenter\Applications\CopyTransControlCenter.exe (Keine Datei)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CopyTrans Control Center\Deinstallieren.lnk -> C:\Users\Tino\AppData\Roaming\WindSolutions\CopyTransControlCenter\Applications\CopyTransControlCenter.exe (Keine Datei)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Amazon\Amazon Kindle\Kindle.lnk -> C:\Users\Tino\AppData\Local\Amazon\Kindle\application\Kindle.exe (Amazon.com)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Amazon\Amazon Kindle\Uninstall Kindle.lnk -> C:\Users\Tino\AppData\Local\Amazon\Kindle\application\uninstall.exe (Amazon.com)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\4K Video Downloader\4K Video Downloader.lnk -> C:\Program Files (x86)\4KDownload\4kvideodownloader\4kvideodownloader.exe (Open Media LLC)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\SendTo\Bluetooth-Dateiübertragung.LNK -> C:\Windows\System32\fsquirt.exe (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\SendTo\Dropbox.lnk -> C:\Users\Tino\Dropbox ()
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\SendTo\Evernote.lnk -> C:\Program Files (x86)\Evernote\Evernote\Evernote.exe (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\SendTo\PDF24.lnk -> C:\Program Files (x86)\PDF24\pdf24-DocTool.exe (Geek Software GmbH)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\AnyTrans.lnk -> C:\Program Files (x86)\iMobie\AnyTrans\AnyTrans.exe (iMobie Inc.)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\LRZ Sync+Share.lnk -> C:\Program Files (x86)\Leibniz-Rechenzentrum\LRZ_Sync_Share\LRZ_Sync_Share.exe (Leibniz-Rechenzentrum)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop (1).lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Smyle Mouse.lnk -> C:\Program Files (x86)\Perceptive Devices\Smyle Mouse\SmyleMouse.exe ()
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher (1).lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Dragon DragonBar.lnk -> C:\Program Files (x86)\Common Files\Nuance\NaturallySpeaking15\dragonbar.exe (Nuance Communications, Inc.)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\File Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Opera-Browser.lnk -> C:\Users\Tino\AppData\Local\Programs\Opera\launcher.exe (Opera Software)
Shortcut: C:\Users\Tino\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Spotify.lnk -> C:\Users\Tino\AppData\Roaming\Spotify\Spotify.exe (Spotify Ltd)
Shortcut: C:\Users\Tino\AppData\Local\Microsoft\Windows\WinX\Group3\01 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Local\Microsoft\Windows\WinX\Group3\01a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Local\Microsoft\Windows\WinX\Group3\02 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Local\Microsoft\Windows\WinX\Group3\02a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Local\Microsoft\Windows\WinX\Group3\03 - Computer Management.lnk -> C:\Windows\System32\compmgmt.msc ()
Shortcut: C:\Users\Tino\AppData\Local\Microsoft\Windows\WinX\Group3\04 - Disk Management.lnk -> C:\Windows\System32\diskmgmt.msc ()
Shortcut: C:\Users\Tino\AppData\Local\Microsoft\Windows\WinX\Group3\07 - Event Viewer.lnk -> C:\Windows\System32\eventvwr.exe (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Local\Microsoft\Windows\WinX\Group3\09 - Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation)
Shortcut: C:\Users\Tino\AppData\Local\Microsoft\Windows\WinX\Group2\4 - Control Panel.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation)
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mouse Properties (Touchpad Clickpad Trackpad TrackPoint Mouse Pointer Pointing Pad).lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> mouse
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VLC media player - reset preferences and cache files.lnk -> C:\Program Files\VideoLAN\VLC\vlc.exe (VideoLAN) -> --reset-config --reset-plugins-cache vlc://quit
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VLC media player skinned.lnk -> C:\Program Files\VideoLAN\VLC\vlc.exe (VideoLAN) -> -Iskins
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TreeSize Free\TreeSize Free.lnk -> C:\Program Files (x86)\JAM Software\TreeSize Free\TreeSizeFree.exe (JAM Software) -> /NOADMIN
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tracker Software\PDF-XChange Lite\PDF-XChange Lite pdfSaver.lnk -> C:\Program Files\Tracker Software\PDF-XChange Lite\pdfSaverL.exe (Tracker Software Products (Canada) Ltd.) -> /Show
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools\Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /7
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SteuerSparErklärung 2016\Programm-Module\Feststellungserklärung 2015.lnk -> C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\SteuerSparErklaerung 2016\SSE.exe (Akademische Arbeitsgemeinschaft Verlag) -> -mfest
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SteuerSparErklärung 2016\Programm-Module\Gewinn-Erfassung 2016.lnk -> C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\SteuerSparErklaerung 2016\SSE.exe (Akademische Arbeitsgemeinschaft Verlag) -> -meinurvor
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SteuerSparErklärung 2016\Programm-Module\Gewinnermittlung 2015.lnk -> C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\SteuerSparErklaerung 2016\SSE.exe (Akademische Arbeitsgemeinschaft Verlag) -> -meinur
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SteuerSparErklärung 2016\Programm-Module\Lohnsteuer-Ermäßigung 2016.lnk -> C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\SteuerSparErklaerung 2016\SSE.exe (Akademische Arbeitsgemeinschaft Verlag) -> -mermaess
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SteuerSparErklärung 2016\Programm-Module\Steuererklärung 2015.lnk -> C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\SteuerSparErklaerung 2016\SSE.exe (Akademische Arbeitsgemeinschaft Verlag) -> -mnormal
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SteuerSparErklärung 2016\Programm-Module\Steuerprognose 2016.lnk -> C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\SteuerSparErklaerung 2016\SSE.exe (Akademische Arbeitsgemeinschaft Verlag) -> -mvorweg
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SteuerSparErklärung 2016\Informationen und Hilfe\SteuerSparErklärung 2016 deinstallieren.lnk -> C:\Windows\SysWOW64\msiexec.exe (Microsoft Corporation) -> /x {D331D50C-C578-423B-8BC7-94D3133CE315}
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R\R i386 4.0.0.lnk -> C:\Program Files\R\R-4.0.0\bin\i386\Rgui.exe () -> --cd-to-userdocs
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R\R x64 4.0.0.lnk -> C:\Program Files\R\R-4.0.0\bin\x64\Rgui.exe () -> --cd-to-userdocs
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime\QuickTime deinstallieren.lnk -> C:\Windows\SysWOW64\msiexec.exe (Microsoft Corporation) -> /i {FF59BD75-466A-4D5A-AD23-AAD87C5FD44C} /qf
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools\Database Compare.lnk -> C:\Program Files (x86)\Microsoft Office\root\client\AppVLP.exe (Microsoft Corporation) -> "C:\Program Files (x86)\Microsoft Office\Root\Office16\DCF\DATABASECOMPARE.EXE"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools\Spreadsheet Compare.lnk -> C:\Program Files (x86)\Microsoft Office\root\client\AppVLP.exe (Microsoft Corporation) -> "C:\Program Files (x86)\Microsoft Office\Root\Office16\DCF\SPREADSHEETCOMPARE.EXE"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2016-Tools\Database Compare.lnk -> C:\Program Files (x86)\Microsoft Office\root\client\AppVLP.exe (Microsoft Corporation) -> "C:\Program Files (x86)\Microsoft Office\Root\Office16\DCF\DATABASECOMPARE.EXE"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2016-Tools\Office Upload Center.lnk -> C:\Program Files (x86)\Microsoft Office\root\client\AppVLP.exe (Microsoft Corporation) -> "C:\Program Files (x86)\Microsoft Office\Root\Office16\MSOUC.EXE"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2016-Tools\Spreadsheet Compare.lnk -> C:\Program Files (x86)\Microsoft Office\root\client\AppVLP.exe (Microsoft Corporation) -> "C:\Program Files (x86)\Microsoft Office\Root\Office16\DCF\SPREADSHEETCOMPARE.EXE"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 6.3\LibreOffice (abgesicherter Modus).lnk -> C:\Program Files\LibreOffice\program\soffice.exe (The Document Foundation) -> --safe-mode
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Auf Updates prüfen.lnk -> C:\Program Files\Java\jre1.8.0_171\bin\javacpl.exe (Oracle Corporation) -> -tab update
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Info zu Java.lnk -> C:\Program Files\Java\jre1.8.0_171\bin\javacpl.exe (Oracle Corporation) -> -tab about
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud\E-Mails.lnk -> C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudWeb.exe (Apple Inc.) -> mail
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud\Erinnerungen.lnk -> C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudWeb.exe (Apple Inc.) -> reminders
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud\iPhone suchen.lnk -> C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudWeb.exe (Apple Inc.) -> find
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud\Kalender.lnk -> C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudWeb.exe (Apple Inc.) -> calendar
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud\Keynote.lnk -> C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudWeb.exe (Apple Inc.) -> keynote
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud\Kontakte.lnk -> C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudWeb.exe (Apple Inc.) -> contacts
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud\Notizen.lnk -> C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudWeb.exe (Apple Inc.) -> notes
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud\Numbers.lnk -> C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudWeb.exe (Apple Inc.) -> numbers
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud\Pages.lnk -> C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudWeb.exe (Apple Inc.) -> pages
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IBM SPSS Statistics\IBM SPSS Statistics 24 Lizenzautorisierungsassistent.lnk -> C:\Program Files\IBM\SPSS\Statistics\24\law.exe (IBM Corp.) -> -is:javahome "C:\Program Files\IBM\SPSS\Statistics\24\JRE" -s:silent
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IBM SPSS Statistics\IBM SPSS Statistics 24 Pendlerlizenz.lnk -> C:\Program Files\IBM\SPSS\Statistics\24\JRE\bin\javaw.exe (IBM) -> -Djava.library.path=. -jar licensecommute.jar
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP Deskjet 3520 series\HP Deskjet 3520 series.lnk -> C:\Program Files\HP\HP Deskjet 3520 series\Bin\HP Deskjet 3520 series.exe (Hewlett-Packard Co.) -> -Start UDCDevicePage
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox\Dropbox.lnk -> C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc.) -> /home
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dragon\Beispielskripts.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> C:\ProgramData\Nuance\NaturallySpeaking15\Data\deu\samplecommands
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dragon\Dragon.log anzeigen.lnk -> C:\Windows\Installer\{768AC460-237E-45B6-99B8-1DE6D0F391E8}\Dragonlog_Shortcut_768AC460237E45B699B81DE6D0F391E8.exe (Flexera Software LLC) -> /finddragonlog
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dragon\Info über Dragon.lnk -> C:\Program Files (x86)\Nuance\NaturallySpeaking15\Program\natspeak.exe (Nuance Communications, Inc.) -> /About
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dragon\Dragon-Werkzeuge\Dragon service.lnk -> C:\Windows\SysWOW64\cmd.exe (Microsoft Corporation) -> /k "C:\Program Files (x86)\Common Files\Nuance\dgnsvc.exe"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dragon\Dragon-Werkzeuge\Konvertierung von XML zu DAT.lnk -> C:\Windows\SysWOW64\cmd.exe (Microsoft Corporation) -> /k "C:\Program Files (x86)\Nuance\NaturallySpeaking15\Program\mycmdsxml2dat.exe"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dragon\Dragon-Werkzeuge\MyCommands Protection Utility.lnk -> C:\Windows\SysWOW64\cmd.exe (Microsoft Corporation) -> /k "C:\Program Files (x86)\Nuance\NaturallySpeaking15\Program\protectcmds.exe"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dragon\Dragon-Werkzeuge\NSAdmin.lnk -> C:\Windows\SysWOW64\cmd.exe (Microsoft Corporation) -> /k "C: && cd "C:\Program Files (x86)\Nuance\NaturallySpeaking15\Program" && "C:\Program Files (x86)\Nuance\NaturallySpeaking15\Program\nsadmin.exe""
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Amazon Redshift ODBC Driver (64-bit)\Uninstall Amazon Redshift (x64).lnk -> C:\Windows\System32\msiexec.exe (Microsoft Corporation) -> /x {960BF695-03D5-48CF-9DC2-6AC5800C4FBE}
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Computer Management.lnk -> C:\Windows\System32\compmgmt.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Event Viewer.lnk -> C:\Windows\System32\eventvwr.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Performance Monitor.lnk -> C:\Windows\System32\perfmon.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Resource Monitor.lnk -> C:\Windows\System32\perfmon.exe (Microsoft Corporation) -> /res
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Security Configuration Management.lnk -> C:\Windows\System32\secpol.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Task Scheduler.lnk -> C:\Windows\System32\taskschd.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Media Player.lnk -> C:\Program Files (x86)\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility\Speech Recognition.lnk -> C:\Windows\Speech\Common\sapisvr.exe (Microsoft Corporation) -> -SpeechUX
ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Administrative Tools.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.AdministrativeTools
ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\SendTo\TeamViewer.lnk -> C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH) -> --sendto
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\04-1 - NetworkStatus.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageNetworkStatus
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\05 - Device Manager.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DeviceManager
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\06 - SystemAbout.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPagePCSystemInfo
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\08 - PowerAndSleep.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageScreenPowerAndSleep
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\10 - AppsAndFeatures.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageAppsSizes
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\1 - Run.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f3-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\2 - Search.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f8-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\3 - Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{52205fd8-5dfb-447d-801a-d0b52f2e83e1}
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\5 - Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /0
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group1\1 - Desktop.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{3080F90D-D7AD-11D9-BD98-0000947B0257}
ShortcutWithArgument: C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Administrative Tools.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.AdministrativeTools
ShortcutWithArgument: C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Windows\SendTo\TeamViewer.lnk -> C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH) -> --sendto
ShortcutWithArgument: C:\Users\defaultuser100000\AppData\Local\Microsoft\Windows\WinX\Group3\04-1 - NetworkStatus.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageNetworkStatus
ShortcutWithArgument: C:\Users\defaultuser100000\AppData\Local\Microsoft\Windows\WinX\Group3\05 - Device Manager.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DeviceManager
ShortcutWithArgument: C:\Users\defaultuser100000\AppData\Local\Microsoft\Windows\WinX\Group3\06 - SystemAbout.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPagePCSystemInfo
ShortcutWithArgument: C:\Users\defaultuser100000\AppData\Local\Microsoft\Windows\WinX\Group3\08 - PowerAndSleep.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageScreenPowerAndSleep
ShortcutWithArgument: C:\Users\defaultuser100000\AppData\Local\Microsoft\Windows\WinX\Group3\10 - AppsAndFeatures.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageAppsSizes
ShortcutWithArgument: C:\Users\defaultuser100000\AppData\Local\Microsoft\Windows\WinX\Group2\1 - Run.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f3-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\defaultuser100000\AppData\Local\Microsoft\Windows\WinX\Group2\2 - Search.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f8-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\defaultuser100000\AppData\Local\Microsoft\Windows\WinX\Group2\3 - Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{52205fd8-5dfb-447d-801a-d0b52f2e83e1}
ShortcutWithArgument: C:\Users\defaultuser100000\AppData\Local\Microsoft\Windows\WinX\Group2\5 - Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /0
ShortcutWithArgument: C:\Users\defaultuser100000\AppData\Local\Microsoft\Windows\WinX\Group1\1 - Desktop.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{3080F90D-D7AD-11D9-BD98-0000947B0257}
ShortcutWithArgument: C:\Users\Tino\Documents\Desktop Aufräum 22Sept21\Microsoft Teams.lnk -> C:\Users\Tino\AppData\Local\Microsoft\Teams\Update.exe (Microsoft Corporation) -> --processStart "Teams.exe"
ShortcutWithArgument: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk -> C:\Users\Tino\AppData\Local\Microsoft\Teams\Update.exe (Microsoft Corporation) -> --processStart "Teams.exe"
ShortcutWithArgument: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom\Uninstall Zoom.lnk -> C:\Users\Tino\AppData\Roaming\Zoom\uninstall\Installer.exe (Zoom Video Communications, Inc.) -> /uninstall
ShortcutWithArgument: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Administrative Tools.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.AdministrativeTools
ShortcutWithArgument: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\An OneNote senden.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation) -> /tsr
ShortcutWithArgument: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Tintenwarnungen überwachen - HP Deskjet 3520 series (Netzwerk).lnk -> C:\Windows\System32\rundll32.exe (Microsoft Corporation) -> "C:\Program Files\HP\HP Deskjet 3520 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN27J1204Q05SY;CONNECTION=NW;MONITOR=1;
ShortcutWithArgument: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spencer Sharkey\Revive Launcher.lnk -> C:\Users\Tino\AppData\Local\bf2battlelog\Update.exe (GitHub) -> --processStart Revive-Launcher.exe
ShortcutWithArgument: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Python 3.6\IDLE (Python 3.6 32-bit).lnk -> C:\Users\Tino\AppData\Local\Programs\Python\Python36-32\pythonw.exe (Python Software Foundation) -> "C:\Users\Tino\AppData\Local\Programs\Python\Python36-32\Lib\idlelib\idle.pyw"
ShortcutWithArgument: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Python 3.6\Python 3.6 Module Docs (32-bit).lnk -> C:\Users\Tino\AppData\Local\Programs\Python\Python36-32\python.exe (Python Software Foundation) -> -m pydoc -b
ShortcutWithArgument: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mplus Version 8.4 Demo\Uninstall Mplus Demo.lnk -> C:\Windows\SysWOW64\msiexec.exe (Microsoft Corporation) -> /x {9654A20E-7892-4EB5-87C1-58BEBBB981F8}
ShortcutWithArgument: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bitrix24\Bitrix24.lnk -> C:\Program Files (x86)\Bitrix24\Bitrix24.exe (Bitrix) -> --from-start-menu
ShortcutWithArgument: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\SendTo\Faxempfänger.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\SendTo\TeamViewer.lnk -> C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH) -> --sendto
ShortcutWithArgument: C:\Users\Tino\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Microsoft Outlook.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE (Microsoft Corporation) -> /recycle
ShortcutWithArgument: C:\Users\Tino\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation) -> --profile-directory=Default
ShortcutWithArgument: C:\Users\Tino\AppData\Local\Microsoft\Windows\WinX\Group3\04-1 - Network Connections.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> ::{7007ACC7-3202-11D1-AAD2-00805FC1270E}
ShortcutWithArgument: C:\Users\Tino\AppData\Local\Microsoft\Windows\WinX\Group3\04-1 - NetworkStatus.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageNetworkStatus
ShortcutWithArgument: C:\Users\Tino\AppData\Local\Microsoft\Windows\WinX\Group3\05 - Device Manager.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DeviceManager
ShortcutWithArgument: C:\Users\Tino\AppData\Local\Microsoft\Windows\WinX\Group3\06 - System.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.System
ShortcutWithArgument: C:\Users\Tino\AppData\Local\Microsoft\Windows\WinX\Group3\06 - SystemAbout.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPagePCSystemInfo
ShortcutWithArgument: C:\Users\Tino\AppData\Local\Microsoft\Windows\WinX\Group3\08 - Power Options.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.PowerOptions
ShortcutWithArgument: C:\Users\Tino\AppData\Local\Microsoft\Windows\WinX\Group3\08 - PowerAndSleep.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageScreenPowerAndSleep
ShortcutWithArgument: C:\Users\Tino\AppData\Local\Microsoft\Windows\WinX\Group3\10 - AppsAndFeatures.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageAppsSizes
ShortcutWithArgument: C:\Users\Tino\AppData\Local\Microsoft\Windows\WinX\Group3\10 - Programs and Features.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.ProgramsAndFeatures
ShortcutWithArgument: C:\Users\Tino\AppData\Local\Microsoft\Windows\WinX\Group2\1 - Run.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f3-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\Tino\AppData\Local\Microsoft\Windows\WinX\Group2\2 - Search.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f8-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\Tino\AppData\Local\Microsoft\Windows\WinX\Group2\3 - Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{52205fd8-5dfb-447d-801a-d0b52f2e83e1}
ShortcutWithArgument: C:\Users\Tino\AppData\Local\Microsoft\Windows\WinX\Group2\5 - Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /0
ShortcutWithArgument: C:\Users\Tino\AppData\Local\Microsoft\Windows\WinX\Group1\1 - Desktop.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{3080F90D-D7AD-11D9-BD98-0000947B0257}
ShortcutWithArgument: C:\Users\Tino\AppData\Local\Microsoft\Edge\User Data\Default\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation) -> --profile-directory=Default
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinMerge\WinMerge im Internet.url -> URL: hxxp://winmerge.org/
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam\Steam Support Center.url -> URL: hxxp://support.steampowered.com/
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\STAR WARS Battlefront II [GOG.com]\Dokumente\Support.url -> URL: hxxp://www.gog.com/support/star_wars_battlefront_ii
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nem's Tools\GCFScape\GCFScape on the Web.url -> URL: hxxp://nemesis.thewavelength.net/index.php?p=25
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Link to Nikon\Camera Control Pro-Download Kostenlose Testversion für 30 Tage.url -> URL: hxxp://9k3x1jrq3kwx.nikonimaging.com/crosspoint/jump.cgi?R=eur&L=de&O=w&P=CCPTRI
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Link to Nikon\Capture NX-D - Download.url -> URL: hxxp://crossgate.nikonimglib.com/dsd_redirect/redirect.do?P=SwvDb60&R=uY2tB04&L=nW8Z401&O=3gGOe00
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Link to Nikon\NIKON IMAGE SPACE.url -> URL: hxxp://9k3x1jrq3kwx.nikonimaging.com/crosspoint/jump.cgi?R=eur&L=de&O=w&P=PITUTN
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Link to Nikon\Nikon Imaging-Website.url -> URL: hxxp://www.europe-nikon.com/
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Link to Nikon\Nikon RAW Codec NEF Codec-Download.url -> URL: hxxp://9k3x1jrq3kwx.nikonimaging.com/crosspoint/jump.cgi?R=eur&L=de&O=w&P=WINRCODE
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit\Referenzdokumentation.url -> URL: hxxp://docs.oracle.com/javase/8/docs
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Besuchen Sie Java.com.url -> URL: hxxp://java.com/
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Hilfe aufrufen.url -> URL: hxxp://java.com/help
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes of Might and Magic 3 Complete [GOG.com]\Dokumente\Support.url -> URL: hxxp://www.gog.com/support/heroes_of_might_and_magic_3_complete_edition
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox\Dropbox Website.URL ->
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Display Manager\Dell Display Manager im Internet.url -> URL: hxxp://www.entechtaiwan.com/
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cossacks - Back To War [GOG.com]\Documents\Support.url -> URL: hxxp://www.gog.com/support/cossacks_anthology
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ClipGrab\ClipGrab im Internet.url -> URL: hxxp://clipgrab.org
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre 64bit - E-book Management\Get Involved.url -> URL: hxxps://calibre-ebook.com/get-involved
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre 64bit - E-book Management\User Manual.url -> URL: hxxps://manual.calibre-ebook.com/
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apowersoft\ApowerMirror\ApowerMirror im Internet.url -> URL: hxxps://www.apowersoft.com/
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apowersoft\ApowerManager\ApowerManager im Internet.url -> URL: hxxps://www.apowersoft.de
InternetURL: C:\Users\Tino\Favorites\3D Raumplaner 3D Planer online kostenlos Räume einrichten.url -> URL: hxxp://www.homesolute.com/3d-raumplaner/
InternetURL: C:\Users\Tino\Favorites\American History The Modern Era - Chapter 13 Overview.url -> URL: hxxp://www.glencoe.com/sec/socialstudies/ushistory/ahme2001/chapter13/overview.html
InternetURL: C:\Users\Tino\Favorites\Barack Obama's Victory Speech - Election Results 2008 - The New York Times#.url -> URL: hxxp://elections.nytimes.com/2008/results/president/speeches/obama-victory-speech.html#
InternetURL: C:\Users\Tino\Favorites\BidVertiser - Pay Per Click Advertising On Sites Of Your Choice..url -> URL: hxxp://www.bidvertiser.com/
InternetURL: C:\Users\Tino\Favorites\Bing.url -> URL: hxxp://go.microsoft.com/fwlink/p/?LinkId=255142
InternetURL: C:\Users\Tino\Favorites\Bodybuilding.com - Paul Becker - Workout WITHOUT Weights Dynamic Tension Revised!.url -> URL: hxxp://www.bodybuilding.com/fun/becker20.htm
InternetURL: C:\Users\Tino\Favorites\Carnegie Mellon University.url -> URL: hxxp://www.cmu.edu/index.shtml
InternetURL: C:\Users\Tino\Favorites\Chiemsee Sports & Travel Bags Reisetasche auf Rollen Print M Premium 70 cm - koffer-direkt.de.url -> URL: hxxp://www.koffer-direkt.de/chiemsee-sports-travel-bags-reisetasche-auf-rollen-m-70-cm.html
InternetURL: C:\Users\Tino\Favorites\Galerie Karneval 2009, Ihr Foto vom Kölner Karneval bei report-K.de Strüßjewerfer IMG_3781.url -> URL: hxxp://www.report-k.de/karneval09/view_photo.php?set_albumName=struesjewerfer&id=IMG_3781
InternetURL: C:\Users\Tino\Favorites\GameSpot Video Star Wars The Old Republic Revealed.url -> URL: hxxp://www.gamespot.com/pc/rpg/starwarstheoldrepublic/video/6199708
InternetURL: C:\Users\Tino\Favorites\GBS Physics Home Page.url -> URL: hxxp://www.glenbrook.k12.il.us/GBSSCI/PHYS/phys.html
InternetURL: C:\Users\Tino\Favorites\Gleichsetzen von Funktionen.url -> URL: hxxp://www.mathe1.de/mathematikbuch/funktionen_gleichsetzen_165.htm
InternetURL: C:\Users\Tino\Favorites\Guitar Jam Machine.url -> URL: hxxp://www.all-guitar-chords.com/guitar_chords_jam.php
InternetURL: C:\Users\Tino\Favorites\HONORS PHYSICS.url -> URL: hxxp://www.nscollegeprep.cps.k12.il.us/ncphs/depts/science/avites/physics.htm
InternetURL: C:\Users\Tino\Favorites\Hotelreservierung.de - Best Western Cristoforo Colombo.url -> URL: hxxp://www.hotelreservierung.de/hotel/details/s2/36313/c/Mailand/t/845/type/1/la/45.4666667/lo/9.2/co/145/p/1
InternetURL: C:\Users\Tino\Favorites\How to Do Wall Pushups eHow.com.url -> URL: hxxp://www.ehow.com/how_4476298_do-wall-pushups.html
InternetURL: C:\Users\Tino\Favorites\How to earn money on the Web.url -> URL: hxxp://www.freebyte.com/makemoney/
InternetURL: C:\Users\Tino\Favorites\How to Smooth Talk Your Way out of Trouble - wikiHow.url -> URL: hxxp://www.wikihow.com/Smooth-Talk-Your-Way-out-of-Trouble
InternetURL: C:\Users\Tino\Favorites\How To Stretch Your Wrists For A Better Front Squat Experience StrongLifts.com.url -> URL: hxxp://stronglifts.com/how-to-stretch-your-wrists-for-a-better-front-squat-experience/
InternetURL: C:\Users\Tino\Favorites\http--curriculum.new-albany.k12.oh.us-krusnak-documents-reviewpage2.pdf.url -> URL: hxxp://curriculum.new-albany.k12.oh.us/krusnak/documents/reviewpage2.pdf
InternetURL: C:\Users\Tino\Favorites\http--extreme.pcgameshardware.de-rollenspiele-adventures-25176-pcgh-de-gothic-3-goetterdaemmerung-neue-screenshots-und-erste-leistungseinschaetzung-zum-add-2.html.url -> URL: hxxp://extreme.pcgameshardware.de/rollenspiele-adventures/25176-pcgh-de-gothic-3-goetterdaemmerung-neue-screenshots-und-erste-leistungseinschaetzung-zum-add-2.html
InternetURL: C:\Users\Tino\Favorites\http--homepage.mac.com-john.burk98-2nd%20Per%20Physics%201-Oct032008-U3%20Review%20Soln.pdf.pdf.url -> URL: hxxp://homepage.mac.com/john.burk98/2nd%20Per%20Physics%201/Oct032008/U3%20Review%20Soln.pdf.pdf
InternetURL: C:\Users\Tino\Favorites\http--picture.immobilienscout24.de-files-video001-619-A-541-51213207-V_S_1.pdf2891697675.url -> URL: hxxp://picture.immobilienscout24.de/files/video001/619/A/541/51213207/V_S_1.pdf?2891697675
InternetURL: C:\Users\Tino\Favorites\http--www.enotes.com-crucible-q-and-a-find-write-out-deux-quotes-for-each-following-8227.url -> URL: hxxp://www.enotes.com/crucible/q-and-a/find-write-out-deux-quotes-for-each-following-8227
InternetURL: C:\Users\Tino\Favorites\http--www.midomi.com-index.phpaction=main.search&searchTerm=sb5j02dqmgu67riigmj7ica913_1227903913491&type=voice&length=11&token=&from=landing&genre_id=&language_id=&keyword=.url -> URL: hxxp://www.midomi.com/index.php?action=main.search&searchTerm=sb5j02dqmgu67riigmj7ica913_1227903913491&type=voice&length=11&token=&from=landing&genre_id=&language_id=&keyword=
InternetURL: C:\Users\Tino\Favorites\http--www.nscollegeprep.cps.k12.il.us-ncphs-depts-science-avites-Phy-U3%20ws%204-modified%20and%20intersection.pdf.url -> URL: hxxp://www.nscollegeprep.cps.k12.il.us/ncphs/depts/science/avites/Phy-U3%20ws%204-modified%20and%20intersection.pdf
InternetURL: C:\Users\Tino\Favorites\http--www.ridetherapid.org-includes-files-routes-largeImages-1179760406_route06.jpg.url -> URL: hxxp://www.ridetherapid.org/includes/files/routes/largeImages/1179760406_route06.jpg
InternetURL: C:\Users\Tino\Favorites\iPhone 4 und 3G S News, Apps, Games - Spiele, Zubehör.url -> URL: hxxp://www.iphone-magazine.de/
InternetURL: C:\Users\Tino\Favorites\Lineare Gleichungen lösen.url -> URL: hxxp://www.mathepower.com/gleichungen.php
InternetURL: C:\Users\Tino\Favorites\List of all Bible characters and stories.url -> URL: hxxp://www.sicumc.org/oldsicumc/media/Bible_characters/Bible_Index.asp
InternetURL: C:\Users\Tino\Favorites\Mondgesänge - Comics.url -> URL: hxxp://mondgesaenge.de/ART/
InternetURL: C:\Users\Tino\Favorites\Pandora Radio - Listen to Free Internet Radio, Find New Music.url -> URL: hxxp://www.pandora.com/
InternetURL: C:\Users\Tino\Favorites\Partition Of India.url -> URL: hxxp://www.slideshare.net/jcrowder/partition-of-india
InternetURL: C:\Users\Tino\Favorites\pensive definition Dictionary.com.url -> URL: hxxp://dictionary.reference.com/browse/pensive
InternetURL: C:\Users\Tino\Favorites\Please help me. I am dieing on these problems..url -> URL: hxxp://www.physicsforums.com/showthread.php?t=133865
InternetURL: C:\Users\Tino\Favorites\Proteine Whey Protein.url -> URL: hxxp://www.whey-proteine.de/
InternetURL: C:\Users\Tino\Favorites\Redewendungen - Schreiben - Französisch - Lern-Online.net.url -> URL: hxxp://www.lern-online.net/franzoesisch/schreiben/redewendungen/redeabsicht3.php
InternetURL: C:\Users\Tino\Favorites\REMC8 Virtual Learning Environment Login to the site.url -> URL: hxxp://moodle.remc8.k12.mi.us/login/index.php
InternetURL: C:\Users\Tino\Favorites\Reverso Deutsch - English On-line Translator, Free Automatic Translation, Dictionary.url -> URL: hxxp://www.reverso.net/text_translation.asp?lang=EN&dir=german-english
InternetURL: C:\Users\Tino\Favorites\Skittles Vodka Tutorial Mix That Drink.url -> URL: hxxp://mixthatdrink.com/skittles-vodka-tutorial/
InternetURL: C:\Users\Tino\Favorites\Spot on Health.url -> URL: hxxp://www.spot-on-health.com/
InternetURL: C:\Users\Tino\Favorites\To Kill a Mockingbird Book Notes Summary by Harper Lee Plot Summary Book Notes Summary.url -> URL: hxxp://www.bookrags.com/notes/tkm/SUM.html
InternetURL: C:\Users\Tino\Favorites\Umrechnungsmasse Cup in Gramm und Fahrenheit in Celcius -amerikanisch-deutsch Sonstige Küchenthemen Forum.url -> URL: hxxp://www.chefkoch.de/forum/2,52,151781/Umrechnungsmasse-Cup-in-Gramm-und-Fahrenheit-in-Celcius-amerikanisch-deutsch.html
InternetURL: C:\Users\Tino\Favorites\UNIT III Worksheet 3.url -> URL: hxxp://www.docstoc.com/docs/2785480/UNIT-III-Worksheet-3
InternetURL: C:\Users\Tino\Favorites\USA kulinarisch - amerikanische Cup-Maße in deutsche umrechnen.url -> URL: hxxp://www.usa-kulinarisch.de/cup_tabelle1.htm
InternetURL: C:\Users\Tino\Favorites\Verb pouvoir auf Französisch konjugieren, Konjugator, Konjugationstabellen.url -> URL: hxxp://konjugator.reverso.net/konjugation-franzosisch-verb-pouvoir.html
InternetURL: C:\Users\Tino\Favorites\Wohnung Miete, Köln, Helle Wohnung im Herzen Kölns.....url -> URL: hxxp://www.immobilienscout24.de/51213207?exposeAction=ShowPictureOnPicturesTab&pictureIndexControl=0&sourceOfDoTabActionControl=LINK_TO_GALLERY&style=is24&is24EC=IS24&navigationbarurl=
InternetURL: C:\Users\Tino\Favorites\YouTube - DSDS-Birthe.url -> URL: hxxp://www.youtube.com/watch?v=XEtjJFk1Nvw
InternetURL: C:\Users\Tino\Favorites\YouTube - TV Total DSF Rätsel Beschiss!.url -> URL: hxxp://www.youtube.com/watch?v=8NHsNK8jL80&NR=1
InternetURL: C:\Users\Tino\Favorites\[Major nutrition-related risk factors of ischemic ...[Orv Hetil. 1999] - PubMed Result.url -> URL: hxxp://www.ncbi.nlm.nih.gov/pubmed/10443132?ordinalpos=3&itool=EntrezSystem2.PEntrez.Pubmed.Pubmed_ResultsPanel.Pubmed_DefaultReportPanel.Pubmed_RVDocSum
InternetURL: C:\Users\Tino\Favorites\Übersicht - GothicEditingWiki.url -> URL: hxxp://wiki.worldofgothic.de/
InternetURL: C:\Users\Tino\Favorites\Windows Live\Windows Live Gallery.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=70742
InternetURL: C:\Users\Tino\Favorites\Windows Live\Windows Live Ideas.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=72700
InternetURL: C:\Users\Tino\Favorites\Windows Live\Windows Live Mail.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=72681
InternetURL: C:\Users\Tino\Favorites\Windows Live\Windows Live Spaces.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=72682
InternetURL: C:\Users\Tino\Favorites\MSN-Websites\MSN Auto.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=72680
InternetURL: C:\Users\Tino\Favorites\MSN-Websites\MSN Fernsehen.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=72659
InternetURL: C:\Users\Tino\Favorites\MSN-Websites\MSN Money.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=72640
InternetURL: C:\Users\Tino\Favorites\MSN-Websites\MSN Nachrichten.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=72636
InternetURL: C:\Users\Tino\Favorites\MSN-Websites\MSN Sport.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=72635
InternetURL: C:\Users\Tino\Favorites\MSN-Websites\MSN.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=72630
InternetURL: C:\Users\Tino\Favorites\Microsoft-Websites\IE-Site auf Microsoft.com.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=72186
InternetURL: C:\Users\Tino\Favorites\Microsoft-Websites\Marketplace.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=72411
InternetURL: C:\Users\Tino\Favorites\Microsoft-Websites\Microsoft Deutschland GmbH.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=72520
InternetURL: C:\Users\Tino\Favorites\Microsoft-Websites\Microsoft Store.url -> URL: hxxp://go.microsoft.com/fwlink/?linkid=140813
InternetURL: C:\Users\Tino\Favorites\Microsoft-Websites\Microsoft Windows - Start.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=72629
InternetURL: C:\Users\Tino\Favorites\Microsoft-Websites\Microsoft zu Hause.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=72406
InternetURL: C:\Users\Tino\Favorites\Microsoft-Websites\Microsoft.com durchsuchen.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=72893
InternetURL: C:\Users\Tino\Favorites\Microsoft-Websites\Willkommen zu IE7.url -> URL: hxxp://go.microsoft.com/fwlink/?linkid=68919
InternetURL: C:\Users\Tino\Favorites\Links\10061_Pulheim_Titel_2011.indd.url -> URL: hxxp://www.pulheim.de/hosts/002/files/21532/9553.pdf
InternetURL: C:\Users\Tino\Favorites\Links\23 Things That Look Totally Bizarre Under A Microscope.url -> URL: hxxps://www.buzzfeed.com/kellyoakes/things-that-look-weird-under-a-microscope?utm_term=.js2KDg7La#.pvEomlrBQ
InternetURL: C:\Users\Tino\Favorites\Links\Abireise Rimini, Italien 2011 - Jugendreisen = fun-REISEN.url -> URL: hxxp://www.fun-reisen.de/Rimini-Abi
InternetURL: C:\Users\Tino\Favorites\Links\Apple.url -> URL: hxxp://www.apple.com/de/
InternetURL: C:\Users\Tino\Favorites\Links\Bing.url -> URL: hxxp://www.bing.com/
InternetURL: C:\Users\Tino\Favorites\Links\Can You Rewire Your Brain In Two Weeks- One Mans Attempt
- The Blog of Author Tim Ferriss.url -> URL: hxxp://fourhourworkweek.com/2014/09/12/muse-interaxon/
InternetURL: C:\Users\Tino\Favorites\Links\Core-Training- wie viel ist nötig- Rumpfmuskeln, Stabilisierungstraining, Krafttraining, Leistungssteigerung, Core-Stabilität - Krafttraining.url -> URL: hxxp://www.trainingsworld.com/training/krafttraining/core-training-viel-noetig-1277595.html
InternetURL: C:\Users\Tino\Favorites\Links\EISA-Awards- Fernseher von Panasonic, Philips, Samsung und Sony gewinnen.url -> URL: hxxp://www.flimmerkisten.de/eisa-awards-fernseher-panasonic-philips-samsung-sony-gewinnen-17646.html
InternetURL: C:\Users\Tino\Favorites\Links\Facebook.url -> URL: hxxps://m.facebook.com/home.php
InternetURL: C:\Users\Tino\Favorites\Links\Fahrgastrechte.url -> URL: hxxp://www.fahrgastbeirat.org/fahrgastrechte.html
InternetURL: C:\Users\Tino\Favorites\Links\Favela Wo Brasilien arm ist (WISSENSWERTES) - Stadtmagazin Witten.url -> URL: hxxp://www.stadtmag.de/cgi-bin/db/aktuell.cgi?stadt=witten&artikel=48_74
InternetURL: C:\Users\Tino\Favorites\Links\FooDDB iPhone- - iPad-App - Download - CHIP Handy Welt.url -> URL: hxxp://www.chip.de/downloads/FooDDB-iPhone-_-iPad-App_50099006.html
InternetURL: C:\Users\Tino\Favorites\Links\Gebratene Nudeln - Sonstige Kochrezepte Forum - Chefkoch.de.url -> URL: hxxp://www.chefkoch.de/forum/2,1,35214,4/Gebratene-Nudeln.html
InternetURL: C:\Users\Tino\Favorites\Links\Gen-Food- Wie groß ist das Risiko für manipuliertes Soja- - FIT FOR FUN.url -> URL: hxxp://www.fitforfun.de/abnehmen/gesund-essen/soja/gen-food-wie-gross-ist-das-risiko-fuer-genmanipuliertes-soja_aid_6889.html
InternetURL: C:\Users\Tino\Favorites\Links\Gewinnspiel zu Unknown Identity- Gewinnt eine Blu-Ray sowie eine Digitalkamera für Cinema - Seite 1 - Eurogamer.de.url -> URL: hxxp://www.eurogamer.de/articles/2011-10-08-unknown-identity-gewinnt-eine-blu-ray-sowie-eine-digitalkamera-gewinnspiel
InternetURL: C:\Users\Tino\Favorites\Links\Google.url -> URL: hxxps://www.google.com/?client=safari&channel=iphone_bm
InternetURL: C:\Users\Tino\Favorites\Links\How To Design The Perfect Nap - Lifehack.url -> URL: hxxp://www.lifehack.org/articles/lifestyle/how-to-design-the-perfect-nap.html
InternetURL: C:\Users\Tino\Favorites\Links\http--www.grantspasssportscards.com-images-1063.url -> URL: hxxp://www.grantspasssportscards.com/images/1063.jpg
InternetURL: C:\Users\Tino\Favorites\Links\Ingwer - heilsame Wurzel und exotisches Gewürz- Zingiber officinale - Eines jener Würzmittel, die immunwirksam sind.url -> URL: hxxp://www.suite101.de/content/ingwer-heilsame-wurzel-und-exotisches-gewuerz-a59977
InternetURL: C:\Users\Tino\Favorites\Links\iPhone 4 und 3G S News, Apps, Games - Spiele, Zubehör.url -> URL: hxxp://www.iphone-magazine.de/
InternetURL: C:\Users\Tino\Favorites\Links\Last Minute Reisen Lastminute Urlaub Günstig buchen!.url -> URL: hxxp://www.tce-reisen.de/query/?SF=2&msk=2&DVON=02&MVON=07.11&VON=&DBIS=17&MBIS=07.11&BIS=&reisedauer=7-7&RW=-®ION=B&ZIEL=PMI&RA=2&KA1=18&KA2=18&KA3=18&ZA=0&VA=0&ST=-&PMAX=&HOTEL=Don+Miguel+Playa&APS=10&SORT=
InternetURL: C:\Users\Tino\Favorites\Links\LEDs with more natural light developed - UPI.com.url -> URL: hxxp://m.upi.com/story/UPI-87211358548787/
InternetURL: C:\Users\Tino\Favorites\Links\Lieber ertrinken als ausbluten - Men's Health.url -> URL: hxxp://www.menshealth.de/artikel/lieber-ertrinken-als-ausbluten.6290.html
InternetURL: C:\Users\Tino\Favorites\Links\Lonely Planet- (Eine Alternative zur neuen UN-Prognose) - Demografie-Blog.url -> URL: hxxp://www.demografie-blog.de/2013/06/lonely-planet-eine-alternative-zur-neuen-un-prognose/
InternetURL: C:\Users\Tino\Favorites\Links\News- Nvidia-Skyrim-Schnitzeljagd - GameStar-PC Ultra im Wert von 1.500 Euro gewinnen - GameStar.de Mobile.url -> URL: hxxp://m.gamestar.de/news/nvidia-skyrim-schnitzeljagd,2566096.html
InternetURL: C:\Users\Tino\Favorites\Links\Notice Blechschild bei AllPosters.de.url -> URL: hxxp://www.allposters.de/-sp/Notice-Poster_i2881876_.htm
InternetURL: C:\Users\Tino\Favorites\Links\Partition Of India.url -> URL: hxxp://www.slideshare.net/jcrowder/partition-of-india
InternetURL: C:\Users\Tino\Favorites\Links\rbb Preußen-Chronik - Thema- Deutsche Einheit unter Preußens Hegemonie.url -> URL: hxxp://www.preussen-chronik.de/thema_jsp/key=thema_deutsche+einheit+unter+preu%25dfens+hegemonie.html
InternetURL: C:\Users\Tino\Favorites\Links\REM - Phasen.url -> URL: hxxp://www.infoquelle.de/Gesundheit/Wellness/REM-Phasen.php
InternetURL: C:\Users\Tino\Favorites\Links\Selbstmotivation Den inneren Schweinehund überwinden.url -> URL: hxxp://www.officeteam.de/selbstmotivation
InternetURL: C:\Users\Tino\Favorites\Links\Sicherheit im Auto- Die Hand am Lenkrad - Auto - STERN.DE.url -> URL: hxxp://www.stern.de/auto/service/sicherheit-im-auto-die-hand-am-lenkrad-599312.html
InternetURL: C:\Users\Tino\Favorites\Links\Sleeping, Dreaming, and Dying- An Exploration of Consciousness-Amazon.de-Englische Bücher.url -> URL: hxxp://www.amazon.de/gp/aw/d/0861711238/ref=mp_s_a_1_6?qid=1382352846&sr=8-6&pi=AC_SX110_SY165_QL70
InternetURL: C:\Users\Tino\Favorites\Links\Strengthen Your Neck Muscles - Men's Health News.url -> URL: hxxp://news.menshealth.com/your-body%E2%80%99s-most-neglected-muscles/2011/12/16/
InternetURL: C:\Users\Tino\Favorites\Links\Techniken für luzides Träumen.url -> URL: hxxp://www.mind-shop.de/newsdesk_info.php?newsPath=11&newsdesk_id=16
InternetURL: C:\Users\Tino\Favorites\Links\The 3 Decisions That Will Change Your Financial Life.url -> URL: hxxp://www.entrepreneur.com/article/239312
InternetURL: C:\Users\Tino\Favorites\Links\Voluntary activation of the sympathetic nervous system and attenuation of the innate immune response in humans.url -> URL: hxxps://www.ncbi.nlm.nih.gov/pmc/articles/PMC4034215/#!po=16.6667
InternetURL: C:\Users\Tino\Favorites\Links\Vorgeschlagene Sites.url -> URL: hxxps://ieonline.microsoft.com/#ieslice
InternetURL: C:\Users\Tino\Favorites\Links\Wawerko - krümelmonster kostüm - Anleitungen zum Selbermachen - Seite 2.url -> URL: hxxp://www.wawerko.de/suche/kr%C3%BCmelmonster%20kost%C3%BCm.html?start=10
InternetURL: C:\Users\Tino\Favorites\Links\Web Slice-Katalog.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=121315
InternetURL: C:\Users\Tino\Favorites\Links\WELT ONLINE.url -> URL: hxxp://m.welt.de/article.do?id=%252Fdebatte%252Fkommentare%252Farticle13939962%252FGeneration-Maybe-hat-sich-im-Entweder-oder-verrannt.html
InternetURL: C:\Users\Tino\Favorites\Links\Westerng. bis 700 Euro- Yamaha DW-15, FG-502, oder oder ---.url -> URL: hxxp://www.musiker-board.de/westerngitarren-steelstrings-git/10081-westerng-bis-700-euro-yamaha-dw-15-fg-502-oder-oder.html
InternetURL: C:\Users\Tino\Favorites\Links\www.FighterFitnessForum.com -- Thema anzeigen - Bauch beim Mann ab Ende 30 -) und sonstige Fragen.url -> URL: hxxp://www.fighterfitnessforum.com/ftopic8887-0-asc-15.html
InternetURL: C:\Users\Tino\Favorites\Links\Yahoo.url -> URL: hxxps://de.yahoo.com/
InternetURL: C:\Users\Tino\Favorites\Links\Zahlreiche Chancen auf Stipendien - Sponsoren fürs Studium - Special - Stiftung Warentest.url -> URL: hxxp://m.test.de/themen/bildung-soziales/special/Zahlreiche-Chancen-auf-Stipendien-Sponsoren-fuers-Studium-1486257-2486257/
InternetURL: C:\Users\Tino\Favorites\HP\eBay.url -> URL: hxxp://redirect.hp.com/svs/rdr?TYPE=4&tp=iefavs&s=ebay&pf=cnnb&locale=de_de&bd=all&c=83
InternetURL: C:\Users\Tino\Favorites\HP\My HP Games.url -> URL: hxxp://redirect.hp.com/svs/rdr?TYPE=4&tp=iefavs&s=myhpgames&pf=cnnb&locale=DE_DE&bd=all&c=83
InternetURL: C:\Users\Tino\Favorites\HP\Yahoo Shopping.url -> URL: hxxp://redirect.hp.com/svs/rdr?TYPE=4&tp=iefavs&s=kelkoo&pf=cnnb&locale=de_de&bd=all&c=83
InternetURL: C:\Users\Tino\Dropbox\www.dropbox.com.url -> URL: hxxps://www.dropbox.com/home
InternetURL: C:\Users\Tino\Documents\Spiele\Warcraft III Frozen Throne\Warcraft III\Register Frozen Throne.url -> URL: hxxp://www.blizzard.com/register/
InternetURL: C:\Users\Tino\Documents\Spiele\Warcraft III Frozen Throne\Warcraft III\Register Warcraft III.url -> URL: hxxp://www.blizzard.com/register/
InternetURL: C:\Users\Tino\Documents\Spiele\Warcraft III Frozen Throne\Warcraft III\TechSupport.url -> BASEURL: hxxp://www.blizzard.com/support/ URL: hxxp://www.blizzard.com/support/
InternetURL: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\Company of Heroes 2.url -> URL: steam://rungameid/231430
==================== Ende vom Shortcut.txt =============================
|
|
13.10.2021, 19:56
| #8 |
| /// TB-Ausbilder | Windows 10: audacity.de Installer NOCH in der Ausführung. Soll ich ihn schließen? PC Neustarten? Schritt 1 Führe Malwarebytes' AntiMalware (MBAM) gemäß der bebilderten Anleitung aus und poste abschließend die Logdatei. Schritt 2 Führe AdwCleaner gemäß der bebilderten Anleitung aus und poste abschließend die Logdatei. Schritt 3
Bitte poste mit deiner nächsten Antwort:
|
|
13.10.2021, 21:02
| #9 |
| | Windows 10: audacity.de Installer NOCH in der Ausführung. Soll ich ihn schließen? PC Neustarten? Alles erledigt, ich habe nochmal Schwein gehabt, oder?  Der Adwcleaner hat weitere 15 vorinstallierte Dateien erkannt. Diese habe ich nicht entfernt, da ich annehme, dass die nicht unbedingt schaden. MBAM.txt Code:
ATTFilter Malwarebytes
www.malwarebytes.com
-Protokolldetails-
Scan-Datum: 13.10.21
Scan-Zeit: 21:15
Protokolldatei: fb05d3d0-2c59-11ec-854b-00ffc8b3fd14.json
-Softwaredaten-
Version: 4.4.8.137
Komponentenversion: 1.0.1474
Version des Aktualisierungspakets: 1.0.45870
Lizenz: Testversion
-Systemdaten-
Betriebssystem: Windows 10 (Build 19042.1237)
CPU: x64
Dateisystem: NTFS
Benutzer: DESKTOP-BB502MH\Tino
-Scan-Übersicht-
Scan-Typ: Bedrohungs-Scan
Scan gestartet von: Manuell
Ergebnis: Abgeschlossen
Gescannte Objekte: 446765
Erkannte Bedrohungen: 0
In die Quarantäne verschobene Bedrohungen: 0
Abgelaufene Zeit: 15 Min., 30 Sek.
