| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Win 10: verschiedenste Abstürze, Firefox, Outlook, Kalender, Avast und weitereWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
28.10.2021, 20:12
| #1 |
| |  Win 10: verschiedenste Abstürze, Firefox, Outlook, Kalender, Avast und weitere Hallo zusammen, Etwa seit gestern hab ich verschiedenste Probleme auf meinem Rechner. Ich benutze ihn schon seit vielen Jahre, vor allem zum Spielen, Browsen, Arbeiten, Studieren. Ich bin durch diesen Thread auf euch aufmerksam geworden: https://www.trojaner-board.de/193556-win10-pup-optional-startfenster-anderes.html#post1705784 vorher hatte AdwCleaner ebenfalls PUP bzw. "Startfenster" bei mir gefunden gehabt, siehe Ergebnisse AdwCleaner. Seit gestern habe ich die folgenden Probleme: Firefox stürzt grundsätzlich beim Starten ab, mit entsprechendem Fehlerfenster siehe anschließend. Auch Deinstallation/Neuinstallation und abgesicherter Modus ändern daran nichts. Edge hing auch, also hab ich zunächst versucht über internet explorer Chrome zu installieren aber es gab weitere Problem: Outlook läd nicht mehr, teilweise wird eine OST bemängelt, aber auch neue OST-dateien werden kurz danach angeblich korrupt. Teilweise läd es auch einfach nicht, bzw. hängt sich beim Starten auf. Der Windows Kalender öffnet entweder gar nicht oder geht kurz nach dem Öffnen gleich wieder zu. Avast hat nicht mehr funktioniert, hat nicht geladen oder nicht reagiert. Ich habe versucht als Alternative TotalAV zu installieren... ja ich weiß, habs bereut. Die Windows-Sicherheit öffnet sich nicht mehr. Hab andere Optionen versucht: Windows Rücksetzung auf einen Stand vor 3 Tagen Speicher getestet Festplatte C getestet Virenscan Fehlercode vom Firefox: Code:
ATTFilter AvailablePageFile: 8380321792
AvailablePhysicalMemory: 3520815104
AvailableVirtualMemory: 138531589898240
BuildID: 20210927210923
CPUMicrocodeVersion: 0x27
CrashTime: 1635446113
InstallTime: 1634187300
ModuleSignatureInfo: {"Microsoft Corporation":["msvcp140.dll","VCRUNTIME140.dll","VCRUNTIME140_1.dll"],"Microsoft Windows":["webauthn.dll","wshbth.dll","winrnr.dll","pnrpnsp.dll","NapiNSP.dll","dbgcore.dll","msi.dll","wsock32.dll","dbghelp.dll","winmm.dll","DWrite.dll","textinputframework.dll","version.dll","npmproxy.dll","usp10.dll","dhcpcsvc.dll","dhcpcsvc6.DLL","winnsi.dll","avrt.dll","propsys.dll","netprofm.dll","wtsapi32.dll","nlaapi.dll","WinTypes.dll","CoreUIComponents.dll","CoreMessaging.dll","uxtheme.dll","dwmapi.dll","kernel.appcore.dll","windows.storage.dll","ntmarta.dll","IPHLPAPI.DLL","dnsapi.dll","mswsock.dll","CRYPTBASE.DLL","wldp.dll","msasn1.dll","userenv.dll","profapi.dll","bcryptPrimitives.dll","gdi32full.dll","cfgmgr32.dll","crypt32.dll","ucrtbase.dll","bcrypt.dll","msvcp_win.dll","win32u.dll","KERNELBASE.dll","wintrust.dll","oleaut32.dll","advapi32.dll","combase.dll","SHCore.dll","clbcatq.dll","imm32.dll","ws2_32.dll","psapi.dll","gdi32.dll","rpcrt4.dll","shell32.dll","msctf.dll","nsi.dll","shlwapi.dll","setupapi.dll","user32.dll","kernel32.dll","msvcrt.dll","ole32.dll","sechost.dll","ntdll.dll"],"Mozilla Corporation":["firefox.exe","xul.dll","nss3.dll","mozglue.dll","lgpllibs.dll"]}
ProductID: {ec8030f7-c20a-464f-9b0e-13a3a9e97384}
ProductName: Firefox
ReleaseChannel: release
SafeMode: 0
SecondsSinceLastCrash: 9500
StartupCrash: 1
StartupTime: 1635446113
SystemMemoryUsePercentage: 58
ThreadIdNameMapping: 13228:"IPC I/O Parent",10468:"Timer",10036:"Link Monitor #1",6508:"Socket Thread",10616:"Permission",7928:"BackgroundThreadPool #1",4056:"JS Watchdog",4076:"BGReadURLs",
Throttleable: 1
TotalPageFile: 14350114816
TotalPhysicalMemory: 8444534784
TotalVirtualMemory: 140737488224256
URL:
UptimeTS: 4.25289
Vendor: Mozilla
Version: 93.0
Diese Meldung enthält Informationen über den Status der Anwendung zum Zeitpunkt des Absturzes.
Code:
ATTFilter # -------------------------------
# Malwarebytes AdwCleaner 8.3.0.0
# -------------------------------
# Build: 06-29-2021
# Database: 2021-10-26.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 10-28-2021
# Duration: 00:00:10
# OS: Windows 10 Pro N
# Cleaned: 36
# Awaiting reboot:3
# Failed: 0
***** [ Services ] *****
Deleted SecurityService
Deleted SecurityServiceMonitor
Deleted webshieldfilter
***** [ Folders ] *****
Deleted C:\Program Files (x86)\Startfenster
Deleted C:\ProgramData\SecuritySuite
Deleted C:\Users\Kasimal\AppData\Local\Temp\DMR
Deleted C:\Users\Kasimal\AppData\Roaming\OpenOffice Updater
Deleted C:\Users\Kasimal\Documents\TotalAV
Deleted C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\TotalAV
Needs Reboot C:\Program Files (x86)\TotalAV
Needs Reboot C:\ProgramData\TotalAV
***** [ Files ] *****
Deleted C:\Users\Kasimal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TotalAV.lnk
Deleted C:\Users\Kasimal\AppData\Roaming\Mozilla\Firefox\Profiles\6n331lir.default\invalidprefs.js
Deleted C:\Users\Kasimal\Downloads\TOTALAV_SETUP.EXE
Deleted C:\Users\Public\Desktop\TotalAV.lnk
Needs Reboot C:\Windows\System32\drivers\webshieldfilter.sys
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKCU\Software\DriverToolkit
Deleted HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
Deleted HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdn.castplatform.com
Deleted HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{F9A0C13D-1A5E-45E2-80B7-28E37D4D682A}
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|OpenOffice Updater
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\OpenOffice Updater
Deleted HKCU\Software\OpenOffice Updater
Deleted HKCU\Software\SSProtect
Deleted HKCU\Software\csastats
Deleted HKLM\SOFTWARE\Classes\*\shell\TotalAV
Deleted HKLM\SOFTWARE\Google\Chrome\NativeMessagingHosts\com.totalav.passwordvaultassistant
Deleted HKLM\SOFTWARE\Microsoft\Edge\NativeMessagingHosts\com.totalav.passwordvaultassistant
Deleted HKLM\SOFTWARE\Mozilla\NativeMessagingHosts\com.totalav.passwordvaultassistant
Deleted HKLM\Software\Classes\totalav
Deleted HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{F9A0C13D-1A5E-45E2-80B7-28E37D4D682A}
Deleted HKLM\Software\Websuche
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\Startfenster
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\TotalAV
Deleted HKLM\System\CurrentControlSet\Services\EventLog\Application\SecurityService
Deleted HKLM\System\CurrentControlSet\Services\EventLog\Application\SecurityServiceMonitor
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
***** Reboot Required to Complete *****
***** [ Folders ] *****
Cleaning failed C:\Program Files (x86)\TotalAV
Cleaning failed C:\ProgramData\TotalAV
*************************
***** [ Files ] *****
Cleaned C:\Windows\System32\drivers\webshieldfilter.sys
*************************
AdwCleaner[S00].txt - [4426 octets] - [28/10/2021 07:44:23]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
Code:
ATTFilter # -------------------------------
# Malwarebytes AdwCleaner 8.3.0.0
# -------------------------------
# Build: 06-29-2021
# Database: 2021-10-26.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 10-28-2021
# Duration: 00:00:09
# OS: Windows 10 Pro N
# Scanned: 32005
# Detected: 36
***** [ Services ] *****
PUP.Adware.Heuristic webshieldfilter
PUP.Optional.PCProtect SecurityService
PUP.Optional.TotalAV SecurityServiceMonitor
