| |
| |||||||
Log-Analyse und Auswertung: Kaspersky hat pdM:Trojan.Win32.Generic gefunden - auf OpenOffice.de reingefallenWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
31.10.2021, 17:03
| #1 |
| |  Kaspersky hat pdM:Trojan.Win32.Generic gefunden - auf OpenOffice.de reingefallen Guten Abend geehrte Trojaner-Board-Community, eigentlich passiert mir sowas sehr selten, aber diesmal habe ich in Eile ein Office-Programm benötigt und wollte mir schnell OpenOffice herunterladen. Nicht darauf geachtet das OpenOffice.de natürlich einen Schädling dir auf den Rechner installiert. Bei der Installation hat Kapsersky direkt mit der Isolation begonnen und anscheinend ein Rollback veranlasst und mein PC neu gestartet. Die darauf folgende Untersuchung hat auch kein Trojaner gefunden und im abgesicherten Modus konnte ich im AppData auch keine Ordner oder ähnliches von OpenOffice entdecken, kann aber natürlich auch was übersehen haben. Da ich mir immernoch unsicher bin, ob mein Rechner sicher ist, habe ich auf eure Expertise gehofft. Ja ich benutzte leider noch Kaspersky, aber leider habe ich noch eine gültige Lizenz. Nach Ablauf werde ich auf einen eurer empfohlenen wechseln. PS: Ja ich bin nicht stolz über den Driver Booster, wurde mir von einem Kollegen empfohlen und ich wollte das mal testen bei der Neuinstallation. Hier sind die Log-Files Addition Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 30-10-2021
durchgeführt von x (31-10-2021 16:37:37)
Gestartet von C:\Users\x\Downloads
Microsoft Windows 10 Pro Version 20H2 19042.1288 (X64) (2021-08-24 20:47:10)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
Administrator (S-1-5-21-830718415-870757681-3729390045-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-830718415-870757681-3729390045-503 - Limited - Disabled)
Gast (S-1-5-21-830718415-870757681-3729390045-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-830718415-870757681-3729390045-504 - Limited - Disabled)
x (S-1-5-21-830718415-870757681-3729390045-1001 - Administrator - Enabled) => C:\Users\x
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Kaspersky Total Security (Enabled - Up to date) {4F76F112-43EB-40E8-11D8-F7BD1853EA23}
FW: Kaspersky Total Security (Enabled) {774D7037-0984-41B0-3A87-5E88E680AD58}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
Adobe After Effects 2021 (HKLM-x32\...\AEFT_18_4_1) (Version: 18.4.1 - Adobe Inc.)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 5.6.0.788 - Adobe Inc.)
Adobe Illustrator 2021 (HKLM-x32\...\ILST_25_4_1) (Version: 25.4.1 - Adobe Inc.)
Adobe Media Encoder 2021 (HKLM-x32\...\AME_15_4_1) (Version: 15.4.1 - Adobe Inc.)
Adobe Photoshop 2021 (HKLM-x32\...\PHSP_22_5_1) (Version: 22.5.1.441 - Adobe Inc.)
Adobe Premiere Pro 2021 (HKLM-x32\...\PPRO_15_4_1) (Version: 15.4.1 - Adobe Inc.)
Apex Legends (HKLM-x32\...\{D7FBF176-382D-484E-863A-DFD1124A2A1C}) (Version: 1.0.8.0 - Electronic Arts, Inc.)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlefield™ V (HKLM-x32\...\{e26b382f-e945-4f70-9318-121b683f1d61}) (Version: 1.0.64.43202 - Electronic Arts)
Discord (HKU\S-1-5-21-830718415-870757681-3729390045-1001\...\Discord) (Version: 1.0.9002 - Discord Inc.)
Driver Booster 8 (HKLM-x32\...\Driver Booster_is1) (Version: 8.6.0 - IObit)
Elgato Stream Deck (HKLM\...\{27952C8E-3444-4ED0-9A25-9B3F39D9450D}) (Version: 5.0.1.14252 - Elgato Systems GmbH)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 95.0.4638.54 - Google LLC)
Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{F70BCE36-25F2-4475-A918-6209B3D85BF3}) (Version: 15.0.179 - Intel Corporation)
Kaspersky Total Security (HKLM-x32\...\{4FC79BE9-AD63-46C0-9626-E4F6BCE6A976}) (Version: 21.3.10.391 - Kaspersky) Hidden
Kaspersky Total Security (HKLM-x32\...\InstallWIX_{4FC79BE9-AD63-46C0-9626-E4F6BCE6A976}) (Version: 21.3.10.391 - Kaspersky)
Kaspersky VPN (HKLM-x32\...\{FF2A12B8-AEB7-48C0-95C8-E2E3D67DFCB2}) (Version: 21.3.10.391 - Kaspersky) Hidden
Kaspersky VPN (HKLM-x32\...\InstallWIX_{FF2A12B8-AEB7-48C0-95C8-E2E3D67DFCB2}) (Version: 21.3.10.391 - Kaspersky)
League of Legends (HKU\S-1-5-21-830718415-870757681-3729390045-1001\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc)
Maxon Cinema 4D 22 (HKLM\...\Maxon Cinema 4D S22) (Version: S22 - Maxon)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 95.0.1020.40 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-830718415-870757681-3729390045-1001\...\OneDriveSetup.exe) (Version: 21.205.1003.0003 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{29B15818-E79F-4AB0-8938-9410C807AD76}) (Version: 2.84.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29334 (HKLM-x32\...\{a9cfe9c7-e54f-46cd-9c5c-542ff8e3e8c4}) (Version: 14.28.29334.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334 (HKLM-x32\...\{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 - Microsoft Corporation)
NDI 4 Runtime (HKLM\...\{71AFF296-ED43-4166-8301-4649285EE712}_is1) (Version: - NewTek, inc.)
NVIDIA FrameView SDK 1.1.4923.29968894 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29968894 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.23.0.74 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.23.0.74 - NVIDIA Corporation)
NVIDIA Grafiktreiber 471.68 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 471.68 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.38.60 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.60 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 27.0.1 - OBS Project)
obs-ndi version 4.9.0 (HKLM-x32\...\{69FA0C71-8BEB-4E0D-B5D2-53BFF9192EE2}_is1) (Version: 4.9.0 - Stephane Lepin)
Origin (HKLM-x32\...\Origin) (Version: 10.5.106.49298 - Electronic Arts, Inc.)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.181.0.11 - Overwolf Ltd.)
Porofessor.gg (HKU\S-1-5-21-830718415-870757681-3729390045-1001\...\Overwolf_pibhbkkgefgheeglaeemkkfjlhidhcedalapdggh) (Version: 2.7.44 - Overwolf app)
Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9126.1 - Realtek Semiconductor Corp.)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.45.416 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.8.9 - Rockstar Games)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamViewer (HKLM\...\TeamViewer) (Version: 15.22.3 - TeamViewer)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{B652B695-C849-4EF2-B09A-72771C7AD2BA}) (Version: 2.71.0.0 - Microsoft Corporation)
UXP WebView Support (HKLM-x32\...\UXPW_1_1_0) (Version: 1.1.0 - Adobe Inc.)
VBCABLE, The Virtual Audio Cable (HKLM\...\VB:VBCABLE {87459874-1236-4469}) (Version: - VB-Audio Software)
Voicemeeter, The Virtual Mixing Console (HKLM-x32\...\VB:Voicemeeter {17359A74-1236-5467}) (Version: - VB-Audio Software)
Packages:
=========
Adobe Notification Client -> C:\Program Files\WindowsApps\AdobeNotificationClient_2.0.1.8_x86__enpm4xejd91yc [2021-10-20] (Adobe Systems Incorporated)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.10.9220.0_x64__8wekyb3d8bbwe [2021-10-10] (Microsoft Studios) [MS Ad]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.961.0_x64__56jybvy8sckqj [2021-08-26] (NVIDIA Corp.)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.25.245.0_x64__dt26b99r8h8gj [2021-08-25] (Realtek Semiconductor Corp)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0 [2021-10-16] (Spotify AB) [Startup Task]
XING -> C:\Program Files\WindowsApps\XINGAG.XING_4.0.9.0_x86__xpfg3f7e9an52 [2021-08-26] (New Work SE)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-830718415-870757681-3729390045-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-0E5AB590F494} -> [Creative Cloud Files] => C:\Users\x\Creative Cloud Files [2021-10-20 15:47]
CustomCLSID: HKU\S-1-5-21-830718415-870757681-3729390045-1001_Classes\CLSID\{2F81B25E-7507-4844-BFF2-77D2CC24CED4}\localserver32 -> C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Inc. -> Adobe Inc.)