-Scan-Optionen-
Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Aktiviert
Heuristik: Aktiviert
PUP: Erkennung
PUM: Erkennung
-Scan-Details-
Prozess: 0
(keine bösartigen Elemente erkannt)
Modul: 0
(keine bösartigen Elemente erkannt)
Registrierungsschlüssel: 0
(keine bösartigen Elemente erkannt)
Registrierungswert: 0
(keine bösartigen Elemente erkannt)
Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)
Daten-Stream: 0
(keine bösartigen Elemente erkannt)
Ordner: 0
(keine bösartigen Elemente erkannt)
Datei: 0
(keine bösartigen Elemente erkannt)
Physischer Sektor: 0
(keine bösartigen Elemente erkannt)
WMI: 0
(keine bösartigen Elemente erkannt)
(end)
Logdatei AdwCleaner Code:
ATTFilter # -------------------------------
# Malwarebytes AdwCleaner 8.3.0.0
# -------------------------------
# Build: 06-29-2021
# Database: 2021-10-08.3 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 10-13-2021
# Duration: 00:00:03
# OS: Windows 10 Education
# Cleaned: 7
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
Deleted C:\ProgramData\54F3DE4E-B7BA-4EBD-8B3B-385D272CC583
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\plarium.com
Deleted HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\s.thebrighttag.com
Deleted HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\thebrighttag.com
Deleted HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\plarium.com
Deleted HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\s.thebrighttag.com
Deleted HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\thebrighttag.com
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [4335 octets] - [13/10/2021 21:36:34]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 12-10-2021
durchgeführt von Tino (Administrator) auf DESKTOP-BB502MH (LENOVO 20FMS03600) (13-10-2021 21:46:52)
Gestartet von C:\Users\Tino\Downloads
Geladene Profile: Tino
Platform: Microsoft Windows 10 Education Version 20H2 19042.1237 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: Chrome
Start-Modus: Normal
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
() [Datei ist nicht signiert] C:\Program Files (x86)\EyeDefender\EyeDefender.exe
() [Datei ist nicht signiert] C:\Program Files (x86)\Kinoni\EpocCam_and_Barcode_drivers\KinoniSvc.exe
(Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe <2>
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe <2>
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Adobe Systems Incorporated) C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Bitrix, Inc. -> ) C:\Program Files (x86)\Bitrix24\BDisk\BDisk.exe
(Bitrix, Inc. -> Bitrix) C:\Program Files (x86)\Bitrix24\Bitrix24.exe <12>
(Cisco Systems, Inc. -> Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
(Digital Wave Ltd -> Digital Wave Ltd) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
(Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.) C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(F.lux Software LLC -> f.lux Software LLC) C:\Users\Tino\AppData\Local\FluxSoftware\Flux\flux.exe
(Flexera Software LLC -> Flexera) C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
(FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe
(Hewlett Packard -> Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 3520 series\Bin\HPNetworkCommunicator.exe
(Hewlett Packard -> Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 3520 series\Bin\HPNetworkCommunicatorCom.exe
(Hewlett Packard -> Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 3520 series\Bin\ScanToPCActivationApp.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation -> Intel Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_fce0c2dbe15e0d9a\igfxCUIService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_fce0c2dbe15e0d9a\igfxEM.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_fce0c2dbe15e0d9a\IntelCpHDCPSvc.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_fce0c2dbe15e0d9a\IntelCpHeciSvc.exe
(Intel(R) Trust Services -> Intel(R) Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\TPMProvisioningService.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(LENOVO (UNITED STATES) INC. -> Lenovo) C:\Users\Tino\AppData\Local\Apps\2.0\G6EJ0LLQ.G24\K1QYV9LH.333\lsb...tion_2d7b41b05b24775e_0001.0006_3b0a905c8de4f74a\LSB.exe
(LENOVO -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\micmute.exe
(LENOVO -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\shtctky.exe
(LENOVO -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tphkload.exe
(LENOVO -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tpnumlkd.exe
(LENOVO -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tposd.exe
(Lenovo -> Lenovo Group Limited) C:\Windows\SysWOW64\Lenovo\PowerMgr\EasyResume.exe
(Lenovo -> Lenovo) C:\Windows\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe
(Lenovo -> Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated) C:\Program Files\Synaptics\SynFP\Shared\SensorDBSynch.exe
(Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated) C:\Windows\System32\valWBFPolicyService.exe
(Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated) C:\Windows\System32\valWbioSyncSvc.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\NisSrv.exe
(Nitro Software, Inc. -> ) C:\Program Files\Nitro\Pro 11\Nitro_UpdateService.exe
(Nitro Software, Inc. -> Nalpeiron Ltd.) C:\Windows\SysWOW64\NLSSRV32.EXE
(Nitro Software, Inc. -> Nitro Software, Inc.) C:\Program Files\Nitro\Pro 11\NitroPDFDriverService11x64.exe
(Node.js Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(Nuance Communication, Inc. -> Nuance Communications, Inc.) C:\Program Files (x86)\Common Files\Nuance\dgnsvc.exe
(Nuance Communication, Inc. -> Nuance Communications, Inc.) C:\Program Files (x86)\Common Files\Nuance\loggerservice.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Seagate Technology LLC -> Seagate Technology LLC) C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\MobileService.exe
(Seagate Technology LLC -> Seagate Technology LLC) C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\Seagate.Dashboard.DASWindowsService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
(Synaptics Incorporated -> Synaptics) C:\Program Files\Synaptics\SynTP\SynLenovoHelper.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(TunnelBear -> TunnelBear) C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.exe
(ZeroTier, Inc. -> ) C:\ProgramData\ZeroTier\One\zerotier-one_x64.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412736 2021-09-07] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [301880 2018-08-23] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [8091424 2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] => C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe [766464 2016-02-29] (Cisco Systems, Inc. -> Cisco Systems, Inc.)
HKLM-x32\...\Run: [KeePass 2 PreLoad] => C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [3331264 2020-01-20] (Open Source Developer, Dominik Reichl -> Dominik Reichl)
HKLM-x32\...\Run: [PDFPrint] => C:\Program Files (x86)\PDF24\pdf24.exe [210432 2016-07-05] (Geek Software GmbH -> Geek Software GmbH)
HKLM-x32\...\Run: [DBAgent] => C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\DBAgent.exe [1563424 2016-06-28] (Seagate Technology LLC -> Seagate Technology LLC)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2095672 2020-10-10] (Adobe Inc. -> Adobe Inc.)
HKLM-x32\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\\isuspm.exe [2075480 2013-06-24] (Flexera Software LLC -> Flexera Software LLC.)
HKLM-x32\...\Run: [DNS7reminder] => C:\Program Files (x86)\Nuance\NaturallySpeaking15\Ereg\Ereg.exe [3146120 2016-05-06] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [588704 2018-03-28] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Nikon Message Center 2] => C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe [588288 2016-01-08] (Nikon Corporation) [Datei ist nicht signiert]
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [114824 2020-10-10] (Adobe Inc. -> )
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Run: [f.lux] => C:\Users\Tino\AppData\Local\FluxSoftware\Flux\flux.exe [1515848 2021-06-18] (F.lux Software LLC -> f.lux Software LLC)
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe [2075480 2013-06-24] (Flexera Software LLC -> Flexera Software LLC.)
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2018-10-01] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [67896 2018-10-01] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Run: [Spotify] => C:\Users\Tino\AppData\Roaming\Spotify\Spotify.exe [23592304 2020-12-22] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Tino\AppData\Local\Microsoft\Teams\Update.exe [2453656 2021-02-21] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Run: [vidnotifier.exe] => C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\vidnotifier\vidnotifier.exe [1814848 2019-08-22] (Digital Wave Ltd -> Digital Wave Ltd)
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Run: [CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [114824 2020-10-10] (Adobe Inc. -> )
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Run: [EyeDefender] => C:\Program Files (x86)\EyeDefender\EyeDefender.exe [163840 2009-11-18] () [Datei ist nicht signiert]
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Run: [Adobe Reader Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe [5397216 2021-09-25] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Run: [HP Deskjet 3520 series (NET)] => C:\Program Files\HP\HP Deskjet 3520 series\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett Packard -> Hewlett-Packard Co.)
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Run: [Bitrix24] => C:\Program Files (x86)\Bitrix24\Bitrix24.exe [18171480 2021-06-09] (Bitrix, Inc. -> Bitrix)
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Run: [Opera Browser Assistant] => C:\Users\Tino\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [4105424 2021-10-05] (Opera Software AS -> Opera Software)
HKLM\...\Print\Monitors\HP B011 Status Monitor: C:\Windows\System32\hpinkstsB011LM.dll [331664 2012-06-13] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP Deskjet 3520 series): C:\Windows\System32\HPDiscoPMB011.dll [741480 2012-10-17] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\Nitro PDF Port Monitor: C:\Windows\System32\nitrolocalmon11.dll [31944 2017-03-09] (Nitro Software, Inc. -> Nitro Software, Inc.)
HKLM\...\Print\Monitors\PDF-XChange Lite Port Monitor: C:\WINDOWS\system32\pxcpmL.dll [2147072 2020-01-06] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
HKLM\Software\...\AppCompatFlags\Custom\H3Blade.exe: [{62a24b39-0106-4990-90ea-3a09e9dda7a6}.sdb] -> HoMM III Compatibility Database
HKLM\Software\...\AppCompatFlags\Custom\Heroes3.exe: [{62a24b39-0106-4990-90ea-3a09e9dda7a6}.sdb] -> HoMM III Compatibility Database
HKLM\Software\...\AppCompatFlags\InstalledSDB\{62a24b39-0106-4990-90ea-3a09e9dda7a6}: [DatabasePath] -> C:\WINDOWS\AppPatch\CustomSDB\{62a24b39-0106-4990-90ea-3a09e9dda7a6}.sdb [2021-01-02]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\94.0.4606.81\Installer\chrmstp.exe [2021-10-13] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Dell Display Manager.lnk [2016-07-20]
ShortcutTarget: Dell Display Manager.lnk -> C:\Program Files (x86)\Dell\Dell Display Manager\ddm.exe (EnTech Taiwan -> EnTech Taiwan)
Startup: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\An OneNote senden.lnk [2018-10-07]
ShortcutTarget: An OneNote senden.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
Startup: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ausschneiden shortcut.ahs - Verknüpfung.lnk [2020-11-17]
ShortcutTarget: ausschneiden shortcut.ahs - Verknüpfung.lnk -> C:\Users\Tino\Documents\Desktop aufräum 16Nov20\Aufräum22Aug20\ausschneiden shortcut.ahs (Keine Datei)
Startup: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Tintenwarnungen überwachen - HP Deskjet 3520 series (Netzwerk).lnk [2021-10-13]
ShortcutAndArgument: Tintenwarnungen überwachen - HP Deskjet 3520 series (Netzwerk).lnk -> C:\WINDOWS\system32\RunDll32.exe => "C:\Program Files\HP\HP Deskjet 3520 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN27J1204Q05SY;CONNECTION=NW;MONITOR=1;
GroupPolicy: Beschränkung ? <==== ACHTUNG
Policies: C:\ProgramData\NTUSER.pol: Beschränkung <==== ACHTUNG
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\SOFTWARE\Policies\Google: Beschränkung <==== ACHTUNG
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {0347E766-D2FD-4818-AC8F-EAE3C7F11598} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1758792 2021-09-22] (Lenovo -> )
Task: {07F8865C-7AD5-45D3-BB07-1C47B52D830E} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1562376 2021-08-16] (Adobe Inc. -> Adobe Inc.)
Task: {085C3489-F63D-4F6C-A032-3B946FD25D1F} - System32\Tasks\{013997F2-8BC7-4E13-8F7F-314FA024B459} => C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\EA Games\Battlefield 2\BF2.exe" -d "C:\Program Files (x86)\EA Games\Battlefield 2"
Task: {120070D7-88E7-4D51-953B-37890A9A08CE} - \Microsoft\Windows\UNP\RunCampaignManager -> Keine Datei <==== ACHTUNG
Task: {124DAE38-187A-449B-9BD4-673E69107ABC} - System32\Tasks\G2MUpdateTask-S-1-5-21-2977029141-1010321603-2543741146-1001 => C:\Users\Tino\AppData\Local\GoToMeeting\19796\g2mupdate.exe [31176 2021-07-02] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {133A42DF-0438-4F80-9BA7-C10883E7E669} - System32\Tasks\Lenovo\Power Manager\Uninstall task => C:\WINDOWS\SysWOW64\PowerMgrInst.exe [62136 2021-07-11] (Lenovo -> )
Task: {1B36DE3D-3946-45B2-9F22-5C8F1F95E351} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [677344 2021-02-03] (Mozilla Corporation -> Mozilla Foundation)
Task: {1F326534-2093-477B-B292-41517537BE0E} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3618088 2020-07-21] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {1FB09E97-8905-4FB7-9EB4-5F1FC5C72FB8} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-2977029141-1010321603-2543741146-1001 => "C:\WINDOWS\system32\rundll32.exe" dfshim.dll,ShOpenVerbShortcut C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo\Lenovo Service Bridge.appref-ms
Task: {280B69A7-35E3-4D2B-8BFB-C8F766495CAF} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {2DB5B364-0264-43A0-91E1-3035B2FAD9F6} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [110440 2021-10-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {3ACA6790-B706-4443-86FA-B4F06BFC92F8} - System32\Tasks\G2MUploadTask-S-1-5-21-2977029141-1010321603-2543741146-1001 => C:\Users\Tino\AppData\Local\GoToMeeting\19796\g2mupload.exe [31176 2021-07-02] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {3CD48984-98B2-4B12-AAB5-056D0EB27C3F} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [129808 2021-08-16] (Dropbox, Inc -> Dropbox, Inc.)
Task: {4DBF32E2-8203-4161-A52A-09BBB290CFD4} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21976976 2021-09-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {5B75D761-9B2A-4818-A8AE-3D8E0B50FFA4} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4255680 2021-10-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {6198F25E-F891-4497-8707-2DDB5D9557B1} - System32\Tasks\{80D29C8F-D447-49C9-8258-37B82F03453E} => C:\WINDOWS\system32\pcalua.exe -a "C:\Users\Tino\Documents\Games\Warcraft III\Frozen Throne.exe" -d "C:\Users\Tino\Documents\Games\Warcraft III"
Task: {647193AF-B5F1-45CD-B52E-EEC335422AF9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-03-28] (Google Inc -> Google Inc.)
Task: {6C845043-ABE1-4700-9B16-95C644899DA3} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [110440 2021-10-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {726ABB6F-2264-4603-9D1D-D4C97A07BA9A} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-***** => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {85C90DFE-E99B-43AF-AD4E-1E63A67DB880} - System32\Tasks\Microsoft\Office\Office Serviceability Manager => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe [4103280 2021-09-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {8B27B185-8776-45B5-A85E-85B006703283} - System32\Tasks\{D0AF2B37-7844-4D3F-8F1E-40653F6642AD} => C:\WINDOWS\system32\pcalua.exe -a "C:\Users\Tino\Documents\Games\Battlefield 2\BF2.exe" -d "C:\Users\Tino\Documents\Games\Battlefield 2"
Task: {9B6B607A-47E8-42C8-AEB3-8665CD751170} - System32\Tasks\Lenovo\Power Manager\Background monitor => C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe [112824 2021-07-11] (Lenovo -> Lenovo)
Task: {A3DE6174-5DE4-49CE-9BEF-4EC46DBB9460} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1758792 2021-09-22] (Lenovo -> )
Task: {AAFC4740-76D0-4846-BF4C-C2AF6DBA0C9E} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412736 2021-09-07] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {AE109CE3-699E-4C21-9C3F-08D382B22983} - System32\Tasks\RtHDVBg_Dolby => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3618088 2020-07-21] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {B5D885D4-864F-4F26-99D1-B3F8B4AB4231} - System32\Tasks\Opera scheduled Autoupdate 1631522888 => C:\Users\Tino\AppData\Local\Programs\Opera\launcher.exe [42731728 2021-09-28] (Opera Software AS -> Opera Software)
Task: {B63A8BFC-47B6-4D00-A453-4D1040B5CE6C} - System32\Tasks\Lenovo Power Management Driver PnP Task => C:\WINDOWS\System32\ibmpmsvc.exe [949632 2019-12-11] (Lenovo -> Lenovo.)
Task: {C0668F73-BEC3-4D8B-8144-C8FFD6304080} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21976976 2021-09-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {C67F174E-8388-48C0-A03F-F51174497229} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [651400 2017-09-20] (Hewlett Packard -> HP Inc.)
Task: {CAD6B928-F79E-408C-88A7-C908E609223F} - System32\Tasks\Opera scheduled assistant Autoupdate 1631522903 => C:\Users\Tino\AppData\Local\Programs\Opera\launcher.exe [42731728 2021-09-28] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Tino\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {D78E358B-13FA-4B84-ACDC-4AB41FE247C7} - System32\Tasks\Optimize Push Notification Data File-S-1-5-21-2977029141-1010321603-2543741146-1001 => {201600D8-6EFF-48CE-B842-E14D37A0682D} C:\WINDOWS\System32\wpninprc.dll [24064 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Task: {DDF2E756-B2F4-428D-A586-1A7EC980992A} - System32\Tasks\Microsoft\Windows\Display\Brightness\BrightnessReset => {2755524D-68F2-4B39-A816-9DB31839C897}
Task: {DFAB118F-BC0E-4054-A149-CF0E76A6D44D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [136056 2019-01-02] (HP Inc. -> HP Inc.)
Task: {E09EC5E7-FEBC-4332-A1E9-1510F60005DC} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [129808 2021-08-16] (Dropbox, Inc -> Dropbox, Inc.)
Task: {E17C663A-4B5D-468E-ADC9-EF3071FEFD0E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4255680 2021-10-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {E31270B0-F9F4-4023-B880-C8F878C4F7DC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-03-28] (Google Inc -> Google Inc.)
Task: {E4C14D83-AD24-4737-87FC-462045AFB77D} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1153408 2021-10-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {FCC9C19A-B9FB-4D22-AD81-B4B670A509EE} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616320 2018-01-08] (Apple Inc. -> Apple Inc.)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-2977029141-1010321603-2543741146-1001.job => C:\Users\Tino\AppData\Local\GoToMeeting\19796\g2mupdate.exe
Task: C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-2977029141-1010321603-2543741146-1001.job => C:\Users\Tino\AppData\Local\GoToMeeting\19796\g2mupload.exe
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Hosts: Es ist mehr als ein Eintrag in der Hosts Datei zu finden. Siehe Hosts-Bereich in Addition.txt
Tcpip\..\Interfaces\{74f2711d-31a5-4cd1-acb2-da289773e58b}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{8615153c-5251-43cd-854c-39b15bffcf27}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{9c782f4b-dc60-4c43-b3a5-e71060c318ce}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{b855478f-1909-4465-92c3-e2e3e88c021a}: [DhcpNameServer] 192.168.2.1
Edge:
=======
Edge Extension: (Kein Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [nicht gefunden]
Edge Extension: (Kein Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [nicht gefunden]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Tino\AppData\Local\Microsoft\Edge\User Data\Default [2021-10-13]
Edge DownloadDir: Default -> C:\Users\Tino\Downloads
Edge Notifications: Default -> hxxps://www.spartanien.de
Edge HomePage: Default -> hxxps://start.duckduckgo.com/
Edge Extension: (Google Scholar-Schaltfläche) - C:\Users\Tino\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fciokoalnclhnonofghacdplgpafdcgl [2020-08-12]
Edge HKLM-x32\...\Edge\Extension: [mielbhbkcliienpdicphhecpodcaeefg]
FireFox:
========
FF DefaultProfile: nsk17f5j.default
FF ProfilePath: C:\Users\Tino\AppData\Roaming\Mozilla\Firefox\Profiles\nsk17f5j.default [2021-09-13]
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2017-08-11] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @java.com/DTPlugin,version=11.171.2 -> C:\Program Files\Java\jre1.8.0_171\bin\dtplugin\npDeployJava1.dll [2018-04-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.171.2 -> C:\Program Files\Java\jre1.8.0_171\bin\plugin2\npjp2.dll [2018-04-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-01-06] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-01-06] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-01-06] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2020-10-10] (Adobe Inc. -> Adobe Systems)
FF Plugin: nuance.com/DgnRia2_x86_64 -> C:\Program Files (x86)\Nuance\NaturallySpeaking15\Program\x64\npDgnRia2_x64.dll [2016-08-23] (Nuance Communication, Inc. -> Nuance Communications, Inc.)
FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2017-08-11] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-05-26] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-05-26] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nitropdf.com/NitroPDF -> C:\Program Files (x86)\Nitro\Pro 11\npnitromozilla.dll [2017-03-09] (Nitro Software, Inc. -> Nitro PDF)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2020-01-06] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2020-01-06] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2020-01-06] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-09-25] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2020-10-10] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: nuance.com/DgnRia2 -> C:\Program Files (x86)\Nuance\NaturallySpeaking15\Program\npDgnRia2.dll [2016-08-23] (Nuance Communication, Inc. -> Nuance Communications, Inc.)
FF Plugin HKU\.DEFAULT: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-01-06] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\.DEFAULT: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-01-06] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\.DEFAULT: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-01-06] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-2977029141-1010321603-2543741146-1001: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2017-08-11] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-2977029141-1010321603-2543741146-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-01-06] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-2977029141-1010321603-2543741146-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-01-06] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-2977029141-1010321603-2543741146-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-01-06] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-2977029141-1010321603-2543741146-1001: tdameritrade.com/thinkorswim -> C:\Program Files\thinkorswim\npthinkorswim.dll [2018-10-28] (TD Ameritrade -> TD Ameritrade)
FF Plugin HKU\S-1-5-21-2977029141-1010321603-2543741146-1001: tdameritrade.com/tossc -> C:\Program Files\thinkorswim\nptossc.dll [2018-10-28] (TD Ameritrade -> TD Ameritrade)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2021-02-03]
Chrome:
=======
CHR Profile: C:\Users\Tino\AppData\Local\Google\Chrome\User Data\Default [2021-10-13]
CHR DownloadDir: C:\Users\Tino\Downloads
CHR HomePage: Default -> hxxps://start.duckduckgo.com/
CHR Session Restore: Default -> ist aktiviert.
CHR Extension: (Präsentationen) - C:\Users\Tino\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Docs) - C:\Users\Tino\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Google Drive) - C:\Users\Tino\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-25]
CHR Extension: (RescueTime for Chrome and Chrome OS) - C:\Users\Tino\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdakmnplckeopfghnlpocafcepegjeap [2020-06-01]
CHR Extension: (YouTube) - C:\Users\Tino\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-03-28]
CHR Extension: (Adblock Plus - kostenloser Adblocker) - C:\Users\Tino\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-09-07]
CHR Extension: (Tabellen) - C:\Users\Tino\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (Google Docs Offline) - C:\Users\Tino\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-09-30]
CHR Extension: (Shoop Cashback & Gutscheine) - C:\Users\Tino\AppData\Local\Google\Chrome\User Data\Default\Extensions\hacngjmphfcjdfpmfmlngemhddjdncpe [2021-09-07]
CHR Extension: (Google Scholar-Schaltfläche) - C:\Users\Tino\AppData\Local\Google\Chrome\User Data\Default\Extensions\ldipcbpaocekfooobnbcddclnhejkcpn [2020-10-10]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Tino\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30]
CHR Extension: (Citavi Picker) - C:\Users\Tino\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohgndokldibnndfnjnagojmheejlengn [2021-04-27]
CHR Extension: (Google Mail) - C:\Users\Tino\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Profile: C:\Users\Tino\AppData\Local\Google\Chrome\User Data\System Profile [2020-09-09]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [ohgndokldibnndfnjnagojmheejlengn]
Opera:
=======
OPR Profile: C:\Users\Tino\AppData\Roaming\Opera Software\Opera Stable [2021-10-13]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\Tino\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2021-09-27]
OPR Extension: (Amazon Assistant Promotion) - C:\Users\Tino\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2021-09-13]
==================== Dienste (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-08-16] (Adobe Inc. -> Adobe Inc.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [852024 2020-10-10] (Adobe Inc. -> Adobe Inc.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3833088 2021-09-07] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3603200 2021-09-07] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2018-08-23] (Apple Inc. -> Apple Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9250696 2021-10-03] (Microsoft Corporation -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [129808 2021-08-16] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [129808 2021-08-16] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44328 2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [441664 2019-08-22] (Digital Wave Ltd -> Digital Wave Ltd)
R2 Dolby DAX2 API Service; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [189464 2020-06-02] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.)
R2 DragonLoggerService; C:\Program Files (x86)\Common Files\Nuance\loggerservice.exe [166280 2016-08-23] (Nuance Communication, Inc. -> Nuance Communications, Inc.)
S3 ESLoadService; C:\Program Files (x86)\EaseUS\EaseUS MobiMover\bin\ESLoadService.exe [47840 2018-10-15] (CHENGDU YIWO Tech Development Co., Ltd. -> TODO: <Company name>) [Datei ist nicht signiert]
R2 FoxitReaderUpdateService; C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe [2357880 2021-07-21] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [1728072 2020-10-01] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6821960 2020-10-01] (GOG Sp. z o.o. -> GOG.com)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [347512 2018-12-06] (HP Inc. -> HP Inc.)
R2 KinoniSvc; C:\Program Files (x86)\Kinoni\EpocCam_and_Barcode_drivers\KinoniSvc.exe [525312 2013-02-26] () [Datei ist nicht signiert]
R2 Lenovo Instant On; C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\EasyResume.exe [2351320 2021-07-11] (Lenovo -> Lenovo Group Limited)
S2 LPlatSvc; C:\WINDOWS\System32\LPlatSvc.exe [892288 2019-12-11] (Lenovo -> Lenovo.)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7801016 2021-10-13] (Malwarebytes Inc -> Malwarebytes)
R2 NitroDriverReadSpool11; C:\Program Files\Nitro\Pro 11\NitroPDFDriverService11x64.exe [327368 2017-03-09] (Nitro Software, Inc. -> Nitro Software, Inc.)
R2 NitroUpdateService; C:\Program Files\Nitro\Pro 11\Nitro_UpdateService.exe [419016 2017-03-09] (Nitro Software, Inc. -> )
R2 nlsX86cc; C:\WINDOWS\SysWOW64\NLSSRV32.EXE [71880 2017-03-09] (Nitro Software, Inc. -> Nalpeiron Ltd.)
S3 OfficeSvcManagerAddons; C:\WINDOWS\system32\dllhost.exe /Processid:{2CA2E202-932F-4BA2-8771-195BB86398F5} [21312 2020-12-22] (Microsoft Windows -> Microsoft Corporation)
S3 ProtonVPN Service; C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPNService.exe [98624 2020-07-22] (ProtonVPN AG -> )
S3 ProtonVPN Update Service; C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.UpdateService.exe [61760 2020-07-22] (ProtonVPN AG -> )
R2 Seagate Dashboard Services; C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\Seagate.Dashboard.DASWindowsService.exe [16216 2016-06-28] (Seagate Technology LLC -> Seagate Technology LLC)
R2 Seagate MobileBackup Service; C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\MobileService.exe [143656 2016-06-28] (Seagate Technology LLC -> Seagate Technology LLC)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5394872 2021-09-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 ss_conn_launcher_service; C:\WINDOWS\System32\Samsung\EasySetup\ss_conn_launcher.exe [182128 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10884848 2017-05-23] (TeamViewer GmbH -> TeamViewer GmbH)
R2 TunnelBearMaintenance; C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.exe [139896 2019-06-19] (TunnelBear -> TunnelBear)
R2 valWBFPolicyService; C:\WINDOWS\system32\valWBFPolicyService.exe [77792 2018-04-25] (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated)
R2 valWbioSyncSvc; C:\WINDOWS\system32\valWbioSyncSvc.exe [48608 2018-04-25] (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\NisSrv.exe [2855512 2021-10-03] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MsMpEng.exe [128392 2021-10-03] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 ZeroTierOneService; C:\ProgramData\ZeroTier\One\zerotier-one_x64.exe [1879160 2020-12-18] (ZeroTier, Inc. -> )
===================== Treiber (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Datei ist nicht signiert]
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159864 2021-06-29] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 KINONI_Wave; C:\WINDOWS\system32\drivers\kinonivad.sys [32360 2016-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [210344 2021-10-13] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-06-05] (Microsoft Windows Early Launch Anti-Malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-10-13] (Malwarebytes Inc -> Malwarebytes)
R0 PMDRVS; C:\WINDOWS\System32\drivers\pmdrvs.sys [38160 2019-12-11] (Lenovo -> Lenovo.)