***** [ Folders ] *****
PUP.Optional.DownloadSponsor C:\Users\Kasimal\AppData\Local\Temp\DMR
PUP.Optional.Fake.OpenOfficeUpdater C:\Users\Kasimal\AppData\Roaming\OpenOffice Updater
PUP.Optional.Legacy C:\Program Files (x86)\TotalAV
PUP.Optional.Legacy C:\ProgramData\TotalAV
PUP.Optional.Legacy C:\Users\Kasimal\Documents\TotalAV
PUP.Optional.Legacy C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\TotalAV
PUP.Optional.PCProtect C:\ProgramData\SecuritySuite
PUP.Optional.StartFenster C:\Program Files (x86)\Startfenster
***** [ Files ] *****
PUP.Optional.Legacy C:\Users\Kasimal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TotalAV.lnk
PUP.Optional.Legacy C:\Users\Kasimal\AppData\Roaming\Mozilla\Firefox\Profiles\6n331lir.default\invalidprefs.js
PUP.Optional.Legacy C:\Users\Public\Desktop\TotalAV.lnk
PUP.Optional.PCProtect C:\Windows\System32\drivers\webshieldfilter.sys
PUP.Optional.TotalAV C:\Users\Kasimal\Downloads\TOTALAV_SETUP.EXE
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
PUP.Optional.Fake.OpenOfficeUpdater HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|OpenOffice Updater
PUP.Optional.Fake.OpenOfficeUpdater HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\OpenOffice Updater
PUP.Optional.Fake.OpenOfficeUpdater HKCU\Software\OpenOffice Updater
PUP.Optional.InstallCore HKCU\Software\csastats
PUP.Optional.Legacy HKCU\Software\DriverToolkit
PUP.Optional.Legacy HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{F9A0C13D-1A5E-45E2-80B7-28E37D4D682A}
PUP.Optional.Legacy HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{F9A0C13D-1A5E-45E2-80B7-28E37D4D682A}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\TotalAV
PUP.Optional.PCProtect HKCU\Software\SSProtect
PUP.Optional.PCProtect HKLM\System\CurrentControlSet\Services\EventLog\Application\SecurityService
PUP.Optional.SlimCleanerPlus HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
PUP.Optional.SlimCleanerPlus HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdn.castplatform.com
PUP.Optional.StartFenster HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\Startfenster
PUP.Optional.TotalAV HKLM\SOFTWARE\Classes\*\shell\TotalAV
PUP.Optional.TotalAV HKLM\SOFTWARE\Google\Chrome\NativeMessagingHosts\com.totalav.passwordvaultassistant
PUP.Optional.TotalAV HKLM\SOFTWARE\Microsoft\Edge\NativeMessagingHosts\com.totalav.passwordvaultassistant
PUP.Optional.TotalAV HKLM\SOFTWARE\Mozilla\NativeMessagingHosts\com.totalav.passwordvaultassistant
PUP.Optional.TotalAV HKLM\Software\Classes\totalav
PUP.Optional.TotalAV HKLM\System\CurrentControlSet\Services\EventLog\Application\SecurityServiceMonitor
PUP.Optional.WebsucheDE HKLM\Software\Websuche
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries found.
***** [ Chromium URLs ] *****
No malicious Chromium URLs found.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries found.
***** [ Firefox URLs ] *****
No malicious Firefox URLs found.
***** [ Hosts File Entries ] *****
No malicious hosts file entries found.
***** [ Preinstalled Software ] *****
No Preinstalled Software found.
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########
Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 20-10-2021
durchgeführt von Kasimal (Administrator) auf YOLGHURMAK (Gigabyte Technology Co., Ltd. Z97P-D3) (28-10-2021 19:16:05)
Gestartet von C:\Users\Kasimal\Downloads
Geladene Profile: Kasimal
Platform: Microsoft Windows 10 Pro N Version 21H1 19043.1288 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: Chrome
Start-Modus: Normal
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Disc Soft Ltd -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTAgent.exe
(ESET, spol. s r.o. -> ESET) C:\Users\Kasimal\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe
(Ghisler Software GmbH -> Ghisler Software GmbH) C:\Program Files (x86)\TC UP\TOTALCMD.EXE
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <12>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\prevhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MpCopyAccelerator.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\NisSrv.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_44dc4eefedc0d082\Display.NvContainer\NVDisplay.Container.exe <2>
(TC UP Team) [Datei ist nicht signiert] C:\Program Files (x86)\TC UP\TC UP.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9235936 2017-08-10] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [339512 2021-09-22] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [710264 2020-06-18] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [TeamsMachineInstaller] => C:\Program Files (x86)\Teams Installer\Teams.exe [122427152 2021-07-14] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [PowerPDF Registry Controller] => C:\Program Files (x86)\Nuance\Power PDF 21\RegistryController.exe [274216 2017-05-16] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
HKLM-x32\...\Run: [PowerPDFInboxMonitor] => C:\Program Files (x86)\Nuance\Power PDF 21\InboxMonitor.exe [255544 2017-05-16] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ACHTUNG
HKU\S-1-5-21-3782075860-127496113-178799132-1001\...\Run: [Steam] => D:\steam\steam.exe [3411232 2020-12-21] (Valve -> Valve Corporation)
HKU\S-1-5-21-3782075860-127496113-178799132-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [5230784 2017-12-15] (Disc Soft Ltd -> Disc Soft Ltd)
HKU\S-1-5-21-3782075860-127496113-178799132-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2020-09-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-3782075860-127496113-178799132-1001\...\Run: [CiscoMeetingDaemon] => C:\Users\Kasimal\AppData\Local\WebEx\CiscoWebExStart.exe [4703056 2021-10-22] (Cisco WebEx LLC -> Cisco Webex LLC)
HKU\S-1-5-21-3782075860-127496113-178799132-1001\...\Run: [EpicGamesLauncher] => D:\Games\epic\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [33434600 2021-10-17] (Epic Games, Inc -> Epic Games, Inc.)
HKU\S-1-5-21-3782075860-127496113-178799132-1001\...\MountPoints2: {031d44d3-3994-11e8-836e-fcaa14c93c98} - "G:\setup.exe"
HKU\S-1-5-21-3782075860-127496113-178799132-1001\...\MountPoints2: {1b856c63-ea92-11e7-835e-fcaa14c93c98} - "F:\setup.exe"
HKU\S-1-5-21-3782075860-127496113-178799132-1001\...\MountPoints2: {51b5d6bc-33a7-11e8-836e-fcaa14c93c98} - "G:\setup.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\95.0.4638.54\Installer\chrmstp.exe [2021-10-27] (Google LLC -> Google LLC)
GroupPolicy: Beschränkung ? <==== ACHTUNG
Policies: C:\ProgramData\NTUSER.pol: Beschränkung <==== ACHTUNG
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Beschränkung <==== ACHTUNG
HKLM\SOFTWARE\Policies\Google: Beschränkung <==== ACHTUNG
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {065D31FD-54C0-4B38-BC22-C2DEF2F36DBA} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files (x86)\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [2989952 2021-10-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {11C0C823-1317-4FAB-A2AA-75012F9542D6} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {132396EC-50DF-47DC-9D12-27803CF36520} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [680888 2021-09-28] (Mozilla Corporation -> Mozilla Foundation)
Task: {164A801E-A08A-4115-9A04-5E0E8ED76276} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.)