CustomCLSID: HKU\S-1-5-21-830718415-870757681-3729390045-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-09-15] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-09-15] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-09-15] (Adobe Inc. -> )
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-09-15] (Adobe Inc. -> )
ContextMenuHandlers1: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\x64\shellex.dll [2021-08-20] (Kaspersky Lab JSC -> AO Kaspersky Lab)
ContextMenuHandlers2: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\x64\shellex.dll [2021-08-20] (Kaspersky Lab JSC -> AO Kaspersky Lab)
ContextMenuHandlers4: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\x64\shellex.dll [2021-08-20] (Kaspersky Lab JSC -> AO Kaspersky Lab)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_253e24b785ea60ca\nvshext.dll [2021-08-06] (Nvidia Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-09-15] (Adobe Inc. -> )
ContextMenuHandlers6: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\x64\shellex.dll [2021-08-20] (Kaspersky Lab JSC -> AO Kaspersky Lab)
==================== Codecs (Nicht auf der Ausnahmeliste) ====================
==================== Verknüpfungen & WMI ========================
==================== Geladene Module (Nicht auf der Ausnahmeliste) =============
2021-10-21 18:42 - 2021-10-21 18:42 - 104871424 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Battle.net\Battle.net.13147\libcef.dll
2021-10-21 18:42 - 2021-10-21 18:42 - 000112128 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Battle.net\Battle.net.13147\libegl.dll
2021-10-21 18:42 - 2021-10-21 18:42 - 006227456 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Battle.net\Battle.net.13147\libglesv2.dll
2021-08-20 14:28 - 2021-08-20 14:28 - 000967168 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\VB\Voicemeeter\mp3lame\lame_enc.dll
2021-04-14 09:46 - 2021-04-14 09:46 - 000038400 _____ () [Datei ist nicht signiert] C:\Program Files\Elgato\StreamDeck\giflib5.dll
2021-04-14 09:46 - 2021-04-14 09:46 - 000098816 _____ () [Datei ist nicht signiert] C:\Program Files\Elgato\StreamDeck\QtZeroConf.dll
2021-04-14 09:46 - 2021-04-14 09:46 - 000720384 _____ () [Datei ist nicht signiert] C:\Program Files\Elgato\StreamDeck\turbojpeg.dll
2021-08-20 12:05 - 2021-10-31 16:33 - 000233984 _____ () [Datei ist nicht signiert] C:\Program Files\Logitech\Collaboration\Services\Video\ServiceLayer.lib.CXAudioHidWrapper.dll
2021-04-14 09:46 - 2021-04-14 09:46 - 001742848 _____ (SQLite Development Team) [Datei ist nicht signiert] C:\Program Files\Elgato\StreamDeck\sqlite3.dll
2021-10-21 18:42 - 2021-10-21 18:42 - 000810496 _____ (The Chromium Authors) [Datei ist nicht signiert] C:\Program Files (x86)\Battle.net\Battle.net.13147\chrome_elf.dll
2021-08-20 16:33 - 2021-08-20 16:33 - 001282048 _____ (The OpenSSL Project, hxxp//www.openssl.org/) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\LIBEAY32.dll
2021-08-20 16:33 - 2021-08-20 16:33 - 000279040 _____ (The OpenSSL Project, hxxp//www.openssl.org/) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\ssleay32.dll
2021-09-28 10:30 - 2020-04-26 14:10 - 003000832 _____ (The OpenSSL Project, hxxp//www.openssl.org/) [Datei ist nicht signiert] C:\Users\x\AppData\Roaming\Elgato\StreamDeck\Plugins\net.voicemod.windowsdesktop.sdPlugin\libcrypto-1_1-x64.dll
2021-04-14 09:46 - 2021-04-14 09:46 - 002696704 _____ (The OpenSSL Project, hxxps//www.openssl.org/) [Datei ist nicht signiert] C:\Program Files\Elgato\StreamDeck\libcrypto-1_1-x64.dll
2021-04-14 09:46 - 2021-04-14 09:46 - 000642560 _____ (The OpenSSL Project, hxxps//www.openssl.org/) [Datei ist nicht signiert] C:\Program Files\Elgato\StreamDeck\libssl-1_1-x64.dll
2021-08-20 16:33 - 2021-08-20 16:33 - 001611264 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2021-10-20 17:31 - 2021-08-20 16:33 - 005487104 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Core.dll
2021-10-20 17:31 - 2021-08-20 16:33 - 005841920 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Gui.dll
2021-10-20 17:31 - 2021-08-20 16:33 - 001179136 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Network.dll
2021-10-20 17:31 - 2021-08-20 16:33 - 000146432 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5WebSockets.dll
2021-10-20 17:31 - 2021-08-20 16:33 - 005089792 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2021-10-20 17:31 - 2021-08-20 16:33 - 000184832 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Xml.dll
2021-10-21 18:42 - 2021-10-21 18:42 - 000047104 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Battle.net\Battle.net.13147\audio\qtaudio_windows.dll
2021-10-21 18:42 - 2021-10-21 18:42 - 000026112 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Battle.net\Battle.net.13147\imageformats\qgif.dll
2021-10-21 18:42 - 2021-10-21 18:42 - 000027136 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Battle.net\Battle.net.13147\imageformats\qico.dll
2021-10-21 18:42 - 2021-10-21 18:42 - 000243712 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Battle.net\Battle.net.13147\imageformats\qjpeg.dll
2021-10-21 18:42 - 2021-10-21 18:42 - 000223744 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Battle.net\Battle.net.13147\imageformats\qmng.dll
2021-10-21 18:42 - 2021-10-21 18:42 - 000020992 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Battle.net\Battle.net.13147\imageformats\qsvg.dll
2021-10-21 18:42 - 2021-10-21 18:42 - 000332288 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Battle.net\Battle.net.13147\imageformats\qtiff.dll
2021-10-21 18:42 - 2021-10-21 18:42 - 001140224 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Battle.net\Battle.net.13147\platforms\qwindows.dll
2021-10-21 18:42 - 2021-10-21 18:42 - 004943360 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Battle.net\Battle.net.13147\Qt5Core.dll
2021-10-21 18:42 - 2021-10-21 18:42 - 005022208 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Battle.net\Battle.net.13147\Qt5Gui.dll
2021-10-21 18:42 - 2021-10-21 18:42 - 000626176 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Battle.net\Battle.net.13147\Qt5Multimedia.dll
2021-10-21 18:42 - 2021-10-21 18:42 - 000877056 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Battle.net\Battle.net.13147\Qt5Network.dll
2021-10-21 18:42 - 2021-10-21 18:42 - 002908672 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Battle.net\Battle.net.13147\Qt5Qml.dll
2021-10-21 18:42 - 2021-10-21 18:42 - 003078656 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Battle.net\Battle.net.13147\Qt5Quick.dll
2021-10-21 18:42 - 2021-10-21 18:42 - 000259072 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Battle.net\Battle.net.13147\Qt5Svg.dll
2021-10-21 18:42 - 2021-10-21 18:42 - 004718080 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Battle.net\Battle.net.13147\Qt5Widgets.dll
2021-10-21 18:42 - 2021-10-21 18:42 - 000439296 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Battle.net\Battle.net.13147\Qt5WinExtras.dll
2021-10-21 18:42 - 2021-10-21 18:42 - 000159232 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Battle.net\Battle.net.13147\Qt5Xml.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================
==================== Internet Explorer (Nicht auf der Ausnahmeliste) ==========
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp//go.microsoft.com/fwlink/p/?LinkId=255141
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp//go.microsoft.com/fwlink/p/?LinkId=255141
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp//go.microsoft.com/fwlink/p/?LinkId=255141
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp//go.microsoft.com/fwlink/p/?LinkId=255141
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKU\S-1-5-21-830718415-870757681-3729390045-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKU\S-1-5-21-830718415-870757681-3729390045-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp//go.microsoft.com/fwlink/p/?LinkId=255141
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&FORM=IE8SRC
==================== Hosts Inhalt: =========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2019-03-19 05:49 - 2019-03-19 05:49 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Andere Bereiche ===========================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> %INTEL_DEV_REDIST%redist\intel64\compiler;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-830718415-870757681-3729390045-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\x\Downloads\thumb-1920-973877.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
HKLM\...\StartupApproved\Run32: => "Adobe CCXProcess"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{EA4A9170-CE1E-4E6F-9732-1A077046BFD7}] => (Allow) D:\pubg\steamapps\common\ARK Survival Evolved Dedicated Server\ShooterGame\Binaries\Win64\ShooterGameServer.exe (Wildcard Properties LLC -> Epic Games, Inc.)
FirewallRules: [{AE1CAFC8-2E26-462D-83C5-5D6BB7614A34}] => (Allow) D:\pubg\steamapps\common\ARK Survival Evolved Dedicated Server\ShooterGame\Binaries\Win64\ShooterGameServer.exe (Wildcard Properties LLC -> Epic Games, Inc.)
FirewallRules: [{40A6E7B2-2672-4A1C-80BC-CB5747EEA652}] => (Allow) D:\pubg\steamapps\common\Valheim\valheim.exe () [Datei ist nicht signiert]
FirewallRules: [{EA96CC84-32B6-49B7-8A69-057436A7F2AF}] => (Allow) D:\pubg\steamapps\common\Valheim\valheim.exe () [Datei ist nicht signiert]
FirewallRules: [{C4FB232C-D354-4FFA-BFCA-794FB3A04E23}] => (Allow) D:\pubg\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe (Wildcard Properties LLC -> Epic Games, Inc.)
FirewallRules: [{F3689947-40F6-4C9E-A2A6-0F7C3B7035D0}] => (Allow) D:\pubg\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe (Wildcard Properties LLC -> Epic Games, Inc.)