S3 ProtonVPNSplitTunnel; C:\Program Files (x86)\Proton Technologies\ProtonVPN\x64\Win10\ProtonVPN.SplitTunnelDriver.sys [31584 2020-06-03] (Microsoft Windows Hardware Compatibility Publisher -> Proton Technologies AG)
R1 SMIDriverGen; C:\WINDOWS\system32\DRIVERS\smi.sys [31440 2018-04-25] (Synaptics Inc. -> Synaptics Incorporated)
S3 SPUVCbv; C:\WINDOWS\System32\Drivers\SPUVCbv64.sys [735744 2016-03-11] (Sunplus Innovation Technology Inc. -> Sunplus)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [43376 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 tap-tb-0901; C:\WINDOWS\System32\drivers\tap-tb-0901.sys [38656 2019-06-19] (TunnelBear, Inc. -> The OpenVPN Project)
S3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [44896 2018-07-24] (TEFINCOM S.A. -> The OpenVPN Project)
R3 tapprotonvpn; C:\WINDOWS\System32\drivers\tapprotonvpn.sys [49008 2020-04-06] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S3 vpnva; C:\WINDOWS\System32\drivers\vpnva64-6.sys [52592 2016-02-29] (Cisco Systems, Inc. -> Cisco Systems, Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48520 2021-10-03] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [434424 2021-10-03] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86264 2021-10-03] (Microsoft Windows -> Microsoft Corporation)
S3 WirelessKeyboardFilter; C:\WINDOWS\System32\drivers\WirelessKeyboardFilter.sys [49336 2018-03-11] (Microsoft Corporation -> Microsoft Corporation)
R3 zttap300; C:\WINDOWS\System32\drivers\zttap300.sys [31744 2020-11-24] (Microsoft Windows Hardware Compatibility Publisher -> ZeroTier Networks LLC)
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat (erstellte) (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2021-10-13 21:46 - 2021-10-13 21:47 - 000048094 _____ C:\Users\Tino\Downloads\FRST.txt
2021-10-13 21:38 - 2021-10-13 21:38 - 002310656 _____ (Farbar) C:\Users\Tino\Downloads\FRST64 (3).exe
2021-10-13 21:38 - 2021-10-13 21:38 - 002101944 _____ (Malwarebytes) C:\Users\Tino\Downloads\MBSetup (3).exe
2021-10-13 21:35 - 2021-10-13 21:37 - 000000000 ____D C:\AdwCleaner
2021-10-13 21:35 - 2021-10-13 21:35 - 008553680 _____ (Malwarebytes) C:\Users\Tino\Downloads\adwcleaner_8.3.0.exe
2021-10-13 21:32 - 2021-10-13 21:32 - 000001423 _____ C:\Users\Tino\Downloads\MBAM.txt
2021-10-13 21:14 - 2021-10-13 21:14 - 000210344 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2021-10-13 21:14 - 2021-10-13 21:14 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2021-10-13 21:10 - 2021-10-13 21:10 - 002101944 _____ (Malwarebytes) C:\Users\Tino\Downloads\MBSetup (2).exe
2021-10-13 18:35 - 2021-10-13 18:44 - 000119690 _____ C:\Users\Tino\Downloads\Shortcut.txt
2021-10-13 18:23 - 2021-10-13 18:23 - 002310656 _____ (Farbar) C:\Users\Tino\Downloads\FRST64 (2).exe
2021-10-13 16:41 - 2021-10-13 16:41 - 002310656 _____ (Farbar) C:\Users\Tino\Downloads\FRST64 (1).exe
2021-10-13 16:24 - 2021-10-13 16:24 - 000000000 ____D C:\Users\Tino\AppData\Local\AC001
2021-10-13 16:23 - 2021-10-13 16:24 - 032560504 _____ (Audacity Team) C:\Users\Tino\Downloads\audacity-win3.0.0.exe
2021-10-13 14:49 - 2021-10-13 14:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\lenovo
2021-10-13 14:49 - 2021-10-13 14:49 - 000000000 ____D C:\Program Files (x86)\Lenovo
2021-10-13 14:28 - 2021-10-13 14:34 - 000000289 ____C C:\Users\Tino\Documents\Lumas Rabattcode.txt
2021-10-13 12:52 - 2021-10-13 12:52 - 000000000 ___HD C:\$WinREAgent
2021-10-12 09:41 - 2021-10-12 09:41 - 000070542 _____ C:\Users\Tino\Downloads\ssl-erklärung_1_0 (2).pdf
2021-10-12 09:41 - 2021-10-12 09:41 - 000070542 _____ C:\Users\Tino\Downloads\ssl-erklärung_1_0 (1).pdf
2021-10-12 09:37 - 2021-10-12 09:42 - 000077696 _____ C:\Users\Tino\Downloads\ssl-erklärung_1_0.pdf
2021-10-05 17:49 - 2021-10-06 15:56 - 000000000 ___DC C:\Users\Tino\Documents\*****
2021-10-05 17:47 - 2021-10-05 17:47 - 000131636 ____C C:\Users\Tino\Documents\*****
2021-10-04 16:21 - 2021-10-04 16:21 - 000183239 _____ C:\Users\Tino\Downloads\****
2021-10-03 19:05 - 2021-10-03 19:06 - 001729024 ____C C:\Users\Tino\Documents\*****
2021-10-03 17:19 - 2021-10-03 19:00 - 001728512 ____C C:\Users\Tino\Documents\*****
2021-10-02 13:47 - 2021-10-02 13:47 - 000032794 _____ C:\Users\Tino\Downloads\Dein REWE eBon vom 01.10.2021.pdf
2021-10-02 13:18 - 2021-10-02 13:18 - 000099919 _____ C:\Users\Tino\Downloads\12166745.pdf
2021-09-30 07:58 - 2021-09-30 07:58 - 000011569 _____ C:\Users\Tino\Downloads\anforderungsliste.zip
2021-09-29 23:02 - 2021-09-29 23:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2021-09-28 21:24 - 2021-09-28 21:24 - 000028577 _____ C:\Users\Tino\Downloads\*****
2021-09-28 09:18 - 2021-09-30 15:03 - 000000000 ____D C:\Users\Tino\AppData\Roaming\gitmind-electron
2021-09-28 09:17 - 2021-09-28 09:17 - 001886192 _____ (Apowersoft) C:\Users\Tino\Downloads\gitmind-setup.exe
2021-09-28 09:17 - 2021-09-28 09:17 - 000002234 _____ C:\Users\Public\Desktop\GitMind.lnk
2021-09-28 09:17 - 2021-09-28 09:17 - 000000000 ____D C:\Users\Tino\AppData\Local\gitmind-electron-updater
2021-09-28 09:01 - 2021-09-29 22:58 - 000000000 ____D C:\Users\Tino\AppData\Roaming\Archi4
2021-09-28 09:01 - 2021-09-28 09:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Archi4
2021-09-28 09:01 - 2021-09-28 09:01 - 000000000 ____D C:\Program Files\Archi4
2021-09-27 20:55 - 2021-09-27 20:55 - 001360684 ____C C:\Users\Tino\Desktop\Cooler Jingle Idea DAK Hotline 27Sept21.wav
2021-09-27 16:40 - 2021-09-27 16:40 - 001357720 _____ C:\Users\Tino\Downloads\Offener Brief D.pdf
2021-09-27 16:40 - 2021-09-27 16:40 - 000159458 _____ C:\Users\Tino\Downloads\iCRM_Projekt D.pdf
2021-09-27 15:51 - 2021-09-27 15:51 - 000001411 _____ C:\Users\Tino\Downloads\*****
2021-09-27 15:43 - 2021-09-27 15:43 - 000001145 _____ C:\Users\Tino\Downloads\*****
2021-09-27 09:45 - 2021-09-27 09:45 - 112561399 _____ (Phillip Beauvoir ) C:\Users\Tino\Downloads\Archi-Win64-Setup-4.8.1.exe
2021-09-26 23:17 - 2021-09-27 20:58 - 000021381 _____ C:\Users\Tino\Documents\Gehaltsrechner Werkstudent 21_v2.xlsx
2021-09-26 00:01 - 2021-09-26 00:01 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2021-09-26 00:01 - 2021-09-26 00:01 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2021-09-26 00:01 - 2021-09-26 00:01 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2021-09-26 00:01 - 2021-09-26 00:01 - 000044328 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2021-09-25 13:28 - 2021-09-25 13:28 - 000116034 _____ C:\Users\Tino\Downloads\102538831_20210909_176.pdf
2021-09-25 13:27 - 2021-09-25 13:27 - 000689221 _____ C:\Users\Tino\Downloads\NW_08094600001781.pdf
2021-09-22 22:30 - 2021-10-04 20:32 - 000000000 ___DC C:\Users\Tino\Documents\Desktop Aufräum 22Sept21
2021-09-22 22:28 - 2021-09-22 22:28 - 000000423 ____C C:\Users\Tino\Documents\Mama Corona Maßnahmen Prävention.txt
2021-09-22 22:06 - 2021-09-22 22:06 - 000062706 _____ C:\Users\Tino\Downloads\*****
2021-09-22 09:49 - 2021-10-12 18:24 - 000000000 __RDC C:\Users\Tino\Documents\Bitrix24
2021-09-21 13:28 - 2021-09-21 13:28 - 000001062 _____ C:\Users\Tino\Downloads\BAHN_Fahrplan.ics
2021-09-21 09:07 - 2021-09-21 09:07 - 000000083 ____C C:\Users\Tino\Documents\Bahn ecoupon bis 11Dez21.txt
2021-09-21 08:57 - 2021-09-21 08:57 - 001343290 _____ C:\Users\Tino\Downloads\tarifbestimmungen_nrw.pdf
2021-09-20 18:39 - 2021-09-20 18:39 - 000005910 ____C C:\Users\Tino\Documents\Microphone Test_LavalierAKGIntern.aup
2021-09-20 18:39 - 2021-09-20 18:39 - 000000000 ___DC C:\Users\Tino\Documents\Microphone Test_LavalierAKGIntern_data
2021-09-20 18:13 - 2021-09-20 18:13 - 001717874 ____C C:\Users\Tino\Documents\test.pdf
2021-09-20 18:01 - 2021-09-20 18:01 - 000000000 ___DC C:\Users\Tino\AppData\LocalLow\Foxit
2021-09-20 17:56 - 2021-09-20 17:56 - 000000000 ____D C:\Users\Public\Foxit Software
2021-09-20 17:55 - 2021-09-20 18:04 - 000000000 ____D C:\Users\Tino\AppData\Roaming\Foxit Software
2021-09-20 17:55 - 2021-09-20 17:55 - 000000000 ____D C:\Users\Tino\AppData\Roaming\Foxit AgentInformation
2021-09-20 17:55 - 2021-09-20 17:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit PDF Reader
2021-09-20 17:55 - 2021-09-20 17:55 - 000000000 ____D C:\ProgramData\Foxit Software
2021-09-20 17:55 - 2021-09-20 17:55 - 000000000 ____D C:\ProgramData\Foxit ContentPlatform
2021-09-20 17:54 - 2021-09-20 17:54 - 000000000 ____D C:\Program Files (x86)\Foxit Software
2021-09-20 17:45 - 2021-09-20 17:45 - 000000109 _____ C:\Users\Public\Documents\pre_fileassoc.tmp
2021-09-20 17:26 - 2021-09-20 17:44 - 190417320 _____ (Foxit Software Inc. ) C:\Users\Tino\Downloads\FoxitPDFReader1101_L10N_Setup_Prom.exe
2021-09-20 17:21 - 2021-09-20 18:17 - 000000000 ___DC C:\Users\Tino\Documents\Congstar Rechnung Mama für Logitel
2021-09-20 09:29 - 2021-09-20 09:39 - 000000000 ____D C:\Program Files (x86)\Bitrix24
2021-09-20 09:29 - 2021-09-20 09:29 - 000001080 _____ C:\Users\Public\Desktop\Bitrix24.lnk
2021-09-20 09:29 - 2021-09-20 09:29 - 000000000 ___DC C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bitrix24
2021-09-20 09:29 - 2021-09-20 09:29 - 000000000 ____D C:\Users\Tino\AppData\Roaming\Bitrix
2021-09-20 09:29 - 2021-09-20 09:29 - 000000000 ____D C:\Users\Tino\AppData\Local\Bitrix24
2021-09-20 09:29 - 2021-09-20 09:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitrix24
2021-09-20 09:29 - 2021-09-20 09:29 - 000000000 ____D C:\ProgramData\Bitrix
2021-09-20 09:05 - 2021-09-20 09:09 - 191920504 _____ (Bitrix, Inc) C:\Users\Tino\Downloads\bitrix24_desktop.exe
2021-09-19 13:04 - 2021-09-19 13:04 - 001217366 _____ C:\Users\Tino\Downloads\Aktien.studieren Guide.pdf
2021-09-18 12:51 - 2021-09-19 16:06 - 000058251 _____ C:\Users\Tino\Documents\*****
2021-09-17 23:27 - 2021-09-18 00:35 - 000054915 _____ C:\Users\Tino\Documents\*****
2021-09-17 23:25 - 2021-09-17 23:25 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2021-09-17 23:25 - 2021-09-17 23:25 - 000170496 _____ C:\WINDOWS\system32\DeviceUpdateCenterCsp.dll
2021-09-17 23:24 - 2021-09-17 23:24 - 002295296 _____ (Digimarc) C:\WINDOWS\system32\DMRCDecoder.dll
2021-09-17 23:24 - 2021-09-17 23:24 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-09-17 23:24 - 2021-09-17 23:24 - 002111488 _____ (Digimarc) C:\WINDOWS\SysWOW64\DMRCDecoder.dll
2021-09-17 23:24 - 2021-09-17 23:24 - 001823304 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-09-17 23:24 - 2021-09-17 23:24 - 001393480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-09-17 23:24 - 2021-09-17 23:24 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-09-17 23:24 - 2021-09-17 23:24 - 001313608 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-09-17 23:24 - 2021-09-17 23:24 - 001164288 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-09-17 23:24 - 2021-09-17 23:24 - 000672768 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-09-17 23:24 - 2021-09-17 23:24 - 000570368 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2021-09-17 23:24 - 2021-09-17 23:24 - 000566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-09-17 23:24 - 2021-09-17 23:24 - 000426496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-09-17 23:24 - 2021-09-17 23:24 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-09-17 23:24 - 2021-09-17 23:24 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-09-17 23:24 - 2021-09-17 23:24 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-09-17 23:24 - 2021-09-17 23:24 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshom.ocx
2021-09-17 23:24 - 2021-09-17 23:24 - 000122880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshom.ocx
2021-09-17 23:24 - 2021-09-17 23:24 - 000098816 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-09-17 23:24 - 2021-09-17 23:24 - 000011355 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-09-16 23:36 - 2021-09-16 23:36 - 000125398 _____ C:\Users\Tino\Documents\Haushaltsbuch_Mama_30Jul21_v6.xlsx
2021-09-16 14:15 - 2021-09-16 18:02 - 000125413 _____ C:\Users\Tino\Documents\Haushaltsbuch_Mama_30Jul21_v5.xlsx
2021-09-15 16:13 - 2021-09-15 16:13 - 000000064 ____C C:\Users\Tino\Documents\Medikamente kaufen September 21.txt
2021-09-15 16:13 - 2021-09-15 16:13 - 000000032 ____C C:\Users\Tino\Documents\Auto das gegen mülleimer gefahren ist.txt
2021-09-15 15:06 - 2021-09-15 15:06 - 000001427 ____C C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2021-09-14 14:15 - 2021-09-14 14:15 - 012842099 _____ C:\Users\Tino\Downloads\0_Info_APM21.pdf
2021-09-13 10:48 - 2021-10-06 08:21 - 000004220 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1631522888
2021-09-13 10:48 - 2021-10-06 08:21 - 000001406 ____C C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Opera-Browser.lnk
2021-09-13 10:48 - 2021-10-05 15:01 - 000004450 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1631522903
2021-09-13 10:48 - 2021-09-13 10:48 - 000000000 ____D C:\Users\Tino\AppData\Local\Opera Software
2021-09-13 10:46 - 2021-09-13 10:46 - 000000000 ____D C:\Users\Tino\AppData\Roaming\Opera Software
2021-09-13 10:45 - 2021-09-13 10:45 - 002602664 _____ (Opera Software) C:\Users\Tino\Downloads\OperaSetup.exe
2021-09-13 10:41 - 2021-09-13 10:41 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
==================== Ein Monat (geänderte) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2021-10-13 21:47 - 2018-01-12 13:12 - 000000000 ____D C:\FRST
2021-10-13 21:46 - 2016-03-28 22:33 - 000000000 ____D C:\Program Files (x86)\Google
2021-10-13 21:45 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-10-13 21:44 - 2020-12-22 15:54 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-10-13 21:44 - 2020-12-22 15:39 - 000008192 ___SH C:\DumpStack.log.tmp
2021-10-13 21:44 - 2019-09-25 07:42 - 000000000 ____D C:\Program Files (x86)\TunnelBear
2021-10-13 21:44 - 2017-05-27 18:11 - 000000000 ____D C:\ProgramData\Synaptics
2021-10-13 21:44 - 2016-03-28 02:24 - 000000000 __SHD C:\Users\Tino\IntelGraphicsProfiles
2021-10-13 21:44 - 2016-03-28 02:22 - 000000000 ___DC C:\Intel
2021-10-13 21:43 - 2020-12-22 15:54 - 000003220 _____ C:\WINDOWS\system32\Tasks\Optimize Push Notification Data File-S-1-5-21-2977029141-1010321603-2543741146-1001
2021-10-13 21:43 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-10-13 21:31 - 2020-07-31 16:39 - 000000000 ___DC C:\Users\Tino\AppData\LocalLow\IGDump
2021-10-13 21:14 - 2020-06-05 16:27 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2021-10-13 21:14 - 2020-06-05 16:27 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-10-13 21:13 - 2020-06-05 16:27 - 000160176 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2021-10-13 21:06 - 2020-12-22 15:39 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-10-13 18:25 - 2017-03-10 19:11 - 000000000 ____D C:\Program Files (x86)\Audacity
2021-10-13 18:21 - 2020-12-22 15:50 - 002333496 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-10-13 18:21 - 2020-12-22 15:14 - 000478006 _____ C:\WINDOWS\system32\perfh011.dat
2021-10-13 18:21 - 2020-12-22 15:14 - 000132884 _____ C:\WINDOWS\system32\perfc011.dat
2021-10-13 18:21 - 2019-12-07 16:51 - 000744968 _____ C:\WINDOWS\system32\perfh007.dat
2021-10-13 18:21 - 2019-12-07 16:51 - 000150354 _____ C:\WINDOWS\system32\perfc007.dat
2021-10-13 18:21 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-10-13 18:16 - 2019-10-03 18:06 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2021-10-13 18:15 - 2018-12-04 22:10 - 000000000 ____D C:\ProgramData\Lenovo
2021-10-13 18:13 - 2019-11-20 15:59 - 000000000 ____D C:\WINDOWS\TempInst
2021-10-13 18:12 - 2018-04-15 14:19 - 000044062 _____ C:\Users\Tino\Downloads\Keepass Datenbank_15Apr18.kdbx
2021-10-13 18:12 - 2016-05-20 17:18 - 000000000 ___DC C:\Users\Tino\AppData\Roaming\KeePass
2021-10-13 16:49 - 2021-09-10 10:53 - 000000000 ___DC C:\Users\Tino\Documents\*****
2021-10-13 16:24 - 2017-03-10 19:12 - 000000000 ___DC C:\Users\Tino\AppData\Roaming\Audacity
2021-10-13 16:18 - 2020-05-16 14:01 - 000000000 ___DC C:\Users\Tino\Documents\Zoom
2021-10-13 15:24 - 2017-10-04 00:28 - 000000000 ___DC C:\Users\Tino\AppData\Local\DF6777BF-E7E1-4488-8623-6223146A9D8A.aplzod
2021-10-13 14:49 - 2020-12-22 15:54 - 000000000 ____D C:\WINDOWS\system32\Tasks\TVT
2021-10-13 14:48 - 2019-09-25 14:50 - 000003226 _____ C:\WINDOWS\SysWOW64\InstallUtil.InstallLog
2021-10-13 09:49 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-10-13 09:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-10-13 08:21 - 2020-08-12 18:13 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-10-13 08:21 - 2020-08-12 18:13 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-10-13 08:21 - 2016-03-28 22:34 - 000002293 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-10-12 13:09 - 2020-12-22 15:54 - 000003522 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
2021-10-12 07:57 - 2016-03-29 15:03 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-10-11 21:00 - 2021-09-03 17:08 - 000021830 _____ C:\Users\Tino\Documents\Internet Strom Mobilfunk 2021.xlsx
2021-10-10 23:44 - 2021-01-11 21:57 - 000003606 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6d868dc8bc866
2021-10-10 23:44 - 2020-12-22 15:54 - 000003700 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-10-08 08:52 - 2016-09-26 00:17 - 000000000 ___DC C:\Users\Tino\AppData\Local\ElevatedDiagnostics
2021-10-08 08:29 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-10-07 17:45 - 2020-12-22 15:54 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2977029141-1010321603-2543741146-1001
2021-10-07 17:45 - 2020-12-22 15:41 - 000002396 ____C C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-10-07 08:57 - 2021-08-15 19:30 - 000013860 _____ C:\Users\Tino\Documents\*****
2021-10-06 11:44 - 2016-07-28 13:49 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2021-10-06 10:33 - 2021-06-02 14:28 - 000115021 _____ C:\Users\Tino\Downloads\*****
2021-10-05 19:55 - 2017-12-13 21:07 - 000000000 ___DC C:\Users\Tino\AppData\Local\Packages
2021-10-03 17:14 - 2019-01-18 16:31 - 000001955 _____ C:\Users\Tino\AppData\Roaming\SAS7_000.DAT
2021-10-03 13:49 - 2018-03-31 23:32 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-10-02 23:08 - 2016-03-31 18:55 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-10-01 08:16 - 2021-02-21 20:53 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-09-30 23:13 - 2020-12-22 15:54 - 000003632 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-09-30 23:13 - 2020-12-22 15:54 - 000003508 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-09-29 23:03 - 2016-04-07 13:41 - 000000000 ____D C:\Program Files (x86)\Dropbox
2021-09-29 08:11 - 2016-02-13 19:34 - 000000000 __RHD C:\Users\Public\AccountPictures
2021-09-28 09:17 - 2019-03-15 11:56 - 000000000 ___DC C:\Users\Tino\AppData\Roaming\Apowersoft
2021-09-28 09:17 - 2017-07-19 11:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apowersoft
2021-09-28 09:17 - 2017-07-19 11:45 - 000000000 ____D C:\Program Files (x86)\Apowersoft
2021-09-28 08:57 - 2021-03-24 20:06 - 000000000 ___DC C:\Users\Tino\Documents\Bewerbung Johanniter
2021-09-27 08:32 - 2018-07-08 18:54 - 000000000 ___DC C:\Users\Tino\AppData\Local\D3DSCache
2021-09-26 23:17 - 2020-12-22 15:41 - 000000000 ____D C:\Users\Tino
2021-09-23 07:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2021-09-23 07:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Macromed
2021-09-22 22:35 - 2020-12-22 15:39 - 000707328 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-09-22 22:34 - 2019-12-07 16:54 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-09-22 22:34 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2021-09-16 08:37 - 2016-03-29 03:49 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-09-16 08:34 - 2020-12-22 15:54 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-09-16 08:29 - 2016-03-29 03:49 - 135637312 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-09-15 16:12 - 2016-04-27 16:48 - 000000000 ___DC C:\Users\Tino\Documents\*****
2021-09-15 16:11 - 2021-08-06 20:55 - 000027692 _____ C:\Users\Tino\Documents\*****
2021-09-13 11:02 - 2021-02-03 19:32 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-09-13 11:02 - 2017-07-03 20:30 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-09-13 10:50 - 2017-07-03 20:30 - 000000000 ___DC C:\Users\Tino\AppData\LocalLow\Mozilla
2021-09-13 10:42 - 2020-12-07 23:08 - 000000000 ____D C:\ProgramData\Mozilla
2021-09-13 10:41 - 2017-07-03 20:30 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========
2021-04-28 12:31 - 2021-04-28 12:06 - 001053600 _____ (ESET) C:\Users\Tino\esetuninstaller.exe
2019-01-18 16:31 - 2021-10-03 17:14 - 000001955 _____ () C:\Users\Tino\AppData\Roaming\SAS7_000.DAT
2018-09-29 15:38 - 2018-09-29 15:38 - 000000000 ____C () C:\Users\Tino\AppData\Local\oobelibMkey.log
2021-03-05 23:23 - 2021-03-05 23:23 - 000005743 _____ () C:\Users\Tino\AppData\Local\recently-used.xbel
==================== SigCheck ============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
==================== Ende von FRST.txt ========================
|
|
13.10.2021, 21:03
| #10 |
| | Windows 10: audacity.de Installer NOCH in der Ausführung. Soll ich ihn schließen? PC Neustarten? Addition.txt Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 12-10-2021
durchgeführt von Tino (13-10-2021 21:50:52)
Gestartet von C:\Users\Tino\Downloads
Microsoft Windows 10 Education Version 20H2 19042.1237 (X64) (2020-12-22 13:54:32)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
Administrator (S-1-5-21-2977029141-1010321603-2543741146-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2977029141-1010321603-2543741146-503 - Limited - Disabled)
Gast (S-1-5-21-2977029141-1010321603-2543741146-501 - Limited - Disabled)
Tino (S-1-5-21-2977029141-1010321603-2543741146-1001 - Administrator - Enabled) => C:\Users\Tino
WDAGUtilityAccount (S-1-5-21-2977029141-1010321603-2543741146-504 - Limited - Disabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
4K Video Downloader 4.3 (HKLM-x32\...\{D0CA3944-0FD5-40FF-97A1-FEDFFB5EE31F}) (Version: 4.3.2.2215 - Open Media LLC)
7-Zip 16.02 (x64) (HKLM\...\7-Zip) (Version: 16.02 - Igor Pavlov)
Ableton Live 10 Lite (HKLM\...\{3A42CB85-CCF2-470C-9086-C7D72B32B331}) (Version: 10.0.0.0 - Ableton)
Activ8 (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\b25a083cc8c5730f) (Version: 2.1.0.48 - Remedy Distribution Ltd)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 21.007.20095 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 5.3.1.470 - Adobe Inc.)
Adobe Digital Editions 4.5 (HKLM-x32\...\Adobe Digital Editions 4.5) (Version: 4.5.11 - Adobe Systems Incorporated)
Adobe Genuine Service (HKLM-x32\...\AdobeGenuineService) (Version: - Adobe)
Adobe Illustrator 2020 (HKLM-x32\...\ILST_24_3) (Version: 24.3 - Adobe Inc.)
Amazon Kindle (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Amazon Kindle) (Version: 1.20.1.47037 - Amazon)
Amazon Redshift ODBC Driver 64-bit (HKLM\...\{960BF695-03D5-48CF-9DC2-6AC5800C4FBE}) (Version: 1.4.10.1000 - Amazon Web Services, Inc.)
AnyTrans (HKLM-x32\...\AnyTrans) (Version: 5.5.4.0 - iMobie Inc.)
ApowerManager V3.2.3 (HKLM-x32\...\{D02368A2-6D57-4AE0-BECC-9E7DDE20B865}_is1) (Version: 3.2.3 - Apowersoft LIMITED)
ApowerMirror Version 1.4.5.3 (HKLM-x32\...\{a9482532-9c34-478c-80c3-85bdccbb981f}_is1) (Version: 1.4.5.3 - APOWERSOFT LIMITED)
Apple Application Support (32-Bit) (HKLM-x32\...\{308F2F8C-9D33-4B22-8A6C-D9C13DBEF8C6}) (Version: 7.0.2 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{0CB84A7D-9697-4526-A819-60FB050E8F05}) (Version: 7.0.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{77F8C879-88CD-4145-945A-541C35285285}) (Version: 12.0.0.1039 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.)
Archi 4.8.1 (HKLM\...\{17490178-4BB9-40A0-A9C4-F82027FF49B8}_is1) (Version: 4.8.1 - Phillip Beauvoir)
Artensoft Photo Collage Maker Pro (HKLM\...\Artensoft Photo Collage Maker Pro_is1) (Version: 2.0 - Artensoft)
AutoHotkey 1.1.32.00 (HKLM\...\AutoHotkey) (Version: 1.1.32.00 - Lexikos)
bf2battlelog (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\bf2battlelog) (Version: 0.8.6 - Spencer Sharkey)
Bitrix24 for Windows (HKLM-x32\...\Bitrix24) (Version: 12.0.26.60 - Bitrix)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
calibre 64bit (HKLM\...\{0F55D3CE-F390-494F-924A-A4204D649DE3}) (Version: 4.16.0 - Kovid Goyal)
Camera Mouse 2018 (HKLM-x32\...\{F5E6727D-0969-4C4A-A669-71F1A3913A03}}_is1) (Version: 1.1 - Boston College)
Chessmaster Grandmaster Edition (HKLM-x32\...\InstallShield_{27614800-84A9-484E-9CCB-43ED2F1205F5}) (Version: 1.02.0000 - Ubisoft)
Cisco AnyConnect Secure Mobility Client (HKLM-x32\...\Cisco AnyConnect Secure Mobility Client) (Version: 3.1.14018 - Cisco Systems, Inc.)
Cisco AnyConnect Secure Mobility Client (HKLM-x32\...\{C706092D-491F-4D29-BB49-FF7B47CD12F2}) (Version: 3.1.14018 - Cisco Systems, Inc.) Hidden
Citavi 6 (HKLM-x32\...\{6A331045-8FF4-4BC9-9C56-E593ACAE28C2}) (Version: 6.5.0.0 - Swiss Academic Software)
ClipGrab 3.8.14 (HKLM-x32\...\{8A1033B0-EF33-4FB5-97A1-C47A7DCDD7E6}_is1) (Version: - The ClipGrab Project)
CopyTrans Control Center deinstallieren (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\CopyTrans Suite) (Version: 4.008 - WindSolutions)
Cossacks - Back To War (HKLM-x32\...\1207662833_is1) (Version: 2.1.0.18 - GOG.com)
CPUID HWMonitor 1.28 (HKLM\...\CPUID HWMonitor_is1) (Version: - )
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
DB Browser for SQLite (HKLM-x32\...\DB Browser for SQLite) (Version: 3.10.1 - DB Browser for SQLite Team)
Dell Display Manager (HKLM-x32\...\{AC50C05D-9D57-40F5-B2EF-AC402F14312B}_is1) (Version: - EnTech Taiwan)
Dolby Audio X2 Windows API SDK (HKLM\...\{FA0735B6-9E18-437A-A1CD-9152650FC52B}) (Version: 0.8.8.90 - Dolby Laboratories, Inc.)
Dolby Audio X2 Windows APP (HKLM\...\{D0D32569-4680-490A-905C-5117CEAAB3EF}) (Version: 0.8.8.76 - Dolby Laboratories, Inc.)
Dragon 15 (HKLM-x32\...\{768AC460-237E-45B6-99B8-1DE6D0F391E8}) (Version: 15.00.000 - Nuance Communications Inc.)
Dropbox (HKLM-x32\...\Dropbox) (Version: 132.4.3800 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.503.1 - Dropbox, Inc.) Hidden
EaseUS MobiMover 4.5 (HKLM-x32\...\EaseUS MobiMover_is1) (Version: - EaseUS)
EVEREST Home Edition v2.20 (HKLM-x32\...\EVEREST Home Edition_is1) (Version: 2.20 - Lavalys Inc)
Evernote v. 6.1.2 (HKLM-x32\...\{A46ABD1E-2837-11E6-9E7C-005056951CAD}) (Version: 6.1.2.2292 - Evernote Corp.)
EyeDefender 1.08 (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\EyeDefender) (Version: - )
f.lux (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Flux) (Version: - f.lux Software LLC)
FootSwitch 7.0.3 (HKLM-x32\...\{7BD5E046-6535-4983-AD88-D6C9A9FA8081}) (Version: 2.0.5 - PCsensor)
Fotogalerie (HKLM-x32\...\{41BF4A3B-D60A-4E92-883F-C88C8C157261}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Foxit PDF Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 11.0.1.49938 - Foxit Software Inc.)
Free YouTube To MP3 Converter (HKLM-x32\...\Free YouTube To MP3 Converter_is1) (Version: 4.2.18.820 - Digital Wave Ltd)
G*Power 3.1.9.7 (HKLM-x32\...\{FA3666A9-FF30-4777-B906-305B1EF0486E}) (Version: 3.1.97 - Franz Faul, Uni Kiel, Germany)
GameSessions Data Delivery x86 (HKLM-x32\...\{9AA2C827-8AF8-40C5-B500-5A6DB3233D71}) (Version: 1.28.488.0 - Tangentix Ltd)
GameSessions Runtime x86 (HKLM-x32\...\{79DD8AE4-FAA0-44DB-A42F-F09252B5B99A}) (Version: 1.28.488.0 - Tangentix Ltd)
GCFScape 1.8.6 (HKLM\...\GCFScape_is1) (Version: - Ryan Gregg)
GIMP 2.10.22 (HKLM\...\GIMP-2_is1) (Version: 2.10.22 - The GIMP Team)
GitMind 1.0.5 (HKLM-x32\...\a0e10d84-6512-552f-a0ec-5dd2e61ffe64) (Version: 1.0.5 - Apowersoft)
GNU Privacy Guard (HKLM-x32\...\GnuPG) (Version: 2.2.7 - The GnuPG Project)
GOG GALAXY (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 94.0.4606.81 - Google LLC)
GoTo Opener (HKLM-x32\...\{C0F33C38-345C-4C02-B161-11389350C2A5}) (Version: 1.0.533 - LogMeIn, Inc.)
GoToMeeting 10.17.0.19796 (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\GoToMeeting) (Version: 10.17.0.19796 - LogMeIn, Inc.)
Gpg4win (3.1.1) (HKLM-x32\...\Gpg4win) (Version: 3.1.1 - The Gpg4win Project)
Grammarly for Microsoft Office Suite (HKLM\...\{DE46CC28-5477-4CFB-9AE2-8C7C111E3EE7}) (Version: 6.8.261 - Grammarly) Hidden
Grammarly for Microsoft Office Suite (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\{ee962c45-b827-4262-a720-3a939910ce37}) (Version: 6.8.261 - Grammarly)
gretl version 2016d (x86_64) (HKLM\...\gretl_is1) (Version: 2016d - The gretl team)
Heroes of Might and Magic 3 Complete (HKLM-x32\...\1207658787_is1) (Version: 4.0 - GOG.com)
Heroes of Might and Magic III: Horn of the Abyss + HD mod (HKLM-x32\...\HotA + HD_is1) (Version: 1.6.1 - )
HoMM III Compatibility Database (HKLM\...\{62a24b39-0106-4990-90ea-3a09e9dda7a6}.sdb) (Version: - )
HP Deskjet 3520 series - Grundlegende Software für das Gerät (HKLM\...\{15B2F0E3-3FAC-4495-B0FD-398EECFA4100}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Deskjet 3520 series Hilfe (HKLM-x32\...\{6B953497-169C-4929-9AA9-A9F510347468}) (Version: 27.0.0 - Hewlett Packard)
HP Deskjet 3520 series Setup Guide (HKLM-x32\...\{AEEDCEB7-00B8-4BE1-B492-AB04803D5F1E}) (Version: 27.0.0 - Hewlett Packard)
HP Support Solutions Framework (HKLM-x32\...\{3A1CB1B8-8646-41A0-B496-35DC48916904}) (Version: 12.10.49.21 - HP)
IBM SPSS Statistics 24 (HKLM\...\{4762AE15-E5A3-43BF-8822-1CFC70FB147A}) (Version: 24.0.0.0 - IBM Corp)
iCloud (HKLM\...\{29C6B346-C29C-40CE-89EB-DF7C149E0EB9}) (Version: 7.7.0.27 - Apple Inc.)
iMazing 2.6.4.0 (HKLM\...\iMazing_is1) (Version: 2.6.4.0 - DigiDNA)
Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{F70BCE36-25F2-4475-A918-6209B3D85BF3}) (Version: 15.0.179 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 2112.15.0.2221 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.62.321.1 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{c3964069-17c1-45dd-85a5-949576ceeaa3}) (Version: 1.62.321.1 - Intel Corporation) Hidden
Intel PROSet/Wireless Software (HKLM-x32\...\{ebb135fb-d587-4f7a-8c91-eca79031d792}) (Version: 21.30.2 - Intel Corporation)
iTunes (HKLM\...\{9E84991B-6078-4311-A714-0A1360C3706C}) (Version: 12.9.0.167 - Apple Inc.)
Java 8 Update 171 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180171F0}) (Version: 8.0.1710.11 - Oracle Corporation)
Java SE Development Kit 8 Update 111 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180111}) (Version: 8.0.1110.14 - Oracle Corporation)
Kalo24 - der Freeware-Kaloreinexperte 1.0.0.0 (HKLM-x32\...\Kalo24 - der Freeware-Kaloreinexperte) (Version: 1.0.0.0 - Ralph Borchert)
KeePass Password Safe 2.44 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version: 2.44 - Dominik Reichl)
KinoniDrivers 2.8.1 (HKLM-x32\...\KinoniDrivers) (Version: 2.8.1 - Kinoni)
Lenovo Anzeige am Bildschirm (HKLM\...\OnScreenDisplay) (Version: 8.78.00 - Lenovo)
Lenovo Power Management Driver (HKLM\...\Power Management Driver) (Version: 1.67.12.07 - Lenovo) Hidden
Lenovo Service Bridge (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\dda9ca0b023f4c56) (Version: 1.6.6.0 - Lenovo)
Lenovo System Update (HKLM-x32\...\TVSU_is1) (Version: 5.07.0131 - Lenovo)
LibreOffice 6.3.6.2 (HKLM\...\{6664E413-D143-48B3-823F-50084561A0B6}) (Version: 6.3.6.2 - The Document Foundation)
LispWorks 6.1 Personal (HKLM-x32\...\{844E2E8E-ED3D-4054-99C7-26ED070BDEFB}) (Version: 6.1.1 - LispWorks Ltd)
LRZ Sync+Share (HKLM-x32\...\LRZ_Sync_Share) (Version: 15.1.100.0 - Leibniz-Rechenzentrum)
Macabacus 2016 (HKLM-x32\...\{F577D9CC-6C1F-432B-9B76-2B8206D25221}) (Version: 8.9.6 - Macabacus, LLC)
Malwarebytes version 4.4.8.137 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.4.8.137 - Malwarebytes)
Microsoft 365 Apps for Enterprise - de-de (HKLM\...\O365ProPlusRetail - de-de) (Version: 16.0.14430.20270 - Microsoft Corporation)
Microsoft ASP.NET MVC 2 (HKLM-x32\...\{DD8FF2F3-0D97-4CF3-AF78-FA0E1B242244}) (Version: 2.0.60926.0 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 94.0.992.47 - Microsoft Corporation)
Microsoft Edge WebView2-Laufzeit (HKLM-x32\...\Microsoft EdgeWebView) (Version: 94.0.992.47 - Microsoft Corporation)
Microsoft Keyboard Layout Creator 1.4 (HKLM-x32\...\{99E66BC9-E4B6-485F-ABFC-31EFCE36DFDF}) (Version: 1.4.6000 - Microsoft Corp.)
Microsoft ODBC Driver 17 for SQL Server (HKLM\...\{E36FFC78-D25E-4962-872B-9CE0E50E62CD}) (Version: 17.5.1.1 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\OneDriveSetup.exe) (Version: 21.180.0905.0007 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Teams) (Version: 1.4.00.2879 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{29B15818-E79F-4AB0-8938-9410C807AD76}) (Version: 2.84.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40649 (HKLM-x32\...\{5d0723d3-cff7-4e07-8d0b-ada737deb5e6}) (Version: 12.0.40649.5 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.23.27820 (HKLM-x32\...\{852adda4-4c78-4a38-b583-c0b360a329d6}) (Version: 14.23.27820.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.23.27820 (HKLM-x32\...\{45231ab4-69fd-486a-859d-7a59fcd11013}) (Version: 14.23.27820.0 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{70C91B91-61E8-4D06-86D6-A9DCC291983A}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 85.0 (x64 de) (HKLM\...\Mozilla Firefox 85.0 (x64 de)) (Version: 85.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 54.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 85.0.0.7688 - Mozilla)
Mozilla Thunderbird 60.9.1 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 60.9.1 (x86 de)) (Version: 60.9.1 - Mozilla)
Mplus Version 8.4 Demo (64-bit) (HKLM\...\{9654A20E-7892-4EB5-87C1-58BEBBB981F8}) (Version: 8.4 - Muthen & Muthen)
Nikon Message Center 2 (HKLM-x32\...\{B014EE44-9197-4513-9613-71E6EB1B514E}) (Version: 2.3.0 - Nikon Corporation)
Nikon Transfer 2 (HKLM-x32\...\{4D5EE11A-0D0A-4214-ABAC-72419F7BE24D}) (Version: 2.13.2 - Nikon Corporation)
Nitro Pro (HKLM\...\{0F088B7C-E593-438F-AABB-1B393864EE78}) (Version: 11.0.3.173 - Nitro) Hidden
Nitro Pro (HKLM-x32\...\{15459ba7-7bcf-4b1f-8631-b6b5b980a8cc}) (Version: 11.0.3.173 - Nitro)
Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 7.9.1 - Notepad++ Team)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.14430.20276 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.14430.20234 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.14430.20276 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0407-0000-0000000FF1CE}) (Version: 16.0.14430.20234 - Microsoft Corporation) Hidden
Opera Stable 79.0.4143.72 (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Opera 79.0.4143.72) (Version: 79.0.4143.72 - Opera Software)
PDF24 Creator 7.9.0 (HKLM-x32\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version: - PDF24.org)
PDF-Viewer (HKLM\...\{A278382D-4F1B-4D47-9885-8523F7261E8D}_is1) (Version: 2.5.322.7 - Tracker Software Products Ltd)
PDF-XChange Editor (HKLM\...\{3BB66258-EB01-4052-9558-D9353DC5AC89}) (Version: 8.0.336.0 - Tracker Software Products (Canada) Ltd.) Hidden
PDF-XChange Editor (HKLM-x32\...\{797baf93-803d-4306-9b2f-9ff5972f040c}) (Version: 8.0.336.0 - Tracker Software Products (Canada) Ltd.)