Task: {1DBF86F4-D78F-427E-BFAF-F26A31D85C49} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2109.6-0\MpCmdRun.exe [884544 2021-10-27] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {23E80629-006F-450F-84EB-207644C788C0} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21978504 2021-10-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {3052AF1D-6F1B-4736-BC3F-7115E0E9D9C3} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1551280 2021-10-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {3AC6D19D-915C-46DF-838E-94E52D2BFA55} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-19] (Adobe Inc. -> Adobe)
Task: {4240384C-598D-41EC-8DB7-2E6449E01A4C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5729224 2021-10-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {471D6BF5-CB4A-4DBA-A53F-E2871F8F8DF8} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [645488 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5245D683-90E4-408B-937B-D45251F98F76} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2109.6-0\MpCmdRun.exe [884544 2021-10-27] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {5B276608-56C5-4B65-A786-36652858C012} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {61069A10-0F00-41B1-881F-5FEF1E7AB3E5} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_465_Plugin.exe [1504312 2020-12-19] (Adobe Inc. -> Adobe)
Task: {74C630A5-9D53-43AC-BF9A-C5C3BB74BD6B} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8057EB29-C4A6-4B57-B8EE-9A856C361442} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A08BA74B-7CA9-4CF4-A323-9A9C45EB59F5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-10-27] (Google LLC -> Google LLC)
Task: {AB1FAB61-2208-4FFC-9045-C81C599CCEB2} - \Microsoft\Windows\UNP\RunCampaignManager -> Keine Datei <==== ACHTUNG
Task: {B1493B32-AED0-4130-9F2F-ED637BBD7AE7} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
Task: {B31CCFF1-6E6A-46B8-A403-2BD9B2114A48} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {BC392074-EFA7-4E18-88F1-8D20214833E7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-10-27] (Google LLC -> Google LLC)
Task: {BCB03532-AAF4-4542-8B7B-2A151E2FEEAC} - System32\Tasks\Microsoft\VisualStudio\Updates\BackgroundDownload => C:\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\BackgroundDownload.exe [65432 2021-10-14] (Microsoft Corporation -> Microsoft)
Task: {C3F4FD47-3200-4070-813C-92A24BC8E4D0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2109.6-0\MpCmdRun.exe [884544 2021-10-27] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C4F08899-FE4A-4FB8-8D23-9781A60D8416} - System32\Tasks\AutoPico Daily Restart => D:\Programme\KMSpico [Argument = Portable\AutoPico.exe /silent]
Task: {C8BBD34C-20FD-45B4-A54C-A7193791AD7A} - System32\Tasks\{5E9C47D5-C2A3-4B5B-9646-23F9F5362F1A} => D:\Games\Magic Arena\MTGA\MTGALauncher\Updates\MTGAInstaller_1.0.90.exe -> /i "C:\Users\Kasimal\AppData\Local\Temp\AIE6CAD.tmp" AI_SETUPEXEPATH="D:\Games\Magic Arena\MTGA\MTGALauncher\Updates\MTGAInstaller_1.0.90.exe" SETUPEXEDIR="D:\Games\Magic Arena\MTGA\MTGALauncher\Updates\" ADDLOCAL=MainFeature,MicrosoftVisualC ALLUSERS="1" PRIMARYFOLDER="APPDIR" ROOTDRIVE="D:\" TRANSFORMS=":1031" AI_PREREQFILES="C:\Users\Kasimal\AppData\Roaming\Wizards of the Coast\MTGA Launcher\prerequisites\Visual C++ Redistributable for Visual Studio 2015-2019\VC_redist.x64.exe" AI_PREREQDIRS="C:\Users\Kasimal\AppData\Roaming\Wizards of the Coast\MTGA Launcher\prerequisites" AI_MISSING_PREREQS="Visual C++ Redistributable for Visual Studio 2017 x64" AI_SETUPEXEPATH="D:\Games\Magic Arena\MTGA\MTGALauncher\Updates\MTGAInstaller_1.0.90.exe" SETUPEXEDIR="D:\Games\Magic Arena\MTGA\MTGALauncher\Updates\" AI_INSTALL="1" BIPROCESSTIME="2020-07-14T10:45:21.2916875Z" URL2="company.wizards.com/de/legal/arenas-privacy-policy" POLICY="Datenschutzerklärung" TARGETLOCKED="TRUE" TERMS="AGB" URL1="company.wizards.com/de/legal/terms" AI_BOOTSTRAPPERLANG="1031" TARGETDIR="D:\" APPDIR="D:\Games\Magic Arena\MTGA\" AI_SETUPEXEPATH_ORIGINAL="D:\Games\Magic Arena\MTGA\MTGALauncher\Updates\MTGAInstaller_1.0.90.exe"
Task: {CEC30C55-D9B6-45E8-AC0A-A79AA012AF19} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {DA149D1F-491F-4E9A-880F-E43DD8199F55} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3339120 2021-06-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DD251D1E-6482-4282-8FF9-6D1C12E23683} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
Task: {DED17277-33CB-4ACA-8261-D5D73DCFDCFB} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe
Task: {DFAB59B5-B268-41B5-BB2C-1CED78B3D6EA} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E1F74D74-E6E5-4932-8754-EA5A600D6C60} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {E38E173A-6BEF-4E27-B9B3-B64D75A6399A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5729224 2021-10-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {E5A16CC5-6AD7-4BF8-AC94-941EF9D74C41} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21978504 2021-10-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {E87BF86B-C4BE-4739-9F1A-22BA3B6F51A7} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E8A7D211-E5BF-41F9-B6A9-BC372A52499B} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [134504 2021-10-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {FB42B782-3706-4D1D-A34E-D234895E8F46} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2109.6-0\MpCmdRun.exe [884544 2021-10-27] (Microsoft Windows Publisher -> Microsoft Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\{5E9C47D5-C2A3-4B5B-9646-23F9F5362F1A}.job => D:\Games\Magic Arena\MTGA\MTGALauncher\Updates\MTGAInstaller_1.0.90.exeһ/i C:\Users\Kasimal\AppData\Local\Temp\AIE6CAD.tmp AI_SETUPEXEPATH=D:\Games\Magic Arena\MTGA\MTGALauncher\Updates\MTGAInstaller_1.0.90.exe SETUPEXEDIR=D:\Games\Magic Arena\MTGA\MTGALauncher\Updates\ ADDLOCAL=MainFeature,MicrosoftVisualC ALLUSERS=1 PRIMARYFOLDER=APPDIR ROOTDRIVE=D:\ TRANSFORMS=:1031 AI_PREREQFILES=C:\Users\Kasimal\AppData\Roaming\Wizards of the Coast\MTGA Launcher\prerequisites\Visual C++ Redistributable for Visual Studio 2015-2019\VC_redist.x64.exe AI_PREREQDIRS=C:\Users\Kasimal\AppData\Roaming\Wizards of the Coast\MTGA Launcher\prerequisites AI_MISSING_PREREQS=Visual C++ Redistributable for Visual Studio 2017 x64 AI_SETUPEXEPATH=D:\Games\Magic Arena\MTGA\MTGALauncher\Updates\MTGAInstaller_1.0.90.exe SETUPEXEDIR=D:\Games\Magic Arena\MTGA\MTGALauncher\Updates\ AI_INSTALL=1 BIPROCESSTIME=2020-07-14T10:45:21.2916875Z URL2=company.wizards.com/de/legal/arenas-privacy-policy POLICY=Datenschutzerklärung TARGETLOCKED=TRUE TERMS=AGB URL1=company.wizards.com/de/legal/terms AI_BOOTSTRAPPERLANG=1031 TARGETDIR=D:\ APPDIR=D:\Games\Magic Arena\MTGA\ AI_SETUPEXEPATH_ORIGINAL=D:\Games\Magic Arena\MTGA\MTGALauncher\Updates\MTGAInstaller_1.0.90.exe
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{ed24437a-dddf-4261-9f86-84e2e494d8f7}: [DhcpNameServer] 192.168.178.1
Edge:
=======
Edge Extension: (Kein Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [nicht gefunden]
Edge Extension: (Kein Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [nicht gefunden]
Edge Extension: (Kein Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [nicht gefunden]
Edge Extension: (Kein Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [nicht gefunden]
Edge Profile: C:\Users\Kasimal\AppData\Local\Microsoft\Edge\User Data\Default [2021-10-28]
FireFox:
========
FF DefaultProfile: 1okzs5kd.default-1635399282547
FF ProfilePath: C:\Users\Kasimal\AppData\Roaming\Mozilla\Firefox\Profiles\1okzs5kd.default-1635399282547 [2021-10-28]
FF HKLM\...\Firefox\Extensions: [sweb2pdfextension.3@nuance.com] - C:\Program Files (x86)\Nuance\Power PDF 21\bin\SFirefoxExtn
FF Extension: (Nuance PDF Create) - C:\Program Files (x86)\Nuance\Power PDF 21\bin\SFirefoxExtn [2021-10-28] []
FF HKLM-x32\...\Firefox\Extensions: [sweb2pdfextension.3@nuance.com] - C:\Program Files (x86)\Nuance\Power PDF 21\bin\SFirefoxExtn
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_465.dll [2020-12-19] (Adobe Inc. -> )
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-10-18] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_465.dll [2020-12-19] (Adobe Inc. -> )
FF Plugin-x32: @java.com/DTPlugin,version=11.261.2 -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\dtplugin\npDeployJava1.dll [2020-08-26] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.261.2 -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\plugin2\npjp2.dll [2020-08-26] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-10-18] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-10-18] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin HKU\S-1-5-21-3782075860-127496113-178799132-1001: ubisoft.com/uplaypc -> D:\Games\Siedler 7\Die Siedler 7\Data\Base\_Dbg\Bin\Release\orbit\npuplaypc.dll [Keine Datei]
Chrome:
=======
CHR Profile: C:\Users\Kasimal\AppData\Local\Google\Chrome\User Data\Default [2021-10-28]
CHR Session Restore: Default -> ist aktiviert.