FirewallRules: [{FD59AD18-CB0B-4112-BEBA-B9B0549B50BD}] => (Allow) D:\pubg\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{C9BD33B9-4E43-48A8-B534-EDC7C483BDCE}] => (Allow) D:\pubg\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{05BC2AAC-9889-4C4A-8079-04A1A115BFDD}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{0073619F-EF74-4E91-B8EE-8EE85BE22B5F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{2E04E6E8-B57F-403E-9A5C-357A0FC19ED0}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{34A79DC7-F99F-427F-AA79-327C708321D8}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{11585E5F-91EC-4397-9431-EDA3C0E3763B}] => (Allow) C:\Program Files\Elgato\StreamDeck\StreamDeck.exe (Corsair Memory, Inc. -> Corsair Memory, Inc)
FirewallRules: [{75F62D79-A865-41CE-87AF-551D14243D54}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{03F026CC-EC69-4792-8458-7958E05DC3A0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{16EAC1AE-0B61-41B2-BC17-1F99AF5412A8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{AEF97CD9-6B78-4FEC-AC5D-B663BB891DBD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{09E74CCB-BDCB-4990-BEEF-44A7258B1C38}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{710B2AEA-7FF6-4462-A04F-9A3A3EB64954}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{A1AFE65A-33FB-4648-8DAB-B97DEFACB325}] => (Allow) D:\pubg\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve Corp. -> )
FirewallRules: [{17D916E2-AED6-499D-A2DC-751E22FF7071}] => (Allow) D:\pubg\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve Corp. -> )
FirewallRules: [{42520F68-017E-4D24-A5B6-1232F7BD68BE}] => (Allow) D:\pubg\steamapps\common\Rising Storm 2\Binaries\Win64\RisingStorm2.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{B9935DF9-834F-4F6F-B6B9-372311560D03}] => (Allow) D:\pubg\steamapps\common\Rising Storm 2\Binaries\Win64\RisingStorm2.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{8F1A4C3B-D099-4319-8122-A044CC48BFB3}] => (Allow) D:\pubg\steamapps\common\Dead by Daylight\DeadByDaylight.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{AE47DCF4-727A-45BD-BF88-F58EF5E757B8}] => (Allow) D:\pubg\steamapps\common\Dead by Daylight\DeadByDaylight.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{33C5729B-628E-49C3-BDB0-E061E77B9A0F}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield V\bfvTrial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{D6920507-D79A-42F8-BBAA-A8A0AC695D63}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield V\bfvTrial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{34F8C07B-4478-43F2-A74B-E52C2A836B71}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield V\bfv.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{C761597B-6317-43B5-942E-26F9A51C7B31}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield V\bfv.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{EC80A2A2-4CF4-429B-9D9A-6F6E0A73BA4B}] => (Allow) D:\pubg\steamapps\common\Crysis Remastered\Bin64\CrysisRemastered.exe (Crytek GmbH) [Datei ist nicht signiert]
FirewallRules: [{855DE55F-0719-4FA4-86B5-C09EE26CC1E9}] => (Allow) D:\pubg\steamapps\common\Crysis Remastered\Bin64\CrysisRemastered.exe (Crytek GmbH) [Datei ist nicht signiert]
FirewallRules: [{B7B6BCAA-3A60-42B1-A884-D6D3090FE1A6}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{D3E81666-827F-4DF2-9632-2908DF6FA726}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{32E101E9-EB82-4C67-BD97-79A68121BB00}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{0AFFFE62-AC14-4D04-90D2-B183F5AA4EAB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{BCEC49CF-200E-4AAE-9E38-04C0458D682E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{61B3DD06-B763-41AE-8BC8-DE946663171F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{88632878-684F-4044-BD4E-91C62260B4D2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{C395FE17-C6F6-47C6-9B1E-8EB94BDF811D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{3220A1C9-87BD-4DDD-9B69-2C236D4F8193}] => (Allow) D:\origin\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{C5BA7CE6-FD52-431C-91F9-737B877E6BF3}] => (Allow) D:\origin\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{9EC42E8E-47F8-4067-9779-B81D2D8F520F}] => (Allow) C:\Program Files (x86)\Overwolf\0.180.0.6\OverwolfBrowser.exe => Keine Datei
FirewallRules: [{A6B35A50-6DF3-481C-A4CE-DF23C977F701}] => (Allow) C:\Program Files (x86)\Overwolf\0.180.0.6\OverwolfBrowser.exe => Keine Datei
FirewallRules: [{3F04155F-7DE7-4748-A6CF-48D2DFAF14A7}] => (Block) C:\Program Files (x86)\Overwolf\0.180.0.6\OverwolfBrowser.exe => Keine Datei
FirewallRules: [{71E7CDFF-878A-4FD8-B166-8139349F85DC}] => (Block) C:\Program Files (x86)\Overwolf\0.180.0.6\OverwolfBrowser.exe => Keine Datei
FirewallRules: [{7A3722EC-CF58-4B96-8A25-AF5377F9C478}] => (Allow) C:\Program Files (x86)\Overwolf\0.181.0.11\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{6099507C-C6A4-4E0C-BBD3-12AC279AEF30}] => (Allow) C:\Program Files (x86)\Overwolf\0.181.0.11\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{3CE54B91-6EDA-4B6A-B264-CA094CDCEEBA}] => (Block) C:\Program Files (x86)\Overwolf\0.181.0.11\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{E6DB6E17-06B7-4D79-9881-C5520074CE84}] => (Block) C:\Program Files (x86)\Overwolf\0.181.0.11\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{4FBAFAA6-3EBB-42FE-A07D-7FB926AE920F}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{F4D96A98-CC54-48B2-9C7C-C2132CB63898}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.77.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F32EEF1A-C51B-4AFA-B7B8-CB3FDED45773}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.77.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{5280C238-66DA-4CFC-BFCF-1AEBB9EA023F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.77.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{7B38C3C9-2A34-4542-9699-F69E87F32010}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.77.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{5C71FC90-E5DC-4DB5-B266-B33A5114696F}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{DE7B85A8-3C10-41D3-B81E-04D4F2229FCC}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{1E0C4EDB-A67A-479C-879B-04B3DCB280E1}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{5973BE4F-EFDE-4056-87AF-FAA272C3516C}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{4E85545B-7C5B-48FB-828D-104FE149BAFF}] => (Allow) D:\pubg\steamapps\common\rocketleague\Binaries\Win64\RocketLeague.exe (Psyonix, LLC) [Datei ist nicht signiert]
FirewallRules: [{9325AEC2-F645-46CD-9596-6F20FF1ED140}] => (Allow) D:\pubg\steamapps\common\rocketleague\Binaries\Win64\RocketLeague.exe (Psyonix, LLC) [Datei ist nicht signiert]
==================== Wiederherstellungspunkte =========================
20-10-2021 15:45:02 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
20-10-2021 15:45:12 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664
29-10-2021 08:04:55 Geplanter Prüfpunkt
==================== Fehlerhafte Geräte im Gerätemanager ============
==================== Fehlereinträge in der Ereignisanzeige: ========================
Applikationsfehler:
==================
Error: (10/31/2021 03:42:02 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: DESKTOP-C5F8LC1)
Description: Windows kann die erweiterbare Leistungsindikator-DLL "C:\WINDOWS\system32\tquery.dll" nicht laden (Win32-Fehlercode 5).
Error: (10/31/2021 03:42:02 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: DESKTOP-C5F8LC1)
Description: Windows kann die erweiterbare Leistungsindikator-DLL "C:\WINDOWS\system32\wbem\wmiaprpl.dll" nicht laden (Win32-Fehlercode 5).
Error: (10/31/2021 03:42:02 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: DESKTOP-C5F8LC1)
Description: Windows kann die erweiterbare Leistungsindikator-DLL "C:\WINDOWS\system32\NETFXPerf.dll" nicht laden (Win32-Fehlercode 5).
Error: (10/31/2021 03:42:02 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: DESKTOP-C5F8LC1)
Description: Windows kann die erweiterbare Leistungsindikator-DLL "C:\WINDOWS\system32\netfxperf.dll" nicht laden (Win32-Fehlercode 5).
Error: (10/31/2021 03:42:02 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: DESKTOP-C5F8LC1)
Description: Windows kann die erweiterbare Leistungsindikator-DLL "C:\WINDOWS\system32\usbperf.dll" nicht laden (Win32-Fehlercode 5).
Error: (10/31/2021 03:42:02 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: DESKTOP-C5F8LC1)
Description: Windows kann die erweiterbare Leistungsindikator-DLL "C:\WINDOWS\system32\msscntrs.dll" nicht laden (Win32-Fehlercode 5).
Error: (10/31/2021 03:42:02 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: DESKTOP-C5F8LC1)
Description: Windows kann die erweiterbare Leistungsindikator-DLL "C:\WINDOWS\system32\msscntrs.dll" nicht laden (Win32-Fehlercode 5).
Error: (10/31/2021 03:42:02 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: DESKTOP-C5F8LC1)
Description: Windows kann die erweiterbare Leistungsindikator-DLL "C:\Windows\System32\perfts.dll" nicht laden (Win32-Fehlercode 5).
Systemfehler:
=============
Error: (10/31/2021 04:33:12 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-C5F8LC1)
Description: Fehler "1084" in DCOM, als der Dienst "camsvc" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden:
Windows.Internal.CapabilityAccess.CapabilityAccess
Error: (10/31/2021 04:33:11 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-C5F8LC1)
Description: Fehler "1084" in DCOM, als der Dienst "ShellHWDetection" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden:
{DD522ACC-F821-461A-A407-50B198B896DC}
Error: (10/31/2021 04:32:53 PM) (Source: DCOM) (EventID: 10005) (User: NT-AUTORITÄT)
Description: Fehler "1084" in DCOM, als der Dienst "WSearch" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden:
{9E175B68-F52A-11D8-B9A5-505054503030}
Error: (10/31/2021 04:32:41 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-C5F8LC1)
Description: Fehler "1084" in DCOM, als der Dienst "ShellHWDetection" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden:
{DD522ACC-F821-461A-A407-50B198B896DC}
Error: (10/31/2021 04:32:07 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-C5F8LC1)
Description: Fehler "1084" in DCOM, als der Dienst "ShellHWDetection" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden:
{DD522ACC-F821-461A-A407-50B198B896DC}
Error: (10/31/2021 04:31:57 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-C5F8LC1)
Description: Fehler "1084" in DCOM, als der Dienst "ShellHWDetection" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden:
{DD522ACC-F821-461A-A407-50B198B896DC}
Error: (10/31/2021 04:31:30 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-C5F8LC1)
Description: Fehler "1084" in DCOM, als der Dienst "ShellHWDetection" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden:
{DD522ACC-F821-461A-A407-50B198B896DC}
Error: (10/31/2021 04:31:16 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-C5F8LC1)
Description: Fehler "1084" in DCOM, als der Dienst "ShellHWDetection" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden:
{DD522ACC-F821-461A-A407-50B198B896DC}
CodeIntegrity:
===============
Date: 2021-10-31 16:35:58
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.