Picture Control Utility 2 (HKLM\...\{46BEAB85-B86A-4AAB-B085-136ECA032CF4}) (Version: 2.4.2 - Nikon Corporation)
ProtonVPN (HKLM-x32\...\{2E5B3FB1-FDCC-4BC8-AA99-E0EE5343CAF8}) (Version: 1.16.3 - Proton Technologies AG) Hidden
ProtonVPN (HKLM-x32\...\ProtonVPN 1.16.3) (Version: 1.16.3 - Proton Technologies AG)
ProtonVPNTap (HKLM-x32\...\{BCB82CD9-F514-4F93-A6D9-F898494DC927}) (Version: 1.1.0 - Proton Technologies AG)
psqlODBC_x64 (HKLM\...\{3F8971B0-061B-4163-9D3F-EA94151B2FCF}) (Version: 09.06.0504 - PostgreSQL Global Development Group)
Python 3.6.2 (32-bit) (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\{8388fa07-1617-4b8d-8ad8-6a940ad8052c}) (Version: 3.6.2150.0 - Python Software Foundation)
Python 3.6.2 Core Interpreter (32-bit) (HKLM-x32\...\{4542573C-6216-4584-BA90-72BAF7954404}) (Version: 3.6.2150.0 - Python Software Foundation) Hidden
Python 3.6.2 Development Libraries (32-bit) (HKLM-x32\...\{69E3E4A6-2A0F-4A32-9C2D-591EEC107289}) (Version: 3.6.2150.0 - Python Software Foundation) Hidden
Python 3.6.2 Documentation (32-bit) (HKLM-x32\...\{796410A7-1669-4FE4-8332-F684B61269E2}) (Version: 3.6.2150.0 - Python Software Foundation) Hidden
Python 3.6.2 Executables (32-bit) (HKLM-x32\...\{348C0EFF-60B1-4E68-88B8-33D7DF70DFCF}) (Version: 3.6.2150.0 - Python Software Foundation) Hidden
Python 3.6.2 pip Bootstrap (32-bit) (HKLM-x32\...\{6B2D61BA-C42D-4324-B23F-1D7B5A2808EF}) (Version: 3.6.2150.0 - Python Software Foundation) Hidden
Python 3.6.2 Standard Library (32-bit) (HKLM-x32\...\{79B4337D-166F-4BC0-B67A-F73806CC730E}) (Version: 3.6.2150.0 - Python Software Foundation) Hidden
Python 3.6.2 Tcl/Tk Support (32-bit) (HKLM-x32\...\{DF24AFFD-23AB-4A7D-A0E0-6410CE3B6B9D}) (Version: 3.6.2150.0 - Python Software Foundation) Hidden
Python 3.6.2 Test Suite (32-bit) (HKLM-x32\...\{433FD2E2-839C-4211-88B7-45C90F738842}) (Version: 3.6.2150.0 - Python Software Foundation) Hidden
Python 3.6.2 Utility Scripts (32-bit) (HKLM-x32\...\{9B79DE7E-E864-4758-8DFC-85DA43B19671}) (Version: 3.6.2150.0 - Python Software Foundation) Hidden
Python Launcher (HKLM-x32\...\{2636F1E4-2BC5-4B19-BFFD-A08F72598309}) (Version: 3.6.6032.0 - Python Software Foundation)
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
R for Windows 3.3.1 (HKLM\...\R for Windows 3.3.1_is1) (Version: 3.3.1 - R Core Team)
R for Windows 4.0.0 (HKLM\...\R for Windows 4.0.0_is1) (Version: 4.0.0 - R Core Team)
RStudio (HKLM-x32\...\RStudio) (Version: 1.3.1093 - RStudio)
Seagate Dashboard (HKLM-x32\...\{EA266F00-A8E7-43A0-8DED-FBFE3F076934}) (Version: 4.4.19.0 - Seagate)
Shotcut (HKLM\...\Shotcut) (Version: 20.10.31 - Meltytech, LLC)
Sky Ticket 6.6.0.0 (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\com.bskyb.skyticket_is1) (Version: 6.6.0.0 - Sky Ticket)
Smyle Mouse (HKLM-x32\...\{09786633-20A6-48F4-932B-3AF58F730AD0}_is1) (Version: 1.5.4.2 - )
Spotify (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Spotify) (Version: 1.1.48.625.g1c87c7f7 - Spotify AB)
STAR WARS Battlefront II (HKLM-x32\...\1421404701_is1) (Version: 1.1 - GOG.com)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SteuerSparErklärung 2016 (HKLM-x32\...\{D331D50C-C578-423B-8BC7-94D3133CE315}) (Version: 21.41.113 - Akademische Arbeitsgemeinschaft)
Tableau 2020.3 (20203.20.0801.1333) (HKLM\...\{EFE6DB45-0575-40DA-9DF5-FD92CD78B01A}) (Version: 20.3.25268 - Tableau Software) Hidden
Tableau 2020.3 (20203.20.0801.1333) (HKLM-x32\...\{973a434a-9566-4323-97f7-d47c68bf1b22}) (Version: 20.3.25268 - Tableau Software)
Tableau Public 2020.3 (20203.20.0801.1333) (HKLM\...\{F02547AA-E4F3-4149-94F4-821D7F8117DD}) (Version: 20.3.25268 - Tableau Software) Hidden
Tableau Public 2020.3 (20203.20.0801.1333) (HKLM-x32\...\{8f6fc2fc-a962-4086-8ed7-9305397cecb1}) (Version: 20.3.25268 - Tableau Software)
Teams Machine-Wide Installer (HKLM-x32\...\{39AF0813-FA7B-4860-ADBE-93B9B214B914}) (Version: 1.2.0.17057 - Microsoft Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.5.6 - TeamSpeak Systems GmbH)
TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.78313 - TeamViewer)
thinkorswim (HKLM\...\9968-4488-2169-7623) (Version: desktop - thinkorswim, Inc)
Tinypic 3.18 (HKLM-x32\...\{E3723A04-A894-4036-A78E-282E18F43C0A}_is1) (Version: Tinypic 3.18 - E. Fiedler)
Toolkit (HKLM-x32\...\Toolkit) (Version: 1.8.1.71 - Seagate)
Trading (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\5556-0001-2700-0000) (Version: latest (979.4x) 20200630 11:44:03 - IB Exchange Corp.)
TreeSize Free V4.3.1 (HKLM-x32\...\TreeSize Free_is1) (Version: 4.3.1 - JAM Software)
TunnelBear (HKLM-x32\...\{A7784574-2299-423F-9DF8-385D5FC2A10E}) (Version: 3.7.12.0 - TunnelBear) Hidden
TunnelBear (HKLM-x32\...\{dc847d12-97d0-44e5-a95f-f0ef81c071a7}) (Version: 3.7.12.0 - TunnelBear)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{0BAA0A93-3AD3-4B19-9105-4C8C3FA92A83}) (Version: 2.67.0.0 - Microsoft Corporation) Hidden
Update for Windows 10 for x64-based Systems (KB4480730) (HKLM\...\{0746492E-47B6-4251-940C-44462DFD74BB}) (Version: 2.55.0.0 - Microsoft Corporation)
ViewNX-i (HKLM\...\{C02E1F40-7EB2-4084-991B-EBFC7F586E26}) (Version: 1.3.3 - Nikon Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.4 - VideoLAN)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows Resource Kit Tools (HKLM-x32\...\{FA237125-51FF-408C-8BB8-30C2B3DFFF9C}) (Version: 5.2.3790 - Microsoft Corporation)
WinMerge 2.14.0 (HKLM-x32\...\WinMerge_is1) (Version: 2.14.0 - Thingamahoochie Software)
Worms Reloaded - GameSessions Edition (HKLM-x32\...\{eea75da8-b7ea-43fc-b128-2383ea4b7d9e}) (Version: 2.2.6537.24689 - GameSessions)
Worms Reloaded (HKLM-x32\...\{CB69AE49-9423-4B3E-8325-A5B1C2869D5E}) (Version: 2.2.0.0 - GameSessions) Hidden
ZeroTier One (HKLM-x32\...\{AEB4CE16-0CE9-4F87-976E-79D7B2416613}) (Version: 1.6.2 - ZeroTier, Inc.) Hidden
ZeroTier One (HKLM-x32\...\ZeroTier One 1.6.2) (Version: 1.6.2 - ZeroTier, Inc.)
ZeroTier One Virtual Network Port (HKLM\...\{272B1192-65BE-4BDE-894B-6D3AD8BF7FD2}) (Version: 1.0.1 - ZeroTier) Hidden
Zoom (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\ZoomUMX) (Version: 5.7.7 (1105) - Zoom Video Communications, Inc.)
Packages:
=========
Adobe Notification Client -> C:\Program Files\WindowsApps\AdobeNotificationClient_2.0.1.8_x86__enpm4xejd91yc [2020-12-22] (Adobe Systems Incorporated)
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.203.500.0_x86__kgqvnymyfvs32 [2021-10-01] (king.com)
Fotos-Add-On -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-05-04] (Microsoft Corporation)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_131.1.242.0_x64__v10z8vjag6ke6 [2021-09-28] (HP Inc.)
Media Engine-Add-On für Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-09-14] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-16] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-16] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.10.9220.0_x64__8wekyb3d8bbwe [2021-10-12] (Microsoft Studios) [MS Ad]
Reader Notification Client -> C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r [2020-04-02] (Adobe Systems Incorporated)
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.TWITTER_7.0.1.0_neutral__wgeqdkkx372wm [2021-06-13] (Twitter Inc.)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-2977029141-1010321603-2543741146-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-8BA2368BC411} -> [Creative Cloud Files] => C:\Users\Tino\Creative Cloud Files [2017-07-17 20:23]
CustomCLSID: HKU\S-1-5-21-2977029141-1010321603-2543741146-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\Tino\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20289.5\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2977029141-1010321603-2543741146-1001_Classes\CLSID\{2AD206F1-152C-4F9D-A24E-6F93FE7A4AFC}\InprocServer32 -> C:\Users\Tino\AppData\Local\Grammarly\Grammarly for Microsoft Office Suite\6.8.261\8B2AC1D301\GrammarlyShim64.dll (Grammarly, Inc. -> CompanyName)
CustomCLSID: HKU\S-1-5-21-2977029141-1010321603-2543741146-1001_Classes\CLSID\{4BE56754-B616-4998-B825-D16983AEE1B2}\InprocServer32 -> C:\Users\Tino\AppData\Local\Grammarly\Grammarly for Microsoft Office Suite\6.8.261\8B2AC1D301\Grammarly.AddIn.Connect.ActiveX.dll (Grammarly, Inc. -> Grammarly)
CustomCLSID: HKU\S-1-5-21-2977029141-1010321603-2543741146-1001_Classes\CLSID\{84B5A313-CD5D-4904-8BA2-AFDC81C1B309}\InprocServer32 -> C:\Users\Tino\AppData\Local\GoToMeeting\16786\G2MOutlookAddin64.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-2977029141-1010321603-2543741146-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\Tino\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.19127.3\x64\Microsoft.Teams.AddinLoader.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-2977029141-1010321603-2543741146-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\Tino\Dropbox [2016-04-07 13:43]
CustomCLSID: HKU\S-1-5-21-2977029141-1010321603-2543741146-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems)
ShellIconOverlayIdentifiers: [ 00BitrixShellExt_1] -> {A11A1EE5-F9F8-4BE0-907F-D74A49CC506B} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers: [ 00BitrixShellExt_2] -> {A11A1EE5-F9F8-4BE0-907F-D74A49CC506C} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers: [ 00BitrixShellExt_3] -> {A11A1EE5-F9F8-4BE0-907F-D74A49CC506D} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers: [ 00BitrixShellExt_4] -> {A11A1EE5-F9F8-4BE0-907F-D74A49CC506E} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers: [ 00BitrixShellExt_5] -> {A11A1EE5-F9F8-4BE0-907F-D74A49CC506F} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers: [ 00BitrixShellExt_6] -> {8009C378-F2BE-42A6-8ADD-083AAFBDC4EB} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers: [ 00BitrixShellExt_7] -> {057E631A-726E-4193-BB37-377DBD42812A} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers: [ 00BitrixShellExt_8] -> {86627476-D173-4FBC-B206-3A19447FF8CC} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-10-10] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-10-10] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-10-10] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ PowerFolderIgnored] -> {0800cf35-8302-4030-8add-40ac1e3f8834} => C:\Program Files (x86)\Leibniz-Rechenzentrum\LRZ_Sync_Share\IgnoredOverlay_x64.dll [2020-03-15] () [Datei ist nicht signiert]
ShellIconOverlayIdentifiers: [ PowerFolderLocked] -> {0800cf35-8302-4030-8add-40ac1e3f8835} => C:\Program Files (x86)\Leibniz-Rechenzentrum\LRZ_Sync_Share\LockedOverlay_x64.dll [2020-03-15] () [Datei ist nicht signiert]
ShellIconOverlayIdentifiers: [ PowerFolderOK] -> {0800cf35-8302-4030-8add-40ac1e3f8831} => C:\Program Files (x86)\Leibniz-Rechenzentrum\LRZ_Sync_Share\OKOverlay_x64.dll [2020-03-15] () [Datei ist nicht signiert]
ShellIconOverlayIdentifiers: [ PowerFolderSyncing] -> {0800cf35-8302-4030-8add-40ac1e3f8832} => C:\Program Files (x86)\Leibniz-Rechenzentrum\LRZ_Sync_Share\SyncingOverlay_x64.dll [2020-03-15] () [Datei ist nicht signiert]
ShellIconOverlayIdentifiers: [ PowerFolderWarning] -> {0800cf35-8302-4030-8add-40ac1e3f8833} => C:\Program Files (x86)\Leibniz-Rechenzentrum\LRZ_Sync_Share\WarningOverlay_x64.dll [2020-03-15] () [Datei ist nicht signiert]
ShellIconOverlayIdentifiers-x32: [ 00BitrixShellExt_1] -> {A11A1EE5-F9F8-4BE0-907F-D74A49CC506B} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers-x32: [ 00BitrixShellExt_2] -> {A11A1EE5-F9F8-4BE0-907F-D74A49CC506C} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers-x32: [ 00BitrixShellExt_3] -> {A11A1EE5-F9F8-4BE0-907F-D74A49CC506D} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers-x32: [ 00BitrixShellExt_4] -> {A11A1EE5-F9F8-4BE0-907F-D74A49CC506E} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers-x32: [ 00BitrixShellExt_5] -> {A11A1EE5-F9F8-4BE0-907F-D74A49CC506F} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers-x32: [ 00BitrixShellExt_6] -> {8009C378-F2BE-42A6-8ADD-083AAFBDC4EB} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers-x32: [ 00BitrixShellExt_7] -> {057E631A-726E-4193-BB37-377DBD42812A} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers-x32: [ 00BitrixShellExt_8] -> {86627476-D173-4FBC-B206-3A19447FF8CC} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-05-21] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-10-10] (Adobe Inc. -> )
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files\Notepad++\NppShell_06.dll [2020-11-02] (Notepad++ -> )
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> Keine Datei
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [LiferayNativityContextMenus] -> {0800cf35-8302-4030-8add-40ac1e3f8830} => C:\Program Files (x86)\Leibniz-Rechenzentrum\LRZ_Sync_Share\LiferayNativityContextMenus_x64.dll [2020-03-15] () [Datei ist nicht signiert]
ContextMenuHandlers1: [NP8ShellExtension] -> {9C4B85B8-956C-49BF-9BA5-101384E562B2} => C:\Program Files\Nitro\Pro 11\NPShellExtension.dll [2017-03-09] (Nitro Software, Inc. -> Nitro PDF)
ContextMenuHandlers1: [PDFXChange Editor Context menu] -> {2ACD35AB-F74A-4C20-AA9B-2DE80081626D} => C:\Program Files\Tracker Software\Shell Extensions\XCShellMenu.x64.dll [2020-01-06] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2018-10-01] (Apple Inc. -> Apple Inc.)
ContextMenuHandlers1: [WinMerge] -> {4E716236-AA30-4C65-B225-D68BBA81E9C2} => C:\Program Files (x86)\WinMerge\ShellExtensionX64.dll [2013-02-02] (hxxp://winmerge.org) [Datei ist nicht signiert]
ContextMenuHandlers2: [WinMerge] -> {4E716236-AA30-4C65-B225-D68BBA81E9C2} => C:\Program Files (x86)\WinMerge\ShellExtensionX64.dll [2013-02-02] (hxxp://winmerge.org) [Datei ist nicht signiert]
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-06-05] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> Keine Datei
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-05-21] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers4: [LiferayNativityContextMenus] -> {0800cf35-8302-4030-8add-40ac1e3f8830} => C:\Program Files (x86)\Leibniz-Rechenzentrum\LRZ_Sync_Share\LiferayNativityContextMenus_x64.dll [2020-03-15] () [Datei ist nicht signiert]
ContextMenuHandlers4: [WinMerge] -> {4E716236-AA30-4C65-B225-D68BBA81E9C2} => C:\Program Files (x86)\WinMerge\ShellExtensionX64.dll [2013-02-02] (hxxp://winmerge.org) [Datei ist nicht signiert]
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Keine Datei
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_fce0c2dbe15e0d9a\igfxDTCM.dll [2021-02-02] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [WinMerge] -> {4E716236-AA30-4C65-B225-D68BBA81E9C2} => C:\Program Files (x86)\WinMerge\ShellExtensionX64.dll [2013-02-02] (hxxp://winmerge.org) [Datei ist nicht signiert]
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-05-21] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-10-10] (Adobe Inc. -> )
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> Keine Datei
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-06-05] (Malwarebytes Corporation -> Malwarebytes)
==================== Codecs (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Drivers32: [msacm.pspgru] => C:\Windows\SysWOW64\pspgru.acm [401920 2010-03-22] (Philips Austria GmbH - Speech Processing) [Datei ist nicht signiert]
==================== Verknüpfungen & WMI ========================
==================== Geladene Module (Nicht auf der Ausnahmeliste) =============
2019-06-19 15:24 - 2019-06-19 15:24 - 000030720 _____ () [Datei ist nicht signiert] [Datei wird verwendet] C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.Wrapper.dll
2019-06-19 15:24 - 2019-06-19 15:24 - 000167424 _____ () [Datei ist nicht signiert] [Datei wird verwendet] C:\Program Files (x86)\TunnelBear\TunnelBear.VigilantBear.Wrapper.dll
2021-05-05 12:28 - 2021-05-05 12:28 - 138710528 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Bitrix24\libcef.dll
2021-01-29 12:45 - 2021-01-29 12:45 - 000392192 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Bitrix24\libEGL.dll
2021-01-29 12:45 - 2021-01-29 12:45 - 006333440 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Bitrix24\libGLESv2.dll
2021-01-29 12:45 - 2021-01-29 12:45 - 001006080 _____ (The Chromium Authors) [Datei ist nicht signiert] C:\Program Files (x86)\Bitrix24\chrome_elf.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================
==================== Internet Explorer (Nicht auf der Ausnahmeliste) ==========
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/de-de/?ocid=iehp
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2021-10-06] (Microsoft Corporation -> Microsoft Corporation)
BHO: Dragon Web Extension For Internet Explorer -> {609C0837-8DD3-4F9B-AAC5-446F36BC0353} -> C:\Program Files (x86)\Nuance\NaturallySpeaking15\Program\x64\dgnriaie_x64.dll [2016-08-23] (Nuance Communication, Inc. -> Nuance Communications, Inc.)
BHO: Citavi Picker -> {609D670F-B735-4da7-AC6D-F3BD358E325E} -> C:/Program Files (x86)/Internet Explorer/Citavi Picker/x64/SwissAcademic.Citavi.IEPicker.DLL => Keine Datei
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_171\bin\ssv.dll [2018-04-30] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_171\bin\jp2ssv.dll [2018-04-30] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2021-10-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Dragon Web Extension For Internet Explorer -> {609C0837-8DD3-4F9B-AAC5-446F36BC0353} -> C:\Program Files (x86)\Nuance\NaturallySpeaking15\Program\dgnriaie.dll [2016-08-23] (Nuance Communication, Inc. -> Nuance Communications, Inc.)
BHO-x32: Citavi Picker -> {609D670F-B735-4da7-AC6D-F3BD358E325E} -> C:/Program Files (x86)/Internet Explorer/Citavi Picker/SwissAcademic.Citavi.IEPicker.DLL => Keine Datei
BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2016-06-01] (EVERNOTE CORPORATION -> Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
IE Session Restore: HKU\S-1-5-21-2977029141-1010321603-2543741146-1001 -> ist aktiviert.
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-06] (Microsoft Corporation -> Microsoft Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE trusted site: HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\sharepoint.com -> hxxps://forstudents-files.sharepoint.com
==================== Hosts Inhalt: =========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2015-10-30 09:24 - 2021-10-13 21:44 - 000000893 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 reddit.com
127.0.0.1 netflix.com
127.0.0.1 netflix.de
==================== Andere Bereiche ===========================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%INTEL_DEV_REDIST%redist\intel64\compiler;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Windows Resource Kits\Tools\;C:\Windows\System32;C:\Windows;C:\Windows\System32\wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files\IBM\SPSS\Statistics\24\JRE\bin;C:\Program Files (x86)\Windows Live\Shared;C:\Program Files (x86)\QuickTime\QTSystem\;C:\Python36;C:\Program Files (x86)\GnuPG\bin;C:\Windows\System32\OpenSSH\;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;C:\Program Files\Calibre2\;C:\Program Files\Mplus Demo\;C:\Program Files (x86)\ZeroTier\One\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img13.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run32: => "ISUSPM"
HKLM\...\StartupApproved\Run32: => "Cisco AnyConnect Secure Mobility Agent for Windows"
HKLM\...\StartupApproved\Run32: => "Dropbox"
HKLM\...\StartupApproved\Run32: => "PDFPrint"
HKLM\...\StartupApproved\Run32: => "DBAgent"
HKLM\...\StartupApproved\Run32: => "Nikon Message Center 2"
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\StartupApproved\StartupFolder: => "An OneNote senden.lnk"
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\StartupApproved\Run: => "RESTART_STICKY_NOTES"
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\StartupApproved\Run: => "Spotify Web Helper"
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\StartupApproved\Run: => "iCloudServices"
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\StartupApproved\Run: => "ISUSPM"
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\StartupApproved\Run: => "ApplePhotoStreams"
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\StartupApproved\Run: => "vidnotifier.exe"
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\StartupApproved\Run: => "com.squirrel.Teams.Teams"
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\StartupApproved\Run: => "CCXProcess"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [UDP Query User{4901AD59-7A0F-4587-AD99-2A9B95AAC996}C:\users\tino\desktop\garrysmodserver\srcds.exe] => (Allow) C:\users\tino\desktop\garrysmodserver\srcds.exe => Keine Datei
FirewallRules: [TCP Query User{769D8141-203D-4219-9B51-053085B9E85A}C:\users\tino\desktop\garrysmodserver\srcds.exe] => (Allow) C:\users\tino\desktop\garrysmodserver\srcds.exe => Keine Datei
FirewallRules: [UDP Query User{BF6F0EFD-3C98-49AA-924C-21F16E8D0B92}C:\users\tino\documents\spiele\age of empires2\empires2.exe] => (Block) C:\users\tino\documents\spiele\age of empires2\empires2.exe (Microsoft Corporation) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{91369A6B-AB2B-4492-9C98-1315CBBF12C2}C:\users\tino\documents\spiele\age of empires2\empires2.exe] => (Block) C:\users\tino\documents\spiele\age of empires2\empires2.exe (Microsoft Corporation) [Datei ist nicht signiert]
FirewallRules: [{204D7375-5973-4853-B5F8-D00F53E029DF}] => (Block) C:\users\tino\documents\warcraft iii frozen throne\warcraft iii\war3.exe => Keine Datei
FirewallRules: [{BB75EE5C-BD1A-4B9A-BCFE-9C75D5FF2C45}] => (Block) C:\users\tino\documents\warcraft iii frozen throne\warcraft iii\war3.exe => Keine Datei
FirewallRules: [UDP Query User{051B91EF-14F1-45D3-B4EF-F25A091A17A1}C:\users\tino\documents\warcraft iii frozen throne\warcraft iii\war3.exe] => (Allow) C:\users\tino\documents\warcraft iii frozen throne\warcraft iii\war3.exe => Keine Datei
FirewallRules: [TCP Query User{8800C3B0-CD76-4132-A598-7411EEDAA43C}C:\users\tino\documents\warcraft iii frozen throne\warcraft iii\war3.exe] => (Allow) C:\users\tino\documents\warcraft iii frozen throne\warcraft iii\war3.exe => Keine Datei
FirewallRules: [{70EE06D2-E4A5-42CD-8804-0C2E2B3C0CCC}] => (Allow) C:\ProgramData\ZeroTier\One\zerotier-one_x64.exe (ZeroTier, Inc. -> )
FirewallRules: [{8F6B475C-E729-4C81-BC3C-9DF687B934AD}] => (Allow) LPort=9993
FirewallRules: [{69127A78-4854-4661-9FE1-05378040E6B6}] => (Allow) LPort=9993
FirewallRules: [UDP Query User{193E39FC-5641-4143-97D3-8D358D43B695}C:\users\tino\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\tino\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{C9E72A9F-558F-41CD-9A56-8EF9563AE617}C:\users\tino\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\tino\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{ECC79DD5-0A07-45B8-AC5E-7BB00E6E26D7}C:\program files\tableau\tableau 2020.3\bin\jre\bin\java.exe] => (Allow) C:\program files\tableau\tableau 2020.3\bin\jre\bin\java.exe
FirewallRules: [TCP Query User{7BDE41DC-4ABE-4742-A292-A78FB94B8B33}C:\program files\tableau\tableau 2020.3\bin\jre\bin\java.exe] => (Allow) C:\program files\tableau\tableau 2020.3\bin\jre\bin\java.exe
FirewallRules: [UDP Query User{6B8B25C4-43A5-43BF-9DFD-40CEEACAA1AF}C:\program files\calibre2\calibre.exe] => (Block) C:\program files\calibre2\calibre.exe (Kovid Goyal -> )
FirewallRules: [TCP Query User{7C694A61-9BDB-4D8E-BEE9-B7381EC22DED}C:\program files\calibre2\calibre.exe] => (Block) C:\program files\calibre2\calibre.exe (Kovid Goyal -> )
FirewallRules: [{18AADF5E-2FB3-4A3B-A524-16A5B605DE9E}] => (Allow) C:\Users\Tino\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{C7E49A12-0511-4B9B-B406-1FB281F81284}] => (Allow) C:\Users\Tino\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{62EF9F01-96AB-4863-A5AF-8EF2FF1F4196}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes 2\RelicCoH2.exe => Keine Datei
FirewallRules: [{A05D236E-75B7-4B48-B76B-B9E416643382}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes 2\RelicCoH2.exe => Keine Datei
FirewallRules: [UDP Query User{5BD87418-F90D-4F8E-A26E-20C4E1BAD80C}C:\users\tino\documents\spiele\warcraft iii frozen throne\warcraft iii\war3.exe] => (Allow) C:\users\tino\documents\spiele\warcraft iii frozen throne\warcraft iii\war3.exe (Blizzard Entertainment) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{06D026C2-E87F-44C8-B43E-8EF1B2A9F228}C:\users\tino\documents\spiele\warcraft iii frozen throne\warcraft iii\war3.exe] => (Allow) C:\users\tino\documents\spiele\warcraft iii frozen throne\warcraft iii\war3.exe (Blizzard Entertainment) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{A21D10D2-340D-4B20-B852-4118069427BA}C:\gog games\star wars - battlefront 2\gamedata\battlefrontii.exe] => (Allow) C:\gog games\star wars - battlefront 2\gamedata\battlefrontii.exe => Keine Datei
FirewallRules: [TCP Query User{4C88BE04-116F-46D7-91A1-D675BCBEA436}C:\gog games\star wars - battlefront 2\gamedata\battlefrontii.exe] => (Allow) C:\gog games\star wars - battlefront 2\gamedata\battlefrontii.exe => Keine Datei
FirewallRules: [UDP Query User{6DD4627F-4562-473A-97D0-F5FC205BCB39}C:\users\tino\documents\spiele\cs 1.6 version 3\hl.exe] => (Block) C:\users\tino\documents\spiele\cs 1.6 version 3\hl.exe => Keine Datei
FirewallRules: [TCP Query User{DC876CD0-368F-49CF-A6E5-52E782856C0E}C:\users\tino\documents\spiele\cs 1.6 version 3\hl.exe] => (Block) C:\users\tino\documents\spiele\cs 1.6 version 3\hl.exe => Keine Datei
FirewallRules: [UDP Query User{864165D1-F4FF-4C73-93F9-FAD0C670E471}C:\gog games\star wars - battlefront 2\gamedata\battlefrontii.exe] => (Allow) C:\gog games\star wars - battlefront 2\gamedata\battlefrontii.exe => Keine Datei
FirewallRules: [TCP Query User{4EA96063-C978-4AA5-8416-4E546C577E44}C:\gog games\star wars - battlefront 2\gamedata\battlefrontii.exe] => (Allow) C:\gog games\star wars - battlefront 2\gamedata\battlefrontii.exe => Keine Datei
FirewallRules: [{8291CA73-DCE0-4B2C-82E8-B10866CC9B2E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe () [Datei ist nicht signiert]
FirewallRules: [{76E796FE-D618-489F-ACAA-032769B5FCB9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe () [Datei ist nicht signiert]
FirewallRules: [{AD8E8A38-6A84-47C2-A497-70591CBFCA88}] => (Allow) C:\Program Files (x86)\Remote Mouse\RemoteMouseCore.exe => Keine Datei
FirewallRules: [{6FE57E1A-2A21-4E16-8BBF-DECCC1C7E079}] => (Allow) C:\Program Files (x86)\Remote Mouse\RemoteMouseCore.exe => Keine Datei
FirewallRules: [{ADDD8FC1-B064-4679-9B1D-81C7C04D1038}] => (Allow) C:\Program Files (x86)\Remote Mouse\RemoteMouse.exe => Keine Datei
FirewallRules: [{B4A6EC90-5008-4B7A-92D2-A9949C1173AD}] => (Allow) C:\Program Files (x86)\Remote Mouse\RemoteMouse.exe => Keine Datei
FirewallRules: [UDP Query User{91EE4BD7-E106-4448-8987-2343E8FA7A6A}C:\users\tino\desktop\stronghold crusader\stronghold crusader.exe] => (Block) C:\users\tino\desktop\stronghold crusader\stronghold crusader.exe => Keine Datei
FirewallRules: [TCP Query User{EFC85E96-D383-495E-B77F-4EEF7E909C34}C:\users\tino\desktop\stronghold crusader\stronghold crusader.exe] => (Block) C:\users\tino\desktop\stronghold crusader\stronghold crusader.exe => Keine Datei
FirewallRules: [UDP Query User{A9013084-A90D-4504-8B4E-19AC015307B4}C:\users\tino\desktop\cs 1.6 version 2\hl.exe] => (Allow) C:\users\tino\desktop\cs 1.6 version 2\hl.exe => Keine Datei
FirewallRules: [TCP Query User{387AF839-5F8E-4ACB-8953-BD1253A67AA0}C:\users\tino\desktop\cs 1.6 version 2\hl.exe] => (Allow) C:\users\tino\desktop\cs 1.6 version 2\hl.exe => Keine Datei
FirewallRules: [UDP Query User{0C68E773-28F2-4537-A3CF-DFA404F7B71D}C:\users\tino\desktop\warcraft iii frozen throne\warcraft iii\war3.exe] => (Allow) C:\users\tino\desktop\warcraft iii frozen throne\warcraft iii\war3.exe => Keine Datei
FirewallRules: [TCP Query User{C88B17E0-204C-4636-8825-BCF56DAD3499}C:\users\tino\desktop\warcraft iii frozen throne\warcraft iii\war3.exe] => (Allow) C:\users\tino\desktop\warcraft iii frozen throne\warcraft iii\war3.exe => Keine Datei
FirewallRules: [UDP Query User{8CF53BB4-5F4B-43E2-93D4-437F5849ADE4}C:\windows\syswow64\dplaysvr.exe] => (Allow) C:\windows\syswow64\dplaysvr.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{401E15C9-E039-499E-AB31-9A95D6EDDE3C}C:\windows\syswow64\dplaysvr.exe] => (Allow) C:\windows\syswow64\dplaysvr.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [UDP Query User{075DEDEA-BB8A-48B5-B0EC-AFBED882EB6E}C:\gog games\cossacks - back to war\dmcr.exe] => (Allow) C:\gog games\cossacks - back to war\dmcr.exe => Keine Datei
FirewallRules: [TCP Query User{A497522F-B651-4391-91CF-22F1F71B3B90}C:\gog games\cossacks - back to war\dmcr.exe] => (Allow) C:\gog games\cossacks - back to war\dmcr.exe => Keine Datei
FirewallRules: [{F1509304-4D1A-4A82-847F-CB59EB4117FF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe => Keine Datei
FirewallRules: [{36D026C4-36B6-4F29-AEB8-C9B0E99CF4AF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe => Keine Datei
FirewallRules: [{61F6DAF4-D1D9-4C35-B990-DCEBC52A9D99}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{840B2732-B7F2-4A47-B43D-0A0244971364}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{85473B21-919F-48A3-803C-3E5385F16368}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerManager\ApowerManagerCoreServices.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [{BC60BC50-1670-4806-A572-D5B0007A2BCA}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerManager\ApowerManagerCoreServices.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [{034A5D83-C365-47D9-BC89-94E79363D530}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerManager\ApowerManager.exe (Apowersoft Ltd -> Apowersoft Ltd.) [Datei ist nicht signiert]
FirewallRules: [{3E5F82C7-3622-4B44-A8C7-1B6A8658BBFA}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerManager\ApowerManager.exe (Apowersoft Ltd -> Apowersoft Ltd.) [Datei ist nicht signiert]
FirewallRules: [{9EAD0071-5EBE-4668-B63D-910BF3D63CD2}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{DB45D751-AF8A-4B5F-9A85-796DD721AB2C}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{E745BD7A-8027-4620-A4D3-5672AE9A35B3}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerMirror\ApowerMirror.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [{B2D8892C-32D2-498A-A833-7FB048B71B27}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerMirror\ApowerMirror.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [{ED5D026B-357C-4B6B-840C-63E66E33EDD2}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{CF783B61-4CA2-4ED5-A0C4-A840795FDE05}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{DADC8B15-0102-471C-A730-5AB63ED902B2}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{BF5779CB-D8CA-47CD-A82D-02B2E56CD8EC}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{8A3AEBDF-8D53-4CFC-817C-F90E07529F29}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{187923FB-BA86-4670-B6FE-7A7AC1CF666E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{8D8B1286-F8D4-41C7-B621-6B84F77F0A9E}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe => Keine Datei
FirewallRules: [{73DBA93D-B0D7-472D-8E98-3A6D3A0F46EE}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe => Keine Datei
FirewallRules: [{62101A78-FF60-4AC3-ABAB-80A591051292}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{EAEE4EB7-A006-4B02-90EC-D5C0A530E9E2}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{EDEB25F4-4C2F-43E0-8566-0793E937C7A2}] => (Block) C:\users\tino\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{0810B12D-E321-442D-902B-4F935CAE0353}] => (Block) C:\users\tino\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{455F49F7-0AC5-430C-89F0-6DF42633E0F7}C:\users\tino\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\tino\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{F07AEC7A-B70A-4F89-A23A-58B828BD59B1}C:\users\tino\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\tino\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{1069AB92-846E-4685-A787-07E34D7E29A3}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{F95E6A99-A713-4EAC-80EF-18B6A3728451}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{5B289905-82E7-4C3F-A968-FCF8C36391EA}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{DE8090E3-C912-48E5-8D15-9F770E9E0F44}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{F35C59CE-C50D-43E0-B789-278D379BF624}] => (Allow) LPort=5055
FirewallRules: [TCP Query User{E78B90FD-B87A-40E9-B74C-2D8ACF809429}C:\program files (x86)\ea games\battlefield 2\bf2.exe] => (Block) C:\program files (x86)\ea games\battlefield 2\bf2.exe => Keine Datei
FirewallRules: [UDP Query User{D963B0CA-0681-4CE7-85D9-AC13ADC36C9E}C:\program files (x86)\ea games\battlefield 2\bf2.exe] => (Block) C:\program files (x86)\ea games\battlefield 2\bf2.exe => Keine Datei
FirewallRules: [TCP Query User{ECA1BDDD-0060-454D-A5D0-C481A5B7A27F}C:\users\tino\documents\games\officialcnctiberiansun\officialcnctiberiansun\ea games\command & conquer the first decade\command & conquer(tm) tiberian sun(tm)\sun\game.exe] => (Block) C:\users\tino\documents\games\officialcnctiberiansun\officialcnctiberiansun\ea games\command & conquer the first decade\command & conquer(tm) tiberian sun(tm)\sun\game.exe => Keine Datei
FirewallRules: [UDP Query User{90DE7618-9900-4621-A311-B201103F928E}C:\users\tino\documents\games\officialcnctiberiansun\officialcnctiberiansun\ea games\command & conquer the first decade\command & conquer(tm) tiberian sun(tm)\sun\game.exe] => (Block) C:\users\tino\documents\games\officialcnctiberiansun\officialcnctiberiansun\ea games\command & conquer the first decade\command & conquer(tm) tiberian sun(tm)\sun\game.exe => Keine Datei
FirewallRules: [TCP Query User{20B07216-97C9-477A-AD90-A2896E488D96}C:\users\tino\eclipse\java-neon\eclipse\eclipse.exe] => (Block) C:\users\tino\eclipse\java-neon\eclipse\eclipse.exe () [Datei ist nicht signiert]
FirewallRules: [UDP Query User{61806311-F86C-4F86-A6DB-2D0D4436B13B}C:\users\tino\eclipse\java-neon\eclipse\eclipse.exe] => (Block) C:\users\tino\eclipse\java-neon\eclipse\eclipse.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{EAD8F2C7-71D8-49AB-B09E-CB9D06E0482F}C:\users\tino\eclipse\java-neon\eclipse\eclipse.exe] => (Block) C:\users\tino\eclipse\java-neon\eclipse\eclipse.exe () [Datei ist nicht signiert]
FirewallRules: [UDP Query User{4FC056FE-4DC4-4E76-9746-3D454D71327A}C:\users\tino\eclipse\java-neon\eclipse\eclipse.exe] => (Block) C:\users\tino\eclipse\java-neon\eclipse\eclipse.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{CD434139-6E26-4D5F-89DD-A8A5DDDACBB8}C:\users\tino\documents\games\battlefield 2\bf2.exe] => (Allow) C:\users\tino\documents\games\battlefield 2\bf2.exe => Keine Datei
FirewallRules: [UDP Query User{E77960D8-537F-4C8F-8B0E-31ADC2582D3F}C:\users\tino\documents\games\battlefield 2\bf2.exe] => (Allow) C:\users\tino\documents\games\battlefield 2\bf2.exe => Keine Datei
FirewallRules: [{F11747E2-ECFE-422D-A5AE-5C1523203B93}] => (Block) C:\users\tino\documents\games\battlefield 2\bf2.exe => Keine Datei
FirewallRules: [{C84206A6-F778-4795-B322-824FF1E8B252}] => (Block) C:\users\tino\documents\games\battlefield 2\bf2.exe => Keine Datei
FirewallRules: [TCP Query User{21B9B721-CD4B-487C-A72B-3C576FCC8DEB}C:\users\tino\documents\games\officialcnctiberiansun\officialcnctiberiansun\ea games\command & conquer the first decade\command & conquer(tm) tiberian sun(tm)\sun\game.exe] => (Block) C:\users\tino\documents\games\officialcnctiberiansun\officialcnctiberiansun\ea games\command & conquer the first decade\command & conquer(tm) tiberian sun(tm)\sun\game.exe => Keine Datei
FirewallRules: [UDP Query User{98995CEC-D9A0-4718-85CD-E66D2BB2B760}C:\users\tino\documents\games\officialcnctiberiansun\officialcnctiberiansun\ea games\command & conquer the first decade\command & conquer(tm) tiberian sun(tm)\sun\game.exe] => (Block) C:\users\tino\documents\games\officialcnctiberiansun\officialcnctiberiansun\ea games\command & conquer the first decade\command & conquer(tm) tiberian sun(tm)\sun\game.exe => Keine Datei
FirewallRules: [TCP Query User{8E864215-06E4-49CF-8B88-42FF0CF33716}C:\users\tino\documents\games\age of empires2\empires2.exe] => (Block) C:\users\tino\documents\games\age of empires2\empires2.exe => Keine Datei
FirewallRules: [UDP Query User{3E02DA7E-AC91-4CAF-A8A7-E78A3E9848A4}C:\users\tino\documents\games\age of empires2\empires2.exe] => (Block) C:\users\tino\documents\games\age of empires2\empires2.exe => Keine Datei
FirewallRules: [TCP Query User{E0FF2AAB-24CB-4025-BFAC-A9037BC252ED}C:\users\tino\documents\games\age of empires2\empires2.exe] => (Block) C:\users\tino\documents\games\age of empires2\empires2.exe => Keine Datei
FirewallRules: [UDP Query User{6398BA8C-392F-4198-96D2-52ED9BFEF2F7}C:\users\tino\documents\games\age of empires2\empires2.exe] => (Block) C:\users\tino\documents\games\age of empires2\empires2.exe => Keine Datei
FirewallRules: [TCP Query User{0A8FA7E7-47E0-4CA8-A0BC-1D7F6AE321B8}C:\windows\syswow64\dplaysvr.exe] => (Block) C:\windows\syswow64\dplaysvr.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [UDP Query User{FB6E3A15-53E5-4240-AE4A-F6399A4BD8C5}C:\windows\syswow64\dplaysvr.exe] => (Block) C:\windows\syswow64\dplaysvr.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{43132692-0230-4E61-9B31-D9EEEB0A8412}C:\users\tino\documents\games\lan\w3 updatet\warcraft iii\war3.exe] => (Block) C:\users\tino\documents\games\lan\w3 updatet\warcraft iii\war3.exe => Keine Datei
FirewallRules: [UDP Query User{04CE05A8-432A-41AD-9494-320917605012}C:\users\tino\documents\games\lan\w3 updatet\warcraft iii\war3.exe] => (Block) C:\users\tino\documents\games\lan\w3 updatet\warcraft iii\war3.exe => Keine Datei
FirewallRules: [TCP Query User{7D519C32-7E60-42DE-9183-1C54D394C266}C:\users\tino\documents\games\battlefield 2142\bf2142.exe] => (Allow) C:\users\tino\documents\games\battlefield 2142\bf2142.exe => Keine Datei
FirewallRules: [UDP Query User{BB4DE934-6FD8-436A-A471-B80FEF06331D}C:\users\tino\documents\games\battlefield 2142\bf2142.exe] => (Allow) C:\users\tino\documents\games\battlefield 2142\bf2142.exe => Keine Datei
FirewallRules: [{C52415BB-C5C8-4887-B0CA-AE27B07E5B87}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\24\WinWrapIDE.exe (IBM -> IBM Corp.) [Datei ist nicht signiert]
FirewallRules: [{7FACDD01-D0E5-4C96-B283-1851250D8D92}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\24\WinWrapIDE.exe (IBM -> IBM Corp.) [Datei ist nicht signiert]
FirewallRules: [{11B777D3-7702-43DA-B41E-DB1109DA3EC1}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\24\stats.com (IBM -> IBM Corp.) [Datei ist nicht signiert]
FirewallRules: [{77A1CAE9-E6B0-436F-BCE6-C71C71DB089B}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\24\stats.com (IBM -> IBM Corp.) [Datei ist nicht signiert]
FirewallRules: [{09EB3109-6CFB-4B0B-A1ED-FAC3F9FD6741}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\24\stats.exe (IBM -> IBM Corp.) [Datei ist nicht signiert]
FirewallRules: [{9251A0D1-1693-4EA3-875B-6EDE060CA0B5}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\24\stats.exe (IBM -> IBM Corp.) [Datei ist nicht signiert]
FirewallRules: [{0309243F-AE39-4046-AD05-47F3B1DB3F62}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{EA6A914E-7F17-47D2-B512-8DE562C51A38}] => (Allow) LPort=2869
FirewallRules: [{55CAA3B5-FBBA-4CC9-A40B-EB216CB6F18D}] => (Allow) LPort=1900
FirewallRules: [{E9E49D6B-6A5F-48D4-99C0-99239594C5BD}] => (Allow) LPort=8888
FirewallRules: [{B28ABA6F-A2F7-4418-BF3C-3EF2C6E10BAB}] => (Allow) LPort=8888
FirewallRules: [TCP Query User{3619BC9D-039E-4CC6-8931-BC7D45CD4626}C:\program files (x86)\leibniz-rechenzentrum\lrz_sync_share\jre\launch4j-tmp\lrz_sync_share.exe] => (Allow) C:\program files (x86)\leibniz-rechenzentrum\lrz_sync_share\jre\launch4j-tmp\lrz_sync_share.exe (Oracle America, Inc. -> Oracle Corporation)
FirewallRules: [UDP Query User{AD02C3EE-B16D-4E90-B25E-C57B29961417}C:\program files (x86)\leibniz-rechenzentrum\lrz_sync_share\jre\launch4j-tmp\lrz_sync_share.exe] => (Allow) C:\program files (x86)\leibniz-rechenzentrum\lrz_sync_share\jre\launch4j-tmp\lrz_sync_share.exe (Oracle America, Inc. -> Oracle Corporation)
FirewallRules: [{1EE675F5-0BE6-4AD1-8CF8-6378322DE828}] => (Block) C:\program files (x86)\leibniz-rechenzentrum\lrz_sync_share\jre\launch4j-tmp\lrz_sync_share.exe (Oracle America, Inc. -> Oracle Corporation)
FirewallRules: [{836758E2-B218-4F24-B987-2799F972B53A}] => (Block) C:\program files (x86)\leibniz-rechenzentrum\lrz_sync_share\jre\launch4j-tmp\lrz_sync_share.exe (Oracle America, Inc. -> Oracle Corporation)
FirewallRules: [{2ED826D2-4C5B-4154-B911-2BE5E40879E8}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Keine Datei
FirewallRules: [{CBAF8AB0-6212-4B8F-B789-407AD4C2736E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Keine Datei
FirewallRules: [{A1B9A075-A9F3-44AA-8748-CD3E509DA307}] => (Allow) C:\Program Files (x86)\GameSessions\Worms Reloaded\DataTools\DLM.exe (Tangentix Ltd -> GameSessions)
FirewallRules: [{75F14CDA-2318-4CA4-A91C-4458DC25B0E3}] => (Allow) C:\Program Files (x86)\Tangentix\DDRuntime\GSLauncher.exe (Tangentix Ltd -> Tangentix Ltd)
FirewallRules: [{66C87831-24A1-4C11-A038-97FF611DAC6C}] => (Allow) LPort=8733
FirewallRules: [TCP Query User{C983046A-8B74-4ED3-A014-5919DD08FE72}C:\users\tino\documents\games\warcraft iii\war3.exe] => (Allow) C:\users\tino\documents\games\warcraft iii\war3.exe => Keine Datei
FirewallRules: [UDP Query User{2022341D-9147-42DB-A2CB-723BECD57E1A}C:\users\tino\documents\games\warcraft iii\war3.exe] => (Allow) C:\users\tino\documents\games\warcraft iii\war3.exe => Keine Datei
FirewallRules: [TCP Query User{D4A45AC4-DEF2-4A22-9959-392496266843}C:\users\tino\documents\games\lan\cs 1.6\hl.exe] => (Allow) C:\users\tino\documents\games\lan\cs 1.6\hl.exe => Keine Datei
FirewallRules: [UDP Query User{2EA9DA41-B7C9-409C-A83F-EC138F98398A}C:\users\tino\documents\games\lan\cs 1.6\hl.exe] => (Allow) C:\users\tino\documents\games\lan\cs 1.6\hl.exe => Keine Datei
FirewallRules: [TCP Query User{9401D351-EFE0-4846-AF9C-F9FC82D305B7}C:\users\tino\documents\games\lan\age of empires2\age2_x1\age2_x1.exe] => (Block) C:\users\tino\documents\games\lan\age of empires2\age2_x1\age2_x1.exe => Keine Datei
FirewallRules: [UDP Query User{D164E113-2560-4E96-B6B9-E839CADE8545}C:\users\tino\documents\games\lan\age of empires2\age2_x1\age2_x1.exe] => (Block) C:\users\tino\documents\games\lan\age of empires2\age2_x1\age2_x1.exe => Keine Datei
FirewallRules: [TCP Query User{4D7CCD71-F6EA-46DE-A28F-8AE9C51EB133}C:\program files (x86)\gnupg\bin\dirmngr.exe] => (Allow) C:\program files (x86)\gnupg\bin\dirmngr.exe () [Datei ist nicht signiert]
FirewallRules: [UDP Query User{16A40AED-3EBC-416F-A00D-C7B52066C4D3}C:\program files (x86)\gnupg\bin\dirmngr.exe] => (Allow) C:\program files (x86)\gnupg\bin\dirmngr.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{24E22959-3BD0-43D4-A681-38498BFB1854}C:\users\tino\documents\spiele\warcraft iii frozen throne\warcraft iii\war3.exe] => (Allow) C:\users\tino\documents\spiele\warcraft iii frozen throne\warcraft iii\war3.exe (Blizzard Entertainment) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{E97CA51E-393B-44A6-B2B2-A796551EFB53}C:\users\tino\documents\spiele\warcraft iii frozen throne\warcraft iii\war3.exe] => (Allow) C:\users\tino\documents\spiele\warcraft iii frozen throne\warcraft iii\war3.exe (Blizzard Entertainment) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{ACBD7209-A170-4619-90CA-0CDB1FCEDBE5}C:\games\heroes3_hota\h3hota hd.exe] => (Allow) C:\games\heroes3_hota\h3hota hd.exe (The 3DO Company) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{6354C32F-4DD0-4B97-A924-CB15DE54AB42}C:\games\heroes3_hota\h3hota hd.exe] => (Allow) C:\games\heroes3_hota\h3hota hd.exe (The 3DO Company) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{DCC30970-1885-4834-9D58-233EA8CA4D5A}C:\gog games\homm 3 complete\heroes3.exe] => (Block) C:\gog games\homm 3 complete\heroes3.exe (The 3DO Company) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{AF96591C-6CA7-490D-BC7C-2F13F36952D6}C:\gog games\homm 3 complete\heroes3.exe] => (Block) C:\gog games\homm 3 complete\heroes3.exe (The 3DO Company) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{31382D12-C20C-4798-AB62-1AD800811DA8}C:\users\tino\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\tino\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{84D5F300-68B5-470B-9503-571A5506D77E}C:\users\tino\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\tino\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{2277DC35-0B15-46FD-A2EF-FAF47DB4141D}] => (Allow) C:\Program Files\HP\HP Deskjet 3520 series\Bin\DeviceSetup.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{1F04FE85-E1BB-4D14-B7F6-43338FD9D362}] => (Allow) C:\Program Files\HP\HP Deskjet 3520 series\Bin\HPNetworkCommunicator.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{96258AD9-C380-41B1-987A-3FABD2FA2863}] => (Allow) C:\Program Files\HP\HP Deskjet 3520 series\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{B56B482D-2468-4E3E-8D0F-C079A3F638C7}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{233D3AAB-0936-485A-8D40-CA2D14BCA012}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F0929751-EBE9-40D2-BF78-D6BB2A9AFCBC}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{A549F28D-87E9-45EF-A72A-526D6BEAE6FA}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{A8C02968-3DBE-4182-9232-75D7FE17CBB4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D683811C-ABFB-41F7-8001-48A7AB08A1D1}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E9068E04-87ED-4B54-AD51-86A24F998B3F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{1EDD1CA2-D599-4CFA-BFED-F1ADDE4A32B9}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{E398CE2F-B003-4831-A7C7-BA629ACA7E18}C:\program files (x86)\apowersoft\gitmind\gitmind.exe] => (Block) C:\program files (x86)\apowersoft\gitmind\gitmind.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [UDP Query User{58D674BE-02B6-4C11-9740-907950463D8F}C:\program files (x86)\apowersoft\gitmind\gitmind.exe] => (Block) C:\program files (x86)\apowersoft\gitmind\gitmind.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [{6F751C24-59EB-453B-BA24-C1199ECED815}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
FirewallRules: [TCP Query User{71020423-F200-4E90-88F5-ADA17FBC112F}C:\program files (x86)\bitrix24\bitrix24.exe] => (Block) C:\program files (x86)\bitrix24\bitrix24.exe (Bitrix, Inc. -> Bitrix)
FirewallRules: [UDP Query User{30FDAB61-FC7C-4F7A-8E51-91D7C0EB054B}C:\program files (x86)\bitrix24\bitrix24.exe] => (Block) C:\program files (x86)\bitrix24\bitrix24.exe (Bitrix, Inc. -> Bitrix)
FirewallRules: [{603A54F8-1521-42DC-813F-DFF4D72932C3}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B5BBF9E3-D1E8-4BB0-871B-3CD14021BFE6}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{1AAD2631-0AED-439F-ACDF-DA1FE2E9FD38}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe (Lenovo -> )
FirewallRules: [{E62228F3-2684-4792-9CA1-2AB24EC4BB9C}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe (Lenovo -> )
FirewallRules: [{9AF69BBB-81BF-4833-89E5-9E3069855E65}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\94.0.992.47\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{A307BCDC-81A0-4877-91E3-76BE783535A4}] => (Allow) C:\ProgramData\ZeroTier\One\zerotier-one_x64.exe (ZeroTier, Inc. -> )
FirewallRules: [{2263AAE9-F0C0-481B-A813-FE37D895246A}] => (Allow) C:\ProgramData\ZeroTier\One\zerotier-one_x64.exe (ZeroTier, Inc. -> )
==================== Wiederherstellungspunkte =========================
08-10-2021 08:27:35 Windows Modules Installer
==================== Fehlerhafte Geräte im Gerätemanager ============
Name: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Description: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Cisco Systems
Service: vpnva
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Fehlereinträge in der Ereignisanzeige: ========================
Applikationsfehler:
==================
Error: (10/13/2021 09:46:34 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Client application bug: DNSServiceResolve(mobile._epoccam._tcp.local.) active for over two minutes. This places considerable burden on the network.