CHR Extension: (Präsentationen) - C:\Users\Kasimal\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-10-28]
CHR Extension: (Docs) - C:\Users\Kasimal\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-10-28]
CHR Extension: (Google Drive) - C:\Users\Kasimal\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-10-27]
CHR Extension: (YouTube) - C:\Users\Kasimal\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-10-27]
CHR Extension: (Tabellen) - C:\Users\Kasimal\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-10-28]
CHR Extension: (Google Docs Offline) - C:\Users\Kasimal\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-10-28]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Kasimal\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-10-28]
CHR Extension: (Google Mail) - C:\Users\Kasimal\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-10-27]
==================== Dienste (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-19] (Adobe Inc. -> Adobe)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [99104 2021-08-20] (Apple Inc. -> Apple Inc.)
S3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [314368 2018-07-25] (Brother Industries, Ltd.) [Datei ist nicht signiert]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9251696 2021-10-11] (Microsoft Corporation -> Microsoft Corporation)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [3128000 2017-12-15] (Disc Soft Ltd -> Disc Soft Ltd)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [16029472 2021-10-17] (Epic Games Inc. -> Epic Games, Inc.)
S3 FileSyncHelper; C:\Program Files (x86)\Microsoft OneDrive\21.196.0921.0007\FileSyncHelper.exe [2386816 2021-10-12] (Microsoft Corporation -> Microsoft Corporation)
S3 OneDrive Updater Service; C:\Program Files (x86)\Microsoft OneDrive\21.196.0921.0007\OneDriveUpdaterService.exe [2748288 2021-10-12] (Microsoft Corporation -> Microsoft Corporation)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5414976 2021-10-13] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13086224 2020-07-20] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 VSStandardCollectorService150; C:\Program Files (x86)\Microsoft Visual Studio\Shared\Common\DiagnosticsHub.Collection.Service\StandardCollector.Service.exe [147392 2019-04-30] (Microsoft Corporation -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2109.6-0\NisSrv.exe [2855512 2021-10-27] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2109.6-0\MsMpEng.exe [128392 2021-10-27] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_44dc4eefedc0d082\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_44dc4eefedc0d082\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Treiber (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Datei ist nicht signiert]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Datei ist nicht signiert]
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2016-04-12] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2016-04-12] (Disc Soft Ltd -> Disc Soft Ltd)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [23040 2017-10-13] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2017-11-27] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
R1 VD_FileDisk; C:\Windows\System32\Drivers\VD_FileDisk.sys [30312 2011-01-26] (Ghisler Software GmbH -> CaptainFlint Software)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48520 2021-10-27] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [434424 2021-10-27] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86264 2021-10-27] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat (erstellte) (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2021-10-28 18:43 - 2021-10-28 18:43 - 002554923 _____ C:\Users\Kasimal\Downloads\Nicht bestätigt 756371.crdownload
2021-10-28 18:39 - 2021-10-28 18:55 - 000089130 _____ C:\Users\Kasimal\Downloads\Addition.txt
2021-10-28 18:37 - 2021-10-28 19:16 - 000027069 _____ C:\Users\Kasimal\Downloads\FRST.txt
2021-10-28 18:37 - 2021-10-28 19:16 - 000000000 ____D C:\FRST
2021-10-28 18:31 - 2021-10-28 18:31 - 002310656 _____ (Farbar) C:\Users\Kasimal\Downloads\FRST64.exe
2021-10-28 18:27 - 2021-10-28 18:27 - 000001380 _____ C:\Users\Kasimal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2021-10-28 18:27 - 2021-10-28 18:27 - 000001274 _____ C:\Users\Kasimal\Desktop\ESET Online Scanner.lnk
2021-10-28 18:27 - 2021-10-28 18:27 - 000000000 ____D C:\Users\Kasimal\AppData\Local\ESET
2021-10-28 18:26 - 2021-10-28 18:26 - 013311448 _____ (ESET) C:\Users\Kasimal\Downloads\esetonlinescanner.exe
2021-10-28 17:20 - 2021-10-28 17:20 - 000076590 _____ C:\Users\Kasimal\Downloads\automat.pdf
2021-10-28 10:24 - 2021-10-28 17:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2021-10-28 10:02 - 2021-10-28 17:18 - 000000000 ____D C:\Users\Kasimal\AppData\Local⁌ow
2021-10-28 09:19 - 2021-10-28 09:19 - 000000762 _____ C:\Users\Kasimal\Desktop\HUMANKIND Digital Deluxe Edition.lnk
2021-10-28 09:15 - 2021-10-28 09:15 - 000001106 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk
2021-10-28 08:14 - 2021-10-28 17:18 - 000000000 ____D C:\WINDOWS\system32\lxss
2021-10-28 08:14 - 2021-10-28 08:14 - 000000000 ____D C:\WINDOWS\SysWOW64\NV
2021-10-28 08:14 - 2021-10-28 08:14 - 000000000 ____D C:\WINDOWS\system32\NV
2021-10-28 08:12 - 2021-10-21 02:48 - 000038016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhdap64.dll
2021-10-28 08:04 - 2021-10-21 19:49 - 001874648 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2021-10-28 08:04 - 2021-10-21 19:49 - 001874648 _____ C:\WINDOWS\system32\vulkaninfo.exe
2021-10-28 08:04 - 2021-10-21 19:49 - 001464952 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2021-10-28 08:04 - 2021-10-21 19:49 - 001450232 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2021-10-28 08:04 - 2021-10-21 19:49 - 001450232 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2021-10-28 08:04 - 2021-10-21 19:49 - 001206384 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2021-10-28 08:04 - 2021-10-21 19:49 - 001111256 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2021-10-28 08:04 - 2021-10-21 19:49 - 001111256 _____ C:\WINDOWS\system32\vulkan-1.dll
2021-10-28 08:04 - 2021-10-21 19:49 - 000965336 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2021-10-28 08:04 - 2021-10-21 19:49 - 000965336 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2021-10-28 08:04 - 2021-10-21 19:45 - 001523336 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2021-10-28 08:04 - 2021-10-21 19:45 - 001172608 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2021-10-28 08:04 - 2021-10-21 19:45 - 000800368 _____ C:\WINDOWS\system32\nvofapi64.dll