==================== Speicherinformationen ===========================
BIOS: American Megatrends Inc. F4 06/13/2019
Hauptplatine: Gigabyte Technology Co., Ltd. X570 AORUS MASTER
Prozessor: AMD Ryzen 9 3900X 12-Core Processor
Prozentuale Nutzung des RAM: 21%
Installierter physikalischer RAM: 32717.44 MB
Verfügbarer physikalischer RAM: 25594 MB
Summe virtueller Speicher: 37581.44 MB
Verfügbarer virtueller Speicher: 27815.35 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:465.19 GB) (Free:216.92 GB) NTFS
Drive d: (Volume) (Fixed) (Total:894.25 GB) (Free:56.37 GB) NTFS
\\?\Volume{a7423fbb-0000-0000-0000-100000000000}\ (System-reserviert) (Fixed) (Total:0.57 GB) (Free:0.1 GB) NTFS
==================== MBR & Partitionstabelle ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: A7423FBB)
Partition 1: (Active) - (Size=579 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.2 GB) - (Type=07 NTFS)
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 894.3 GB) (Disk ID: 950F8AD3)
Partition 1: (Not Active) - (Size=894.3 GB) - (Type=07 NTFS)
==================== Ende von Addition.txt =======================
FRST Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 30-10-2021
durchgeführt von x (Administrator) auf DESKTOP-C5F8LC1 (Gigabyte Technology Co., Ltd. X570 AORUS MASTER) (31-10-2021 16:36:57)
Gestartet von C:\Users\x\Downloads
Geladene Profile: x
Plattform: Microsoft Windows 10 Pro Version 20H2 19042.1288 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: Chrome
Start-Modus: Normal
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
() [Datei ist nicht signiert] C:\Users\x\AppData\Roaming\Elgato\StreamDeck\Plugins\tv.twitch.studio.sdPlugin\twitchstudiostreamdeck.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\Program Files (x86)\Battle.net\Battle.net.exe <3>
(Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\ProgramData\Battle.net\Agent\Agent.7531\Agent.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc) C:\Program Files\Elgato\StreamDeck\StreamDeck.exe
(Discord Inc. -> Discord Inc.) C:\Users\x\AppData\Local\Discord\app-1.0.9003\Discord.exe <6>
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <31>
(IObit CO., LTD -> IObit) C:\Program Files (x86)\IObit\Driver Booster\8.6.0\Scheduler.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\avp.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\avpui.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksde.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksdeui.exe
(Logitech Inc -> Logitech) C:\Program Files\Logitech\Collaboration\Services\Video\ServiceLayer.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_253e24b785ea60ca\Display.NvContainer\NVDisplay.Container.exe <2>
(Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.181.0.11\OverwolfHelper.exe
(Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.181.0.11\OverwolfHelper64.exe
(Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Overwolf\0.181.0.11\OverwolfBrowser.exe <4>
(Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Overwolf\Overwolf.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_c51a65fb5ec70f9d\RtkAudUService64.exe <2>
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(The Qt Company Oy -> The Qt Company Ltd.) C:\Program Files\Elgato\StreamDeck\QtWebEngineProcess.exe <4>
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(Vincent Burel -> VB-AUDIO Software) C:\Program Files (x86)\VB\Voicemeeter\voicemeeterpro.exe
(Voicemod Sociedad Limitada -> ) C:\Users\x\AppData\Roaming\Elgato\StreamDeck\Plugins\net.voicemod.windowsdesktop.sdPlugin\voicemodplugin.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [Stream Deck] => C:\Program Files\Elgato\StreamDeck\StreamDeck.exe [10215960 2021-06-11] (Corsair Memory, Inc. -> Corsair Memory, Inc)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_c51a65fb5ec70f9d\RtkAudUService64.exe [1249848 2021-03-03] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [781552 2021-10-20] (Adobe Inc. -> Adobe Inc.)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-08-04] (Adobe Inc. -> )
HKU\S-1-5-21-830718415-870757681-3729390045-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4267928 2021-10-13] (Valve -> Valve Corporation)
HKU\S-1-5-21-830718415-870757681-3729390045-1001\...\Run: [Discord] => C:\Users\x\AppData\Local\Discord\Update.exe [1512104 2021-05-24] (Discord Inc. -> GitHub)
HKU\S-1-5-21-830718415-870757681-3729390045-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1806680 2021-10-07] (Overwolf Ltd -> Overwolf Ltd.)
HKU\S-1-5-21-830718415-870757681-3729390045-1001\...\Run: [Battle.net] => C:\Program Files (x86)\Battle.net\Battle.net.exe [1087376 2021-10-21] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\95.0.4638.54\Installer\chrmstp.exe [2021-10-22] (Google LLC -> Google LLC)
Startup: C:\Users\x\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Voicemeeter (VB-Audio).LNK [2021-08-20]
ShortcutTarget: Voicemeeter (VB-Audio).LNK -> C:\Program Files (x86)\VB\Voicemeeter\voicemeeterpro.exe (Vincent Burel -> VB-AUDIO Software)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {13AFB588-A96C-47A5-9B05-8A77076C8253} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-08-20] (Google LLC -> Google LLC)
Task: {2113C958-AEF3-47C3-8394-1BE951CB6A64} - System32\Tasks\Driver Booster SkipUAC (x) => C:\Program Files (x86)\IObit\Driver Booster\8.6.0\DriverBooster.exe [8332824 2021-07-21] (IObit CO., LTD -> IObit)
Task: {27E35E46-9C1A-4A1D-B4C7-5C8C14CCFB6C} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-08-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2EA2E90B-988A-4F6D-AA45-0C2678711FCF} - System32\Tasks\Microsoft\Windows\WindowsUpdate\RUXIM\RUXIMDisplay => C:\Program Files\ruxim\ruximics.exe [477512 2021-06-30] (Microsoft Windows -> Microsoft Corporation)
Task: {4314D522-0832-44E5-8DC7-37B06DE21366} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-08-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {48FAC59B-9F3C-43B8-8ED3-1B5FBC7ED8F8} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [645488 2021-08-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {560034BE-9F8C-4579-87B3-7CDDF0E8DD58} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-08-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5B888D74-11B5-4DEA-B64D-2731B72C3436} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\IObit\Driver Booster\8.6.0\AutoUpdate.exe [2285592 2021-06-21] (IObit CO., LTD -> IObit)
Task: {7E8397BD-0442-4634-B902-A2B671C5644C} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-08-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {80263A7B-FE54-4714-A638-FB0B5C5138DC} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-08-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8154B018-D77B-400E-8922-256D2E8EF157} - System32\Tasks\Microsoft\Windows\WindowsUpdate\RUXIM\RUXIMSync => C:\Program Files\ruxim\ruximics.exe [477512 2021-06-30] (Microsoft Windows -> Microsoft Corporation)
Task: {8487E77C-2BE3-4ABD-B127-A939B1EA522E} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3339120 2021-08-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {87FA0766-D84A-418E-875B-09B3F66A9A78} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-08-05] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {99C7DA01-E8A5-40C8-9253-705B4267AC29} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2484568 2021-10-07] (Overwolf Ltd -> Overwolf LTD)
Task: {9B70154F-CA5F-4F72-BBE0-14834C20710F} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-08-05] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {B7B5D765-64B8-4834-A298-32264280097E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-08-20] (Google LLC -> Google LLC)
Task: {C44EAA77-15E9-4C30-B1F9-30403C6E335E} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-08-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {EACCFB13-DD5E-41A4-A63F-720294747631} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\8.6.0\Scheduler.exe [156696 2021-06-21] (IObit CO., LTD -> IObit)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{5200c168-d528-41d9-b275-3951a786da24}: [DhcpNameServer] 192.168.2.1
Edge:
=======
Edge Extension: (Kein Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [nicht gefunden]
Edge Extension: (Kein Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [nicht gefunden]
Edge Extension: (Kein Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [nicht gefunden]
Edge Extension: (Kein Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [nicht gefunden]
Edge Profile: C:\Users\x\AppData\Local\Microsoft\Edge\User Data\Default [2021-10-21]
Edge Extension: (Kaspersky Protection) - C:\Users\x\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2021-10-20]
Edge HKU\S-1-5-21-830718415-870757681-3729390045-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm]
FireFox:
========
FF HKLM\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\FFExt\light_plugin_firefox\addon.xpi => nicht gefunden
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\FFExt\light_plugin_firefox\addon.xpi => nicht gefunden
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2021-10-20] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2021-10-20] (Adobe Inc. -> Adobe Systems)
Chrome:
=======
CHR Profile: C:\Users\x\AppData\Local\Google\Chrome\User Data\Default [2021-10-31]
CHR Session Restore: Default -> ist aktiviert.
CHR Extension: (Präsentationen) - C:\Users\x\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-08-20]
CHR Extension: (Kaspersky Protection) - C:\Users\x\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2021-09-15]
CHR Extension: (BetterTTV) - C:\Users\x\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2021-10-16]
CHR Extension: (Docs) - C:\Users\x\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-08-20]
CHR Extension: (Google Drive) - C:\Users\x\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-08-20]
CHR Extension: (YouTube) - C:\Users\x\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-08-20]
CHR Extension: (uBlock Origin) - C:\Users\x\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2021-10-17]
CHR Extension: (Kaspersky Protection 20.0) - C:\Users\x\AppData\Local\Google\Chrome\User Data\Default\Extensions\elhpdacimkjpccooodognopfhbdgnpbk [2021-08-20]
CHR Extension: (FrankerFaceZ) - C:\Users\x\AppData\Local\Google\Chrome\User Data\Default\Extensions\fadndhdgpmmaapbmfcknlfgcflmmmieb [2021-08-20]
CHR Extension: (Tabellen) - C:\Users\x\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-08-20]
CHR Extension: (Google Docs Offline) - C:\Users\x\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-10-15]
CHR Extension: (Tag Assistant Legacy (by Google)) - C:\Users\x\AppData\Local\Google\Chrome\User Data\Default\Extensions\kejbdjndbnbjgmefkgdddjlbokphdefk [2021-09-24]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\x\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-08-20]
CHR Extension: (Google Mail) - C:\Users\x\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-08-20]
CHR Profile: C:\Users\x\AppData\Local\Google\Chrome\User Data\System Profile [2021-08-20]
CHR HKLM\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps//chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
CHR HKLM-x32\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps//chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
==================== Dienste (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [844528 2021-10-20] (Adobe Inc. -> Adobe Inc.)