Error: (10/13/2021 09:44:27 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT)
Description: Überspringen: Eap method DLL path Fehler bei der Überprüfung. Fehler: Type-ID=43, Autor-ID=9, Lieferant-ID=0, Lieferant-Typ=0
Error: (10/13/2021 09:44:27 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT)
Description: Überspringen: Eap method DLL path Fehler bei der Überprüfung. Fehler: Type-ID=25, Autor-ID=9, Lieferant-ID=0, Lieferant-Typ=0
Error: (10/13/2021 09:44:27 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT)
Description: Überspringen: Eap method DLL path Fehler bei der Überprüfung. Fehler: Type-ID=17, Autor-ID=9, Lieferant-ID=0, Lieferant-Typ=0
Error: (10/13/2021 09:44:27 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT)
Description: Überspringen: Eap method DLL path Fehler bei der Überprüfung. Fehler: Type-ID=43, Autor-ID=9, Lieferant-ID=0, Lieferant-Typ=0
Error: (10/13/2021 09:44:27 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT)
Description: Überspringen: Eap method DLL path Fehler bei der Überprüfung. Fehler: Type-ID=25, Autor-ID=9, Lieferant-ID=0, Lieferant-Typ=0
Error: (10/13/2021 09:44:27 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT)
Description: Überspringen: Eap method DLL path Fehler bei der Überprüfung. Fehler: Type-ID=17, Autor-ID=9, Lieferant-ID=0, Lieferant-Typ=0
Error: (10/13/2021 06:24:54 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Fehler in Manifest- oder Richtliniendatei "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" in Zeile 1.
Die im Manifest gefundene Komponenten-ID stimmt nicht mit der ID der angeforderten Komponente überein.
Verweis: UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definition: UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Verwenden Sie das Programm "sxstrace.exe" für eine detaillierte Diagnose.
Systemfehler:
=============
Error: (10/13/2021 09:43:42 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.
Modulpfad: C:\WINDOWS\system32\IntelIHVRouter06.dll
Error: (10/13/2021 09:43:42 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.
Modulpfad: C:\WINDOWS\system32\IntelIHVRouter06.dll
Error: (10/13/2021 09:43:35 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.
Modulpfad: C:\WINDOWS\system32\IntelIHVRouter06.dll
Error: (10/13/2021 09:38:00 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Dragon Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (10/13/2021 09:38:00 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "NitroPDFDriverCreatorReadSpool11" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (10/13/2021 09:38:00 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "SynTPEnh Caller Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (10/13/2021 09:38:00 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Lenovo Hotkey Client Loader" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (10/13/2021 09:38:00 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "ZeroTier One" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Windows Defender:
================
Date: 2021-10-13 18:12:03
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {449653E0-18D4-4684-A5AA-F0E0C8A963CF}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Vollständige Überprüfung
Benutzer: DESKTOP-BB502MH\Tino
Date: 2021-10-13 17:29:23
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {6CA1294C-4421-401C-A4D9-6BF43A6886F0}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Date: 2021-10-12 14:51:12
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {839A0DD1-1852-41EC-A969-EA1E77DBA478}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Date: 2021-10-12 09:43:31
Description:
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe wurde durch den überwachten Ordnerzugriff daran gehindert, %userprofile%\Documents zu ändern.
Erkennungszeit: 2021-10-12T07:43:31.274Z
Benutzer: DESKTOP-BB502MH\Tino
Pfad: %userprofile%\Documents
Prozessname: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
Sicherheitsversion: 1.351.239.0
Modulversion: 1.1.18600.4
Produktversion: 4.18.2109.6
Date: 2021-10-08 08:52:29
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {11F55FD6-638C-4F2F-900D-C9FA773D33A0}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Date: 2021-09-24 08:25:25
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.
Neue Version der Sicherheitsinformationen:
%Vorherige Version der Sicherheitsinformationen: 1.349.1201.0
Update Source: Microsoft Center zum Schutz vor Schadsoftware
Sicherheitstyp: AntiVirus
Updatetyp: Voll
Benutzer: NT-AUTORITÄT\Netzwerkdienst
Aktuelle Modulversion:
%Vorherige Modulversion: 1.1.18500.10
Fehlercode: 0x80072ee7
Fehlerbeschreibung: Der Servername oder die Serveradresse konnte nicht verarbeitet werden.
Date: 2021-09-24 08:25:25
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.
Neue Version der Sicherheitsinformationen:
%Vorherige Version der Sicherheitsinformationen: 1.349.1201.0
Update Source: Microsoft Center zum Schutz vor Schadsoftware
Sicherheitstyp: AntiSpyware
Updatetyp: Voll
Benutzer: NT-AUTORITÄT\Netzwerkdienst
Aktuelle Modulversion:
%Vorherige Modulversion: 1.1.18500.10
Fehlercode: 0x80072ee7
Fehlerbeschreibung: Der Servername oder die Serveradresse konnte nicht verarbeitet werden.
Date: 2021-09-24 08:25:25
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.
Neue Version der Sicherheitsinformationen:
%Vorherige Version der Sicherheitsinformationen: 1.349.1201.0
Update Source: Microsoft Center zum Schutz vor Schadsoftware
Sicherheitstyp: AntiVirus
Updatetyp: Voll
Benutzer: NT-AUTORITÄT\Netzwerkdienst
Aktuelle Modulversion:
%Vorherige Modulversion: 1.1.18500.10
Fehlercode: 0x80072ee7
Fehlerbeschreibung: Der Servername oder die Serveradresse konnte nicht verarbeitet werden.
Date: 2021-09-24 08:25:25
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.
Neue Version der Sicherheitsinformationen:
%Vorherige Version der Sicherheitsinformationen: 1.349.1201.0
Update Source: Microsoft Center zum Schutz vor Schadsoftware
Sicherheitstyp: AntiVirus
Updatetyp: Voll
Benutzer: NT-AUTORITÄT\Netzwerkdienst
Aktuelle Modulversion:
%Vorherige Modulversion: 1.1.18500.10
Fehlercode: 0x80072ee7
Fehlerbeschreibung: Der Servername oder die Serveradresse konnte nicht verarbeitet werden.
Date: 2021-09-24 08:25:25
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.
Neue Version der Sicherheitsinformationen:
%Vorherige Version der Sicherheitsinformationen: 1.349.1201.0
Update Source: Microsoft Center zum Schutz vor Schadsoftware
Sicherheitstyp: AntiSpyware
Updatetyp: Voll
Benutzer: NT-AUTORITÄT\Netzwerkdienst
Aktuelle Modulversion:
%Vorherige Modulversion: 1.1.18500.10
Fehlercode: 0x80072ee7
Fehlerbeschreibung: Der Servername oder die Serveradresse konnte nicht verarbeitet werden.
CodeIntegrity:
===============
Date: 2021-10-13 21:46:35
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2021-10-13 21:31:20
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Speicherinformationen ===========================
BIOS: LENOVO R06ET69W (1.43 ) 01/08/2020
Hauptplatine: LENOVO 20FMS03600
Prozessor: Intel(R) Core(TM) i5-6200U CPU @ 2.30GHz
Prozentuale Nutzung des RAM: 58%
Installierter physikalischer RAM: 7607.82 MB
Verfügbarer physikalischer RAM: 3181.24 MB
Summe virtueller Speicher: 16762.91 MB
Verfügbarer virtueller Speicher: 11970.08 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:237.13 GB) (Free:26.35 GB) NTFS
\\?\Volume{1a177e8d-0000-0000-0000-100000000000}\ (System-reserviert) (Fixed) (Total:0.49 GB) (Free:0.46 GB) NTFS
\\?\Volume{1a177e8d-0000-0000-0000-d0673b000000}\ () (Fixed) (Total:0.85 GB) (Free:0.31 GB) NTFS
==================== MBR & Partitionstabelle ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 238.5 GB) (Disk ID: 1A177E8D)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=237.1 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=871 MB) - (Type=27)
==================== Ende von Addition.txt =======================
|
|
14.10.2021, 13:38
| #11 |
| /// TB-Ausbilder | Windows 10: audacity.de Installer NOCH in der Ausführung. Soll ich ihn schließen? PC Neustarten? Schritt 1 WARNUNG AN ALLE MITLESER !!! Dieses FRST-Script ist ausschließlich für diesen Nutzer gedacht und sollte niemals 1:1 für ein anderes System angewendet werden!
Schritt 2
Bitte poste mit deiner nächsten Antwort:
|
|
14.10.2021, 16:18
| #12 |
| | Windows 10: audacity.de Installer NOCH in der Ausführung. Soll ich ihn schließen? PC Neustarten? Habe alles erledigt. Vielleicht relevant: Ich habe seit gestern neue Programme installiert. "Eraser", "recuva" und "audacity" habe ich auch nocheinmal installiert, aber mit dem offiziellen Installer. Vor dem erneuten scan aber deinstalliert. fixlog.txt Code:
ATTFilter Entfernungsergebnis von Farbar Recovery Scan Tool (x64) Version: 12-10-2021
durchgeführt von Tino (14-10-2021 16:27:02) Run:1
Gestartet von C:\Users\Tino\Downloads
Geladene Profile: Tino
Start-Modus: Normal
==============================================
fixlist Inhalt:
*****************
SystemRestore: On
CreateRestorePoint:
CloseProcesses:
GroupPolicy: Beschränkung ? <==== ACHTUNG
Policies: C:\ProgramData\NTUSER.pol: Beschränkung <==== ACHTUNG
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\SOFTWARE\Policies\Google: Beschränkung <==== ACHTUNG
Task: {120070D7-88E7-4D51-953B-37890A9A08CE} - \Microsoft\Windows\UNP\RunCampaignManager -> Keine Datei <==== ACHTUNG
Edge Extension: (Kein Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [nicht gefunden]
Edge Extension: (Kein Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [nicht gefunden]
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2021-02-03]
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> Keine Datei
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> Keine Datei
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Keine Datei
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> Keine Datei
BHO: Citavi Picker -> {609D670F-B735-4da7-AC6D-F3BD358E325E} -> C:/Program Files (x86)/Internet Explorer/Citavi Picker/x64/SwissAcademic.Citavi.IEPicker.DLL => Keine Datei
BHO-x32: Citavi Picker -> {609D670F-B735-4da7-AC6D-F3BD358E325E} -> C:/Program Files (x86)/Internet Explorer/Citavi Picker/SwissAcademic.Citavi.IEPicker.DLL => Keine Datei
Unlock: C:\Users\Tino\AppData\Local\AC001
Folder: C:\Users\Tino\AppData\Local\AC001
CMD: ipconfig /flushdns
CMD: netsh winsock reset catalog
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: Bitsadmin /Reset /Allusers
CMD: "%WINDIR%\SYSTEM32\lodctr.exe" /R
CMD: "%WINDIR%\SysWOW64\lodctr.exe" /R
CMD: "%WINDIR%\SYSTEM32\lodctr.exe" /R
CMD: "%WINDIR%\SysWOW64\lodctr.exe" /R
Hosts:
RemoveProxy:
EmptyTemp:
*****************
SystemRestore: On => abgeschlossen
Wiederherstellungspunkt wurde erfolgreich erstellt.
Prozesse erfolgreich geschlossen.
C:\WINDOWS\system32\GroupPolicy\Machine => erfolgreich verschoben
C:\WINDOWS\system32\GroupPolicy\GPT.ini => erfolgreich verschoben
C:\ProgramData\NTUSER.pol => erfolgreich verschoben
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\SOFTWARE\Policies\Google => erfolgreich entfernt
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{120070D7-88E7-4D51-953B-37890A9A08CE}" => erfolgreich entfernt
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{120070D7-88E7-4D51-953B-37890A9A08CE}" => erfolgreich entfernt
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UNP\RunCampaignManager" => nicht gefunden
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => erfolgreich entfernt
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => erfolgreich entfernt
C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js => erfolgreich verschoben
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\BriefcaseMenu => erfolgreich entfernt
"HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D}" => erfolgreich entfernt
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\{4A7C4306-57E0-4C0C-83A9-78C1528F618C} => erfolgreich entfernt
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => erfolgreich entfernt
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\BriefcaseMenu => erfolgreich entfernt
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{609D670F-B735-4da7-AC6D-F3BD358E325E} => erfolgreich entfernt
HKLM\Software\Classes\CLSID\{609D670F-B735-4da7-AC6D-F3BD358E325E} => erfolgreich entfernt
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{609D670F-B735-4da7-AC6D-F3BD358E325E} => erfolgreich entfernt
HKLM\Software\Wow6432Node\Classes\CLSID\{609D670F-B735-4da7-AC6D-F3BD358E325E} => erfolgreich entfernt
"C:\Users\Tino\AppData\Local\AC001" => wurde entsperrt
========================= Folder: C:\Users\Tino\AppData\Local\AC001 ========================
2021-10-13 16:24 - 2021-10-13 16:24 - 000000000 ____D [00000000000000000000000000000000] () C:\Users\Tino\AppData\Local\AC001\GenericSetup.exe_Url_r4hcytbllpdiy1hj05cmrc2oftq5duo4
2021-10-13 16:24 - 2021-10-13 16:24 - 000000000 ____D [00000000000000000000000000000000] () C:\Users\Tino\AppData\Local\AC001\GenericSetup.exe_Url_r4hcytbllpdiy1hj05cmrc2oftq5duo4\1.0.4.5045
2021-10-13 16:24 - 2021-10-13 16:24 - 000000798 ____A [C76D70D8440A273C2B2A2764F33323B8] () C:\Users\Tino\AppData\Local\AC001\GenericSetup.exe_Url_r4hcytbllpdiy1hj05cmrc2oftq5duo4\1.0.4.5045\user.config
====== Ende von Folder: ======
========= ipconfig /flushdns =========
Windows-IP-Konfiguration
Der DNS-Aufl”sungscache wurde geleert.
========= Ende von CMD: =========
========= netsh winsock reset catalog =========
Der Winsock-Katalog wurde zurckgesetzt.
Sie mssen den Computer neu starten, um den Vorgang abzuschlieáen.
========= Ende von CMD: =========
========= netsh advfirewall reset =========
OK.
========= Ende von CMD: =========
========= netsh advfirewall set allprofiles state ON =========
OK.
========= Ende von CMD: =========
========= Bitsadmin /Reset /Allusers =========
BITSADMIN version 3.0
BITS administration utility.
(C) Copyright Microsoft Corp.
0 out of 0 jobs canceled.
========= Ende von CMD: =========
========= "%WINDIR%\SYSTEM32\lodctr.exe" /R =========
Fehler: Die Leistungsindikatoreinstellung konnte nicht aus dem Systemsicherungsspeicher neu erstellt werden. Fehlercode: 2.
========= Ende von CMD: =========
========= "%WINDIR%\SysWOW64\lodctr.exe" /R =========
Info: Die Leistungsindikatoreinstellung konnte erfolgreich aus dem Systemsicherungsspeicher neu erstellt werden.
========= Ende von CMD: =========
========= "%WINDIR%\SYSTEM32\lodctr.exe" /R =========
Info: Die Leistungsindikatoreinstellung konnte erfolgreich aus dem Systemsicherungsspeicher neu erstellt werden.
========= Ende von CMD: =========
========= "%WINDIR%\SysWOW64\lodctr.exe" /R =========
Info: Die Leistungsindikatoreinstellung konnte erfolgreich aus dem Systemsicherungsspeicher neu erstellt werden.
========= Ende von CMD: =========
C:\Windows\System32\Drivers\etc\hosts => erfolgreich verschoben
Hosts erfolgreich wiederhergestellt.
========= RemoveProxy: =========
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => erfolgreich entfernt
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => erfolgreich entfernt
"HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => erfolgreich entfernt
"HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => erfolgreich entfernt
========= Ende von RemoveProxy: =========
=========== EmptyTemp: ==========
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 102732983 B
Java, Flash, Steam htmlcache => 248136891 B
Windows/system/drivers => 21491285 B
Edge => 1906325 B
Chrome => 1521099575 B
Firefox => 44171219 B
Opera => 23860850 B
Temp, IE cache, history, cookies, recent:
Default => 6656 B
ProgramData => 6656 B
Public => 6656 B
systemprofile => 6656 B
systemprofile32 => 6656 B
LocalService => 83124 B
NetworkService => 368042 B
Tino => 815996765 B
defaultuser100000 => 816003421 B
RecycleBin => 0 B
EmptyTemp: => 3.3 GB temporäre Dateien entfernt.
================================
Das System musste neu gestartet werden.
==== Ende von Fixlog 16:38:56 ====
Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 12-10-2021
durchgeführt von Tino (Administrator) auf DESKTOP-BB502MH (LENOVO 20FMS03600) (14-10-2021 16:46:46)
Gestartet von C:\Users\Tino\Downloads
Geladene Profile: Tino
Platform: Microsoft Windows 10 Education Version 20H2 19042.1237 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: Chrome
Start-Modus: Normal
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
() [Datei ist nicht signiert] C:\Program Files (x86)\EyeDefender\EyeDefender.exe
() [Datei ist nicht signiert] C:\Program Files (x86)\Kinoni\EpocCam_and_Barcode_drivers\KinoniSvc.exe
(Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe <2>
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Bitrix, Inc. -> ) C:\Program Files (x86)\Bitrix24\BDisk\BDisk.exe
(Bitrix, Inc. -> Bitrix) C:\Program Files (x86)\Bitrix24\Bitrix24.exe <11>
(Cisco Systems, Inc. -> Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
(Digital Wave Ltd -> Digital Wave Ltd) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(F.lux Software LLC -> f.lux Software LLC) C:\Users\Tino\AppData\Local\FluxSoftware\Flux\flux.exe
(Flexera Software LLC -> Flexera) C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
(FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe
(Hewlett Packard -> Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 3520 series\Bin\HPNetworkCommunicator.exe
(Hewlett Packard -> Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 3520 series\Bin\HPNetworkCommunicatorCom.exe
(Hewlett Packard -> Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 3520 series\Bin\ScanToPCActivationApp.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation -> Intel Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_fce0c2dbe15e0d9a\GfxDownloadWrapper.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_fce0c2dbe15e0d9a\igfxCUIService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_fce0c2dbe15e0d9a\igfxEM.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_fce0c2dbe15e0d9a\IntelCpHDCPSvc.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_fce0c2dbe15e0d9a\IntelCpHeciSvc.exe
(Intel(R) Trust Services -> Intel(R) Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\TPMProvisioningService.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(LENOVO -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\micmute.exe
(LENOVO -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\shtctky.exe
(LENOVO -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tphkload.exe
(LENOVO -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tpnumlkd.exe
(LENOVO -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tposd.exe
(Lenovo -> Lenovo Group Limited) C:\Windows\SysWOW64\Lenovo\PowerMgr\EasyResume.exe
(Lenovo -> Lenovo) C:\Windows\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe
(Lenovo -> Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated) C:\Program Files\Synaptics\SynFP\Shared\SensorDBSynch.exe
(Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated) C:\Windows\System32\valWBFPolicyService.exe
(Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated) C:\Windows\System32\valWbioSyncSvc.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\NisSrv.exe
(Nitro Software, Inc. -> ) C:\Program Files\Nitro\Pro 11\Nitro_UpdateService.exe
(Nitro Software, Inc. -> Nalpeiron Ltd.) C:\Windows\SysWOW64\NLSSRV32.EXE
(Nitro Software, Inc. -> Nitro Software, Inc.) C:\Program Files\Nitro\Pro 11\NitroPDFDriverService11x64.exe
(Node.js Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(Nuance Communication, Inc. -> Nuance Communications, Inc.) C:\Program Files (x86)\Common Files\Nuance\dgnsvc.exe
(Nuance Communication, Inc. -> Nuance Communications, Inc.) C:\Program Files (x86)\Common Files\Nuance\loggerservice.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Seagate Technology LLC -> Seagate Technology LLC) C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\MobileService.exe
(Seagate Technology LLC -> Seagate Technology LLC) C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\Seagate.Dashboard.DASWindowsService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
(Synaptics Incorporated -> Synaptics) C:\Program Files\Synaptics\SynTP\SynLenovoHelper.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(TunnelBear -> TunnelBear) C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.exe
(ZeroTier, Inc. -> ) C:\ProgramData\ZeroTier\One\zerotier-one_x64.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412736 2021-09-07] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [301880 2018-08-23] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [Eraser] => C:\Program Files\Eraser\Eraser.exe [1073144 2021-09-25] (Heidi Computers Ltd -> The Eraser Project)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [8091424 2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] => C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe [766464 2016-02-29] (Cisco Systems, Inc. -> Cisco Systems, Inc.)
HKLM-x32\...\Run: [KeePass 2 PreLoad] => C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [3331264 2020-01-20] (Open Source Developer, Dominik Reichl -> Dominik Reichl)
HKLM-x32\...\Run: [PDFPrint] => C:\Program Files (x86)\PDF24\pdf24.exe [210432 2016-07-05] (Geek Software GmbH -> Geek Software GmbH)
HKLM-x32\...\Run: [DBAgent] => C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\DBAgent.exe [1563424 2016-06-28] (Seagate Technology LLC -> Seagate Technology LLC)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2095672 2020-10-10] (Adobe Inc. -> Adobe Inc.)
HKLM-x32\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\\isuspm.exe [2075480 2013-06-24] (Flexera Software LLC -> Flexera Software LLC.)
HKLM-x32\...\Run: [DNS7reminder] => C:\Program Files (x86)\Nuance\NaturallySpeaking15\Ereg\Ereg.exe [3146120 2016-05-06] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [588704 2018-03-28] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Nikon Message Center 2] => C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe [588288 2016-01-08] (Nikon Corporation) [Datei ist nicht signiert]
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [114824 2020-10-10] (Adobe Inc. -> )
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Run: [f.lux] => C:\Users\Tino\AppData\Local\FluxSoftware\Flux\flux.exe [1515848 2021-06-18] (F.lux Software LLC -> f.lux Software LLC)
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe [2075480 2013-06-24] (Flexera Software LLC -> Flexera Software LLC.)
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2018-10-01] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [67896 2018-10-01] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Run: [Spotify] => C:\Users\Tino\AppData\Roaming\Spotify\Spotify.exe [23592304 2020-12-22] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Tino\AppData\Local\Microsoft\Teams\Update.exe [2453656 2021-02-21] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Run: [vidnotifier.exe] => C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\vidnotifier\vidnotifier.exe [1814848 2019-08-22] (Digital Wave Ltd -> Digital Wave Ltd)
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Run: [CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [114824 2020-10-10] (Adobe Inc. -> )
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Run: [EyeDefender] => C:\Program Files (x86)\EyeDefender\EyeDefender.exe [163840 2009-11-18] () [Datei ist nicht signiert]
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Run: [Adobe Reader Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe [5397216 2021-09-25] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Run: [HP Deskjet 3520 series (NET)] => C:\Program Files\HP\HP Deskjet 3520 series\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett Packard -> Hewlett-Packard Co.)
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Run: [Bitrix24] => C:\Program Files (x86)\Bitrix24\Bitrix24.exe [18171480 2021-06-09] (Bitrix, Inc. -> Bitrix)
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Run: [Opera Browser Assistant] => C:\Users\Tino\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [4105424 2021-10-14] (Opera Software AS -> Opera Software)
HKLM\...\Print\Monitors\HP B011 Status Monitor: C:\Windows\System32\hpinkstsB011LM.dll [331664 2012-06-13] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP Deskjet 3520 series): C:\Windows\System32\HPDiscoPMB011.dll [741480 2012-10-17] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\Nitro PDF Port Monitor: C:\Windows\System32\nitrolocalmon11.dll [31944 2017-03-09] (Nitro Software, Inc. -> Nitro Software, Inc.)
HKLM\...\Print\Monitors\PDF-XChange Lite Port Monitor: C:\WINDOWS\system32\pxcpmL.dll [2147072 2020-01-06] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
HKLM\Software\...\AppCompatFlags\Custom\H3Blade.exe: [{62a24b39-0106-4990-90ea-3a09e9dda7a6}.sdb] -> HoMM III Compatibility Database
HKLM\Software\...\AppCompatFlags\Custom\Heroes3.exe: [{62a24b39-0106-4990-90ea-3a09e9dda7a6}.sdb] -> HoMM III Compatibility Database
HKLM\Software\...\AppCompatFlags\InstalledSDB\{62a24b39-0106-4990-90ea-3a09e9dda7a6}: [DatabasePath] -> C:\WINDOWS\AppPatch\CustomSDB\{62a24b39-0106-4990-90ea-3a09e9dda7a6}.sdb [2021-01-02]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\94.0.4606.81\Installer\chrmstp.exe [2021-10-13] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Dell Display Manager.lnk [2016-07-20]
ShortcutTarget: Dell Display Manager.lnk -> C:\Program Files (x86)\Dell\Dell Display Manager\ddm.exe (EnTech Taiwan -> EnTech Taiwan)
Startup: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\An OneNote senden.lnk [2018-10-07]
ShortcutTarget: An OneNote senden.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
Startup: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ausschneiden shortcut.ahs - Verknüpfung.lnk [2020-11-17]
ShortcutTarget: ausschneiden shortcut.ahs - Verknüpfung.lnk -> C:\Users\Tino\Documents\Desktop aufräum 16Nov20\Aufräum22Aug20\ausschneiden shortcut.ahs (Keine Datei)
Startup: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Tintenwarnungen überwachen - HP Deskjet 3520 series (Netzwerk).lnk [2021-10-14]
ShortcutAndArgument: Tintenwarnungen überwachen - HP Deskjet 3520 series (Netzwerk).lnk -> C:\WINDOWS\system32\RunDll32.exe => "C:\Program Files\HP\HP Deskjet 3520 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN27J1204Q05SY;CONNECTION=NW;MONITOR=1;
Policies: C:\ProgramData\NTUSER.pol: Beschränkung <==== ACHTUNG
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {0347E766-D2FD-4818-AC8F-EAE3C7F11598} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1758792 2021-09-22] (Lenovo -> )
Task: {07F8865C-7AD5-45D3-BB07-1C47B52D830E} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1562376 2021-08-16] (Adobe Inc. -> Adobe Inc.)
Task: {085C3489-F63D-4F6C-A032-3B946FD25D1F} - System32\Tasks\{013997F2-8BC7-4E13-8F7F-314FA024B459} => C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\EA Games\Battlefield 2\BF2.exe" -d "C:\Program Files (x86)\EA Games\Battlefield 2"
Task: {124DAE38-187A-449B-9BD4-673E69107ABC} - System32\Tasks\G2MUpdateTask-S-1-5-21-2977029141-1010321603-2543741146-1001 => C:\Users\Tino\AppData\Local\GoToMeeting\19796\g2mupdate.exe [31176 2021-07-02] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {133A42DF-0438-4F80-9BA7-C10883E7E669} - System32\Tasks\Lenovo\Power Manager\Uninstall task => C:\WINDOWS\SysWOW64\PowerMgrInst.exe [62136 2021-07-11] (Lenovo -> )
Task: {1B36DE3D-3946-45B2-9F22-5C8F1F95E351} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [677344 2021-02-03] (Mozilla Corporation -> Mozilla Foundation)
Task: {1FB09E97-8905-4FB7-9EB4-5F1FC5C72FB8} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-2977029141-1010321603-2543741146-1001 => "C:\WINDOWS\system32\rundll32.exe" dfshim.dll,ShOpenVerbShortcut C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo\Lenovo Service Bridge.appref-ms
Task: {280B69A7-35E3-4D2B-8BFB-C8F766495CAF} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {2DB5B364-0264-43A0-91E1-3035B2FAD9F6} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [110440 2021-10-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {37F606C6-6F3F-44F6-80A0-C9E07DA693F0} - System32\Tasks\RtHDVBg_Dolby => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3618088 2020-07-21] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {3ACA6790-B706-4443-86FA-B4F06BFC92F8} - System32\Tasks\G2MUploadTask-S-1-5-21-2977029141-1010321603-2543741146-1001 => C:\Users\Tino\AppData\Local\GoToMeeting\19796\g2mupload.exe [31176 2021-07-02] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {3CD48984-98B2-4B12-AAB5-056D0EB27C3F} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [129808 2021-08-16] (Dropbox, Inc -> Dropbox, Inc.)
Task: {4DBF32E2-8203-4161-A52A-09BBB290CFD4} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21976976 2021-09-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {5B75D761-9B2A-4818-A8AE-3D8E0B50FFA4} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4255680 2021-10-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {6198F25E-F891-4497-8707-2DDB5D9557B1} - System32\Tasks\{80D29C8F-D447-49C9-8258-37B82F03453E} => C:\WINDOWS\system32\pcalua.exe -a "C:\Users\Tino\Documents\Games\Warcraft III\Frozen Throne.exe" -d "C:\Users\Tino\Documents\Games\Warcraft III"
Task: {647193AF-B5F1-45CD-B52E-EEC335422AF9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-03-28] (Google Inc -> Google Inc.)
Task: {6C845043-ABE1-4700-9B16-95C644899DA3} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [110440 2021-10-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {6DE4EE17-336F-42F7-B724-B4A89FF75553} - System32\Tasks\Opera scheduled assistant Autoupdate 1631522903 => C:\Users\Tino\AppData\Local\Programs\Opera\launcher.exe [42731728 2021-09-28] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Tino\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {726ABB6F-2264-4603-9D1D-D4C97A07BA9A} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-**** => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {85C90DFE-E99B-43AF-AD4E-1E63A67DB880} - System32\Tasks\Microsoft\Office\Office Serviceability Manager => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe [4103280 2021-09-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {8B27B185-8776-45B5-A85E-85B006703283} - System32\Tasks\{D0AF2B37-7844-4D3F-8F1E-40653F6642AD} => C:\WINDOWS\system32\pcalua.exe -a "C:\Users\Tino\Documents\Games\Battlefield 2\BF2.exe" -d "C:\Users\Tino\Documents\Games\Battlefield 2"
Task: {9B6B607A-47E8-42C8-AEB3-8665CD751170} - System32\Tasks\Lenovo\Power Manager\Background monitor => C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe [112824 2021-07-11] (Lenovo -> Lenovo)
Task: {A3DE6174-5DE4-49CE-9BEF-4EC46DBB9460} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1758792 2021-09-22] (Lenovo -> )
Task: {AAFC4740-76D0-4846-BF4C-C2AF6DBA0C9E} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412736 2021-09-07] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {B5D885D4-864F-4F26-99D1-B3F8B4AB4231} - System32\Tasks\Opera scheduled Autoupdate 1631522888 => C:\Users\Tino\AppData\Local\Programs\Opera\launcher.exe [42731728 2021-09-28] (Opera Software AS -> Opera Software)
Task: {B63A8BFC-47B6-4D00-A453-4D1040B5CE6C} - System32\Tasks\Lenovo Power Management Driver PnP Task => C:\WINDOWS\System32\ibmpmsvc.exe [949632 2019-12-11] (Lenovo -> Lenovo.)
Task: {C0668F73-BEC3-4D8B-8144-C8FFD6304080} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21976976 2021-09-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {C67F174E-8388-48C0-A03F-F51174497229} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [651400 2017-09-20] (Hewlett Packard -> HP Inc.)
Task: {D78E358B-13FA-4B84-ACDC-4AB41FE247C7} - System32\Tasks\Optimize Push Notification Data File-S-1-5-21-2977029141-1010321603-2543741146-1001 => {201600D8-6EFF-48CE-B842-E14D37A0682D} C:\WINDOWS\System32\wpninprc.dll [24064 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Task: {DDF2E756-B2F4-428D-A586-1A7EC980992A} - System32\Tasks\Microsoft\Windows\Display\Brightness\BrightnessReset => {2755524D-68F2-4B39-A816-9DB31839C897}
Task: {DFAB118F-BC0E-4054-A149-CF0E76A6D44D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [136056 2019-01-02] (HP Inc. -> HP Inc.)