2021-10-28 08:04 - 2021-10-21 19:45 - 000707728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2021-10-28 08:04 - 2021-10-21 19:45 - 000676480 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2021-10-28 08:04 - 2021-10-21 19:45 - 000656512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2021-10-28 08:04 - 2021-10-21 19:45 - 000635000 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2021-10-28 08:04 - 2021-10-21 19:45 - 000564352 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2021-10-28 08:04 - 2021-10-21 19:44 - 008724080 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2021-10-28 08:04 - 2021-10-21 19:44 - 007843984 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2021-10-28 08:04 - 2021-10-21 19:44 - 004938896 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2021-10-28 08:04 - 2021-10-21 19:44 - 002850416 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2021-10-28 08:04 - 2021-10-21 19:44 - 002114688 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2021-10-28 08:04 - 2021-10-21 19:44 - 001597584 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2021-10-28 08:04 - 2021-10-21 19:44 - 000981112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2021-10-28 08:04 - 2021-10-21 19:44 - 000792208 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2021-10-28 08:04 - 2021-10-21 19:44 - 000452216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2021-10-28 08:04 - 2021-10-21 19:43 - 005727376 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2021-10-28 08:04 - 2021-10-21 19:43 - 000849016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2021-10-28 08:04 - 2021-10-21 19:39 - 006430824 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2021-10-28 08:04 - 2021-10-21 02:48 - 000085748 _____ C:\WINDOWS\system32\nvinfo.pb
2021-10-28 07:55 - 2021-10-28 07:55 - 000118482 _____ C:\Users\Kasimal\Downloads\bookmarks.html
2021-10-28 07:51 - 2021-06-03 15:56 - 000043408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\NvModuleTracker.sys
2021-10-28 07:50 - 2021-10-28 17:18 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-10-28 07:44 - 2021-10-28 07:44 - 000000000 ____D C:\AdwCleaner
2021-10-28 07:43 - 2021-10-28 07:43 - 008553680 _____ (Malwarebytes) C:\Users\Kasimal\Downloads\adwcleaner_8.3.0.exe
2021-10-28 07:34 - 2021-10-28 17:18 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-10-28 07:34 - 2021-10-28 07:50 - 000000965 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-10-28 07:34 - 2021-10-28 07:50 - 000000953 _____ C:\Users\Public\Desktop\Firefox.lnk
2021-10-27 20:37 - 2021-10-28 17:16 - 000000000 ____D C:\Users\Kasimal\Desktop\Alte Firefox-Daten
2021-10-27 20:33 - 2021-10-28 18:38 - 000000000 ____D C:\Program Files (x86)\Google
2021-10-27 20:33 - 2021-10-28 17:16 - 000000000 ____D C:\Users\Kasimal\AppData\Local\Google
2021-10-27 20:33 - 2021-10-28 17:16 - 000000000 ____D C:\Program Files\Google
2021-10-27 20:33 - 2021-10-27 20:33 - 000003632 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-10-27 20:33 - 2021-10-27 20:33 - 000003508 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-10-27 20:33 - 2021-10-27 20:33 - 000002271 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-10-27 20:33 - 2021-10-27 20:33 - 000002230 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-10-27 20:05 - 2021-10-28 17:18 - 000000000 ____D C:\Users\Kasimal\AppData\Local\GUI
2021-10-27 19:42 - 2021-10-27 19:42 - 000333040 _____ (Mozilla) C:\Users\Kasimal\Downloads\Firefox Installer.exe
2021-10-25 13:23 - 2021-10-27 11:38 - 000000000 ____D C:\Users\Kasimal\Documents\OneNote-Notizbücher
2021-10-25 08:57 - 2021-10-25 08:57 - 000000000 ____D C:\Users\Kasimal\Documents\PDF-Favoriten
2021-10-25 08:44 - 2021-10-28 17:16 - 000000000 ____D C:\Users\Kasimal\AppData\Roaming\Nuance
2021-10-25 08:39 - 2021-10-28 17:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nuance Power PDF Advanced
2021-10-25 08:39 - 2021-10-28 17:16 - 000000000 ____D C:\ProgramData\Nuance
2021-10-25 08:39 - 2021-10-28 17:16 - 000000000 ____D C:\Program Files (x86)\Nuance
2021-10-25 08:39 - 2021-10-25 08:39 - 000000000 ____D C:\Users\Kasimal\AppData\Roaming\ZEON
2021-10-25 08:39 - 2021-10-25 08:39 - 000000000 ____D C:\Users\Kasimal\AppData\Local\Nuance
2021-10-25 08:39 - 2021-10-25 08:39 - 000000000 ____D C:\ProgramData\FileOpen
2021-10-21 17:38 - 2021-10-21 17:38 - 000000000 ____D C:\Users\Kasimal\AppData\LocalLow\AnomalyGames
2021-10-21 17:33 - 2021-10-21 17:33 - 000000872 _____ C:\Users\Public\Desktop\The Fermi Paradox.lnk
2021-10-21 17:33 - 2021-10-21 17:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Fermi Paradox [GOG.com]
2021-10-21 09:39 - 2021-10-21 09:39 - 000001796 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blend for Visual Studio 2019.lnk
2021-10-21 09:38 - 2021-10-21 09:38 - 000000000 ____D C:\Users\Kasimal\.dotnet
2021-10-21 09:38 - 2021-10-21 09:38 - 000000000 ____D C:\Program Files (x86)\NuGet
2021-10-21 09:37 - 2021-10-21 09:38 - 000000000 ____D C:\Program Files\dotnet
2021-10-21 09:37 - 2021-10-21 09:37 - 000000000 ____D C:\Program Files (x86)\dotnet
2021-10-20 14:33 - 2021-10-28 17:18 - 000000000 ____D C:\Users\Kasimal\AppData\Roaming\PapDesigner
2021-10-20 14:33 - 2021-10-20 14:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PapDesigner
2021-10-20 14:33 - 2021-10-20 14:33 - 000000000 ____D C:\Program Files (x86)\PapDesigner
2021-10-18 12:52 - 2021-10-18 12:52 - 000000000 ___SD C:\Users\Kasimal\Documents\Meine Shapes
2021-10-18 12:08 - 2021-10-18 12:08 - 000000000 ____D C:\Users\Kasimal\source
2021-10-18 12:07 - 2021-10-18 12:08 - 000000000 ____D C:\Users\Kasimal\Documents\Visual Studio 2019
2021-10-18 12:07 - 2021-10-18 12:07 - 000000000 ____D C:\Users\Kasimal\AppData\Local\ServiceHub
2021-10-18 12:07 - 2021-10-18 12:07 - 000000000 ____D C:\Users\Kasimal\AppData\Local\IdentityNexusIntegration
2021-10-18 09:50 - 2021-10-18 09:50 - 000001041 _____ C:\Users\Kasimal\Desktop\procexp.exe - Verknüpfung.lnk
2021-10-17 21:43 - 2021-10-17 21:43 - 000000858 _____ C:\Users\Kasimal\Desktop\Tyranny Overlord Edition.lnk
2021-10-17 14:10 - 2021-10-17 14:10 - 000000359 _____ C:\Users\Kasimal\Desktop\Rocket League®.url
2021-10-17 13:48 - 2021-10-17 13:48 - 000000000 ____D C:\Program Files\Epic Games
2021-10-17 13:46 - 2021-10-17 13:46 - 000000000 ____D C:\Users\Kasimal\AppData\Local\EOSUserHelper
2021-10-17 13:45 - 2021-10-27 20:44 - 000000000 ____D C:\Users\Kasimal\AppData\Local\Epic Games
2021-10-17 13:45 - 2021-10-17 13:45 - 000000000 ____D C:\Users\Kasimal\AppData\Local\UnrealEngineLauncher
2021-10-17 13:45 - 2021-10-17 13:45 - 000000000 ____D C:\Users\Kasimal\AppData\Local\EpicGamesLauncher
2021-10-17 13:45 - 2021-10-17 13:45 - 000000000 ____D C:\Program Files (x86)\Epic Games
2021-10-17 13:44 - 2021-10-17 13:46 - 000000000 ____D C:\ProgramData\Epic
2021-10-17 13:44 - 2021-10-17 13:44 - 000000971 _____ C:\Users\Public\Desktop\Epic Games Launcher.lnk
2021-10-17 13:44 - 2021-10-17 13:44 - 000000971 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk
2021-10-14 12:01 - 2021-10-28 11:33 - 000000000 ____D C:\Users\Kasimal\AppData\Local\.IdentityService
2021-10-14 11:59 - 2021-10-14 11:59 - 000000000 ____D C:\ProgramData\Windows App Certification Kit
2021-10-14 11:59 - 2021-10-14 11:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits
2021-10-14 11:59 - 2021-10-14 11:59 - 000000000 ____D C:\Program Files\Application Verifier
2021-10-14 11:59 - 2021-10-14 11:59 - 000000000 ____D C:\Program Files (x86)\Application Verifier
2021-10-14 11:56 - 2021-10-14 11:56 - 000000000 ____D C:\WINDOWS\SysWOW64\3082
2021-10-14 11:56 - 2021-10-14 11:56 - 000000000 ____D C:\WINDOWS\SysWOW64\2052
2021-10-14 11:56 - 2021-10-14 11:56 - 000000000 ____D C:\WINDOWS\SysWOW64\1055
2021-10-14 11:56 - 2021-10-14 11:56 - 000000000 ____D C:\WINDOWS\SysWOW64\1049
2021-10-14 11:56 - 2021-10-14 11:56 - 000000000 ____D C:\WINDOWS\SysWOW64\1046
2021-10-14 11:56 - 2021-10-14 11:56 - 000000000 ____D C:\WINDOWS\SysWOW64\1045
2021-10-14 11:56 - 2021-10-14 11:56 - 000000000 ____D C:\WINDOWS\SysWOW64\1042
2021-10-14 11:56 - 2021-10-14 11:56 - 000000000 ____D C:\WINDOWS\SysWOW64\1041
2021-10-14 11:56 - 2021-10-14 11:56 - 000000000 ____D C:\WINDOWS\SysWOW64\1040