R2 AVP21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\avp.exe [184768 2021-08-20] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2021-06-30] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 klvssbridge64_21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\x64\vssbridge64.exe [479280 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 KSDE5.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksde.exe [447104 2021-08-20] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 nebula; C:\Program Files\Logitech\Collaboration\Services\Video\ServiceLayer.exe [1840856 2021-08-20] (Logitech Inc -> Logitech)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2557656 2021-10-19] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3476184 2021-10-19] (Electronic Arts, Inc. -> Electronic Arts)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2484568 2021-10-07] (Overwolf Ltd -> Overwolf LTD)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1856816 2021-07-28] (Rockstar Games, Inc. -> Rockstar Games)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5414976 2021-10-15] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [14770472 2021-09-15] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_253e24b785ea60ca\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_253e24b785ea60ca\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Treiber (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Datei ist nicht signiert]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Datei ist nicht signiert]
R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [250032 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159864 2021-06-29] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 klbackupdisk; C:\WINDOWS\system32\DRIVERS\klbackupdisk.sys [110336 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [211704 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [126216 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [41656 2021-02-19] (Microsoft Windows Early Launch Anti-Malware Publisher -> AO Kaspersky Lab)
R1 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [514840 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klgse; C:\WINDOWS\System32\DRIVERS\klgse.sys [674104 2021-09-09] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klhk; C:\WINDOWS\system32\DRIVERS\klhk.sys [1469240 2021-09-09] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klids; C:\ProgramData\Kaspersky Lab\AVP21.3\Bases\klids.sys [273176 2021-08-20] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [1042712 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klim6; C:\WINDOWS\system32\DRIVERS\klim6.sys [98040 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [112392 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [112904 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [85256 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [96008 2021-08-20] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 kltap; C:\WINDOWS\System32\drivers\kltap.sys [55592 2021-02-19] (AnchorFree Inc -> The OpenVPN Project)
R0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [265176 2021-09-16] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
S3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [315032 2021-09-18] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [113952 2021-09-16] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [225648 2021-09-16] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [155912 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [327936 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [300808 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 rzp1endpt; C:\WINDOWS\System32\drivers\rzp1endpt.sys [52240 2021-08-20] (Razer USA Ltd. -> Razer Inc)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 VBAudioVACMME; C:\WINDOWS\System32\drivers\vbaudio_cable64_win7.sys [41192 2021-08-20] (Vincent Burel -> Windows (R) Win 7 DDK provider)
R3 VBAudioVMAUXVAIOMME; C:\WINDOWS\System32\drivers\vbaudio_vmauxvaio64_win10.sys [71920 2021-08-20] (Vincent Burel -> Windows (R) Win 7 DDK provider)
R3 VBAudioVMVAIOMME; C:\WINDOWS\System32\drivers\vbaudio_vmvaio64_win10.sys [71712 2021-08-20] (Vincent Burel -> Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat (erstellte) (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2021-10-31 16:36 - 2021-10-31 16:37 - 000024369 _____ C:\Users\x\Downloads\FRST.txt
2021-10-31 16:36 - 2021-10-31 16:37 - 000000000 ____D C:\FRST
2021-10-31 16:30 - 2021-10-31 16:33 - 000647024 _____ C:\WINDOWS\ntbtlog.txt
2021-10-31 16:30 - 2021-10-31 16:30 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2021-10-31 16:15 - 2021-10-31 16:15 - 002310656 _____ (Farbar) C:\Users\x\Downloads\FRST64.exe
2021-10-31 15:39 - 2021-10-31 15:40 - 000000000 ____D C:\Users\x\AppData\Roaming\OpenOffice Updater
2021-10-31 15:39 - 2021-10-31 15:39 - 000000000 ____D C:\Users\x\Desktop\OpenOffice 4.1.11 (de) Installation Files
2021-10-31 13:51 - 2021-10-31 13:51 - 000025763 _____ C:\Users\x\Downloads\Bescheiddaten_Einkommensteuer_2019_ep3287k20zqx7h6z2y61exuard0npx9x_2351010811322_ELSTER_2021-02-04_16-16-36.pdf
2021-10-23 19:20 - 2021-10-23 19:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\obs-ndi
2021-10-23 19:20 - 2021-10-23 19:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NDI 4 Runtime
2021-10-23 19:20 - 2021-10-23 19:20 - 000000000 ____D C:\Program Files\NewTek
2021-10-23 19:19 - 2021-10-23 19:19 - 002256946 _____ (Stephane Lepin ) C:\Users\x\Downloads\obs-ndi-4.9.0-Windows-Installer.exe
2021-10-22 13:36 - 2021-10-22 13:36 - 000239201 _____ C:\Users\x\Downloads\Lunula_Jewellery_5.ai
2021-10-22 13:34 - 2021-10-22 13:34 - 000222113 _____ C:\Users\x\Downloads\Lunula_Jewellery_5.pdf
2021-10-21 10:25 - 2021-10-21 10:25 - 000062572 _____ C:\Users\x\Downloads\LogoVektor.pdf
2021-10-21 10:23 - 2021-10-21 10:24 - 000061612 _____ C:\Users\x\Downloads\LogoVektor.ai
2021-10-21 10:15 - 2021-10-21 10:15 - 000008813 _____ C:\Users\x\Downloads\imageedit_38_4984211836.ai
2021-10-21 09:52 - 2021-10-21 09:52 - 000112391 _____ C:\Users\x\Desktop\LogoVektor5x4.pdf
2021-10-21 09:42 - 2021-06-29 04:43 - 000159864 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ssudbus2.sys
2021-10-21 09:42 - 2020-11-11 02:54 - 000167280 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ssudmdm.sys
2021-10-21 09:41 - 2021-10-21 09:41 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2021-10-20 18:50 - 2021-10-21 09:51 - 000115827 _____ C:\Users\x\Desktop\LogoVektor5x4.ai
2021-10-20 18:47 - 2021-10-20 18:47 - 000144234 _____ C:\Users\x\Desktop\LogoVektor5x4.psd
2021-10-20 18:46 - 2021-10-20 18:46 - 000169568 _____ C:\Users\x\Desktop\LogoVektor.tif
2021-10-20 18:32 - 2021-10-20 18:32 - 000249325 _____ C:\Users\x\Desktop\LogoVektor.psd
2021-10-20 18:28 - 2021-10-20 18:28 - 000090553 _____ C:\Users\x\Downloads\Oregano.zip
2021-10-20 18:23 - 2021-10-20 18:23 - 000030777 _____ C:\Users\x\Downloads\Bentham.zip
2021-10-20 17:12 - 2021-10-20 17:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maxon
2021-10-20 17:12 - 2021-10-20 17:12 - 000000000 ____D C:\Program Files\Maxon Cinema 4D R22
2021-10-20 17:11 - 2021-10-20 17:11 - 000001250 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe After Effects 2021.lnk
2021-10-20 17:08 - 2021-10-20 17:08 - 000000000 ____D C:\Users\x\AppData\Roaming\com.adobe.dunamis
2021-10-20 17:05 - 2021-10-20 17:05 - 000000000 ____D C:\Users\x\Desktop\Adobe-GenP-2.7
2021-10-20 16:55 - 2021-10-20 16:55 - 000000000 ____D C:\Users\x\AppData\LocalLow\Adobe
2021-10-20 16:27 - 2021-10-20 16:27 - 002896786 _____ C:\Users\x\Downloads\Adobe-GenP-2.7.zip
2021-10-20 16:07 - 2021-10-20 17:11 - 000000000 ____D C:\Users\Public\Documents\Adobe
2021-10-20 16:07 - 2021-10-20 16:07 - 000001130 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Pro 2021.lnk
2021-10-20 16:05 - 2021-10-21 17:45 - 000000000 ____D C:\Users\x\Documents\Adobe
2021-10-20 16:05 - 2021-10-20 16:05 - 000001142 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Media Encoder 2021.lnk
2021-10-20 16:03 - 2021-10-20 16:03 - 000001064 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop 2021.lnk
2021-10-20 15:49 - 2021-10-20 15:49 - 000002493 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Illustrator 2021.lnk
2021-10-20 15:47 - 2021-10-22 13:35 - 000000000 ___RD C:\Users\x\Creative Cloud Files
2021-10-20 15:45 - 2021-10-20 17:11 - 000000000 ____D C:\Program Files\Adobe
2021-10-20 15:45 - 2021-10-20 16:05 - 000000000 ____D C:\Program Files\Common Files\Adobe
2021-10-20 15:45 - 2021-10-20 16:01 - 000000000 ____D C:\ProgramData\Adobe
2021-10-20 15:45 - 2021-10-20 15:47 - 000000000 ____D C:\Program Files (x86)\Adobe
2021-10-20 15:45 - 2021-10-20 15:45 - 000001382 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2021-10-20 15:45 - 2021-10-20 15:45 - 000001352 _____ C:\Users\Public\Desktop\Adobe Creative Cloud.lnk
2021-10-20 15:43 - 2021-10-20 15:43 - 000000000 ____D C:\Users\Public\Documents\AdobeGCInfo
2021-10-20 15:39 - 2021-10-20 16:47 - 000000000 ____D C:\Users\x\AppData\Local\Adobe
2021-10-16 08:36 - 2021-10-16 08:36 - 000000000 ____D C:\Users\x\AppData\Local\cache
2021-10-15 19:45 - 2021-10-15 19:45 - 000000378 _____ C:\Users\x\Downloads\subscriber-list.csv
2021-10-15 17:32 - 2021-10-15 17:32 - 001823296 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-10-15 17:32 - 2021-10-15 17:32 - 001393504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-10-15 17:32 - 2021-10-15 17:32 - 000706536 _____ C:\WINDOWS\system32\TextShaping.dll
2021-10-15 17:32 - 2021-10-15 17:32 - 000611960 _____ C:\WINDOWS\SysWOW64\TextShaping.dll