Task: {E09EC5E7-FEBC-4332-A1E9-1510F60005DC} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [129808 2021-08-16] (Dropbox, Inc -> Dropbox, Inc.)
Task: {E17C663A-4B5D-468E-ADC9-EF3071FEFD0E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4255680 2021-10-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {E31270B0-F9F4-4023-B880-C8F878C4F7DC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-03-28] (Google Inc -> Google Inc.)
Task: {E4C14D83-AD24-4737-87FC-462045AFB77D} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1153408 2021-10-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {EC47C7BC-E740-481D-B57E-CEBDDCE6BBC4} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3618088 2020-07-21] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {FCC9C19A-B9FB-4D22-AD81-B4B670A509EE} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616320 2018-01-08] (Apple Inc. -> Apple Inc.)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-2977029141-1010321603-2543741146-1001.job => C:\Users\Tino\AppData\Local\GoToMeeting\19796\g2mupdate.exe
Task: C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-2977029141-1010321603-2543741146-1001.job => C:\Users\Tino\AppData\Local\GoToMeeting\19796\g2mupload.exe
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{74f2711d-31a5-4cd1-acb2-da289773e58b}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{8615153c-5251-43cd-854c-39b15bffcf27}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{9c782f4b-dc60-4c43-b3a5-e71060c318ce}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{b855478f-1909-4465-92c3-e2e3e88c021a}: [DhcpNameServer] 192.168.2.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Tino\AppData\Local\Microsoft\Edge\User Data\Default [2021-10-14]
Edge DownloadDir: Default -> C:\Users\Tino\Downloads
Edge Notifications: Default -> hxxps://www.spartanien.de
Edge HomePage: Default -> hxxps://start.duckduckgo.com/
Edge Extension: (Google Scholar-Schaltfläche) - C:\Users\Tino\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fciokoalnclhnonofghacdplgpafdcgl [2020-08-12]
Edge HKLM-x32\...\Edge\Extension: [mielbhbkcliienpdicphhecpodcaeefg]
FireFox:
========
FF DefaultProfile: nsk17f5j.default
FF ProfilePath: C:\Users\Tino\AppData\Roaming\Mozilla\Firefox\Profiles\nsk17f5j.default [2021-10-14]
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2017-08-11] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @java.com/DTPlugin,version=11.171.2 -> C:\Program Files\Java\jre1.8.0_171\bin\dtplugin\npDeployJava1.dll [2018-04-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.171.2 -> C:\Program Files\Java\jre1.8.0_171\bin\plugin2\npjp2.dll [2018-04-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-01-06] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-01-06] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-01-06] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2020-10-10] (Adobe Inc. -> Adobe Systems)
FF Plugin: nuance.com/DgnRia2_x86_64 -> C:\Program Files (x86)\Nuance\NaturallySpeaking15\Program\x64\npDgnRia2_x64.dll [2016-08-23] (Nuance Communication, Inc. -> Nuance Communications, Inc.)
FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2017-08-11] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-05-26] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-05-26] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nitropdf.com/NitroPDF -> C:\Program Files (x86)\Nitro\Pro 11\npnitromozilla.dll [2017-03-09] (Nitro Software, Inc. -> Nitro PDF)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2020-01-06] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2020-01-06] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2020-01-06] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-09-25] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2020-10-10] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: nuance.com/DgnRia2 -> C:\Program Files (x86)\Nuance\NaturallySpeaking15\Program\npDgnRia2.dll [2016-08-23] (Nuance Communication, Inc. -> Nuance Communications, Inc.)
FF Plugin HKU\.DEFAULT: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-01-06] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\.DEFAULT: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-01-06] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\.DEFAULT: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-01-06] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-2977029141-1010321603-2543741146-1001: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2017-08-11] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-2977029141-1010321603-2543741146-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-01-06] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-2977029141-1010321603-2543741146-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-01-06] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-2977029141-1010321603-2543741146-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-01-06] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-2977029141-1010321603-2543741146-1001: tdameritrade.com/thinkorswim -> C:\Program Files\thinkorswim\npthinkorswim.dll [2018-10-28] (TD Ameritrade -> TD Ameritrade)
FF Plugin HKU\S-1-5-21-2977029141-1010321603-2543741146-1001: tdameritrade.com/tossc -> C:\Program Files\thinkorswim\nptossc.dll [2018-10-28] (TD Ameritrade -> TD Ameritrade)
Chrome:
=======
CHR Profile: C:\Users\Tino\AppData\Local\Google\Chrome\User Data\Default [2021-10-14]
CHR DownloadDir: C:\Users\Tino\Downloads
CHR HomePage: Default -> hxxps://start.duckduckgo.com/
CHR Session Restore: Default -> ist aktiviert.
CHR Extension: (Slides) - C:\Users\Tino\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Docs) - C:\Users\Tino\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Google Drive) - C:\Users\Tino\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-25]
CHR Extension: (RescueTime for Chrome and Chrome OS) - C:\Users\Tino\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdakmnplckeopfghnlpocafcepegjeap [2020-06-01]
CHR Extension: (YouTube) - C:\Users\Tino\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-03-28]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\Tino\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-09-07]
CHR Extension: (Sheets) - C:\Users\Tino\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (Google Docs Offline) - C:\Users\Tino\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-09-30]
CHR Extension: (Shoop Cashback & Gutscheine) - C:\Users\Tino\AppData\Local\Google\Chrome\User Data\Default\Extensions\hacngjmphfcjdfpmfmlngemhddjdncpe [2021-09-07]
CHR Extension: (Google Scholar Button) - C:\Users\Tino\AppData\Local\Google\Chrome\User Data\Default\Extensions\ldipcbpaocekfooobnbcddclnhejkcpn [2020-10-10]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Tino\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30]
CHR Extension: (Citavi Picker) - C:\Users\Tino\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohgndokldibnndfnjnagojmheejlengn [2021-04-27]
CHR Extension: (Gmail) - C:\Users\Tino\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Profile: C:\Users\Tino\AppData\Local\Google\Chrome\User Data\System Profile [2021-10-14]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [ohgndokldibnndfnjnagojmheejlengn]
Opera:
=======
OPR Profile: C:\Users\Tino\AppData\Roaming\Opera Software\Opera Stable [2021-10-14]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\Tino\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2021-09-27]
OPR Extension: (Amazon Assistant Promotion) - C:\Users\Tino\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2021-09-13]
==================== Dienste (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-08-16] (Adobe Inc. -> Adobe Inc.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [852024 2020-10-10] (Adobe Inc. -> Adobe Inc.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3833088 2021-09-07] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3603200 2021-09-07] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2018-08-23] (Apple Inc. -> Apple Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9250696 2021-10-03] (Microsoft Corporation -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [129808 2021-08-16] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [129808 2021-08-16] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44328 2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [441664 2019-08-22] (Digital Wave Ltd -> Digital Wave Ltd)
R2 Dolby DAX2 API Service; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [189464 2020-06-02] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.)
R2 DragonLoggerService; C:\Program Files (x86)\Common Files\Nuance\loggerservice.exe [166280 2016-08-23] (Nuance Communication, Inc. -> Nuance Communications, Inc.)
S3 ESLoadService; C:\Program Files (x86)\EaseUS\EaseUS MobiMover\bin\ESLoadService.exe [47840 2018-10-15] (CHENGDU YIWO Tech Development Co., Ltd. -> TODO: <Company name>) [Datei ist nicht signiert]
R2 FoxitReaderUpdateService; C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe [2357880 2021-07-21] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [1728072 2020-10-01] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6821960 2020-10-01] (GOG Sp. z o.o. -> GOG.com)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [347512 2018-12-06] (HP Inc. -> HP Inc.)
R2 KinoniSvc; C:\Program Files (x86)\Kinoni\EpocCam_and_Barcode_drivers\KinoniSvc.exe [525312 2013-02-26] () [Datei ist nicht signiert]
R2 Lenovo Instant On; C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\EasyResume.exe [2351320 2021-07-11] (Lenovo -> Lenovo Group Limited)
S2 LPlatSvc; C:\WINDOWS\System32\LPlatSvc.exe [892288 2019-12-11] (Lenovo -> Lenovo.)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7801016 2021-10-13] (Malwarebytes Inc -> Malwarebytes)
R2 NitroDriverReadSpool11; C:\Program Files\Nitro\Pro 11\NitroPDFDriverService11x64.exe [327368 2017-03-09] (Nitro Software, Inc. -> Nitro Software, Inc.)
R2 NitroUpdateService; C:\Program Files\Nitro\Pro 11\Nitro_UpdateService.exe [419016 2017-03-09] (Nitro Software, Inc. -> )
R2 nlsX86cc; C:\WINDOWS\SysWOW64\NLSSRV32.EXE [71880 2017-03-09] (Nitro Software, Inc. -> Nalpeiron Ltd.)
S3 OfficeSvcManagerAddons; C:\WINDOWS\system32\dllhost.exe /Processid:{2CA2E202-932F-4BA2-8771-195BB86398F5} [21312 2020-12-22] (Microsoft Windows -> Microsoft Corporation)
S3 ProtonVPN Service; C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPNService.exe [98624 2020-07-22] (ProtonVPN AG -> )
S3 ProtonVPN Update Service; C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.UpdateService.exe [61760 2020-07-22] (ProtonVPN AG -> )
R2 Seagate Dashboard Services; C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\Seagate.Dashboard.DASWindowsService.exe [16216 2016-06-28] (Seagate Technology LLC -> Seagate Technology LLC)
R2 Seagate MobileBackup Service; C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\MobileService.exe [143656 2016-06-28] (Seagate Technology LLC -> Seagate Technology LLC)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5394872 2021-09-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 ss_conn_launcher_service; C:\WINDOWS\System32\Samsung\EasySetup\ss_conn_launcher.exe [182128 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10884848 2017-05-23] (TeamViewer GmbH -> TeamViewer GmbH)
R2 TunnelBearMaintenance; C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.exe [139896 2019-06-19] (TunnelBear -> TunnelBear)
R2 valWBFPolicyService; C:\WINDOWS\system32\valWBFPolicyService.exe [77792 2018-04-25] (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated)
R2 valWbioSyncSvc; C:\WINDOWS\system32\valWbioSyncSvc.exe [48608 2018-04-25] (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\NisSrv.exe [2855512 2021-10-03] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MsMpEng.exe [128392 2021-10-03] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 ZeroTierOneService; C:\ProgramData\ZeroTier\One\zerotier-one_x64.exe [1879160 2020-12-18] (ZeroTier, Inc. -> )
===================== Treiber (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Datei ist nicht signiert]
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159864 2021-06-29] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 KINONI_Wave; C:\WINDOWS\system32\drivers\kinonivad.sys [32360 2016-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [210344 2021-10-13] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-06-05] (Microsoft Windows Early Launch Anti-Malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-10-13] (Malwarebytes Inc -> Malwarebytes)
R0 PMDRVS; C:\WINDOWS\System32\drivers\pmdrvs.sys [38160 2019-12-11] (Lenovo -> Lenovo.)
S3 ProtonVPNSplitTunnel; C:\Program Files (x86)\Proton Technologies\ProtonVPN\x64\Win10\ProtonVPN.SplitTunnelDriver.sys [31584 2020-06-03] (Microsoft Windows Hardware Compatibility Publisher -> Proton Technologies AG)
R1 SMIDriverGen; C:\WINDOWS\system32\DRIVERS\smi.sys [31440 2018-04-25] (Synaptics Inc. -> Synaptics Incorporated)
S3 SPUVCbv; C:\WINDOWS\System32\Drivers\SPUVCbv64.sys [735744 2016-03-11] (Sunplus Innovation Technology Inc. -> Sunplus)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [43376 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 tap-tb-0901; C:\WINDOWS\System32\drivers\tap-tb-0901.sys [38656 2019-06-19] (TunnelBear, Inc. -> The OpenVPN Project)
S3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [44896 2018-07-24] (TEFINCOM S.A. -> The OpenVPN Project)
R3 tapprotonvpn; C:\WINDOWS\System32\drivers\tapprotonvpn.sys [49008 2020-04-06] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S3 vpnva; C:\WINDOWS\System32\drivers\vpnva64-6.sys [52592 2016-02-29] (Cisco Systems, Inc. -> Cisco Systems, Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48520 2021-10-03] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [434424 2021-10-03] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86264 2021-10-03] (Microsoft Windows -> Microsoft Corporation)
S3 WirelessKeyboardFilter; C:\WINDOWS\System32\drivers\WirelessKeyboardFilter.sys [49336 2018-03-11] (Microsoft Corporation -> Microsoft Corporation)
R3 zttap300; C:\WINDOWS\System32\drivers\zttap300.sys [31744 2020-11-24] (Microsoft Windows Hardware Compatibility Publisher -> ZeroTier Networks LLC)
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat (erstellte) (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2021-10-14 16:45 - 2021-10-14 16:45 - 000000008 __RSH C:\ProgramData\ntuser.pol
2021-10-14 16:27 - 2021-10-14 16:38 - 000008888 _____ C:\Users\Tino\Downloads\Fixlog.txt
2021-10-14 16:09 - 2021-10-14 16:11 - 000000000 ____D C:\Program Files\Recuva
2021-10-14 16:09 - 2021-10-14 16:09 - 000001699 _____ C:\Users\Public\Desktop\Recuva.lnk
2021-10-14 16:09 - 2021-10-14 16:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva
2021-10-14 16:08 - 2021-10-14 16:08 - 007638224 _____ (Piriform Software Ltd) C:\Users\Tino\Downloads\rcsetup153.exe
2021-10-14 15:56 - 2021-10-14 15:56 - 000001828 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Eraser.lnk
2021-10-14 15:56 - 2021-10-14 15:56 - 000001816 _____ C:\Users\Public\Desktop\Eraser.lnk
2021-10-14 15:56 - 2021-10-14 15:56 - 000000000 ____D C:\Program Files\Eraser
2021-10-14 15:45 - 2021-10-14 15:45 - 008756728 _____ (The Eraser Project) C:\Users\Tino\Downloads\Eraser 6.2.0.2993.exe
2021-10-14 13:45 - 2021-10-14 13:38 - 059088699 ____C C:\Users\Tino\Desktop\Sorry seems to.m4a
2021-10-14 10:10 - 2021-10-14 10:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolby
2021-10-14 10:09 - 2021-10-14 10:09 - 000003220 _____ C:\WINDOWS\system32\Tasks\RtHDVBg_Dolby
2021-10-14 10:09 - 2021-10-14 10:09 - 000003216 _____ C:\WINDOWS\system32\Tasks\RTKCPL
2021-10-14 10:09 - 2021-10-14 10:09 - 000000000 ____D C:\ProgramData\Dolby
2021-10-14 10:09 - 2021-10-14 10:09 - 000000000 ____D C:\Program Files\Dolby
2021-10-14 10:08 - 2020-07-21 02:01 - 006082136 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2021-10-14 10:08 - 2020-07-21 02:01 - 003676968 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2021-10-14 10:08 - 2020-07-21 02:01 - 003159672 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2021-10-14 10:08 - 2020-07-21 02:01 - 002930048 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2021-10-14 10:08 - 2020-07-21 02:01 - 000023592 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2021-10-14 10:08 - 2020-07-21 02:00 - 007178368 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2021-10-14 10:08 - 2020-07-21 02:00 - 003404904 _____ (Foretmedia) C:\WINDOWS\system32\FM_Speech_PP64.dll
2021-10-14 10:08 - 2020-07-21 02:00 - 000378280 _____ (Dolby Laboratories) C:\WINDOWS\system32\HiFiDAX2API.dll
2021-10-14 10:08 - 2020-07-21 01:59 - 007101640 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2021-10-14 10:08 - 2020-07-21 01:59 - 005346888 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv211.dll
2021-10-14 10:08 - 2020-07-21 01:59 - 004113608 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2021-10-14 10:08 - 2020-07-21 01:59 - 003793360 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2021-10-14 10:08 - 2020-07-21 01:59 - 003375920 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2021-10-14 10:08 - 2020-07-21 01:59 - 001353216 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2021-10-14 10:08 - 2020-07-21 01:59 - 001259624 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOvlldp.dll
2021-10-14 10:08 - 2020-07-21 01:59 - 001159096 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOProp.dll
2021-10-14 10:08 - 2020-07-21 01:59 - 000453168 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2021-10-14 10:08 - 2020-07-21 01:59 - 000406344 _____ (Dolby Laboratories) C:\WINDOWS\system32\HiFiDAX2APIPCLL.dll
2021-10-14 10:08 - 2020-07-21 01:59 - 000343600 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2021-10-14 10:08 - 2020-07-21 01:59 - 000192872 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2021-10-14 10:08 - 2020-07-21 01:59 - 000157240 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2021-10-14 10:08 - 2020-07-21 01:59 - 000139648 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2021-10-14 10:08 - 2020-07-21 01:59 - 000122216 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2021-10-14 10:08 - 2020-07-21 01:59 - 000090064 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2021-10-14 10:08 - 2020-07-21 01:58 - 001971272 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2021-10-14 10:08 - 2020-07-21 01:58 - 001544160 _____ (Dolby Laboratories) C:\WINDOWS\system32\DAX3APOProp.dll
2021-10-14 10:08 - 2020-07-21 01:58 - 001372296 _____ (Dolby Laboratories) C:\WINDOWS\system32\DAX3APOv251.dll
2021-10-14 10:08 - 2020-07-21 01:58 - 000332904 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2021-10-14 10:08 - 2020-07-21 01:58 - 000278176 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2021-10-14 10:08 - 2020-07-21 01:28 - 041077788 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2021-10-14 09:57 - 2021-10-14 09:59 - 097053016 _____ (Lenovo Group Limited ) C:\Users\Tino\Downloads\r07ar24w.exe
2021-10-14 09:56 - 2021-10-14 09:56 - 003220128 _____ (Lenovo ) C:\Users\Tino\Downloads\LSBSetup (1).exe
2021-10-14 09:55 - 2021-10-14 09:55 - 000000000 ____D C:\Users\Tino\AppData\Local\Deployment
2021-10-14 09:24 - 2021-10-14 09:25 - 057319984 _____ (Audacity Team ) C:\Users\Tino\Downloads\audacity-win-3.0.5-64bit.exe
2021-10-13 21:58 - 2021-10-13 21:58 - 002310656 _____ (Farbar) C:\Users\Tino\Downloads\FRST64 (4).exe
2021-10-13 21:58 - 2021-10-13 21:58 - 002101944 _____ (Malwarebytes) C:\Users\Tino\Downloads\MBSetup (4).exe
2021-10-13 21:50 - 2021-10-13 21:58 - 000094187 _____ C:\Users\Tino\Downloads\Addition.txt
2021-10-13 21:46 - 2021-10-14 16:47 - 000046738 _____ C:\Users\Tino\Downloads\FRST.txt
2021-10-13 21:38 - 2021-10-13 21:38 - 002310656 _____ (Farbar) C:\Users\Tino\Downloads\FRST64 (3).exe
2021-10-13 21:38 - 2021-10-13 21:38 - 002101944 _____ (Malwarebytes) C:\Users\Tino\Downloads\MBSetup (3).exe
2021-10-13 21:35 - 2021-10-13 21:37 - 000000000 ____D C:\AdwCleaner
2021-10-13 21:35 - 2021-10-13 21:35 - 008553680 _____ (Malwarebytes) C:\Users\Tino\Downloads\adwcleaner_8.3.0.exe
2021-10-13 21:32 - 2021-10-13 21:32 - 000001423 _____ C:\Users\Tino\Downloads\MBAM.txt
2021-10-13 21:14 - 2021-10-13 21:14 - 000210344 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2021-10-13 21:14 - 2021-10-13 21:14 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2021-10-13 21:10 - 2021-10-13 21:10 - 002101944 _____ (Malwarebytes) C:\Users\Tino\Downloads\MBSetup (2).exe
2021-10-13 18:35 - 2021-10-13 18:44 - 000119690 _____ C:\Users\Tino\Downloads\Shortcut.txt
2021-10-13 18:23 - 2021-10-13 18:23 - 002310656 _____ (Farbar) C:\Users\Tino\Downloads\FRST64 (2).exe
2021-10-13 16:41 - 2021-10-13 16:41 - 002310656 _____ (Farbar) C:\Users\Tino\Downloads\FRST64 (1).exe
2021-10-13 16:24 - 2021-10-13 16:24 - 000000000 ____D C:\Users\Tino\AppData\Local\AC001
2021-10-13 14:49 - 2021-10-13 14:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\lenovo
2021-10-13 14:49 - 2021-10-13 14:49 - 000000000 ____D C:\Program Files (x86)\Lenovo
2021-10-13 14:28 - 2021-10-13 14:34 - 000000289 ____C C:\Users\Tino\Documents\Lumas Rabattcode.txt
2021-10-13 12:52 - 2021-10-13 12:52 - 000000000 ___HD C:\$WinREAgent
2021-10-12 09:41 - 2021-10-12 09:41 - 000070542 _____ C:\Users\Tino\Downloads\ssl-erklärung_1_0 (2).pdf
2021-10-12 09:41 - 2021-10-12 09:41 - 000070542 _____ C:\Users\Tino\Downloads\ssl-erklärung_1_0 (1).pdf
2021-10-12 09:37 - 2021-10-12 09:42 - 000077696 _____ C:\Users\Tino\Downloads\ssl-erklärung_1_0.pdf
2021-10-05 17:49 - 2021-10-06 15:56 - 000000000 ___DC C:\Users\Tino\Documents\****
2021-10-05 17:47 - 2021-10-05 17:47 - 000131636 ____C C:\Users\Tino\Documents\****
2021-10-04 16:21 - 2021-10-04 16:21 - 000183239 _____ C:\Users\Tino\Downloads\****
2021-10-03 19:05 - 2021-10-03 19:06 - 001729024 ____C C:\Users\Tino\Documents\****
2021-10-03 17:19 - 2021-10-03 19:00 - 001728512 ____C C:\Users\Tino\Documents\****
2021-10-02 13:47 - 2021-10-02 13:47 - 000032794 _____ C:\Users\Tino\Downloads\Dein REWE eBon vom 01.10.2021.pdf
2021-10-02 13:18 - 2021-10-02 13:18 - 000099919 _____ C:\Users\Tino\Downloads\12166745.pdf
2021-09-30 07:58 - 2021-09-30 07:58 - 000011569 _____ C:\Users\Tino\Downloads\anforderungsliste.zip
2021-09-29 23:02 - 2021-09-29 23:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2021-09-28 21:24 - 2021-09-28 21:24 - 000028577 _____ C:\Users\Tino\Downloads\*****
2021-09-28 09:18 - 2021-09-30 15:03 - 000000000 ____D C:\Users\Tino\AppData\Roaming\gitmind-electron
2021-09-28 09:17 - 2021-09-28 09:17 - 001886192 _____ (Apowersoft) C:\Users\Tino\Downloads\gitmind-setup.exe
2021-09-28 09:17 - 2021-09-28 09:17 - 000002234 _____ C:\Users\Public\Desktop\GitMind.lnk
2021-09-28 09:17 - 2021-09-28 09:17 - 000000000 ____D C:\Users\Tino\AppData\Local\gitmind-electron-updater
2021-09-28 09:01 - 2021-09-29 22:58 - 000000000 ____D C:\Users\Tino\AppData\Roaming\Archi4
2021-09-28 09:01 - 2021-09-28 09:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Archi4
2021-09-28 09:01 - 2021-09-28 09:01 - 000000000 ____D C:\Program Files\Archi4
2021-09-27 20:55 - 2021-09-27 20:55 - 001360684 ____C C:\Users\Tino\Desktop\Cooler Jingle Idea DAK Hotline 27Sept21.wav
2021-09-27 16:40 - 2021-09-27 16:40 - 001357720 _____ C:\Users\Tino\Downloads\Offener Brief D.pdf
2021-09-27 16:40 - 2021-09-27 16:40 - 000159458 _____ C:\Users\Tino\Downloads\iCRM_Projekt D.pdf
2021-09-27 15:51 - 2021-09-27 15:51 - 000001411 _____ C:\Users\Tino\Downloads\****
2021-09-27 15:43 - 2021-09-27 15:43 - 000001145 _____ C:\Users\Tino\Downloads\****
2021-09-27 09:45 - 2021-09-27 09:45 - 112561399 _____ (Phillip Beauvoir ) C:\Users\Tino\Downloads\Archi-Win64-Setup-4.8.1.exe
2021-09-26 23:17 - 2021-09-27 20:58 - 000021381 _____ C:\Users\Tino\Documents\Gehaltsrechner Werkstudent 21_v2.xlsx
2021-09-26 00:01 - 2021-09-26 00:01 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2021-09-26 00:01 - 2021-09-26 00:01 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2021-09-26 00:01 - 2021-09-26 00:01 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2021-09-26 00:01 - 2021-09-26 00:01 - 000044328 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2021-09-25 13:28 - 2021-09-25 13:28 - 000116034 _____ C:\Users\Tino\Downloads\102538831_20210909_176.pdf
2021-09-25 13:27 - 2021-09-25 13:27 - 000689221 _____ C:\Users\Tino\Downloads\NW_08094600001781.pdf
2021-09-22 22:30 - 2021-10-04 20:32 - 000000000 ___DC C:\Users\Tino\Documents\Desktop Aufräum 22Sept21
2021-09-22 22:28 - 2021-09-22 22:28 - 000000423 ____C C:\Users\Tino\Documents\Mama Corona Maßnahmen Prävention.txt
2021-09-22 22:06 - 2021-09-22 22:06 - 000062706 _____ C:\Users\Tino\Downloads\****
2021-09-22 09:49 - 2021-10-12 18:24 - 000000000 __RDC C:\Users\Tino\Documents\Bitrix24
2021-09-21 13:28 - 2021-09-21 13:28 - 000001062 _____ C:\Users\Tino\Downloads\BAHN_Fahrplan.ics
2021-09-21 09:07 - 2021-09-21 09:07 - 000000083 ____C C:\Users\Tino\Documents\Bahn ecoupon bis 11Dez21.txt
2021-09-21 08:57 - 2021-09-21 08:57 - 001343290 _____ C:\Users\Tino\Downloads\tarifbestimmungen_nrw.pdf
2021-09-20 18:39 - 2021-09-20 18:39 - 000005910 ____C C:\Users\Tino\Documents\Microphone Test_LavalierAKGIntern.aup
2021-09-20 18:39 - 2021-09-20 18:39 - 000000000 ___DC C:\Users\Tino\Documents\Microphone Test_LavalierAKGIntern_data
2021-09-20 18:13 - 2021-09-20 18:13 - 001717874 ____C C:\Users\Tino\Documents\test.pdf
2021-09-20 18:01 - 2021-09-20 18:01 - 000000000 ___DC C:\Users\Tino\AppData\LocalLow\Foxit
2021-09-20 17:56 - 2021-09-20 17:56 - 000000000 ____D C:\Users\Public\Foxit Software
2021-09-20 17:55 - 2021-09-20 18:04 - 000000000 ____D C:\Users\Tino\AppData\Roaming\Foxit Software
2021-09-20 17:55 - 2021-09-20 17:55 - 000000000 ____D C:\Users\Tino\AppData\Roaming\Foxit AgentInformation
2021-09-20 17:55 - 2021-09-20 17:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit PDF Reader
2021-09-20 17:55 - 2021-09-20 17:55 - 000000000 ____D C:\ProgramData\Foxit Software
2021-09-20 17:55 - 2021-09-20 17:55 - 000000000 ____D C:\ProgramData\Foxit ContentPlatform
2021-09-20 17:54 - 2021-09-20 17:54 - 000000000 ____D C:\Program Files (x86)\Foxit Software
2021-09-20 17:45 - 2021-09-20 17:45 - 000000109 _____ C:\Users\Public\Documents\pre_fileassoc.tmp
2021-09-20 17:26 - 2021-09-20 17:44 - 190417320 _____ (Foxit Software Inc. ) C:\Users\Tino\Downloads\FoxitPDFReader1101_L10N_Setup_Prom.exe
2021-09-20 17:21 - 2021-09-20 18:17 - 000000000 ___DC C:\Users\Tino\Documents\Congstar Rechnung Mama für Logitel
2021-09-20 09:29 - 2021-09-20 09:39 - 000000000 ____D C:\Program Files (x86)\Bitrix24
2021-09-20 09:29 - 2021-09-20 09:29 - 000001080 _____ C:\Users\Public\Desktop\Bitrix24.lnk
2021-09-20 09:29 - 2021-09-20 09:29 - 000000000 ___DC C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bitrix24
2021-09-20 09:29 - 2021-09-20 09:29 - 000000000 ____D C:\Users\Tino\AppData\Roaming\Bitrix
2021-09-20 09:29 - 2021-09-20 09:29 - 000000000 ____D C:\Users\Tino\AppData\Local\Bitrix24
2021-09-20 09:29 - 2021-09-20 09:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitrix24
2021-09-20 09:29 - 2021-09-20 09:29 - 000000000 ____D C:\ProgramData\Bitrix
2021-09-20 09:05 - 2021-09-20 09:09 - 191920504 _____ (Bitrix, Inc) C:\Users\Tino\Downloads\bitrix24_desktop.exe
2021-09-19 13:04 - 2021-09-19 13:04 - 001217366 _____ C:\Users\Tino\Downloads\Aktien.studieren Guide.pdf
2021-09-18 12:51 - 2021-09-19 16:06 - 000058251 _____ C:\Users\Tino\Documents\****
2021-09-17 23:27 - 2021-09-18 00:35 - 000054915 _____ C:\Users\Tino\Documents\****
2021-09-17 23:25 - 2021-09-17 23:25 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2021-09-17 23:25 - 2021-09-17 23:25 - 000170496 _____ C:\WINDOWS\system32\DeviceUpdateCenterCsp.dll
2021-09-17 23:24 - 2021-09-17 23:24 - 002295296 _____ (Digimarc) C:\WINDOWS\system32\DMRCDecoder.dll
2021-09-17 23:24 - 2021-09-17 23:24 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-09-17 23:24 - 2021-09-17 23:24 - 002111488 _____ (Digimarc) C:\WINDOWS\SysWOW64\DMRCDecoder.dll
2021-09-17 23:24 - 2021-09-17 23:24 - 001823304 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-09-17 23:24 - 2021-09-17 23:24 - 001393480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-09-17 23:24 - 2021-09-17 23:24 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-09-17 23:24 - 2021-09-17 23:24 - 001313608 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-09-17 23:24 - 2021-09-17 23:24 - 001164288 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-09-17 23:24 - 2021-09-17 23:24 - 000672768 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-09-17 23:24 - 2021-09-17 23:24 - 000570368 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2021-09-17 23:24 - 2021-09-17 23:24 - 000566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-09-17 23:24 - 2021-09-17 23:24 - 000426496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-09-17 23:24 - 2021-09-17 23:24 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-09-17 23:24 - 2021-09-17 23:24 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-09-17 23:24 - 2021-09-17 23:24 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-09-17 23:24 - 2021-09-17 23:24 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshom.ocx
2021-09-17 23:24 - 2021-09-17 23:24 - 000122880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshom.ocx
2021-09-17 23:24 - 2021-09-17 23:24 - 000098816 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-09-17 23:24 - 2021-09-17 23:24 - 000011355 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-09-16 23:36 - 2021-09-16 23:36 - 000125398 _____ C:\Users\Tino\Documents\Haushaltsbuch_Mama_30Jul21_v6.xlsx
2021-09-16 14:15 - 2021-09-16 18:02 - 000125413 _____ C:\Users\Tino\Documents\Haushaltsbuch_Mama_30Jul21_v5.xlsx
2021-09-15 16:13 - 2021-09-15 16:13 - 000000064 ____C C:\Users\Tino\Documents\Medikamente kaufen September 21.txt
2021-09-15 16:13 - 2021-09-15 16:13 - 000000032 ____C C:\Users\Tino\Documents\Auto das gegen mülleimer gefahren ist.txt
2021-09-15 15:06 - 2021-09-15 15:06 - 000001427 ____C C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2021-09-14 14:15 - 2021-09-14 14:15 - 012842099 _____ C:\Users\Tino\Downloads\0_Info_APM21.pdf
==================== Ein Monat (geänderte) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2021-10-14 16:47 - 2018-01-12 13:12 - 000000000 ____D C:\FRST
2021-10-14 16:47 - 2016-03-28 22:33 - 000000000 ____D C:\Program Files (x86)\Google
2021-10-14 16:46 - 2020-12-22 15:54 - 000003220 _____ C:\WINDOWS\system32\Tasks\Optimize Push Notification Data File-S-1-5-21-2977029141-1010321603-2543741146-1001
2021-10-14 16:46 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-10-14 16:45 - 2020-12-22 15:54 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-10-14 16:45 - 2020-12-22 15:39 - 000008192 ___SH C:\DumpStack.log.tmp
2021-10-14 16:45 - 2019-09-25 07:42 - 000000000 ____D C:\Program Files (x86)\TunnelBear
2021-10-14 16:45 - 2017-05-27 18:11 - 000000000 ____D C:\ProgramData\Synaptics
2021-10-14 16:45 - 2016-03-28 02:24 - 000000000 __SHD C:\Users\Tino\IntelGraphicsProfiles
2021-10-14 16:45 - 2016-03-28 02:22 - 000000000 ___DC C:\Intel
2021-10-14 16:44 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-10-14 16:39 - 2018-07-08 18:54 - 000000000 ___DC C:\Users\Tino\AppData\Local\D3DSCache
2021-10-14 16:34 - 2017-02-13 22:57 - 000000000 ___DC C:\Users\Tino\AppData\LocalLow\Temp
2021-10-14 16:27 - 2020-12-22 15:14 - 000448104 _____ C:\WINDOWS\system32\perfh011.dat
2021-10-14 16:27 - 2020-12-22 15:14 - 000125430 _____ C:\WINDOWS\system32\perfc011.dat
2021-10-14 16:27 - 2019-12-07 16:51 - 000686040 _____ C:\WINDOWS\system32\perfh007.dat
2021-10-14 16:27 - 2019-12-07 16:51 - 000141462 _____ C:\WINDOWS\system32\perfc007.dat
2021-10-14 16:27 - 2015-10-30 09:24 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2021-10-14 16:23 - 2021-09-10 10:53 - 000000000 ___DC C:\Users\Tino\Documents\****
2021-10-14 16:09 - 2017-03-10 19:12 - 000000000 ___DC C:\Users\Tino\AppData\Roaming\Audacity
2021-10-14 15:46 - 2020-07-31 16:39 - 000000000 ___DC C:\Users\Tino\AppData\LocalLow\IGDump
2021-10-14 15:01 - 2021-09-13 10:48 - 000004450 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1631522903
2021-10-14 14:36 - 2017-10-04 00:28 - 000000000 ___DC C:\Users\Tino\AppData\Local\DF6777BF-E7E1-4488-8623-6223146A9D8A.aplzod
2021-10-14 11:46 - 2020-12-22 15:39 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-10-14 10:28 - 2020-12-22 15:50 - 002333496 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-10-14 10:28 - 2020-05-16 14:01 - 000000000 ___DC C:\Users\Tino\Documents\Zoom
2021-10-14 10:28 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-10-14 10:20 - 2016-05-14 13:48 - 000000000 ___HD C:\Program Files (x86)\Temp
2021-10-14 10:18 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-10-14 10:18 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-10-14 10:09 - 2019-11-01 13:41 - 000000000 ____D C:\WINDOWS\system32\DAX3
2021-10-14 10:09 - 2017-05-27 18:11 - 000802531 _____ C:\WINDOWS\system32\Drivers\rtkhdasetting.zip
2021-10-14 10:09 - 2017-05-27 18:11 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2021-10-14 10:09 - 2017-05-27 18:11 - 000000000 ____D C:\WINDOWS\system32\DAX2
2021-10-14 10:04 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-10-14 10:04 - 2016-05-20 17:18 - 000000000 ___DC C:\Users\Tino\AppData\Roaming\KeePass
2021-10-14 10:03 - 2016-05-14 13:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Realtek
2021-10-14 10:02 - 2019-11-20 15:59 - 000000000 ____D C:\WINDOWS\TempInst
2021-10-14 09:36 - 2017-03-10 19:12 - 000000000 ___DC C:\Users\Tino\AppData\Local\Audacity
2021-10-13 21:14 - 2020-06-05 16:27 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2021-10-13 21:14 - 2020-06-05 16:27 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-10-13 21:13 - 2020-06-05 16:27 - 000160176 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2021-10-13 18:16 - 2019-10-03 18:06 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2021-10-13 18:15 - 2018-12-04 22:10 - 000000000 ____D C:\ProgramData\Lenovo
2021-10-13 18:12 - 2018-04-15 14:19 - 000044062 _____ C:\Users\Tino\Downloads\Keepass Datenbank_15Apr18.kdbx
2021-10-13 14:49 - 2020-12-22 15:54 - 000000000 ____D C:\WINDOWS\system32\Tasks\TVT
2021-10-13 14:48 - 2019-09-25 14:50 - 000003226 _____ C:\WINDOWS\SysWOW64\InstallUtil.InstallLog
2021-10-13 08:21 - 2020-08-12 18:13 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-10-13 08:21 - 2020-08-12 18:13 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-10-13 08:21 - 2016-03-28 22:34 - 000002293 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-10-12 13:09 - 2020-12-22 15:54 - 000003522 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
2021-10-12 07:57 - 2016-03-29 15:03 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-10-11 21:00 - 2021-09-03 17:08 - 000021830 _____ C:\Users\Tino\Documents\Internet Strom Mobilfunk 2021.xlsx
2021-10-10 23:44 - 2021-01-11 21:57 - 000003606 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6d868dc8bc866
2021-10-10 23:44 - 2020-12-22 15:54 - 000003700 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-10-08 08:52 - 2016-09-26 00:17 - 000000000 ___DC C:\Users\Tino\AppData\Local\ElevatedDiagnostics
2021-10-08 08:29 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-10-07 17:45 - 2020-12-22 15:54 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2977029141-1010321603-2543741146-1001
2021-10-07 17:45 - 2020-12-22 15:41 - 000002396 ____C C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-10-07 08:57 - 2021-08-15 19:30 - 000013860 _____ C:\Users\Tino\Documents\****
2021-10-06 11:44 - 2016-07-28 13:49 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2021-10-06 10:33 - 2021-06-02 14:28 - 000115021 _____ C:\Users\Tino\Downloads\****
2021-10-06 08:21 - 2021-09-13 10:48 - 000004220 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1631522888
2021-10-06 08:21 - 2021-09-13 10:48 - 000001406 ____C C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Opera-Browser.lnk
2021-10-05 19:55 - 2017-12-13 21:07 - 000000000 ___DC C:\Users\Tino\AppData\Local\Packages
2021-10-03 17:14 - 2019-01-18 16:31 - 000001955 _____ C:\Users\Tino\AppData\Roaming\SAS7_000.DAT
2021-10-03 13:49 - 2018-03-31 23:32 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-10-02 23:08 - 2016-03-31 18:55 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-10-01 08:16 - 2021-02-21 20:53 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-09-30 23:13 - 2020-12-22 15:54 - 000003632 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-09-30 23:13 - 2020-12-22 15:54 - 000003508 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-09-29 23:03 - 2016-04-07 13:41 - 000000000 ____D C:\Program Files (x86)\Dropbox
2021-09-29 08:11 - 2016-02-13 19:34 - 000000000 __RHD C:\Users\Public\AccountPictures
2021-09-28 09:17 - 2019-03-15 11:56 - 000000000 ___DC C:\Users\Tino\AppData\Roaming\Apowersoft
2021-09-28 09:17 - 2017-07-19 11:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apowersoft
2021-09-28 09:17 - 2017-07-19 11:45 - 000000000 ____D C:\Program Files (x86)\Apowersoft
2021-09-28 08:57 - 2021-03-24 20:06 - 000000000 ___DC C:\Users\Tino\Documents\Bewerbung Johanniter
2021-09-26 23:17 - 2020-12-22 15:41 - 000000000 ____D C:\Users\Tino
2021-09-23 07:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2021-09-23 07:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Macromed
2021-09-22 22:35 - 2020-12-22 15:39 - 000707328 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-09-22 22:34 - 2019-12-07 16:54 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-09-22 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-09-22 22:34 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2021-09-16 08:37 - 2016-03-29 03:49 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-09-16 08:34 - 2020-12-22 15:54 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-09-16 08:29 - 2016-03-29 03:49 - 135637312 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-09-15 16:12 - 2016-04-27 16:48 - 000000000 ___DC C:\Users\Tino\Documents\Gesundheit
2021-09-15 16:11 - 2021-08-06 20:55 - 000027692 _____ C:\Users\Tino\Documents\****
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========
2021-04-28 12:31 - 2021-04-28 12:06 - 001053600 _____ (ESET) C:\Users\Tino\esetuninstaller.exe
2019-01-18 16:31 - 2021-10-03 17:14 - 000001955 _____ () C:\Users\Tino\AppData\Roaming\SAS7_000.DAT
2018-09-29 15:38 - 2018-09-29 15:38 - 000000000 ____C () C:\Users\Tino\AppData\Local\oobelibMkey.log
2021-03-05 23:23 - 2021-03-05 23:23 - 000005743 _____ () C:\Users\Tino\AppData\Local\recently-used.xbel
==================== SigCheck ============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
==================== Ende von FRST.txt ========================
|
|
14.10.2021, 16:19
| #13 |
| | Windows 10: audacity.de Installer NOCH in der Ausführung. Soll ich ihn schließen? PC Neustarten? Addition.txt Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 12-10-2021
durchgeführt von Tino (14-10-2021 16:51:24)
Gestartet von C:\Users\Tino\Downloads
Microsoft Windows 10 Education Version 20H2 19042.1237 (X64) (2020-12-22 13:54:32)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
Administrator (S-1-5-21-2977029141-1010321603-2543741146-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2977029141-1010321603-2543741146-503 - Limited - Disabled)
Gast (S-1-5-21-2977029141-1010321603-2543741146-501 - Limited - Disabled)
Tino (S-1-5-21-2977029141-1010321603-2543741146-1001 - Administrator - Enabled) => C:\Users\Tino
WDAGUtilityAccount (S-1-5-21-2977029141-1010321603-2543741146-504 - Limited - Disabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
4K Video Downloader 4.3 (HKLM-x32\...\{D0CA3944-0FD5-40FF-97A1-FEDFFB5EE31F}) (Version: 4.3.2.2215 - Open Media LLC)
7-Zip 16.02 (x64) (HKLM\...\7-Zip) (Version: 16.02 - Igor Pavlov)
Ableton Live 10 Lite (HKLM\...\{3A42CB85-CCF2-470C-9086-C7D72B32B331}) (Version: 10.0.0.0 - Ableton)
Activ8 (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\b25a083cc8c5730f) (Version: 2.1.0.48 - Remedy Distribution Ltd)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 21.007.20095 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 5.3.1.470 - Adobe Inc.)