2021-10-14 11:56 - 2021-10-14 11:56 - 000000000 ____D C:\WINDOWS\SysWOW64\1036
2021-10-14 11:56 - 2021-10-14 11:56 - 000000000 ____D C:\WINDOWS\SysWOW64\1033
2021-10-14 11:56 - 2021-10-14 11:56 - 000000000 ____D C:\WINDOWS\SysWOW64\1031
2021-10-14 11:56 - 2021-10-14 11:56 - 000000000 ____D C:\WINDOWS\SysWOW64\1029
2021-10-14 11:56 - 2021-10-14 11:56 - 000000000 ____D C:\WINDOWS\SysWOW64\1028
2021-10-14 11:56 - 2021-10-14 11:56 - 000000000 ____D C:\WINDOWS\system32\3082
2021-10-14 11:56 - 2021-10-14 11:56 - 000000000 ____D C:\WINDOWS\system32\2052
2021-10-14 11:56 - 2021-10-14 11:56 - 000000000 ____D C:\WINDOWS\system32\1055
2021-10-14 11:56 - 2021-10-14 11:56 - 000000000 ____D C:\WINDOWS\system32\1049
2021-10-14 11:56 - 2021-10-14 11:56 - 000000000 ____D C:\WINDOWS\system32\1046
2021-10-14 11:56 - 2021-10-14 11:56 - 000000000 ____D C:\WINDOWS\system32\1045
2021-10-14 11:56 - 2021-10-14 11:56 - 000000000 ____D C:\WINDOWS\system32\1042
2021-10-14 11:56 - 2021-10-14 11:56 - 000000000 ____D C:\WINDOWS\system32\1041
2021-10-14 11:56 - 2021-10-14 11:56 - 000000000 ____D C:\WINDOWS\system32\1040
2021-10-14 11:56 - 2021-10-14 11:56 - 000000000 ____D C:\WINDOWS\system32\1036
2021-10-14 11:56 - 2021-10-14 11:56 - 000000000 ____D C:\WINDOWS\system32\1033
2021-10-14 11:56 - 2021-10-14 11:56 - 000000000 ____D C:\WINDOWS\system32\1031
2021-10-14 11:56 - 2021-10-14 11:56 - 000000000 ____D C:\WINDOWS\system32\1029
2021-10-14 11:56 - 2021-10-14 11:56 - 000000000 ____D C:\WINDOWS\system32\1028
2021-10-14 11:56 - 2019-12-06 16:35 - 000374784 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\DXCpl.exe
2021-10-14 11:56 - 2019-12-06 16:34 - 000417792 _____ C:\WINDOWS\system32\d3dconfig.exe
2021-10-14 11:56 - 2019-12-06 16:27 - 000347136 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\SysWOW64\DXCpl.exe
2021-10-14 11:56 - 2019-12-06 16:26 - 000365056 _____ C:\WINDOWS\SysWOW64\d3dconfig.exe
2021-10-14 11:55 - 2021-10-14 11:55 - 000000000 ____D C:\Program Files\Microsoft SQL Server
2021-10-14 11:54 - 2021-10-14 11:55 - 000000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2021-10-14 11:53 - 2021-10-21 09:39 - 000000000 ____D C:\Program Files (x86)\Windows Kits
2021-10-14 11:53 - 2021-10-21 09:39 - 000000000 ____D C:\Program Files (x86)\Microsoft SDKs
2021-10-14 11:53 - 2021-10-14 11:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2019
2021-10-14 11:52 - 2021-10-14 11:52 - 000001795 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2019.lnk
2021-10-14 11:35 - 2021-10-14 11:51 - 000000000 ____D C:\Program Files (x86)\Microsoft Visual Studio
2021-10-14 11:35 - 2021-10-14 11:35 - 000001429 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio Installer.lnk
2021-10-14 11:35 - 2021-10-14 11:35 - 000000000 ____D C:\Users\Kasimal\AppData\Roaming\Visual Studio Setup
2021-10-14 11:35 - 2021-10-14 11:35 - 000000000 ____D C:\ProgramData\Microsoft Visual Studio
2021-10-14 09:25 - 2021-10-14 09:25 - 000000000 ____D C:\Users\Kasimal\AppData\Local\gtk-3.0
2021-10-14 08:53 - 2021-10-14 08:54 - 000000000 ____D C:\WINDOWS\SysWOW64\directx
2021-10-13 23:19 - 2021-10-13 23:19 - 001823296 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-10-13 23:19 - 2021-10-13 23:19 - 001393504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-10-13 23:19 - 2021-10-13 23:19 - 000706536 _____ C:\WINDOWS\system32\TextShaping.dll
2021-10-13 23:19 - 2021-10-13 23:19 - 000611960 _____ C:\WINDOWS\SysWOW64\TextShaping.dll
2021-10-13 23:19 - 2021-10-13 23:19 - 000570368 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2021-10-13 23:19 - 2021-10-13 23:19 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2021-10-13 23:19 - 2021-10-13 23:19 - 000449024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-10-13 23:19 - 2021-10-13 23:19 - 000203264 _____ C:\WINDOWS\system32\uwfcfgmgmt.dll
2021-10-13 23:19 - 2021-10-13 23:19 - 000158208 _____ C:\WINDOWS\system32\uwfcsp.dll
2021-10-13 23:19 - 2021-10-13 23:19 - 000098304 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-10-13 23:19 - 2021-10-13 23:19 - 000040960 _____ C:\WINDOWS\system32\uwfservicingapi.dll
2021-10-13 23:19 - 2021-10-13 23:19 - 000011495 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-10-13 23:19 - 2021-10-13 23:19 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdxm.ocx
2021-10-13 23:19 - 2021-10-13 23:19 - 000005632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdxm.ocx
2021-10-13 23:18 - 2021-10-13 23:18 - 000593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-10-13 23:18 - 2021-10-13 23:18 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2021-10-13 23:14 - 2021-10-13 23:14 - 000000000 ___HD C:\$WinREAgent
2021-10-12 11:22 - 2021-10-12 11:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XAMPP
2021-10-12 11:21 - 2021-10-12 21:43 - 000000000 ____D C:\Users\Kasimal\AppData\Roaming\Notepad++
2021-10-12 11:21 - 2021-10-12 11:21 - 000000837 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++.lnk
2021-10-12 11:21 - 2021-10-12 11:21 - 000000825 _____ C:\Users\Public\Desktop\Notepad++.lnk
2021-10-12 11:21 - 2021-10-12 11:21 - 000000000 ____D C:\Program Files\Notepad++
2021-10-12 11:20 - 2021-10-12 11:22 - 000000000 ____D C:\xampp
2021-10-11 19:39 - 2016-09-01 19:26 - 000000218 _____ C:\Users\Kasimal\AppData\Local\recently-used.xbel
2021-10-11 17:33 - 2021-10-11 17:33 - 000001353 _____ C:\Users\Kasimal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2021-10-11 17:16 - 2021-10-27 19:36 - 000002728 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2021-10-11 17:16 - 2021-10-15 19:19 - 000000000 ____D C:\Program Files (x86)\Microsoft OneDrive
2021-10-11 17:16 - 2021-10-12 08:48 - 000002190 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-10-11 17:16 - 2021-10-11 17:16 - 000000000 ___RD C:\Users\Default\OneDrive
2021-10-11 17:16 - 2021-10-11 17:16 - 000000000 ____D C:\Program Files (x86)\Teams Installer
2021-10-11 17:15 - 2021-10-11 17:15 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2021-10-11 17:14 - 2021-10-28 10:24 - 000002504 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive for Business.lnk
2021-10-11 17:14 - 2021-10-28 10:24 - 000002501 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2021-10-11 17:14 - 2021-10-28 10:24 - 000002497 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2021-10-11 17:14 - 2021-10-28 10:24 - 000002476 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2021-10-11 17:14 - 2021-10-28 10:24 - 000002454 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype for Business.lnk
2021-10-11 17:14 - 2021-10-28 10:24 - 000002451 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2021-10-11 17:14 - 2021-10-28 10:24 - 000002418 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2021-10-11 17:14 - 2021-10-28 10:24 - 000002415 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk
2021-10-11 17:14 - 2021-10-28 10:24 - 000002387 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2021-10-11 17:11 - 2021-10-11 17:11 - 000000000 ____D C:\Program Files\Microsoft Office 15
2021-10-11 10:56 - 2021-10-28 10:20 - 000000000 ____D C:\Users\Kasimal\Documents\Outlook-Dateien
2021-10-08 14:15 - 2021-10-28 17:18 - 000000000 ____D C:\Users\Kasimal\AppData\Local\WhatsApp
2021-10-07 06:46 - 2021-10-09 17:45 - 000000000 ____D C:\Users\Kasimal\AppData\LocalLow\Adobe
2021-10-06 21:26 - 2021-10-06 21:26 - 000000040 ____H C:\305274DF1A00