2021-10-15 17:32 - 2021-10-15 17:32 - 000593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-10-15 17:32 - 2021-10-15 17:32 - 000570368 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2021-10-15 17:32 - 2021-10-15 17:32 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2021-10-15 17:32 - 2021-10-15 17:32 - 000449024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-10-15 17:32 - 2021-10-15 17:32 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2021-10-15 17:32 - 2021-10-15 17:32 - 000203264 _____ C:\WINDOWS\system32\uwfcfgmgmt.dll
2021-10-15 17:32 - 2021-10-15 17:32 - 000158208 _____ C:\WINDOWS\system32\uwfcsp.dll
2021-10-15 17:32 - 2021-10-15 17:32 - 000098304 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-10-15 17:32 - 2021-10-15 17:32 - 000040960 _____ C:\WINDOWS\system32\uwfservicingapi.dll
2021-10-15 17:32 - 2021-10-15 17:32 - 000011495 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-10-15 17:32 - 2021-10-15 17:32 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdxm.ocx
2021-10-15 17:32 - 2021-10-15 17:32 - 000005632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdxm.ocx
2021-10-15 17:28 - 2021-10-15 17:28 - 000000000 ___HD C:\$WinREAgent
2021-10-13 18:30 - 2021-10-13 18:30 - 000000000 ____D C:\Users\x\AppData\Roaming\.mono
2021-10-13 18:30 - 2021-10-13 18:30 - 000000000 ____D C:\Users\x\AppData\LocalLow\BetaDwarf ApS
2021-10-13 18:30 - 2021-10-13 18:30 - 000000000 ____D C:\ProgramData\.mono
2021-10-11 15:29 - 2021-10-11 15:29 - 000387415 _____ C:\Users\x\Downloads\facebook-for-woocommerce.zip
2021-10-06 19:09 - 2021-10-06 19:09 - 000001491 _____ C:\Users\x\Desktop\Riot Client.lnk
2021-10-02 10:01 - 2021-10-02 10:02 - 000000000 ____D C:\Users\x\Documents\Battlefield V
2021-10-02 10:01 - 2021-10-02 10:01 - 000000000 ____D C:\Users\x\AppData\Local\Battlefield V
==================== Ein Monat (geänderte) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2021-10-31 16:36 - 2021-08-20 16:42 - 000000000 ____D C:\Users\x\AppData\Roaming\discord
2021-10-31 16:35 - 2021-08-20 12:19 - 000000000 ____D C:\Program Files (x86)\Google
2021-10-31 16:35 - 2021-08-20 12:09 - 000000000 ____D C:\ProgramData\NVIDIA
2021-10-31 16:35 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-10-31 16:34 - 2021-09-13 19:40 - 000000000 ____D C:\Users\x\AppData\Local\Battle.net
2021-10-31 16:34 - 2021-08-21 19:40 - 000002309 _____ C:\Users\x\Desktop\Porofessor.gg.lnk
2021-10-31 16:34 - 2021-08-21 19:39 - 000000000 ____D C:\Users\x\AppData\Local\Overwolf
2021-10-31 16:34 - 2021-08-21 18:45 - 000000000 ____D C:\Users\x\AppData\Local\Discord
2021-10-31 16:34 - 2021-08-20 16:35 - 000000000 ____D C:\Program Files (x86)\Steam
2021-10-31 16:33 - 2021-08-24 21:47 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-10-31 16:33 - 2021-08-24 21:42 - 000008192 ___SH C:\DumpStack.log.tmp
2021-10-31 16:33 - 2021-08-20 16:44 - 000000000 ____D C:\Program Files\TeamViewer
2021-10-31 16:33 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-10-31 16:33 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-10-31 16:26 - 2021-08-20 19:19 - 000037960 _____ C:\Users\x\AppData\Roaming\VoiceMeeterBananaDefault.xml
2021-10-31 15:49 - 2021-08-25 10:11 - 001722788 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-10-31 15:49 - 2019-12-07 15:51 - 000743670 _____ C:\WINDOWS\system32\perfh007.dat
2021-10-31 15:49 - 2019-12-07 15:51 - 000150092 _____ C:\WINDOWS\system32\perfc007.dat
2021-10-31 15:49 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2021-10-31 15:42 - 2021-08-20 16:32 - 000000000 ____D C:\ProgramData\Origin
2021-10-31 14:49 - 2021-08-24 21:42 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-10-31 14:16 - 2021-08-20 14:15 - 000000000 ____D C:\ProgramData\Riot Games
2021-10-31 11:22 - 2021-08-20 16:32 - 000000000 ____D C:\Users\x\AppData\Roaming\Origin
2021-10-31 11:21 - 2021-08-20 16:32 - 000000000 ____D C:\Users\x\AppData\Local\Origin
2021-10-31 10:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-10-31 10:01 - 2021-08-24 21:42 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-10-31 10:01 - 2021-08-24 21:42 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-10-31 10:01 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-10-28 10:19 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-10-27 20:01 - 2021-08-24 21:47 - 000003368 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-830718415-870757681-3729390045-1001
2021-10-27 20:01 - 2021-08-24 21:43 - 000002383 _____ C:\Users\x\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-10-23 19:40 - 2021-08-20 14:24 - 000000000 ____D C:\Users\x\AppData\Roaming\obs-studio
2021-10-23 19:20 - 2021-08-20 14:24 - 000000000 ____D C:\Program Files\obs-studio
2021-10-23 09:56 - 2019-12-07 10:03 - 000008192 _____ C:\WINDOWS\system32\config\ELAM
2021-10-22 14:54 - 2021-08-20 12:20 - 000002239 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-10-22 14:54 - 2021-08-20 12:20 - 000002198 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-10-22 09:09 - 2021-09-13 19:40 - 000000000 ____D C:\Program Files (x86)\Battle.net
2021-10-22 09:09 - 2021-08-21 19:40 - 000000000 ____D C:\Program Files (x86)\Overwolf
2021-10-21 17:46 - 2021-08-20 16:34 - 000000000 ____D C:\Users\x\AppData\Local\D3DSCache
2021-10-21 17:46 - 2021-08-20 11:54 - 000000000 ____D C:\Users\x\AppData\Roaming\Adobe
2021-10-21 10:24 - 2021-08-20 16:42 - 000002207 _____ C:\Users\x\Desktop\Discord.lnk
2021-10-21 10:24 - 2021-08-20 16:37 - 000001109 _____ C:\Users\x\Desktop\Rockstar Games Launcher.lnk
2021-10-20 21:35 - 2021-08-24 21:43 - 000000000 ____D C:\Users\x
2021-10-20 21:01 - 2021-08-21 21:22 - 000000660 _____ C:\Users\Public\Desktop\Apex Legends.lnk
2021-10-20 18:46 - 2021-08-20 11:59 - 000000000 ____D C:\Users\x\AppData\Local\PlaceholderTileLogoFolder
2021-10-20 17:31 - 2021-08-20 16:33 - 000000000 ____D C:\Program Files (x86)\Origin
2021-10-20 15:46 - 2021-08-20 11:59 - 000000000 ____D C:\ProgramData\Packages
2021-10-20 15:46 - 2021-08-20 11:54 - 000000000 ____D C:\Users\x\AppData\Local\Packages
2021-10-20 15:45 - 2021-08-20 11:59 - 000000000 ____D C:\ProgramData\Package Cache
2021-10-15 22:46 - 2021-08-24 21:42 - 000258000 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-10-15 22:45 - 2019-12-07 15:54 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-10-15 22:45 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2021-10-15 22:45 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-10-15 22:45 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-10-15 22:45 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-10-15 22:45 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-10-15 22:45 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-10-15 22:45 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-10-15 22:45 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2021-10-15 22:45 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-10-15 17:34 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-10-15 17:28 - 2021-08-24 17:38 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-10-15 17:27 - 2021-08-24 17:38 - 139806512 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-10-10 09:17 - 2021-08-25 15:29 - 000003700 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-10-10 09:17 - 2021-08-25 15:29 - 000003606 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d799292d025464
2021-10-07 10:34 - 2021-09-19 20:19 - 000000000 ____D C:\Users\x\Documents\My Games
2021-10-06 20:01 - 2021-08-21 18:31 - 000000000 ____D C:\Users\x\Documents\League of Legends
2021-10-06 19:09 - 2021-08-20 14:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riot Games
2021-10-03 11:29 - 2021-08-24 17:39 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-10-02 10:02 - 2021-08-20 12:17 - 000000000 ____D C:\Users\x\AppData\Local\NVIDIA Corporation
2021-10-01 10:51 - 2021-08-31 21:06 - 000000000 ____D C:\Users\x\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2021-10-01 10:49 - 2021-08-24 21:47 - 000003632 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-10-01 10:49 - 2021-08-24 21:47 - 000003508 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========
2021-08-20 19:19 - 2021-10-31 16:26 - 000037960 _____ () C:\Users\x\AppData\Roaming\VoiceMeeterBananaDefault.xml
==================== SigCheck ============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
==================== Ende von FRST.txt ========================
Code:
ATTFilter Untersuchungsergebnis der Verknüpfungen des Benutzers (x64) Version: 30-10-2021
durchgeführt von x (31-10-2021 16:38:10)
Gestartet von C:\Users\x\Downloads
Start-Modus: Normal