Adobe Digital Editions 4.5 (HKLM-x32\...\Adobe Digital Editions 4.5) (Version: 4.5.11 - Adobe Systems Incorporated)
Adobe Genuine Service (HKLM-x32\...\AdobeGenuineService) (Version: - Adobe)
Adobe Illustrator 2020 (HKLM-x32\...\ILST_24_3) (Version: 24.3 - Adobe Inc.)
Amazon Kindle (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Amazon Kindle) (Version: 1.20.1.47037 - Amazon)
Amazon Redshift ODBC Driver 64-bit (HKLM\...\{960BF695-03D5-48CF-9DC2-6AC5800C4FBE}) (Version: 1.4.10.1000 - Amazon Web Services, Inc.)
AnyTrans (HKLM-x32\...\AnyTrans) (Version: 5.5.4.0 - iMobie Inc.)
ApowerManager V3.2.3 (HKLM-x32\...\{D02368A2-6D57-4AE0-BECC-9E7DDE20B865}_is1) (Version: 3.2.3 - Apowersoft LIMITED)
ApowerMirror Version 1.4.5.3 (HKLM-x32\...\{a9482532-9c34-478c-80c3-85bdccbb981f}_is1) (Version: 1.4.5.3 - APOWERSOFT LIMITED)
Apple Application Support (32-Bit) (HKLM-x32\...\{308F2F8C-9D33-4B22-8A6C-D9C13DBEF8C6}) (Version: 7.0.2 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{0CB84A7D-9697-4526-A819-60FB050E8F05}) (Version: 7.0.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{77F8C879-88CD-4145-945A-541C35285285}) (Version: 12.0.0.1039 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.)
Archi 4.8.1 (HKLM\...\{17490178-4BB9-40A0-A9C4-F82027FF49B8}_is1) (Version: 4.8.1 - Phillip Beauvoir)
Artensoft Photo Collage Maker Pro (HKLM\...\Artensoft Photo Collage Maker Pro_is1) (Version: 2.0 - Artensoft)
AutoHotkey 1.1.32.00 (HKLM\...\AutoHotkey) (Version: 1.1.32.00 - Lexikos)
bf2battlelog (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\bf2battlelog) (Version: 0.8.6 - Spencer Sharkey)
Bitrix24 for Windows (HKLM-x32\...\Bitrix24) (Version: 12.0.26.60 - Bitrix)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
calibre 64bit (HKLM\...\{0F55D3CE-F390-494F-924A-A4204D649DE3}) (Version: 4.16.0 - Kovid Goyal)
Camera Mouse 2018 (HKLM-x32\...\{F5E6727D-0969-4C4A-A669-71F1A3913A03}}_is1) (Version: 1.1 - Boston College)
Chessmaster Grandmaster Edition (HKLM-x32\...\InstallShield_{27614800-84A9-484E-9CCB-43ED2F1205F5}) (Version: 1.02.0000 - Ubisoft)
Cisco AnyConnect Secure Mobility Client (HKLM-x32\...\Cisco AnyConnect Secure Mobility Client) (Version: 3.1.14018 - Cisco Systems, Inc.)
Cisco AnyConnect Secure Mobility Client (HKLM-x32\...\{C706092D-491F-4D29-BB49-FF7B47CD12F2}) (Version: 3.1.14018 - Cisco Systems, Inc.) Hidden
Citavi 6 (HKLM-x32\...\{6A331045-8FF4-4BC9-9C56-E593ACAE28C2}) (Version: 6.5.0.0 - Swiss Academic Software)
ClipGrab 3.8.14 (HKLM-x32\...\{8A1033B0-EF33-4FB5-97A1-C47A7DCDD7E6}_is1) (Version: - The ClipGrab Project)
CopyTrans Control Center deinstallieren (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\CopyTrans Suite) (Version: 4.008 - WindSolutions)
Cossacks - Back To War (HKLM-x32\...\1207662833_is1) (Version: 2.1.0.18 - GOG.com)
CPUID HWMonitor 1.28 (HKLM\...\CPUID HWMonitor_is1) (Version: - )
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
DB Browser for SQLite (HKLM-x32\...\DB Browser for SQLite) (Version: 3.10.1 - DB Browser for SQLite Team)
Dell Display Manager (HKLM-x32\...\{AC50C05D-9D57-40F5-B2EF-AC402F14312B}_is1) (Version: - EnTech Taiwan)
Dolby Audio X2 Windows API SDK (HKLM\...\{FA0735B6-9E18-437A-A1CD-9152650FC52B}) (Version: 0.8.8.90 - Dolby Laboratories, Inc.)
Dolby Audio X2 Windows APP (HKLM\...\{D0D32569-4680-490A-905C-5117CEAAB3EF}) (Version: 0.8.8.76 - Dolby Laboratories, Inc.)
Dragon 15 (HKLM-x32\...\{768AC460-237E-45B6-99B8-1DE6D0F391E8}) (Version: 15.00.000 - Nuance Communications Inc.)
Dropbox (HKLM-x32\...\Dropbox) (Version: 132.4.3800 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.503.1 - Dropbox, Inc.) Hidden
EaseUS MobiMover 4.5 (HKLM-x32\...\EaseUS MobiMover_is1) (Version: - EaseUS)
Eraser 6.2.0.2993 (HKLM\...\{82602EDA-27BE-4358-AB3A-BD09EA51A1E6}) (Version: 6.2.2993 - The Eraser Project)
EVEREST Home Edition v2.20 (HKLM-x32\...\EVEREST Home Edition_is1) (Version: 2.20 - Lavalys Inc)
Evernote v. 6.1.2 (HKLM-x32\...\{A46ABD1E-2837-11E6-9E7C-005056951CAD}) (Version: 6.1.2.2292 - Evernote Corp.)
EyeDefender 1.08 (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\EyeDefender) (Version: - )
f.lux (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Flux) (Version: - f.lux Software LLC)
FootSwitch 7.0.3 (HKLM-x32\...\{7BD5E046-6535-4983-AD88-D6C9A9FA8081}) (Version: 2.0.5 - PCsensor)
Fotogalerie (HKLM-x32\...\{41BF4A3B-D60A-4E92-883F-C88C8C157261}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Foxit PDF Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 11.0.1.49938 - Foxit Software Inc.)
Free YouTube To MP3 Converter (HKLM-x32\...\Free YouTube To MP3 Converter_is1) (Version: 4.2.18.820 - Digital Wave Ltd)
G*Power 3.1.9.7 (HKLM-x32\...\{FA3666A9-FF30-4777-B906-305B1EF0486E}) (Version: 3.1.97 - Franz Faul, Uni Kiel, Germany)
GameSessions Data Delivery x86 (HKLM-x32\...\{9AA2C827-8AF8-40C5-B500-5A6DB3233D71}) (Version: 1.28.488.0 - Tangentix Ltd)
GameSessions Runtime x86 (HKLM-x32\...\{79DD8AE4-FAA0-44DB-A42F-F09252B5B99A}) (Version: 1.28.488.0 - Tangentix Ltd)
GCFScape 1.8.6 (HKLM\...\GCFScape_is1) (Version: - Ryan Gregg)
GIMP 2.10.22 (HKLM\...\GIMP-2_is1) (Version: 2.10.22 - The GIMP Team)
GitMind 1.0.5 (HKLM-x32\...\a0e10d84-6512-552f-a0ec-5dd2e61ffe64) (Version: 1.0.5 - Apowersoft)
GNU Privacy Guard (HKLM-x32\...\GnuPG) (Version: 2.2.7 - The GnuPG Project)
GOG GALAXY (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 94.0.4606.81 - Google LLC)
GoTo Opener (HKLM-x32\...\{C0F33C38-345C-4C02-B161-11389350C2A5}) (Version: 1.0.533 - LogMeIn, Inc.)
GoToMeeting 10.17.0.19796 (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\GoToMeeting) (Version: 10.17.0.19796 - LogMeIn, Inc.)
Gpg4win (3.1.1) (HKLM-x32\...\Gpg4win) (Version: 3.1.1 - The Gpg4win Project)
Grammarly for Microsoft Office Suite (HKLM\...\{DE46CC28-5477-4CFB-9AE2-8C7C111E3EE7}) (Version: 6.8.261 - Grammarly) Hidden
Grammarly for Microsoft Office Suite (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\{ee962c45-b827-4262-a720-3a939910ce37}) (Version: 6.8.261 - Grammarly)
gretl version 2016d (x86_64) (HKLM\...\gretl_is1) (Version: 2016d - The gretl team)
Heroes of Might and Magic 3 Complete (HKLM-x32\...\1207658787_is1) (Version: 4.0 - GOG.com)
Heroes of Might and Magic III: Horn of the Abyss + HD mod (HKLM-x32\...\HotA + HD_is1) (Version: 1.6.1 - )
HoMM III Compatibility Database (HKLM\...\{62a24b39-0106-4990-90ea-3a09e9dda7a6}.sdb) (Version: - )
HP Deskjet 3520 series - Grundlegende Software für das Gerät (HKLM\...\{15B2F0E3-3FAC-4495-B0FD-398EECFA4100}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Deskjet 3520 series Hilfe (HKLM-x32\...\{6B953497-169C-4929-9AA9-A9F510347468}) (Version: 27.0.0 - Hewlett Packard)
HP Deskjet 3520 series Setup Guide (HKLM-x32\...\{AEEDCEB7-00B8-4BE1-B492-AB04803D5F1E}) (Version: 27.0.0 - Hewlett Packard)
HP Support Solutions Framework (HKLM-x32\...\{3A1CB1B8-8646-41A0-B496-35DC48916904}) (Version: 12.10.49.21 - HP)
IBM SPSS Statistics 24 (HKLM\...\{4762AE15-E5A3-43BF-8822-1CFC70FB147A}) (Version: 24.0.0.0 - IBM Corp)
iCloud (HKLM\...\{29C6B346-C29C-40CE-89EB-DF7C149E0EB9}) (Version: 7.7.0.27 - Apple Inc.)
iMazing 2.6.4.0 (HKLM\...\iMazing_is1) (Version: 2.6.4.0 - DigiDNA)
Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{F70BCE36-25F2-4475-A918-6209B3D85BF3}) (Version: 15.0.179 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 2112.15.0.2221 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.62.321.1 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{c3964069-17c1-45dd-85a5-949576ceeaa3}) (Version: 1.62.321.1 - Intel Corporation) Hidden
Intel PROSet/Wireless Software (HKLM-x32\...\{ebb135fb-d587-4f7a-8c91-eca79031d792}) (Version: 21.30.2 - Intel Corporation)
iTunes (HKLM\...\{9E84991B-6078-4311-A714-0A1360C3706C}) (Version: 12.9.0.167 - Apple Inc.)
Java 8 Update 171 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180171F0}) (Version: 8.0.1710.11 - Oracle Corporation)
Java SE Development Kit 8 Update 111 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180111}) (Version: 8.0.1110.14 - Oracle Corporation)
Kalo24 - der Freeware-Kaloreinexperte 1.0.0.0 (HKLM-x32\...\Kalo24 - der Freeware-Kaloreinexperte) (Version: 1.0.0.0 - Ralph Borchert)
KeePass Password Safe 2.44 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version: 2.44 - Dominik Reichl)
KinoniDrivers 2.8.1 (HKLM-x32\...\KinoniDrivers) (Version: 2.8.1 - Kinoni)
Lenovo Anzeige am Bildschirm (HKLM\...\OnScreenDisplay) (Version: 8.78.00 - Lenovo)
Lenovo Power Management Driver (HKLM\...\Power Management Driver) (Version: 1.67.12.07 - Lenovo) Hidden
Lenovo Service Bridge (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\dda9ca0b023f4c56) (Version: 1.6.6.0 - Lenovo)
Lenovo System Update (HKLM-x32\...\TVSU_is1) (Version: 5.07.0131 - Lenovo)
LibreOffice 6.3.6.2 (HKLM\...\{6664E413-D143-48B3-823F-50084561A0B6}) (Version: 6.3.6.2 - The Document Foundation)
LispWorks 6.1 Personal (HKLM-x32\...\{844E2E8E-ED3D-4054-99C7-26ED070BDEFB}) (Version: 6.1.1 - LispWorks Ltd)
LRZ Sync+Share (HKLM-x32\...\LRZ_Sync_Share) (Version: 15.1.100.0 - Leibniz-Rechenzentrum)
Macabacus 2016 (HKLM-x32\...\{F577D9CC-6C1F-432B-9B76-2B8206D25221}) (Version: 8.9.6 - Macabacus, LLC)
Malwarebytes version 4.4.8.137 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.4.8.137 - Malwarebytes)
Microsoft 365 Apps for Enterprise - de-de (HKLM\...\O365ProPlusRetail - de-de) (Version: 16.0.14430.20270 - Microsoft Corporation)
Microsoft ASP.NET MVC 2 (HKLM-x32\...\{DD8FF2F3-0D97-4CF3-AF78-FA0E1B242244}) (Version: 2.0.60926.0 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 94.0.992.47 - Microsoft Corporation)
Microsoft Edge WebView2-Laufzeit (HKLM-x32\...\Microsoft EdgeWebView) (Version: 94.0.992.47 - Microsoft Corporation)
Microsoft Keyboard Layout Creator 1.4 (HKLM-x32\...\{99E66BC9-E4B6-485F-ABFC-31EFCE36DFDF}) (Version: 1.4.6000 - Microsoft Corp.)
Microsoft ODBC Driver 17 for SQL Server (HKLM\...\{E36FFC78-D25E-4962-872B-9CE0E50E62CD}) (Version: 17.5.1.1 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\OneDriveSetup.exe) (Version: 21.180.0905.0007 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Teams) (Version: 1.4.00.2879 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{29B15818-E79F-4AB0-8938-9410C807AD76}) (Version: 2.84.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40649 (HKLM-x32\...\{5d0723d3-cff7-4e07-8d0b-ada737deb5e6}) (Version: 12.0.40649.5 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.23.27820 (HKLM-x32\...\{852adda4-4c78-4a38-b583-c0b360a329d6}) (Version: 14.23.27820.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.23.27820 (HKLM-x32\...\{45231ab4-69fd-486a-859d-7a59fcd11013}) (Version: 14.23.27820.0 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{70C91B91-61E8-4D06-86D6-A9DCC291983A}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 85.0 (x64 de) (HKLM\...\Mozilla Firefox 85.0 (x64 de)) (Version: 85.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 54.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 85.0.0.7688 - Mozilla)
Mozilla Thunderbird 60.9.1 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 60.9.1 (x86 de)) (Version: 60.9.1 - Mozilla)
Mplus Version 8.4 Demo (64-bit) (HKLM\...\{9654A20E-7892-4EB5-87C1-58BEBBB981F8}) (Version: 8.4 - Muthen & Muthen)
Nikon Message Center 2 (HKLM-x32\...\{B014EE44-9197-4513-9613-71E6EB1B514E}) (Version: 2.3.0 - Nikon Corporation)
Nikon Transfer 2 (HKLM-x32\...\{4D5EE11A-0D0A-4214-ABAC-72419F7BE24D}) (Version: 2.13.2 - Nikon Corporation)
Nitro Pro (HKLM\...\{0F088B7C-E593-438F-AABB-1B393864EE78}) (Version: 11.0.3.173 - Nitro) Hidden
Nitro Pro (HKLM-x32\...\{15459ba7-7bcf-4b1f-8631-b6b5b980a8cc}) (Version: 11.0.3.173 - Nitro)
Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 7.9.1 - Notepad++ Team)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.14430.20276 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.14430.20234 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.14430.20276 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0407-0000-0000000FF1CE}) (Version: 16.0.14430.20234 - Microsoft Corporation) Hidden
Opera Stable 79.0.4143.72 (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Opera 79.0.4143.72) (Version: 79.0.4143.72 - Opera Software)
PDF24 Creator 7.9.0 (HKLM-x32\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version: - PDF24.org)
PDF-Viewer (HKLM\...\{A278382D-4F1B-4D47-9885-8523F7261E8D}_is1) (Version: 2.5.322.7 - Tracker Software Products Ltd)
PDF-XChange Editor (HKLM\...\{3BB66258-EB01-4052-9558-D9353DC5AC89}) (Version: 8.0.336.0 - Tracker Software Products (Canada) Ltd.) Hidden
PDF-XChange Editor (HKLM-x32\...\{797baf93-803d-4306-9b2f-9ff5972f040c}) (Version: 8.0.336.0 - Tracker Software Products (Canada) Ltd.)
Picture Control Utility 2 (HKLM\...\{46BEAB85-B86A-4AAB-B085-136ECA032CF4}) (Version: 2.4.2 - Nikon Corporation)
ProtonVPN (HKLM-x32\...\{2E5B3FB1-FDCC-4BC8-AA99-E0EE5343CAF8}) (Version: 1.16.3 - Proton Technologies AG) Hidden
ProtonVPN (HKLM-x32\...\ProtonVPN 1.16.3) (Version: 1.16.3 - Proton Technologies AG)
ProtonVPNTap (HKLM-x32\...\{BCB82CD9-F514-4F93-A6D9-F898494DC927}) (Version: 1.1.0 - Proton Technologies AG)
psqlODBC_x64 (HKLM\...\{3F8971B0-061B-4163-9D3F-EA94151B2FCF}) (Version: 09.06.0504 - PostgreSQL Global Development Group)
Python 3.6.2 (32-bit) (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\{8388fa07-1617-4b8d-8ad8-6a940ad8052c}) (Version: 3.6.2150.0 - Python Software Foundation)
Python 3.6.2 Core Interpreter (32-bit) (HKLM-x32\...\{4542573C-6216-4584-BA90-72BAF7954404}) (Version: 3.6.2150.0 - Python Software Foundation) Hidden
Python 3.6.2 Development Libraries (32-bit) (HKLM-x32\...\{69E3E4A6-2A0F-4A32-9C2D-591EEC107289}) (Version: 3.6.2150.0 - Python Software Foundation) Hidden
Python 3.6.2 Documentation (32-bit) (HKLM-x32\...\{796410A7-1669-4FE4-8332-F684B61269E2}) (Version: 3.6.2150.0 - Python Software Foundation) Hidden
Python 3.6.2 Executables (32-bit) (HKLM-x32\...\{348C0EFF-60B1-4E68-88B8-33D7DF70DFCF}) (Version: 3.6.2150.0 - Python Software Foundation) Hidden
Python 3.6.2 pip Bootstrap (32-bit) (HKLM-x32\...\{6B2D61BA-C42D-4324-B23F-1D7B5A2808EF}) (Version: 3.6.2150.0 - Python Software Foundation) Hidden
Python 3.6.2 Standard Library (32-bit) (HKLM-x32\...\{79B4337D-166F-4BC0-B67A-F73806CC730E}) (Version: 3.6.2150.0 - Python Software Foundation) Hidden
Python 3.6.2 Tcl/Tk Support (32-bit) (HKLM-x32\...\{DF24AFFD-23AB-4A7D-A0E0-6410CE3B6B9D}) (Version: 3.6.2150.0 - Python Software Foundation) Hidden
Python 3.6.2 Test Suite (32-bit) (HKLM-x32\...\{433FD2E2-839C-4211-88B7-45C90F738842}) (Version: 3.6.2150.0 - Python Software Foundation) Hidden
Python 3.6.2 Utility Scripts (32-bit) (HKLM-x32\...\{9B79DE7E-E864-4758-8DFC-85DA43B19671}) (Version: 3.6.2150.0 - Python Software Foundation) Hidden
Python Launcher (HKLM-x32\...\{2636F1E4-2BC5-4B19-BFFD-A08F72598309}) (Version: 3.6.6032.0 - Python Software Foundation)
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
R for Windows 3.3.1 (HKLM\...\R for Windows 3.3.1_is1) (Version: 3.3.1 - R Core Team)
R for Windows 4.0.0 (HKLM\...\R for Windows 4.0.0_is1) (Version: 4.0.0 - R Core Team)
Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8988.1 - Realtek Semiconductor Corp.) Hidden
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
RStudio (HKLM-x32\...\RStudio) (Version: 1.3.1093 - RStudio)
Seagate Dashboard (HKLM-x32\...\{EA266F00-A8E7-43A0-8DED-FBFE3F076934}) (Version: 4.4.19.0 - Seagate)
Shotcut (HKLM\...\Shotcut) (Version: 20.10.31 - Meltytech, LLC)
Sky Ticket 6.6.0.0 (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\com.bskyb.skyticket_is1) (Version: 6.6.0.0 - Sky Ticket)
Smyle Mouse (HKLM-x32\...\{09786633-20A6-48F4-932B-3AF58F730AD0}_is1) (Version: 1.5.4.2 - )
Spotify (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\Spotify) (Version: 1.1.48.625.g1c87c7f7 - Spotify AB)
STAR WARS Battlefront II (HKLM-x32\...\1421404701_is1) (Version: 1.1 - GOG.com)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SteuerSparErklärung 2016 (HKLM-x32\...\{D331D50C-C578-423B-8BC7-94D3133CE315}) (Version: 21.41.113 - Akademische Arbeitsgemeinschaft)
Tableau 2020.3 (20203.20.0801.1333) (HKLM\...\{EFE6DB45-0575-40DA-9DF5-FD92CD78B01A}) (Version: 20.3.25268 - Tableau Software) Hidden
Tableau 2020.3 (20203.20.0801.1333) (HKLM-x32\...\{973a434a-9566-4323-97f7-d47c68bf1b22}) (Version: 20.3.25268 - Tableau Software)
Tableau Public 2020.3 (20203.20.0801.1333) (HKLM\...\{F02547AA-E4F3-4149-94F4-821D7F8117DD}) (Version: 20.3.25268 - Tableau Software) Hidden
Tableau Public 2020.3 (20203.20.0801.1333) (HKLM-x32\...\{8f6fc2fc-a962-4086-8ed7-9305397cecb1}) (Version: 20.3.25268 - Tableau Software)
Teams Machine-Wide Installer (HKLM-x32\...\{39AF0813-FA7B-4860-ADBE-93B9B214B914}) (Version: 1.2.0.17057 - Microsoft Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.5.6 - TeamSpeak Systems GmbH)
TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.78313 - TeamViewer)
thinkorswim (HKLM\...\9968-4488-2169-7623) (Version: desktop - thinkorswim, Inc)
Tinypic 3.18 (HKLM-x32\...\{E3723A04-A894-4036-A78E-282E18F43C0A}_is1) (Version: Tinypic 3.18 - E. Fiedler)
Toolkit (HKLM-x32\...\Toolkit) (Version: 1.8.1.71 - Seagate)
Trading (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\5556-0001-2700-0000) (Version: latest (979.4x) 20200630 11:44:03 - IB Exchange Corp.)
TreeSize Free V4.3.1 (HKLM-x32\...\TreeSize Free_is1) (Version: 4.3.1 - JAM Software)
TunnelBear (HKLM-x32\...\{A7784574-2299-423F-9DF8-385D5FC2A10E}) (Version: 3.7.12.0 - TunnelBear) Hidden
TunnelBear (HKLM-x32\...\{dc847d12-97d0-44e5-a95f-f0ef81c071a7}) (Version: 3.7.12.0 - TunnelBear)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{0BAA0A93-3AD3-4B19-9105-4C8C3FA92A83}) (Version: 2.67.0.0 - Microsoft Corporation) Hidden
Update for Windows 10 for x64-based Systems (KB4480730) (HKLM\...\{0746492E-47B6-4251-940C-44462DFD74BB}) (Version: 2.55.0.0 - Microsoft Corporation)
ViewNX-i (HKLM\...\{C02E1F40-7EB2-4084-991B-EBFC7F586E26}) (Version: 1.3.3 - Nikon Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.4 - VideoLAN)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows Resource Kit Tools (HKLM-x32\...\{FA237125-51FF-408C-8BB8-30C2B3DFFF9C}) (Version: 5.2.3790 - Microsoft Corporation)
WinMerge 2.14.0 (HKLM-x32\...\WinMerge_is1) (Version: 2.14.0 - Thingamahoochie Software)
Worms Reloaded - GameSessions Edition (HKLM-x32\...\{eea75da8-b7ea-43fc-b128-2383ea4b7d9e}) (Version: 2.2.6537.24689 - GameSessions)
Worms Reloaded (HKLM-x32\...\{CB69AE49-9423-4B3E-8325-A5B1C2869D5E}) (Version: 2.2.0.0 - GameSessions) Hidden
ZeroTier One (HKLM-x32\...\{AEB4CE16-0CE9-4F87-976E-79D7B2416613}) (Version: 1.6.2 - ZeroTier, Inc.) Hidden
ZeroTier One (HKLM-x32\...\ZeroTier One 1.6.2) (Version: 1.6.2 - ZeroTier, Inc.)
ZeroTier One Virtual Network Port (HKLM\...\{272B1192-65BE-4BDE-894B-6D3AD8BF7FD2}) (Version: 1.0.1 - ZeroTier) Hidden
Zoom (HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\ZoomUMX) (Version: 5.7.7 (1105) - Zoom Video Communications, Inc.)
Packages:
=========
Adobe Notification Client -> C:\Program Files\WindowsApps\AdobeNotificationClient_2.0.1.8_x86__enpm4xejd91yc [2020-12-22] (Adobe Systems Incorporated)
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.203.500.0_x86__kgqvnymyfvs32 [2021-10-01] (king.com)
Fotos-Add-On -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-05-04] (Microsoft Corporation)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_131.1.242.0_x64__v10z8vjag6ke6 [2021-09-28] (HP Inc.)
Media Engine-Add-On für Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-09-14] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-16] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-16] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.10.9220.0_x64__8wekyb3d8bbwe [2021-10-12] (Microsoft Studios) [MS Ad]
Reader Notification Client -> C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r [2020-04-02] (Adobe Systems Incorporated)
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.TWITTER_7.0.1.0_neutral__wgeqdkkx372wm [2021-06-13] (Twitter Inc.)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-2977029141-1010321603-2543741146-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-8BA2368BC411} -> [Creative Cloud Files] => C:\Users\Tino\Creative Cloud Files [2017-07-17 20:23]
CustomCLSID: HKU\S-1-5-21-2977029141-1010321603-2543741146-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\Tino\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20289.5\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2977029141-1010321603-2543741146-1001_Classes\CLSID\{2AD206F1-152C-4F9D-A24E-6F93FE7A4AFC}\InprocServer32 -> C:\Users\Tino\AppData\Local\Grammarly\Grammarly for Microsoft Office Suite\6.8.261\8B2AC1D301\GrammarlyShim64.dll (Grammarly, Inc. -> CompanyName)
CustomCLSID: HKU\S-1-5-21-2977029141-1010321603-2543741146-1001_Classes\CLSID\{4BE56754-B616-4998-B825-D16983AEE1B2}\InprocServer32 -> C:\Users\Tino\AppData\Local\Grammarly\Grammarly for Microsoft Office Suite\6.8.261\8B2AC1D301\Grammarly.AddIn.Connect.ActiveX.dll (Grammarly, Inc. -> Grammarly)
CustomCLSID: HKU\S-1-5-21-2977029141-1010321603-2543741146-1001_Classes\CLSID\{84B5A313-CD5D-4904-8BA2-AFDC81C1B309}\InprocServer32 -> C:\Users\Tino\AppData\Local\GoToMeeting\16786\G2MOutlookAddin64.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-2977029141-1010321603-2543741146-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\Tino\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.19127.3\x64\Microsoft.Teams.AddinLoader.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-2977029141-1010321603-2543741146-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\Tino\Dropbox [2016-04-07 13:43]
CustomCLSID: HKU\S-1-5-21-2977029141-1010321603-2543741146-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems)
ShellIconOverlayIdentifiers: [ 00BitrixShellExt_1] -> {A11A1EE5-F9F8-4BE0-907F-D74A49CC506B} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers: [ 00BitrixShellExt_2] -> {A11A1EE5-F9F8-4BE0-907F-D74A49CC506C} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers: [ 00BitrixShellExt_3] -> {A11A1EE5-F9F8-4BE0-907F-D74A49CC506D} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers: [ 00BitrixShellExt_4] -> {A11A1EE5-F9F8-4BE0-907F-D74A49CC506E} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers: [ 00BitrixShellExt_5] -> {A11A1EE5-F9F8-4BE0-907F-D74A49CC506F} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers: [ 00BitrixShellExt_6] -> {8009C378-F2BE-42A6-8ADD-083AAFBDC4EB} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers: [ 00BitrixShellExt_7] -> {057E631A-726E-4193-BB37-377DBD42812A} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers: [ 00BitrixShellExt_8] -> {86627476-D173-4FBC-B206-3A19447FF8CC} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-10-10] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-10-10] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-10-10] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ PowerFolderIgnored] -> {0800cf35-8302-4030-8add-40ac1e3f8834} => C:\Program Files (x86)\Leibniz-Rechenzentrum\LRZ_Sync_Share\IgnoredOverlay_x64.dll [2020-03-15] () [Datei ist nicht signiert]
ShellIconOverlayIdentifiers: [ PowerFolderLocked] -> {0800cf35-8302-4030-8add-40ac1e3f8835} => C:\Program Files (x86)\Leibniz-Rechenzentrum\LRZ_Sync_Share\LockedOverlay_x64.dll [2020-03-15] () [Datei ist nicht signiert]
ShellIconOverlayIdentifiers: [ PowerFolderOK] -> {0800cf35-8302-4030-8add-40ac1e3f8831} => C:\Program Files (x86)\Leibniz-Rechenzentrum\LRZ_Sync_Share\OKOverlay_x64.dll [2020-03-15] () [Datei ist nicht signiert]
ShellIconOverlayIdentifiers: [ PowerFolderSyncing] -> {0800cf35-8302-4030-8add-40ac1e3f8832} => C:\Program Files (x86)\Leibniz-Rechenzentrum\LRZ_Sync_Share\SyncingOverlay_x64.dll [2020-03-15] () [Datei ist nicht signiert]
ShellIconOverlayIdentifiers: [ PowerFolderWarning] -> {0800cf35-8302-4030-8add-40ac1e3f8833} => C:\Program Files (x86)\Leibniz-Rechenzentrum\LRZ_Sync_Share\WarningOverlay_x64.dll [2020-03-15] () [Datei ist nicht signiert]
ShellIconOverlayIdentifiers-x32: [ 00BitrixShellExt_1] -> {A11A1EE5-F9F8-4BE0-907F-D74A49CC506B} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers-x32: [ 00BitrixShellExt_2] -> {A11A1EE5-F9F8-4BE0-907F-D74A49CC506C} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers-x32: [ 00BitrixShellExt_3] -> {A11A1EE5-F9F8-4BE0-907F-D74A49CC506D} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers-x32: [ 00BitrixShellExt_4] -> {A11A1EE5-F9F8-4BE0-907F-D74A49CC506E} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers-x32: [ 00BitrixShellExt_5] -> {A11A1EE5-F9F8-4BE0-907F-D74A49CC506F} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers-x32: [ 00BitrixShellExt_6] -> {8009C378-F2BE-42A6-8ADD-083AAFBDC4EB} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers-x32: [ 00BitrixShellExt_7] -> {057E631A-726E-4193-BB37-377DBD42812A} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers-x32: [ 00BitrixShellExt_8] -> {86627476-D173-4FBC-B206-3A19447FF8CC} => C:\Program Files (x86)\Bitrix24\64\BitrixShellExt.dll [2021-05-18] (Bitrix, Inc. -> Bitrix Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-05-21] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-10-10] (Adobe Inc. -> )
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files\Notepad++\NppShell_06.dll [2020-11-02] (Notepad++ -> )
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [Eraser] -> {BC9B776A-90D7-4476-A791-79D835F30650} => C:\Program Files\Eraser\Eraser.Shell.dll [2021-09-25] (Heidi Computers Ltd -> The Eraser Project)
ContextMenuHandlers1: [LiferayNativityContextMenus] -> {0800cf35-8302-4030-8add-40ac1e3f8830} => C:\Program Files (x86)\Leibniz-Rechenzentrum\LRZ_Sync_Share\LiferayNativityContextMenus_x64.dll [2020-03-15] () [Datei ist nicht signiert]
ContextMenuHandlers1: [NP8ShellExtension] -> {9C4B85B8-956C-49BF-9BA5-101384E562B2} => C:\Program Files\Nitro\Pro 11\NPShellExtension.dll [2017-03-09] (Nitro Software, Inc. -> Nitro PDF)
ContextMenuHandlers1: [PDFXChange Editor Context menu] -> {2ACD35AB-F74A-4C20-AA9B-2DE80081626D} => C:\Program Files\Tracker Software\Shell Extensions\XCShellMenu.x64.dll [2020-01-06] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2018-10-01] (Apple Inc. -> Apple Inc.)
ContextMenuHandlers1: [WinMerge] -> {4E716236-AA30-4C65-B225-D68BBA81E9C2} => C:\Program Files (x86)\WinMerge\ShellExtensionX64.dll [2013-02-02] (hxxp://winmerge.org) [Datei ist nicht signiert]
ContextMenuHandlers2: [Eraser] -> {BC9B776A-90D7-4476-A791-79D835F30650} => C:\Program Files\Eraser\Eraser.Shell.dll [2021-09-25] (Heidi Computers Ltd -> The Eraser Project)
ContextMenuHandlers2: [WinMerge] -> {4E716236-AA30-4C65-B225-D68BBA81E9C2} => C:\Program Files (x86)\WinMerge\ShellExtensionX64.dll [2013-02-02] (hxxp://winmerge.org) [Datei ist nicht signiert]
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-06-05] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-05-21] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers4: [Eraser] -> {BC9B776A-90D7-4476-A791-79D835F30650} => C:\Program Files\Eraser\Eraser.Shell.dll [2021-09-25] (Heidi Computers Ltd -> The Eraser Project)
ContextMenuHandlers4: [LiferayNativityContextMenus] -> {0800cf35-8302-4030-8add-40ac1e3f8830} => C:\Program Files (x86)\Leibniz-Rechenzentrum\LRZ_Sync_Share\LiferayNativityContextMenus_x64.dll [2020-03-15] () [Datei ist nicht signiert]
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2020-08-03] (Piriform Software Ltd -> Piriform Software Ltd)
ContextMenuHandlers4: [WinMerge] -> {4E716236-AA30-4C65-B225-D68BBA81E9C2} => C:\Program Files (x86)\WinMerge\ShellExtensionX64.dll [2013-02-02] (hxxp://winmerge.org) [Datei ist nicht signiert]
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.49.0.dll [2021-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [Eraser] -> {BC9B776A-90D7-4476-A791-79D835F30650} => C:\Program Files\Eraser\Eraser.Shell.dll [2021-09-25] (Heidi Computers Ltd -> The Eraser Project)
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_fce0c2dbe15e0d9a\igfxDTCM.dll [2021-02-02] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [WinMerge] -> {4E716236-AA30-4C65-B225-D68BBA81E9C2} => C:\Program Files (x86)\WinMerge\ShellExtensionX64.dll [2013-02-02] (hxxp://winmerge.org) [Datei ist nicht signiert]
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-05-21] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-10-10] (Adobe Inc. -> )
ContextMenuHandlers6: [Eraser] -> {BC9B776A-90D7-4476-A791-79D835F30650} => C:\Program Files\Eraser\Eraser.Shell.dll [2021-09-25] (Heidi Computers Ltd -> The Eraser Project)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-06-05] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2020-08-03] (Piriform Software Ltd -> Piriform Software Ltd)
==================== Codecs (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Drivers32: [msacm.pspgru] => C:\Windows\SysWOW64\pspgru.acm [401920 2010-03-22] (Philips Austria GmbH - Speech Processing) [Datei ist nicht signiert]
==================== Verknüpfungen & WMI ========================
==================== Geladene Module (Nicht auf der Ausnahmeliste) =============
2019-06-19 15:24 - 2019-06-19 15:24 - 000030720 _____ () [Datei ist nicht signiert] [Datei wird verwendet] C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.Wrapper.dll
2019-06-19 15:24 - 2019-06-19 15:24 - 000167424 _____ () [Datei ist nicht signiert] [Datei wird verwendet] C:\Program Files (x86)\TunnelBear\TunnelBear.VigilantBear.Wrapper.dll
2021-05-05 12:28 - 2021-05-05 12:28 - 138710528 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Bitrix24\libcef.dll
2021-01-29 12:45 - 2021-01-29 12:45 - 000392192 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Bitrix24\libEGL.dll
2021-01-29 12:45 - 2021-01-29 12:45 - 006333440 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Bitrix24\libGLESv2.dll
2021-01-29 12:45 - 2021-01-29 12:45 - 001006080 _____ (The Chromium Authors) [Datei ist nicht signiert] C:\Program Files (x86)\Bitrix24\chrome_elf.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================
==================== Internet Explorer (Nicht auf der Ausnahmeliste) ==========
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/de-de/?ocid=iehp
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2021-10-06] (Microsoft Corporation -> Microsoft Corporation)
BHO: Dragon Web Extension For Internet Explorer -> {609C0837-8DD3-4F9B-AAC5-446F36BC0353} -> C:\Program Files (x86)\Nuance\NaturallySpeaking15\Program\x64\dgnriaie_x64.dll [2016-08-23] (Nuance Communication, Inc. -> Nuance Communications, Inc.)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_171\bin\ssv.dll [2018-04-30] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_171\bin\jp2ssv.dll [2018-04-30] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2021-10-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Dragon Web Extension For Internet Explorer -> {609C0837-8DD3-4F9B-AAC5-446F36BC0353} -> C:\Program Files (x86)\Nuance\NaturallySpeaking15\Program\dgnriaie.dll [2016-08-23] (Nuance Communication, Inc. -> Nuance Communications, Inc.)
BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2016-06-01] (EVERNOTE CORPORATION -> Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
IE Session Restore: HKU\S-1-5-21-2977029141-1010321603-2543741146-1001 -> ist aktiviert.
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-06] (Microsoft Corporation -> Microsoft Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE trusted site: HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\sharepoint.com -> hxxps://forstudents-files.sharepoint.com
==================== Hosts Inhalt: =========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2015-10-30 09:24 - 2021-10-14 16:45 - 000000027 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost
==================== Andere Bereiche ===========================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%INTEL_DEV_REDIST%redist\intel64\compiler;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Windows Resource Kits\Tools\;C:\Windows\System32;C:\Windows;C:\Windows\System32\wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files\IBM\SPSS\Statistics\24\JRE\bin;C:\Program Files (x86)\Windows Live\Shared;C:\Program Files (x86)\QuickTime\QTSystem\;C:\Python36;C:\Program Files (x86)\GnuPG\bin;C:\Windows\System32\OpenSSH\;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;C:\Program Files\Calibre2\;C:\Program Files\Mplus Demo\;C:\Program Files (x86)\ZeroTier\One\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img13.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run32: => "ISUSPM"
HKLM\...\StartupApproved\Run32: => "Cisco AnyConnect Secure Mobility Agent for Windows"
HKLM\...\StartupApproved\Run32: => "Dropbox"
HKLM\...\StartupApproved\Run32: => "PDFPrint"
HKLM\...\StartupApproved\Run32: => "DBAgent"
HKLM\...\StartupApproved\Run32: => "Nikon Message Center 2"
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\StartupApproved\StartupFolder: => "An OneNote senden.lnk"
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\StartupApproved\Run: => "RESTART_STICKY_NOTES"
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\StartupApproved\Run: => "Spotify Web Helper"
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\StartupApproved\Run: => "iCloudServices"
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\StartupApproved\Run: => "ISUSPM"
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\StartupApproved\Run: => "ApplePhotoStreams"
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\StartupApproved\Run: => "vidnotifier.exe"
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\StartupApproved\Run: => "com.squirrel.Teams.Teams"
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001\...\StartupApproved\Run: => "CCXProcess"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{E0D558B5-AD79-4DAC-A856-6F318BFB9C37}] => (Allow) C:\ProgramData\ZeroTier\One\zerotier-one_x64.exe (ZeroTier, Inc. -> )
FirewallRules: [{0CCE6612-4832-46A3-B149-479237C9223D}] => (Allow) C:\ProgramData\ZeroTier\One\zerotier-one_x64.exe (ZeroTier, Inc. -> )
FirewallRules: [{839A3D06-4B45-4A97-B655-9F2FB7B32C96}] => (Allow) LPort=8888
FirewallRules: [TCP Query User{E7E128BD-4FB0-4AD1-8C7A-46BF5C066473}C:\program files\hp\hp deskjet 3520 series\bin\hpnetworkcommunicator.exe] => (Block) C:\program files\hp\hp deskjet 3520 series\bin\hpnetworkcommunicator.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [UDP Query User{C1B458A6-110F-4EFB-AFAC-5B96C92C8054}C:\program files\hp\hp deskjet 3520 series\bin\hpnetworkcommunicator.exe] => (Block) C:\program files\hp\hp deskjet 3520 series\bin\hpnetworkcommunicator.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [TCP Query User{1BDB1E86-73C5-444F-8C5C-8990FCC09330}C:\program files\hp\hp deskjet 3520 series\bin\hpnetworkcommunicatorcom.exe] => (Block) C:\program files\hp\hp deskjet 3520 series\bin\hpnetworkcommunicatorcom.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [UDP Query User{8AD05061-006B-4220-A7B9-8C0441D4B5C3}C:\program files\hp\hp deskjet 3520 series\bin\hpnetworkcommunicatorcom.exe] => (Block) C:\program files\hp\hp deskjet 3520 series\bin\hpnetworkcommunicatorcom.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{7FB77F22-617C-4E5E-83B0-FF64D2B60B8D}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe (Lenovo -> )
FirewallRules: [{8B9A18EA-204C-4369-8D4B-DD646A2B53A7}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe (Lenovo -> )
==================== Wiederherstellungspunkte =========================
08-10-2021 08:27:35 Windows Modules Installer
14-10-2021 10:08:15 Installiert Realtek Audio Driver
==================== Fehlerhafte Geräte im Gerätemanager ============
Name: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Description: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Cisco Systems
Service: vpnva
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Fehlereinträge in der Ereignisanzeige: ========================
Applikationsfehler:
==================
Error: (10/14/2021 04:47:32 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Client application bug: DNSServiceResolve(mobile._epoccam._tcp.local.) active for over two minutes. This places considerable burden on the network.