2021-10-06 21:26 - 2021-10-06 21:26 - 000000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2021-10-06 19:29 - 2021-10-06 19:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2021-10-06 19:28 - 2021-10-06 19:28 - 000000000 ____D C:\Program Files\Logitech
2021-10-06 19:27 - 2021-10-28 17:23 - 000000000 ____D C:\Users\Kasimal\AppData\Local\Deployment
2021-10-06 19:23 - 2021-10-06 19:23 - 000000000 ____D C:\Users\Kasimal\AppData\Local\LogiBolt
2021-10-06 19:23 - 2021-10-06 19:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2021-10-06 19:23 - 2021-10-06 19:23 - 000000000 ____D C:\Program Files\Logi
2021-10-06 12:10 - 2021-10-06 12:10 - 000001922 _____ C:\Users\Kasimal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SumatraPDF.lnk
2021-10-06 12:10 - 2021-10-06 12:10 - 000001892 _____ C:\Users\Kasimal\Desktop\SumatraPDF.lnk
2021-10-06 12:10 - 2021-10-06 12:10 - 000000000 ____D C:\Users\Kasimal\AppData\Local\SumatraPDF
2021-10-04 11:45 - 2021-10-08 14:15 - 000002209 _____ C:\Users\Kasimal\Desktop\WhatsApp.lnk
2021-09-29 20:24 - 2021-09-29 20:24 - 000000790 _____ C:\Users\Public\Desktop\Foundation.lnk
2021-09-29 20:24 - 2021-09-29 20:24 - 000000000 ____D C:\Users\Kasimal\Documents\Polymorph Games
2021-09-29 20:24 - 2021-09-29 20:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foundation [GOG.com]
2021-09-28 20:32 - 2021-09-28 20:32 - 000002121 _____ C:\Users\Public\Desktop\Brother Creative Center.lnk
2021-09-28 20:32 - 2021-09-28 20:32 - 000000000 ____D C:\Users\Kasimal\AppData\Roaming\ControlCenter4
2021-09-28 20:22 - 2021-09-28 20:22 - 000001692 _____ C:\Users\Public\Desktop\Brother Utilities.lnk
2021-09-28 20:22 - 2021-09-28 20:22 - 000000000 ____D C:\ProgramData\PCFaxTx
2021-09-28 20:22 - 2021-09-28 20:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother
2021-09-28 20:22 - 2017-12-26 13:13 - 000318464 _____ ( ) C:\WINDOWS\system32\BrFaxTxAppRunA64.dll
2021-09-28 20:21 - 2021-09-28 20:32 - 000000000 ____D C:\ProgramData\ControlCenter4
2021-09-28 20:21 - 2021-09-28 20:21 - 000013215 _____ C:\WINDOWS\BRRBCOM.INI
2021-09-28 20:21 - 2021-09-28 20:21 - 000000000 ____D C:\Program Files (x86)\ControlCenter4 CSDK
2021-09-28 20:21 - 2021-09-28 20:21 - 000000000 ____D C:\Program Files (x86)\ControlCenter4
2021-09-28 20:21 - 2021-09-28 20:21 - 000000000 ____D C:\Program Files (x86)\Browny02
2021-09-28 15:45 - 2021-09-28 15:45 - 000001776 _____ C:\Users\Public\Desktop\iTunes.lnk
2021-09-28 15:45 - 2021-09-28 15:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2021-09-28 15:45 - 2021-09-28 15:45 - 000000000 ____D C:\Program Files\iTunes
==================== Ein Monat (geänderte) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2021-10-28 19:09 - 2017-05-15 17:10 - 000000000 ____D C:\ProgramData\NVIDIA
2021-10-28 19:09 - 2015-12-31 10:04 - 000000000 ____D C:\Users\Kasimal\AppData\Local\CrashDumps
2021-10-28 18:56 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-10-28 18:30 - 2017-12-30 18:24 - 000000000 ____D C:\Program Files\DAEMON Tools Lite
2021-10-28 18:26 - 2020-08-26 00:20 - 001722792 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-10-28 18:26 - 2019-12-07 16:51 - 000743714 _____ C:\WINDOWS\system32\perfh007.dat
2021-10-28 18:26 - 2019-12-07 16:51 - 000150136 _____ C:\WINDOWS\system32\perfc007.dat
2021-10-28 18:26 - 2019-12-07 11:12 - 000000000 ____D C:\WINDOWS\INF
2021-10-28 18:25 - 2016-01-01 01:37 - 000000000 ____D C:\Users\Kasimal\AppData\Roaming\vlc
2021-10-28 18:19 - 2020-08-26 00:17 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-10-28 18:19 - 2020-08-26 00:09 - 000008192 ___SH C:\DumpStack.log.tmp
2021-10-28 18:19 - 2019-11-07 22:31 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2021-10-28 18:19 - 2017-05-15 17:10 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2021-10-28 18:19 - 2015-12-31 10:06 - 000000000 __SHD C:\Users\Kasimal\IntelGraphicsProfiles
2021-10-28 18:15 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-10-28 17:39 - 2017-10-29 00:47 - 000000000 ____D C:\Users\Kasimal\AppData\Roaming\discord
2021-10-28 17:39 - 2017-09-30 19:48 - 000009443 _____ C:\Users\Kasimal\Desktop\PW.ods
2021-10-28 17:21 - 2017-10-29 00:47 - 000000000 ____D C:\Users\Kasimal\AppData\Local\Discord
2021-10-28 17:19 - 2020-08-26 00:10 - 000000000 ____D C:\Users\Kasimal
2021-10-28 17:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-10-28 17:18 - 2021-01-17 18:18 - 000000000 ____D C:\Users\Kasimal\AppData\Roaming\webex
2021-10-28 17:18 - 2021-01-17 18:18 - 000000000 ____D C:\Users\Kasimal\AppData\Local\WebEx
2021-10-28 17:18 - 2018-07-13 19:18 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2021-10-28 17:18 - 2017-10-30 15:19 - 000000000 ____D C:\Users\Kasimal\AppData\Local\JDownloader 2.0
2021-10-28 17:18 - 2017-05-15 17:10 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2021-10-28 17:18 - 2017-05-15 17:10 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2021-10-28 17:18 - 2017-04-08 16:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2021-10-28 17:18 - 2016-04-12 21:13 - 000000000 ____D C:\ProgramData\DAEMON Tools Lite
2021-10-28 17:18 - 2016-01-01 01:31 - 000000000 ___RD C:\Program Files (x86)\TC UP
2021-10-28 17:17 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-10-28 17:17 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\registration
2021-10-28 17:16 - 2021-01-17 18:18 - 000000000 ____D C:\Users\Kasimal\AppData\LocalLow\WebEx
2021-10-28 17:16 - 2017-05-15 17:10 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2021-10-28 17:16 - 2015-12-31 09:52 - 000000000 ____D C:\Program Files\AVAST Software
2021-10-28 17:16 - 2015-12-31 09:51 - 000000000 ____D C:\ProgramData\AVAST Software
2021-10-28 17:16 - 2015-12-31 05:02 - 000000000 ____D C:\Users\Kasimal\AppData\Local\NVIDIA
2021-10-28 17:09 - 2015-12-31 11:47 - 000000000 ____D C:\Users\Kasimal\AppData\Local\Mozilla
2021-10-28 17:09 - 2015-12-31 09:52 - 000000000 ____D C:\Users\Kasimal\AppData\Roaming\AVAST Software
2021-10-28 11:52 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-10-28 11:52 - 2019-10-18 12:48 - 000000000 ____D C:\Users\Kasimal\AppData\Local\D3DSCache
2021-10-28 09:50 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-10-28 09:44 - 2016-11-18 01:18 - 000000000 ____D C:\Users\Kasimal\AppData\LocalLow\Mozilla
2021-10-28 08:15 - 2018-08-31 18:21 - 000000000 ____D C:\ProgramData\Packages
2021-10-28 08:15 - 2017-10-27 17:06 - 000000000 ____D C:\Users\Kasimal\AppData\Local\Packages
2021-10-28 07:51 - 2020-08-26 00:17 - 000004308 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-28 07:51 - 2020-08-26 00:17 - 000004106 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-28 07:51 - 2020-08-26 00:17 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-28 07:51 - 2020-08-26 00:17 - 000003940 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-28 07:51 - 2020-08-26 00:17 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-28 07:51 - 2020-08-26 00:17 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-28 07:51 - 2020-08-26 00:17 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-28 07:51 - 2020-08-26 00:17 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-28 07:51 - 2020-08-26 00:17 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-28 07:51 - 2020-08-26 00:17 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-28 07:45 - 2015-12-31 05:04 - 000000000 ____D C:\Users\Kasimal\AppData\Local\Comms
2021-10-28 07:34 - 2019-04-23 16:03 - 000000000 ____D C:\ProgramData\Mozilla
2021-10-27 20:46 - 2020-08-26 00:09 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-10-27 20:46 - 2018-07-19 18:45 - 000000000 ____D C:\Users\Kasimal\AppData\Local\AVAST Software