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe After Effects 2021.lnk -> C:\Program Files\Adobe\Adobe After Effects 2021\Support Files\AfterFX.exe (Adobe Systems Incorporated)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk -> C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Illustrator 2021.lnk -> C:\Program Files\Adobe\Adobe Illustrator 2021\Support Files\Contents\Windows\Illustrator.exe (Adobe Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Media Encoder 2021.lnk -> C:\Program Files\Adobe\Adobe Media Encoder 2021\Adobe Media Encoder.exe (Adobe)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop 2021.lnk -> C:\Program Files\Adobe\Adobe Photoshop 2021\Photoshop.exe (Adobe)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Pro 2021.lnk -> C:\Program Files\Adobe\Adobe Premiere Pro 2021\Adobe Premiere Pro.exe (Adobe)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Immersive Control Panel.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer.lnk -> C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell ISE (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell ISE.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VB Audio\Voicemeeter\15 Bands Graphic EQ.LNK -> C:\Program Files (x86)\VB\Voicemeeter\VoicemeeterBUSGEQ15.exe (Audio Mechanic & Sound Breeder)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VB Audio\Voicemeeter\8x8 Output Matrix.LNK -> C:\Program Files (x86)\VB\Voicemeeter\VoicemeeterBUSMatrix8.exe (Audio Mechanic & Sound Breeder)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VB Audio\Voicemeeter\Macro Buttons.LNK -> C:\Program Files (x86)\VB\Voicemeeter\VoicemeeterMacroButtons.exe (Audio Mechanic & Sound Breeder)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VB Audio\Voicemeeter\Readme.LNK -> C:\Program Files (x86)\VB\Voicemeeter\readme.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VB Audio\Voicemeeter\VBAN-2-MIDI.LNK -> C:\Program Files (x86)\VB\Voicemeeter\VBAN2MIDI.exe (Audio Mechanic & Sound Breeder)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VB Audio\Voicemeeter\Virtual AUX IO Control Panel.LNK -> C:\Program Files (x86)\VB\Voicemeeter\VBVMAUX_ControlPanel.exe (VB-AUDIO Software)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VB Audio\Voicemeeter\Virtual IO Control Panel.LNK -> C:\Program Files (x86)\VB\Voicemeeter\VBCABLE_ControlPanel.exe (VB-AUDIO Software)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VB Audio\Voicemeeter\Voicemeeter Banana.LNK -> C:\Program Files (x86)\VB\Voicemeeter\voicemeeterpro.exe (VB-AUDIO Software)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VB Audio\Voicemeeter\Voicemeeter.LNK -> C:\Program Files (x86)\VB\Voicemeeter\voicemeeter.exe (VB-AUDIO Software)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam\Steam.lnk -> C:\Program Files (x86)\Steam\steam.exe (Valve Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riot Games\Riot Client.lnk -> C:\Riot Games\Riot Client\RiotClientServices.exe (Riot Games, Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\obs-ndi\Uninstall obs-ndi.lnk -> C:\Program Files\obs-studio\unins000.exe (Stephane Lepin )
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio\OBS Studio (64bit).lnk -> C:\Program Files\obs-studio\bin\64bit\obs64.exe (OBS)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio\Uninstall.lnk -> C:\Program Files\obs-studio\uninstall.exe (obsproject.com)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation\GeForce Experience.lnk -> C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe (NVIDIA Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NDI 4 Runtime\Introduction to NDI.lnk -> C:\Program Files\NewTek\NDI 4 Runtime\v4\Documentation\Introduction to NDI.pdf (Keine Datei)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NDI 4 Runtime\License Agreement.lnk -> C:\Program Files\NewTek\NDI 4 Runtime\v4\NDI License Agreement.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NDI 4 Runtime\NDI Problem Solving.lnk -> C:\Program Files\NewTek\NDI 4 Runtime\v4\Documentation\NDI Problem Solving.pdf (Keine Datei)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NDI 4 Runtime\ndi.tv.lnk -> C:\Program Files\NewTek\NDI 4 Runtime\v4\NDI Information.url (Keine Datei)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maxon\Maxon Cinema 4D\Commandline 22.lnk -> C:\Program Files\Maxon Cinema 4D R22\Commandline.exe (MAXON Computer GmbH)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maxon\Maxon Cinema 4D\Maxon Cinema 4D 22.lnk -> C:\Program Files\Maxon Cinema 4D R22\Cinema 4D.exe (MAXON Computer GmbH)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maxon\Maxon Cinema 4D\Team Render Client 22.lnk -> C:\Program Files\Maxon Cinema 4D R22\Cinema 4D Team Render Client.exe (MAXON Computer GmbH)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maxon\Maxon Cinema 4D\Team Render Server 22.lnk -> C:\Program Files\Maxon Cinema 4D R22\Cinema 4D Team Render Server.exe (MAXON Computer GmbH)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky VPN\Endbenutzer-Lizenzvertrag.lnk -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\Doc\KSDE\de-DE\consumer_gdpr_kaspersky_secure_connection_for_windows_4_0_eula__eula.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky VPN\Kaspersky VPN.lnk -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksdeui.exe (AO Kaspersky Lab)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky VPN\My Kaspersky.lnk -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\kl.url ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Total Security\Kaspersky im Internet besuchen.lnk -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\kl.url ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Total Security\Kaspersky Total Security.lnk -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\avpui.exe (AO Kaspersky Lab)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elgato\Stream Deck\Stream Deck.lnk -> C:\Program Files\Elgato\StreamDeck\StreamDeck.exe (Corsair Memory, Inc)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 8\Driver Booster 8 entfernen.lnk -> C:\Program Files (x86)\IObit\Driver Booster\8.6.0\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 8\Driver Booster 8.lnk -> C:\Program Files (x86)\IObit\Driver Booster\8.6.0\DriverBooster.exe (IObit)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield™ V\Battlefield™ V.lnk -> C:\Program Files (x86)\Origin Games\Battlefield V\bfv.exe (EA Digital Illusions CE AB)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield™ V\Technical Support.lnk -> C:\Program Files (x86)\Origin Games\Battlefield V\Support\EA Help\Technical Support.en_US.rtf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield™ V\User Agreement.lnk -> C:\Program Files (x86)\Origin Games\Battlefield V\Support\User Agreement\en_US.html ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net\Battle.net.lnk -> C:\Program Files (x86)\Battle.net\Battle.net Launcher.exe (Blizzard Entertainment)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apex Legends\Apex Legends.lnk -> D:\origin\Apex\r5apex.exe (Respawn Entertainment)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apex Legends\Electronic Arts User Agreement.lnk -> D:\origin\Apex\Support\User Agreement\en_US.html ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apex Legends\Privacy and Cookie Policy.lnk -> D:\origin\Apex\Support\Privacy and Cookie Policy\en_US.html ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apex Legends\Technical Support.lnk -> D:\origin\Apex\Support\EA Help\Technical Support.en_US.rtf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Component Services.lnk -> C:\Windows\System32\comexp.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\dfrgui.lnk -> C:\Windows\System32\dfrgui.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Disk Cleanup.lnk -> C:\Windows\System32\cleanmgr.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\iSCSI Initiator.lnk -> C:\Windows\System32\iscsicpl.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Memory Diagnostics Tool.lnk -> C:\Windows\System32\MdSched.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\ODBC Data Sources (32-bit).lnk -> C:\Windows\SysWOW64\odbcad32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\ODBC Data Sources (64-bit).lnk -> C:\Windows\System32\odbcad32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Print Management.lnk -> C:\Windows\System32\printmanagement.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\RecoveryDrive.lnk -> C:\Windows\System32\RecoveryDrive.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Registry Editor.lnk -> C:\Windows\regedit.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk -> C:\Windows\System32\services.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\System Configuration.lnk -> C:\Windows\System32\msconfig.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\System Information.lnk -> C:\Windows\System32\msinfo32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows Defender Firewall with Advanced Security.lnk -> C:\Windows\System32\WF.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Math Input Panel.lnk -> C:\Program Files\Common Files\Microsoft Shared\ink\mip.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Paint.lnk -> C:\Windows\System32\mspaint.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Quick Assist.lnk -> C:\Windows\System32\quickassist.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Remote Desktop Connection.lnk -> C:\Windows\System32\mstsc.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Snipping Tool.lnk -> C:\Windows\System32\SnippingTool.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Steps Recorder.lnk -> C:\Windows\System32\psr.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Fax and Scan.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Wordpad.lnk -> C:\Program Files\Windows NT\Accessories\wordpad.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Character Map.lnk -> C:\Windows\System32\charmap.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk -> C:\Users\x\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\computer.lnk -> C:\Windows\explorer.exe,-30
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Control Panel.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\File Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Run.lnk -> C:\Windows\System32\shell32.dll (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\01 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\01a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\02 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\02a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\03 - Computer Management.lnk -> C:\Windows\System32\compmgmt.msc ()
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\04 - Disk Management.lnk -> C:\Windows\System32\diskmgmt.msc ()
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\07 - Event Viewer.lnk -> C:\Windows\System32\eventvwr.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\09 - Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\4 - Control Panel.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation)
Shortcut: C:\Users\Public\Desktop\Adobe Creative Cloud.lnk -> C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Inc.)