Error: (10/14/2021 04:45:23 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT)
Description: Überspringen: Eap method DLL path Fehler bei der Überprüfung. Fehler: Type-ID=43, Autor-ID=9, Lieferant-ID=0, Lieferant-Typ=0
Error: (10/14/2021 04:45:23 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT)
Description: Überspringen: Eap method DLL path Fehler bei der Überprüfung. Fehler: Type-ID=25, Autor-ID=9, Lieferant-ID=0, Lieferant-Typ=0
Error: (10/14/2021 04:45:23 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT)
Description: Überspringen: Eap method DLL path Fehler bei der Überprüfung. Fehler: Type-ID=17, Autor-ID=9, Lieferant-ID=0, Lieferant-Typ=0
Error: (10/14/2021 04:45:23 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT)
Description: Überspringen: Eap method DLL path Fehler bei der Überprüfung. Fehler: Type-ID=43, Autor-ID=9, Lieferant-ID=0, Lieferant-Typ=0
Error: (10/14/2021 04:45:23 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT)
Description: Überspringen: Eap method DLL path Fehler bei der Überprüfung. Fehler: Type-ID=25, Autor-ID=9, Lieferant-ID=0, Lieferant-Typ=0
Error: (10/14/2021 04:45:23 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT)
Description: Überspringen: Eap method DLL path Fehler bei der Überprüfung. Fehler: Type-ID=17, Autor-ID=9, Lieferant-ID=0, Lieferant-Typ=0
Error: (10/14/2021 04:44:30 PM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Das Sicherheitscenter konnte den Aufrufer nicht überprüfen. Der Fehler %1 ist aufgetreten.
Systemfehler:
=============
Error: (10/14/2021 04:45:27 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Funktionssuche-Ressourcenveröffentlichung" wurde mit folgendem Fehler beendet:
%%2147952449 = Die angeforderte Adresse ist in diesem Kontext ungültig.
Error: (10/14/2021 04:44:40 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.
Modulpfad: C:\WINDOWS\system32\IntelIHVRouter06.dll
Error: (10/14/2021 04:44:40 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.
Modulpfad: C:\WINDOWS\system32\IntelIHVRouter06.dll
Error: (10/14/2021 04:44:30 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.
Modulpfad: C:\WINDOWS\system32\IntelIHVRouter06.dll
Error: (10/14/2021 04:44:29 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-BB502MH)
Description: Der Server "{9BA05972-F6A8-11CF-A442-00A0C90A8F39}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (10/14/2021 04:44:29 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-BB502MH)
Description: Der Server "{9BA05972-F6A8-11CF-A442-00A0C90A8F39}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (10/14/2021 04:44:29 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-BB502MH)
Description: Der Server "{9BA05972-F6A8-11CF-A442-00A0C90A8F39}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (10/14/2021 04:44:24 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-BB502MH)
Description: Der Server "{9AA46009-3CE0-458A-A354-715610A075E6}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Windows Defender:
================
Date: 2021-10-14 15:43:00
Description:
Microsoft Defender Antivirus hat Schadsoftware oder andere potenziell unerwünschte Software erkannt.
Weitere Informationen:
https://go.microsoft.com/fwlink/?linkid=37020&name=PUA:Win32/Puamson.A!ac&threatid=265499&enterprise=0
Name: PUA:Win32/Puamson.A!ac
Schweregrad: Niedrig
Kategorie: Potenziell unerwünschte Software
Pfad: file:_C:\Users\Tino\Downloads\Eraser - Installer _jWKc.exe; webfile:_C:\Users\Tino\Downloads\Eraser - Installer _jWKc.exe|https://chip-cluster.de/api/downloader/?lastchanged=20210226T1512000100&pid=chipderedesign&cid=54375406&euid=6c361e291b086b4eebd85256&browser=chrome&ref=&tid=&tpathid=9223_9232_38912_38985&os=windows&tname=system-cleaner&ico=&proto=https://&fallbackUrl=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
Erkennungsursprung: Internet
Erkennungstype: FastPath
Erkennungsquelle: Downloads und Anlagen
Benutzer: DESKTOP-BB502MH\Tino
Prozessname: Unknown
Sicherheitsversion: AV: 1.351.391.0, AS: 1.351.391.0, NIS: 1.351.391.0
Modulversion: AM: 1.1.18600.4, NIS: 1.1.18600.4
Date: 2021-10-14 13:43:49
Description:
C:\Program Files\Audacity\Audacity.exe wurde durch den überwachten Ordnerzugriff daran gehindert, %userprofile%\Documents\Audacity zu ändern.
Erkennungszeit: 2021-10-14T11:43:49.597Z
Benutzer: DESKTOP-BB502MH\Tino
Pfad: %userprofile%\Documents\Audacity
Prozessname: C:\Program Files\Audacity\Audacity.exe
Sicherheitsversion: 1.351.391.0
Modulversion: 1.1.18600.4
Produktversion: 4.18.2109.6
Date: 2021-10-14 13:34:17
Description:
C:\Program Files\Audacity\Audacity.exe wurde durch den überwachten Ordnerzugriff daran gehindert, %userprofile%\Documents\Audacity zu ändern.
Erkennungszeit: 2021-10-14T11:34:17.961Z
Benutzer: DESKTOP-BB502MH\Tino
Pfad: %userprofile%\Documents\Audacity
Prozessname: C:\Program Files\Audacity\Audacity.exe
Sicherheitsversion: 1.351.391.0
Modulversion: 1.1.18600.4
Produktversion: 4.18.2109.6
Date: 2021-10-14 10:20:07
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {A2F60579-4F44-4024-A15A-992D65CB37C8}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Date: 2021-10-13 18:12:03
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {449653E0-18D4-4684-A5AA-F0E0C8A963CF}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Vollständige Überprüfung
Benutzer: DESKTOP-BB502MH\Tino
CodeIntegrity:
===============
Date: 2021-10-14 16:47:27
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2021-10-13 21:31:20
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Speicherinformationen ===========================
BIOS: LENOVO R06ET69W (1.43 ) 01/08/2020
Hauptplatine: LENOVO 20FMS03600
Prozessor: Intel(R) Core(TM) i5-6200U CPU @ 2.30GHz
Prozentuale Nutzung des RAM: 58%
Installierter physikalischer RAM: 7607.82 MB
Verfügbarer physikalischer RAM: 3155.25 MB
Summe virtueller Speicher: 16497.33 MB
Verfügbarer virtueller Speicher: 11830.8 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:237.13 GB) (Free:25.39 GB) NTFS
\\?\Volume{1a177e8d-0000-0000-0000-100000000000}\ (System-reserviert) (Fixed) (Total:0.49 GB) (Free:0.46 GB) NTFS
\\?\Volume{1a177e8d-0000-0000-0000-d0673b000000}\ () (Fixed) (Total:0.85 GB) (Free:0.31 GB) NTFS
==================== MBR & Partitionstabelle ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 238.5 GB) (Disk ID: 1A177E8D)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=237.1 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=871 MB) - (Type=27)
==================== Ende von Addition.txt =======================
|
|
14.10.2021, 16:24
| #14 | |
| /// TB-Ausbilder | Windows 10: audacity.de Installer NOCH in der Ausführung. Soll ich ihn schließen? PC Neustarten? Mit Schritt 1 überprüfen wir auch die Windows-Systemdateien. Dies kann etwas länger dauern, bitte gedulde dich. Schritt 1
Schritt 2 Auf deinem Computer fehlt das aktuelle Funktionsupdate Version 21H1. Zitat:
Dann wären wir durch! Wenn du keine Probleme mehr mit Malware hast, dann sind wir hier fertig. Deine Logdateien sind sauber.  Abschließend bitte noch einen Cleanup mit unserem TBCleanUpTool durchführen und unbedingt die Sicherheitsmaßnahmen lesen und umsetzen - beides ist in folgendem Lesestoff verlinkt: Wenn Du möchtest, kannst Du hier sagen, ob du mit mir und meiner Hilfe zufrieden warst...  Vielleicht möchtest du das Forum mit einer kleinen Spende  unterstützen.  Hinweis: Bitte gib mir eine kurze Rückmeldung, sobald du die oben verlinkten Informationen gelesen hast, alles erledigt ist und keine Fragen mehr vorhanden sind, so dass ich dieses Thema aus meinen Abos löschen kann. |
|
14.10.2021, 19:05
| #15 |
| | Windows 10: audacity.de Installer NOCH in der Ausführung. Soll ich ihn schließen? PC Neustarten? Vielen vielen Dank für Deine Hilfe Matthias! Ihr seid echt toll. Könntest Du mir vielleicht noch sagen, was auf meinem PC nun "aufgeräumt" wurde? Ich frage mich z.B. wieso "gotomeeting" Dateien im log auftauchen, das ist ja sicher keine malware. Ich erwarte natürlich keine langen Erklärungen, aber ob ich malware etc. drauf hatte wüsste ich sehr gerne...  fixlog.txt Code:
ATTFilter Entfernungsergebnis von Farbar Recovery Scan Tool (x64) Version: 12-10-2021
durchgeführt von Tino (14-10-2021 19:40:42) Run:2
Gestartet von C:\Users\Tino\Downloads
Geladene Profile: Tino
Start-Modus: Normal
==============================================
fixlist Inhalt:
*****************
CustomCLSID: HKU\S-1-5-21-2977029141-1010321603-2543741146-1001_Classes\CLSID\{84B5A313-CD5D-4904-8BA2-AFDC81C1B309}\InprocServer32 -> C:\Users\Tino\AppData\Local\GoToMeeting\16786\G2MOutlookAddin64.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-2977029141-1010321603-2543741146-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\Tino\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.19127.3\x64\Microsoft.Teams.AddinLoader.dll => Keine Datei
Policies: C:\ProgramData\NTUSER.pol: Beschränkung <==== ACHTUNG
CMD: type "C:\Users\Tino\AppData\Local\AC001\GenericSetup.exe_Url_r4hcytbllpdiy1hj05cmrc2oftq5duo4\1.0.4.5045\user.config"
C:\Users\Tino\AppData\Local\AC001\
CMD: sfc /scannow
CMD: dism /online /cleanup-image /restorehealth
CMD: sfc /scannow
DeleteQuarantine:
Unlock: C:\FRST
Reboot:
*****************
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001_Classes\CLSID\{84B5A313-CD5D-4904-8BA2-AFDC81C1B309} => erfolgreich entfernt
HKU\S-1-5-21-2977029141-1010321603-2543741146-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92} => erfolgreich entfernt
C:\ProgramData\NTUSER.pol => erfolgreich verschoben
========= type "C:\Users\Tino\AppData\Local\AC001\GenericSetup.exe_Url_r4hcytbllpdiy1hj05cmrc2oftq5duo4\1.0.4.5045\user.config" =========
<?xml version="1.0" encoding="utf-8"?>
<configuration>
<configSections>
<sectionGroup name="userSettings" type="System.Configuration.UserSettingsGroup, System, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089" >
<section name="MyDownloader.Core.Settings" type="System.Configuration.ClientSettingsSection, System, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089" allowExeDefinition="MachineToLocalUser" requirePermission="false" />
</sectionGroup>
</configSections>
<userSettings>
<MyDownloader.Core.Settings>
<setting name="MaxSegments" serializeAs="String">
<value>4</value>
</setting>
</MyDownloader.Core.Settings>
</userSettings>
</configuration>
========= Ende von CMD: =========
C:\Users\Tino\AppData\Local\AC001 => erfolgreich verschoben
========= sfc /scannow =========
Systemsuche wird gestartet. Dieser Vorgang kann einige Zeit dauern.
Überprüfungsphase der Systemsuche wird gestartet.
Überprüfung 0 % abgeschlossen.
Überprüfung 0 % abgeschlossen.
Überprüfung 1 % abgeschlossen.
Überprüfung 1 % abgeschlossen.
Überprüfung 2 % abgeschlossen.
Überprüfung 2 % abgeschlossen.
Überprüfung 3 % abgeschlossen.
Überprüfung 3 % abgeschlossen.
Überprüfung 3 % abgeschlossen.
Überprüfung 4 % abgeschlossen.
Überprüfung 4 % abgeschlossen.
Überprüfung 5 % abgeschlossen.
Überprüfung 5 % abgeschlossen.
Überprüfung 6 % abgeschlossen.
Überprüfung 6 % abgeschlossen.
Überprüfung 7 % abgeschlossen.
Überprüfung 7 % abgeschlossen.
Überprüfung 7 % abgeschlossen.
Überprüfung 8 % abgeschlossen.
Überprüfung 8 % abgeschlossen.
Überprüfung 9 % abgeschlossen.
Überprüfung 9 % abgeschlossen.
Überprüfung 10 % abgeschlossen.
Überprüfung 10 % abgeschlossen.
Überprüfung 10 % abgeschlossen.
Überprüfung 11 % abgeschlossen.
Überprüfung 11 % abgeschlossen.
Überprüfung 12 % abgeschlossen.
Überprüfung 12 % abgeschlossen.
Überprüfung 13 % abgeschlossen.
Überprüfung 13 % abgeschlossen.
Überprüfung 14 % abgeschlossen.
Überprüfung 14 % abgeschlossen.
Überprüfung 14 % abgeschlossen.
Überprüfung 15 % abgeschlossen.
Überprüfung 15 % abgeschlossen.
Überprüfung 16 % abgeschlossen.
Überprüfung 16 % abgeschlossen.
Überprüfung 17 % abgeschlossen.
Überprüfung 17 % abgeschlossen.
Überprüfung 17 % abgeschlossen.
Überprüfung 18 % abgeschlossen.
Überprüfung 18 % abgeschlossen.
Überprüfung 19 % abgeschlossen.
Überprüfung 19 % abgeschlossen.
Überprüfung 20 % abgeschlossen.
Überprüfung 20 % abgeschlossen.
Überprüfung 21 % abgeschlossen.
Überprüfung 21 % abgeschlossen.
Überprüfung 21 % abgeschlossen.
Überprüfung 22 % abgeschlossen.
Überprüfung 22 % abgeschlossen.
Überprüfung 23 % abgeschlossen.
Überprüfung 23 % abgeschlossen.
Überprüfung 24 % abgeschlossen.
Überprüfung 24 % abgeschlossen.
Überprüfung 24 % abgeschlossen.
Überprüfung 25 % abgeschlossen.
Überprüfung 25 % abgeschlossen.
Überprüfung 26 % abgeschlossen.
Überprüfung 26 % abgeschlossen.
Überprüfung 27 % abgeschlossen.
Überprüfung 27 % abgeschlossen.
Überprüfung 28 % abgeschlossen.
Überprüfung 28 % abgeschlossen.
Überprüfung 28 % abgeschlossen.
Überprüfung 29 % abgeschlossen.
Überprüfung 29 % abgeschlossen.
Überprüfung 30 % abgeschlossen.
Überprüfung 30 % abgeschlossen.
Überprüfung 31 % abgeschlossen.
Überprüfung 31 % abgeschlossen.
Überprüfung 31 % abgeschlossen.
Überprüfung 32 % abgeschlossen.
Überprüfung 32 % abgeschlossen.
Überprüfung 33 % abgeschlossen.
Überprüfung 33 % abgeschlossen.
Überprüfung 34 % abgeschlossen.
Überprüfung 34 % abgeschlossen.
Überprüfung 35 % abgeschlossen.
Überprüfung 35 % abgeschlossen.
Überprüfung 35 % abgeschlossen.
Überprüfung 36 % abgeschlossen.
Überprüfung 36 % abgeschlossen.
Überprüfung 37 % abgeschlossen.
Überprüfung 37 % abgeschlossen.
Überprüfung 38 % abgeschlossen.
Überprüfung 38 % abgeschlossen.
Überprüfung 38 % abgeschlossen.
Überprüfung 39 % abgeschlossen.
Überprüfung 39 % abgeschlossen.
Überprüfung 40 % abgeschlossen.
Überprüfung 40 % abgeschlossen.
Überprüfung 41 % abgeschlossen.
Überprüfung 41 % abgeschlossen.
Überprüfung 42 % abgeschlossen.
Überprüfung 42 % abgeschlossen.
Überprüfung 42 % abgeschlossen.
Überprüfung 43 % abgeschlossen.
Überprüfung 43 % abgeschlossen.
Überprüfung 44 % abgeschlossen.
Überprüfung 44 % abgeschlossen.
Überprüfung 45 % abgeschlossen.
Überprüfung 45 % abgeschlossen.
Überprüfung 45 % abgeschlossen.
Überprüfung 46 % abgeschlossen.
Überprüfung 46 % abgeschlossen.
Überprüfung 47 % abgeschlossen.
Überprüfung 47 % abgeschlossen.
Überprüfung 48 % abgeschlossen.
Überprüfung 48 % abgeschlossen.
Überprüfung 49 % abgeschlossen.
Überprüfung 49 % abgeschlossen.
Überprüfung 49 % abgeschlossen.
Überprüfung 50 % abgeschlossen.
Überprüfung 50 % abgeschlossen.
Überprüfung 51 % abgeschlossen.
Überprüfung 51 % abgeschlossen.
Überprüfung 52 % abgeschlossen.
Überprüfung 52 % abgeschlossen.
Überprüfung 52 % abgeschlossen.
Überprüfung 53 % abgeschlossen.
Überprüfung 53 % abgeschlossen.
Überprüfung 54 % abgeschlossen.
Überprüfung 54 % abgeschlossen.
Überprüfung 55 % abgeschlossen.
Überprüfung 55 % abgeschlossen.
Überprüfung 56 % abgeschlossen.
Überprüfung 56 % abgeschlossen.
Überprüfung 56 % abgeschlossen.
Überprüfung 57 % abgeschlossen.
Überprüfung 57 % abgeschlossen.
Überprüfung 58 % abgeschlossen.
Überprüfung 58 % abgeschlossen.
Überprüfung 59 % abgeschlossen.
Überprüfung 59 % abgeschlossen.
Überprüfung 59 % abgeschlossen.
Überprüfung 60 % abgeschlossen.
Überprüfung 60 % abgeschlossen.
Überprüfung 61 % abgeschlossen.
Überprüfung 61 % abgeschlossen.
Überprüfung 62 % abgeschlossen.
Überprüfung 62 % abgeschlossen.
Überprüfung 63 % abgeschlossen.
Überprüfung 63 % abgeschlossen.
Überprüfung 63 % abgeschlossen.
Überprüfung 64 % abgeschlossen.
Überprüfung 64 % abgeschlossen.
Überprüfung 65 % abgeschlossen.
Überprüfung 65 % abgeschlossen.
Überprüfung 66 % abgeschlossen.
Überprüfung 66 % abgeschlossen.
Überprüfung 66 % abgeschlossen.
Überprüfung 67 % abgeschlossen.
Überprüfung 67 % abgeschlossen.
Überprüfung 68 % abgeschlossen.
Überprüfung 68 % abgeschlossen.
Überprüfung 69 % abgeschlossen.
Überprüfung 69 % abgeschlossen.
Überprüfung 70 % abgeschlossen.
Überprüfung 70 % abgeschlossen.
Überprüfung 70 % abgeschlossen.
Überprüfung 71 % abgeschlossen.
Überprüfung 71 % abgeschlossen.
Überprüfung 72 % abgeschlossen.
Überprüfung 72 % abgeschlossen.
Überprüfung 73 % abgeschlossen.
Überprüfung 73 % abgeschlossen.
Überprüfung 74 % abgeschlossen.
Überprüfung 74 % abgeschlossen.
Überprüfung 74 % abgeschlossen.
Überprüfung 75 % abgeschlossen.
Überprüfung 75 % abgeschlossen.
Überprüfung 76 % abgeschlossen.
Überprüfung 76 % abgeschlossen.
Überprüfung 77 % abgeschlossen.
Überprüfung 77 % abgeschlossen.
Überprüfung 77 % abgeschlossen.
Überprüfung 78 % abgeschlossen.
Überprüfung 78 % abgeschlossen.
Überprüfung 79 % abgeschlossen.
Überprüfung 79 % abgeschlossen.
Überprüfung 80 % abgeschlossen.
Überprüfung 80 % abgeschlossen.
Überprüfung 81 % abgeschlossen.
Überprüfung 81 % abgeschlossen.
Überprüfung 81 % abgeschlossen.
Überprüfung 82 % abgeschlossen.
Überprüfung 82 % abgeschlossen.
Überprüfung 83 % abgeschlossen.
Überprüfung 83 % abgeschlossen.
Überprüfung 84 % abgeschlossen.
Überprüfung 84 % abgeschlossen.
Überprüfung 84 % abgeschlossen.
Überprüfung 85 % abgeschlossen.
Überprüfung 85 % abgeschlossen.
Überprüfung 86 % abgeschlossen.
Überprüfung 86 % abgeschlossen.
Überprüfung 87 % abgeschlossen.
Überprüfung 87 % abgeschlossen.
Überprüfung 88 % abgeschlossen.
Überprüfung 88 % abgeschlossen.
Überprüfung 88 % abgeschlossen.
Überprüfung 89 % abgeschlossen.
Überprüfung 89 % abgeschlossen.
Überprüfung 90 % abgeschlossen.
Überprüfung 90 % abgeschlossen.
Überprüfung 91 % abgeschlossen.
Überprüfung 91 % abgeschlossen.
Überprüfung 91 % abgeschlossen.
Überprüfung 92 % abgeschlossen.
Überprüfung 92 % abgeschlossen.
Überprüfung 93 % abgeschlossen.
Überprüfung 93 % abgeschlossen.
Überprüfung 94 % abgeschlossen.
Überprüfung 94 % abgeschlossen.
Überprüfung 95 % abgeschlossen.
Überprüfung 95 % abgeschlossen.
Überprüfung 95 % abgeschlossen.
Überprüfung 96 % abgeschlossen.
Überprüfung 96 % abgeschlossen.
Überprüfung 97 % abgeschlossen.
Überprüfung 97 % abgeschlossen.
Überprüfung 98 % abgeschlossen.
Überprüfung 98 % abgeschlossen.
Überprüfung 98 % abgeschlossen.
Überprüfung 99 % abgeschlossen.
Überprüfung 99 % abgeschlossen.
Überprüfung 100 % abgeschlossen.
Der Windows-Ressourcenschutz hat beschädigte Dateien gefunden und erfolgreich repariert.
Bei Onlinereparaturen finden Sie Details in der CBS-Protokolldatei unter
windir\Logs\CBS\CBS.log. Beispiel C:\Windows\Logs\CBS\CBS.log. Bei Offlinereparaturen
finden Sie Details in der durch das /OFFLOGFILE-Kennzeichen angegebenen Protokolldatei.
========= Ende von CMD: =========
========= dism /online /cleanup-image /restorehealth =========
Tool zur Imageverwaltung fr die Bereitstellung
Version: 10.0.19041.844
Abbildversion: 10.0.19042.1237
[== 3.8% ]
[== 4.3% ]
[== 4.7% ]
[== 4.8% ]
[=== 5.3% ]
[=== 5.7% ]
[=== 6.3% ]
[=== 6.6% ]
[==== 7.0% ]
[==== 7.8% ]
[==== 8.2% ]
[===== 8.9% ]
[===== 9.6% ]
[===== 10.1% ]
[===== 10.3% ]
[====== 10.9% ]
[====== 11.3% ]
[====== 11.8% ]
[======= 12.5% ]
[======= 13.1% ]
[======= 13.4% ]
[======== 14.3% ]
[======== 15.3% ]
[========= 16.3% ]
[========= 16.9% ]
[========== 17.6% ]
[========== 18.4% ]
[=========== 19.2% ]
[=========== 19.6% ]
[=========== 19.8% ]
[=========== 20.2% ]
[=========== 20.5% ]
[============ 20.8% ]
[============ 20.8% ]
[============ 20.8% ]
[============ 20.9% ]
[============ 21.4% ]
[============ 22.3% ]
[============= 23.2% ]
[============= 24.1% ]
[============== 24.5% ]
[============== 24.8% ]
[============== 25.5% ]
[=============== 26.5% ]
[=============== 27.5% ]
[================ 27.8% ]
[================ 28.3% ]
[================ 29.0% ]
[================= 29.8% ]
[================= 30.0% ]
[================= 30.9% ]
[================== 31.4% ]
[================== 31.5% ]
[================== 31.5% ]
[================== 31.8% ]
[================== 31.8% ]
[================== 31.9% ]
[================== 31.9% ]
[================== 32.2% ]
[================== 32.3% ]
[================== 32.4% ]
[================== 32.5% ]
[================== 32.6% ]
[=================== 32.8% ]
[=================== 33.1% ]
[=================== 33.1% ]
[=================== 33.3% ]
[=================== 33.4% ]
[=================== 33.6% ]
[=================== 33.7% ]
[=================== 33.9% ]
[=================== 34.2% ]
[=================== 34.3% ]
[==================== 34.5% ]
[==================== 34.7% ]
[==================== 34.8% ]
[==================== 34.9% ]
[==================== 35.2% ]
[==================== 35.2% ]
[==================== 35.6% ]
[==================== 35.7% ]
[===================== 36.3% ]
[===================== 36.5% ]
[===================== 36.8% ]
[===================== 37.1% ]
[===================== 37.4% ]
[===================== 37.5% ]
[===================== 37.8% ]
[====================== 38.1% ]
[====================== 38.7% ]
[====================== 38.7% ]
[====================== 39.5% ]
[======================= 40.5% ]
[======================= 41.3% ]
[======================== 42.3% ]
[======================== 42.9% ]
[========================= 43.9% ]
[========================= 44.5% ]
[========================== 45.5% ]
[========================== 46.3% ]
[===========================47.2% ]
[===========================48.0% ]
[===========================49.0% ]
[===========================50.0% ]
[===========================50.3% ]
[===========================50.3% ]
[===========================50.4% ]
[===========================50.4% ]
[===========================50.5% ]
[===========================50.5% ]
[===========================50.6% ]
[===========================50.6% ]
[===========================50.8% ]
[===========================50.8% ]
[===========================50.9% ]
[===========================50.9% ]
[===========================50.9% ]
[===========================50.9% ]
[===========================50.9% ]
[===========================50.9% ]
[===========================51.0% ]
[===========================51.0% ]
[===========================51.0% ]
[===========================51.1% ]
[===========================51.1% ]
[===========================51.2% ]
[===========================51.2% ]
[===========================51.2% ]
[===========================51.2% ]
[===========================51.3% ]
[===========================51.4% ]
[===========================51.4% ]
[===========================51.5% ]
[===========================51.5% ]
[===========================51.5% ]
[===========================51.5% ]
[===========================51.6% ]
[===========================51.8% ]
[===========================51.8% ]
[===========================51.8% ]
[===========================51.9% ]
[===========================52.0% ]
[===========================52.1% ]
[===========================52.1% ]
[===========================52.2% ]
[===========================52.2% ]
[===========================52.2% ]
[===========================52.2% ]
[===========================52.3% ]
[===========================52.3% ]
[===========================52.4% ]
[===========================52.5% ]
[===========================52.5% ]
[===========================52.5% ]
[===========================52.5% ]
[===========================52.6% ]
[===========================52.6% ]
[===========================52.6% ]
[===========================52.7% ]
[===========================52.7% ]
[===========================52.8% ]
[===========================52.8% ]
[===========================52.8% ]
[===========================52.8% ]
[===========================52.9% ]
[===========================52.9% ]
[===========================53.0% ]
[===========================53.0% ]
[===========================53.0% ]
[===========================53.1% ]
[===========================53.1% ]
[===========================53.1% ]
[===========================53.3% ]
[===========================53.4% ]
[===========================53.4% ]
[===========================53.6% ]
[===========================53.6% ]
[===========================53.7% ]
[===========================53.7% ]
[===========================53.7% ]
[===========================53.8% ]
[===========================53.8% ]
[===========================53.9% ]
[===========================54.0% ]
[===========================54.1% ]
[===========================54.1% ]
[===========================54.2% ]
[===========================54.2% ]
[===========================54.9% ]
[===========================55.2% ]
[===========================55.3% ]
[===========================55.5% ]
[===========================56.5% ]
[===========================57.5%= ]
[===========================58.5%= ]
[===========================59.5%== ]
[===========================59.8%== ]
[===========================62.3%==== ]
[===========================84.9%================= ]
[==========================100.0%==========================]
Der Wiederherstellungsvorgang wurde erfolgreich abgeschlossen.
Der Vorgang wurde erfolgreich beendet.
========= Ende von CMD: =========
========= sfc /scannow =========
Systemsuche wird gestartet. Dieser Vorgang kann einige Zeit dauern.
Überprüfungsphase der Systemsuche wird gestartet.
Überprüfung 0 % abgeschlossen.
Überprüfung 0 % abgeschlossen.
Überprüfung 1 % abgeschlossen.
Überprüfung 1 % abgeschlossen.
Überprüfung 2 % abgeschlossen.
Überprüfung 2 % abgeschlossen.
Überprüfung 3 % abgeschlossen.
Überprüfung 3 % abgeschlossen.
Überprüfung 3 % abgeschlossen.
Überprüfung 4 % abgeschlossen.
Überprüfung 4 % abgeschlossen.
Überprüfung 5 % abgeschlossen.
Überprüfung 5 % abgeschlossen.
Überprüfung 6 % abgeschlossen.
Überprüfung 6 % abgeschlossen.
Überprüfung 7 % abgeschlossen.
Überprüfung 7 % abgeschlossen.
Überprüfung 7 % abgeschlossen.
Überprüfung 8 % abgeschlossen.
Überprüfung 8 % abgeschlossen.
Überprüfung 9 % abgeschlossen.
Überprüfung 9 % abgeschlossen.
Überprüfung 10 % abgeschlossen.
Überprüfung 10 % abgeschlossen.
Überprüfung 10 % abgeschlossen.
Überprüfung 11 % abgeschlossen.
Überprüfung 11 % abgeschlossen.
Überprüfung 12 % abgeschlossen.
Überprüfung 12 % abgeschlossen.
Überprüfung 13 % abgeschlossen.
Überprüfung 13 % abgeschlossen.
Überprüfung 14 % abgeschlossen.
Überprüfung 14 % abgeschlossen.
Überprüfung 14 % abgeschlossen.
Überprüfung 15 % abgeschlossen.
Überprüfung 15 % abgeschlossen.
Überprüfung 16 % abgeschlossen.
Überprüfung 16 % abgeschlossen.
Überprüfung 17 % abgeschlossen.
Überprüfung 17 % abgeschlossen.
Überprüfung 17 % abgeschlossen.
Überprüfung 18 % abgeschlossen.
Überprüfung 18 % abgeschlossen.
Überprüfung 19 % abgeschlossen.
Überprüfung 19 % abgeschlossen.
Überprüfung 20 % abgeschlossen.
Überprüfung 20 % abgeschlossen.
Überprüfung 21 % abgeschlossen.
Überprüfung 21 % abgeschlossen.
Überprüfung 21 % abgeschlossen.
Überprüfung 22 % abgeschlossen.
Überprüfung 22 % abgeschlossen.
Überprüfung 23 % abgeschlossen.
Überprüfung 23 % abgeschlossen.
Überprüfung 24 % abgeschlossen.
Überprüfung 24 % abgeschlossen.
Überprüfung 24 % abgeschlossen.
Überprüfung 25 % abgeschlossen.
Überprüfung 25 % abgeschlossen.
Überprüfung 26 % abgeschlossen.
Überprüfung 26 % abgeschlossen.
Überprüfung 27 % abgeschlossen.
Überprüfung 27 % abgeschlossen.
Überprüfung 28 % abgeschlossen.
Überprüfung 28 % abgeschlossen.
Überprüfung 28 % abgeschlossen.
Überprüfung 29 % abgeschlossen.
Überprüfung 29 % abgeschlossen.
Überprüfung 30 % abgeschlossen.
Überprüfung 30 % abgeschlossen.
Überprüfung 31 % abgeschlossen.
Überprüfung 31 % abgeschlossen.
Überprüfung 31 % abgeschlossen.
Überprüfung 32 % abgeschlossen.
Überprüfung 32 % abgeschlossen.
Überprüfung 33 % abgeschlossen.
Überprüfung 33 % abgeschlossen.
Überprüfung 34 % abgeschlossen.
Überprüfung 34 % abgeschlossen.
Überprüfung 35 % abgeschlossen.
Überprüfung 35 % abgeschlossen.
Überprüfung 35 % abgeschlossen.
Überprüfung 36 % abgeschlossen.
Überprüfung 36 % abgeschlossen.
Überprüfung 37 % abgeschlossen.
Überprüfung 37 % abgeschlossen.
Überprüfung 38 % abgeschlossen.
Überprüfung 38 % abgeschlossen.
Überprüfung 38 % abgeschlossen.
Überprüfung 39 % abgeschlossen.
Überprüfung 39 % abgeschlossen.
Überprüfung 40 % abgeschlossen.
Überprüfung 40 % abgeschlossen.
Überprüfung 41 % abgeschlossen.
Überprüfung 41 % abgeschlossen.
Überprüfung 42 % abgeschlossen.
Überprüfung 42 % abgeschlossen.
Überprüfung 42 % abgeschlossen.
Überprüfung 43 % abgeschlossen.
Überprüfung 43 % abgeschlossen.
Überprüfung 44 % abgeschlossen.
Überprüfung 44 % abgeschlossen.
Überprüfung 45 % abgeschlossen.
Überprüfung 45 % abgeschlossen.
Überprüfung 45 % abgeschlossen.
Überprüfung 46 % abgeschlossen.
Überprüfung 46 % abgeschlossen.
Überprüfung 47 % abgeschlossen.
Überprüfung 47 % abgeschlossen.
Überprüfung 48 % abgeschlossen.
Überprüfung 48 % abgeschlossen.
Überprüfung 49 % abgeschlossen.
Überprüfung 49 % abgeschlossen.
Überprüfung 49 % abgeschlossen.
Überprüfung 50 % abgeschlossen.
Überprüfung 50 % abgeschlossen.
Überprüfung 51 % abgeschlossen.
Überprüfung 51 % abgeschlossen.
Überprüfung 52 % abgeschlossen.
Überprüfung 52 % abgeschlossen.
Überprüfung 52 % abgeschlossen.
Überprüfung 53 % abgeschlossen.
Überprüfung 53 % abgeschlossen.
Überprüfung 54 % abgeschlossen.
Überprüfung 54 % abgeschlossen.
Überprüfung 55 % abgeschlossen.
Überprüfung 55 % abgeschlossen.
Überprüfung 56 % abgeschlossen.
Überprüfung 56 % abgeschlossen.
Überprüfung 56 % abgeschlossen.
Überprüfung 57 % abgeschlossen.
Überprüfung 57 % abgeschlossen.
Überprüfung 58 % abgeschlossen.
Überprüfung 58 % abgeschlossen.
Überprüfung 59 % abgeschlossen.
Überprüfung 59 % abgeschlossen.
Überprüfung 59 % abgeschlossen.
Überprüfung 60 % abgeschlossen.
Überprüfung 60 % abgeschlossen.
Überprüfung 61 % abgeschlossen.
Überprüfung 61 % abgeschlossen.
Überprüfung 62 % abgeschlossen.
Überprüfung 62 % abgeschlossen.
Überprüfung 63 % abgeschlossen.
Überprüfung 63 % abgeschlossen.
Überprüfung 63 % abgeschlossen.
Überprüfung 64 % abgeschlossen.
Überprüfung 64 % abgeschlossen.
Überprüfung 65 % abgeschlossen.
Überprüfung 65 % abgeschlossen.
Überprüfung 66 % abgeschlossen.
Überprüfung 66 % abgeschlossen.
Überprüfung 66 % abgeschlossen.
Überprüfung 67 % abgeschlossen.
Überprüfung 67 % abgeschlossen.
Überprüfung 68 % abgeschlossen.
Überprüfung 68 % abgeschlossen.
Überprüfung 69 % abgeschlossen.
Überprüfung 69 % abgeschlossen.
Überprüfung 70 % abgeschlossen.
Überprüfung 70 % abgeschlossen.
Überprüfung 70 % abgeschlossen.
Überprüfung 71 % abgeschlossen.
Überprüfung 71 % abgeschlossen.
Überprüfung 72 % abgeschlossen.
Überprüfung 72 % abgeschlossen.
Überprüfung 73 % abgeschlossen.
Überprüfung 73 % abgeschlossen.
Überprüfung 74 % abgeschlossen.
Überprüfung 74 % abgeschlossen.
Überprüfung 74 % abgeschlossen.
Überprüfung 75 % abgeschlossen.
Überprüfung 75 % abgeschlossen.
Überprüfung 76 % abgeschlossen.
Überprüfung 76 % abgeschlossen.
Überprüfung 77 % abgeschlossen.
Überprüfung 77 % abgeschlossen.
Überprüfung 77 % abgeschlossen.
Überprüfung 78 % abgeschlossen.
Überprüfung 78 % abgeschlossen.
Überprüfung 79 % abgeschlossen.
Überprüfung 79 % abgeschlossen.
Überprüfung 80 % abgeschlossen.
Überprüfung 80 % abgeschlossen.
Überprüfung 81 % abgeschlossen.
Überprüfung 81 % abgeschlossen.
Überprüfung 81 % abgeschlossen.
Überprüfung 82 % abgeschlossen.
Überprüfung 82 % abgeschlossen.
Überprüfung 83 % abgeschlossen.
Überprüfung 83 % abgeschlossen.
Überprüfung 84 % abgeschlossen.
Überprüfung 84 % abgeschlossen.
Überprüfung 84 % abgeschlossen.
Überprüfung 85 % abgeschlossen.
Überprüfung 85 % abgeschlossen.
Überprüfung 86 % abgeschlossen.
Überprüfung 86 % abgeschlossen.
Überprüfung 87 % abgeschlossen.
Überprüfung 87 % abgeschlossen.
Überprüfung 88 % abgeschlossen.
Überprüfung 88 % abgeschlossen.
Überprüfung 88 % abgeschlossen.
Überprüfung 89 % abgeschlossen.
Überprüfung 89 % abgeschlossen.
Überprüfung 90 % abgeschlossen.
Überprüfung 90 % abgeschlossen.
Überprüfung 91 % abgeschlossen.
Überprüfung 91 % abgeschlossen.
Überprüfung 91 % abgeschlossen.
Überprüfung 92 % abgeschlossen.
Überprüfung 92 % abgeschlossen.
Überprüfung 93 % abgeschlossen.
Überprüfung 93 % abgeschlossen.
Überprüfung 94 % abgeschlossen.
Überprüfung 94 % abgeschlossen.
Überprüfung 95 % abgeschlossen.
Überprüfung 95 % abgeschlossen.
Überprüfung 95 % abgeschlossen.
Überprüfung 96 % abgeschlossen.
Überprüfung 96 % abgeschlossen.
Überprüfung 97 % abgeschlossen.
Überprüfung 97 % abgeschlossen.
Überprüfung 98 % abgeschlossen.
Überprüfung 98 % abgeschlossen.
Überprüfung 98 % abgeschlossen.
Überprüfung 99 % abgeschlossen.
Überprüfung 99 % abgeschlossen.
Überprüfung 100 % abgeschlossen.
Der Windows-Ressourcenschutz hat keine Integritätsverletzungen gefunden.
========= Ende von CMD: =========
"C:\FRST\Quarantine" => erfolgreich entfernt
"C:\FRST" => wurde entsperrt
Das System musste neu gestartet werden.
==== Ende von Fixlog 19:58:08 ====
|
|
| Themen zu Windows 10: audacity.de Installer NOCH in der Ausführung. Soll ich ihn schließen? PC Neustarten? |
| audacity.de installer, browser, defender, desktop, firefox, google, homepage, internet, malware, malwarebytes, microsoft, mozilla, netzwerk, opera, ordner, port, programm, realtek, registry, rundll, scan, schließen, security, software, starten, windows |
Lesestoff:
Linear-Darstellung