2021-10-27 20:14 - 2020-08-26 00:17 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2021-10-27 20:14 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Windows Defender
2021-10-27 20:14 - 2019-10-08 16:54 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-10-27 20:03 - 2019-12-07 11:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2021-10-27 19:37 - 2020-08-26 15:40 - 000475768 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-10-27 19:37 - 2020-04-04 11:04 - 000002746 ____H C:\WINDOWS\Tasks\{5E9C47D5-C2A3-4B5B-9646-23F9F5362F1A}.job
2021-10-27 19:37 - 2019-11-22 19:08 - 000000000 ___HD C:\avast! sandbox
2021-10-27 19:36 - 2021-02-10 17:52 - 000002444 _____ C:\WINDOWS\system32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe
2021-10-27 19:36 - 2021-02-10 17:52 - 000002392 _____ C:\WINDOWS\system32\Tasks\Microsoft_Hardware_Launch_ipoint_exe
2021-10-27 19:36 - 2021-02-10 17:52 - 000002388 _____ C:\WINDOWS\system32\Tasks\Microsoft_Hardware_Launch_itype_exe
2021-10-27 19:36 - 2020-08-26 00:17 - 000004778 _____ C:\WINDOWS\system32\Tasks\{5E9C47D5-C2A3-4B5B-9646-23F9F5362F1A}
2021-10-27 19:36 - 2020-08-26 00:17 - 000003802 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player NPAPI Notifier
2021-10-27 19:36 - 2020-08-26 00:17 - 000003628 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-10-27 19:36 - 2020-08-26 00:17 - 000003404 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-10-27 19:36 - 2020-08-26 00:17 - 000003332 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player Updater
2021-10-27 19:36 - 2020-08-26 00:17 - 000002558 _____ C:\WINDOWS\system32\Tasks\AutoPico Daily Restart
2021-10-25 08:25 - 2016-12-20 00:03 - 000000000 ____D C:\ProgramData\Adobe
2021-10-22 09:05 - 2016-01-05 13:05 - 000000000 ____D C:\Users\Kasimal\AppData\Roaming\XnView
2021-10-21 19:39 - 2019-11-22 19:22 - 007578560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2021-10-21 02:48 - 2019-11-22 19:23 - 000125568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2021-10-18 22:22 - 2017-12-02 21:11 - 000000000 ____D C:\Program Files\Microsoft Office
2021-10-18 09:50 - 2016-04-17 19:15 - 000000000 ____D C:\temp
2021-10-17 22:10 - 2018-04-03 16:19 - 000000000 ____D C:\Users\Kasimal\AppData\Roaming\WhatsApp
2021-10-17 21:26 - 2019-03-24 17:35 - 000000000 ____D C:\Users\Kasimal\AppData\Local\PlaceholderTileLogoFolder
2021-10-17 13:46 - 2015-12-31 05:03 - 000000000 ____D C:\ProgramData\Package Cache
2021-10-17 13:45 - 2017-03-31 23:45 - 000000000 ____D C:\Users\Kasimal\AppData\Local\UnrealEngine
2021-10-15 19:16 - 2016-10-05 17:10 - 000000000 ____D C:\Users\Kasimal\AppData\Local\ConnectedDevicesPlatform
2021-10-15 11:24 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2021-10-15 11:24 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-10-15 11:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-10-15 11:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-10-15 11:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-10-15 11:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-10-15 11:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-10-15 11:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2021-10-15 11:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-10-15 11:23 - 2019-12-07 16:54 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-10-14 11:55 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2021-10-14 11:53 - 2020-08-26 00:57 - 000000000 ____D C:\Program Files (x86)\MSBuild
2021-10-13 23:14 - 2015-12-31 11:47 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-10-13 23:12 - 2015-12-31 11:47 - 139806512 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-10-12 08:02 - 2015-12-31 10:37 - 000000000 __RHD C:\Users\Public\AccountPictures
2021-10-11 17:09 - 2015-07-10 13:02 - 000000076 _____ C:\WINDOWS\win.ini
2021-10-11 10:35 - 2020-01-10 19:06 - 000000000 ____D C:\Users\Kasimal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MTG Arena Pro
2021-10-11 10:35 - 2019-12-03 04:22 - 000000000 ____D C:\Users\Kasimal\AppData\Local\mtgaprotracker
2021-10-11 10:35 - 2019-11-22 19:08 - 000000000 ____D C:\Users\Kasimal\AppData\Roaming\mtgaprotracker
2021-10-09 19:22 - 2017-12-02 21:11 - 000000000 ____D C:\Users\Kasimal\AppData\Local\Microsoft Help
2021-10-09 17:47 - 2016-01-02 08:02 - 000000000 ____D C:\Users\Kasimal\AppData\Local\Adobe
2021-10-09 17:47 - 2015-12-31 10:37 - 000000000 ____D C:\Users\Kasimal\AppData\Roaming\Adobe
2021-10-08 14:15 - 2018-04-03 16:19 - 000000000 ____D C:\Users\Kasimal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhatsApp
2021-10-08 14:15 - 2016-08-12 16:40 - 000000000 ____D C:\Users\Kasimal\AppData\Local\SquirrelTemp
2021-10-06 21:25 - 2016-12-20 00:03 - 000000000 ____D C:\Program Files (x86)\Adobe
2021-10-06 19:23 - 2018-05-03 19:13 - 000000000 ____D C:\ProgramData\Logishrd
2021-10-06 12:10 - 2017-08-02 06:18 - 000001904 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SumatraPDF.lnk
2021-10-06 11:15 - 2017-10-29 00:47 - 000002237 _____ C:\Users\Kasimal\Desktop\Discord.lnk
2021-10-05 11:51 - 2017-10-29 00:47 - 000000000 ____D C:\Users\Kasimal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2021-10-01 09:45 - 2020-08-22 17:11 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-09-30 13:00 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-09-29 07:52 - 2018-04-07 12:25 - 000000000 ___RD C:\Users\Kasimal\iCloudDrive
2021-09-28 21:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-09-28 21:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-09-28 21:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-09-28 21:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-09-28 21:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2021-09-28 21:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2021-09-28 21:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-09-28 21:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-09-28 21:55 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2021-09-28 21:32 - 2017-09-27 22:22 - 000000000 ___RD C:\Users\Kasimal\AppData\Roaming\Brother
2021-09-28 20:22 - 2017-09-27 22:21 - 000000260 _____ C:\WINDOWS\Brpfx04a.ini
2021-09-28 20:22 - 2017-09-27 22:21 - 000000000 ____D C:\Program Files (x86)\Brother
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========
2019-10-10 19:11 - 2019-10-10 19:11 - 000000073 _____ () C:\Users\Kasimal\AppData\Roaming\InstallerReports.txt
2021-10-06 21:26 - 2021-10-25 08:26 - 000000615 _____ () C:\Users\Kasimal\AppData\Local\oobelibMkey.log
2021-10-11 19:39 - 2016-09-01 19:26 - 000000218 _____ () C:\Users\Kasimal\AppData\Local\recently-used.xbel
2020-08-02 13:11 - 2020-08-02 13:11 - 000007605 _____ () C:\Users\Kasimal\AppData\Local\Resmon.ResmonCfg
==================== FLock ==============================
2017-09-27 22:21 C:\ProgramData\Brother
==================== SigCheck ============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
==================== Ende von FRST.txt ========================
|
| Themen zu Win 10: verschiedenste Abstürze, Firefox, Outlook, Kalender, Avast und weitere |
| .dll, adobe, antivirus, avast, bcrypt.dll, defender, desktop, explorer, failed, firefox, flash player, google, hängt, internet, internet explorer, monitor, mozilla, nvcontainer, nvcontainer.exe, prozesse, realtek, registry, rundll, software, starten, temp, windows, öffnet |
Baum-Darstellung