Shortcut: C:\Users\Public\Desktop\Apex Legends.lnk -> D:\origin\Apex\r5apex.exe (Respawn Entertainment)
Shortcut: C:\Users\Public\Desktop\Battle.net.lnk -> C:\Program Files (x86)\Battle.net\Battle.net Launcher.exe (Blizzard Entertainment)
Shortcut: C:\Users\Public\Desktop\Battlefield™ V.lnk -> C:\Program Files (x86)\Origin Games\Battlefield V\bfv.exe (EA Digital Illusions CE AB)
Shortcut: C:\Users\Public\Desktop\Driver Booster 8.lnk -> C:\Program Files (x86)\IObit\Driver Booster\8.6.0\DriverBooster.exe (IObit)
Shortcut: C:\Users\Public\Desktop\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC)
Shortcut: C:\Users\Public\Desktop\Kaspersky Total Security.lnk -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\avpui.exe (AO Kaspersky Lab)
Shortcut: C:\Users\Public\Desktop\Kaspersky VPN.lnk -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksdeui.exe (AO Kaspersky Lab)
Shortcut: C:\Users\Public\Desktop\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation)
Shortcut: C:\Users\Public\Desktop\OBS Studio.lnk -> C:\Program Files\obs-studio\bin\64bit\obs64.exe (OBS)
Shortcut: C:\Users\Public\Desktop\Origin.lnk -> C:\Program Files (x86)\Origin\Origin.exe (Electronic Arts)
Shortcut: C:\Users\Public\Desktop\Steam.lnk -> C:\Program Files (x86)\Steam\steam.exe (Valve Corporation)
Shortcut: C:\Users\Public\Desktop\Stream Deck.lnk -> C:\Program Files\Elgato\StreamDeck\StreamDeck.exe (Corsair Memory, Inc)
Shortcut: C:\Users\Public\Desktop\TeamViewer.lnk -> C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH)
Shortcut: C:\Users\x\Links\Desktop.lnk -> C:\Users\x\Desktop ()
Shortcut: C:\Users\x\Links\Downloads.lnk -> C:\Users\x\Downloads ()
Shortcut: C:\Users\x\Desktop\Riot Client.lnk -> C:\Riot Games\Riot Client\RiotClientServices.exe (Riot Games, Inc.)
Shortcut: C:\Users\x\Desktop\Rockstar Games Launcher.lnk -> C:\Program Files\Rockstar Games\Launcher\LauncherPatcher.exe (Rockstar Games)
Shortcut: C:\Users\x\Creative Cloud Files\_Cloud-Dokumente.lnk -> C:\Program Files (x86)\Adobe\Adobe Sync\CoreSync\CoreSync.exe ()
Shortcut: C:\Users\x\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk -> C:\Users\x\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation)
Shortcut: C:\Users\x\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\x\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell ISE (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation)
Shortcut: C:\Users\x\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell ISE.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation)
Shortcut: C:\Users\x\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\x\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VB Audio\Voicemeeter\15 Bands Graphic EQ.LNK -> C:\Program Files (x86)\VB\Voicemeeter\VoicemeeterBUSGEQ15.exe (Audio Mechanic & Sound Breeder)
Shortcut: C:\Users\x\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VB Audio\Voicemeeter\8x8 Output Matrix.LNK -> C:\Program Files (x86)\VB\Voicemeeter\VoicemeeterBUSMatrix8.exe (Audio Mechanic & Sound Breeder)
Shortcut: C:\Users\x\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VB Audio\Voicemeeter\Macro Buttons.LNK -> C:\Program Files (x86)\VB\Voicemeeter\VoicemeeterMacroButtons.exe (Audio Mechanic & Sound Breeder)
Shortcut: C:\Users\x\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VB Audio\Voicemeeter\Readme.LNK -> C:\Program Files (x86)\VB\Voicemeeter\readme.txt ()
Shortcut: C:\Users\x\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VB Audio\Voicemeeter\VBAN-2-MIDI.LNK -> C:\Program Files (x86)\VB\Voicemeeter\VBAN2MIDI.exe (Audio Mechanic & Sound Breeder)
Shortcut: C:\Users\x\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VB Audio\Voicemeeter\Virtual AUX IO Control Panel.LNK -> C:\Program Files (x86)\VB\Voicemeeter\VBVMAUX_ControlPanel.exe (VB-AUDIO Software)
Shortcut: C:\Users\x\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VB Audio\Voicemeeter\Virtual IO Control Panel.LNK -> C:\Program Files (x86)\VB\Voicemeeter\VBCABLE_ControlPanel.exe (VB-AUDIO Software)
Shortcut: C:\Users\x\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VB Audio\Voicemeeter\Voicemeeter Banana.LNK -> C:\Program Files (x86)\VB\Voicemeeter\voicemeeterpro.exe (VB-AUDIO Software)
Shortcut: C:\Users\x\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VB Audio\Voicemeeter\Voicemeeter.LNK -> C:\Program Files (x86)\VB\Voicemeeter\voicemeeter.exe (VB-AUDIO Software)
Shortcut: C:\Users\x\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\x\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\computer.lnk -> C:\Windows\explorer.exe,-30
Shortcut: C:\Users\x\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Control Panel.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\x\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\File Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\x\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Run.lnk -> C:\Windows\System32\shell32.dll (Microsoft Corporation)
Shortcut: C:\Users\x\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\Steam.lnk -> C:\Program Files (x86)\Steam\steam.exe (Valve Corporation)
Shortcut: C:\Users\x\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Voicemeeter (VB-Audio).LNK -> C:\Program Files (x86)\VB\Voicemeeter\voicemeeterpro.exe (VB-AUDIO Software)
Shortcut: C:\Users\x\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rockstar Games\Rockstar Games Launcher.lnk -> C:\Program Files\Rockstar Games\Launcher\LauncherPatcher.exe (Rockstar Games)
Shortcut: C:\Users\x\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\x\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\x\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\x\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\x\AppData\Roaming\Microsoft\Windows\SendTo\Bluetooth-Dateiübertragung.LNK -> C:\Windows\System32\fsquirt.exe (Microsoft Corporation)
Shortcut: C:\Users\x\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC)
Shortcut: C:\Users\x\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation)
Shortcut: C:\Users\x\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\x\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\x\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Driver Booster.lnk -> C:\Program Files (x86)\IObit\Driver Booster\8.6.0\DriverBooster.exe (IObit)
Shortcut: C:\Users\x\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\File Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\x\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC)
Shortcut: C:\Users\x\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\81f60f1222210b45\League of Legends.lnk -> C:\Riot Games\League of Legends\LeagueClient.exe (Riot Games, Inc.)
Shortcut: C:\Users\x\AppData\Local\Microsoft\Windows\WinX\Group3\01 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\x\AppData\Local\Microsoft\Windows\WinX\Group3\01a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\x\AppData\Local\Microsoft\Windows\WinX\Group3\02 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\x\AppData\Local\Microsoft\Windows\WinX\Group3\02a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\x\AppData\Local\Microsoft\Windows\WinX\Group3\03 - Computer Management.lnk -> C:\Windows\System32\compmgmt.msc ()
Shortcut: C:\Users\x\AppData\Local\Microsoft\Windows\WinX\Group3\04 - Disk Management.lnk -> C:\Windows\System32\diskmgmt.msc ()
Shortcut: C:\Users\x\AppData\Local\Microsoft\Windows\WinX\Group3\07 - Event Viewer.lnk -> C:\Windows\System32\eventvwr.exe (Microsoft Corporation)
Shortcut: C:\Users\x\AppData\Local\Microsoft\Windows\WinX\Group3\09 - Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation)
Shortcut: C:\Users\x\AppData\Local\Microsoft\Windows\WinX\Group2\4 - Control Panel.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation)
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools\Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /7
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riot Games\League of Legends.lnk -> C:\Riot Games\Riot Client\RiotClientServices.exe (Riot Games, Inc.) -> --launch-product=league_of_legends --launch-patchline=live
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky VPN\Kaspersky VPN entfernen.lnk -> C:\Windows\SysWOW64\msiexec.exe (Microsoft Corporation) -> /i{FF2A12B8-AEB7-48C0-95C8-E2E3D67DFCB2} REMOVE=ALL
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Total Security\Kaspersky Total Security entfernen.lnk -> C:\Windows\SysWOW64\msiexec.exe (Microsoft Corporation) -> /i{4FC79BE9-AD63-46C0-9626-E4F6BCE6A976} REMOVE=ALL
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elgato\Stream Deck\Deinstallieren.lnk -> C:\Windows\SysWOW64\msiexec.exe (Microsoft Corporation) -> /x {27952C8E-3444-4ED0-9A25-9B3F39D9450D}
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Computer Management.lnk -> C:\Windows\System32\compmgmt.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Event Viewer.lnk -> C:\Windows\System32\eventvwr.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Performance Monitor.lnk -> C:\Windows\System32\perfmon.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Resource Monitor.lnk -> C:\Windows\System32\perfmon.exe (Microsoft Corporation) -> /res
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Security Configuration Management.lnk -> C:\Windows\System32\secpol.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Task Scheduler.lnk -> C:\Windows\System32\taskschd.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Media Player.lnk -> C:\Program Files (x86)\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility\Speech Recognition.lnk -> C:\Windows\Speech\Common\sapisvr.exe (Microsoft Corporation) -> -SpeechUX
ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Administrative Tools.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.AdministrativeTools
ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\SendTo\TeamViewer.lnk -> C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH) -> --sendto
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\04-1 - NetworkStatus.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageNetworkStatus
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\05 - Device Manager.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DeviceManager
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\06 - SystemAbout.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPagePCSystemInfo
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\08 - PowerAndSleep.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageScreenPowerAndSleep
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\10 - AppsAndFeatures.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageAppsSizes
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\1 - Run.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f3-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\2 - Search.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f8-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\3 - Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{52205fd8-5dfb-447d-801a-d0b52f2e83e1}
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\5 - Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /0
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group1\1 - Desktop.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{3080F90D-D7AD-11D9-BD98-0000947B0257}
ShortcutWithArgument: C:\Users\Public\Desktop\League of Legends.lnk -> C:\Riot Games\Riot Client\RiotClientServices.exe (Riot Games, Inc.) -> --launch-product=league_of_legends --launch-patchline=live
ShortcutWithArgument: C:\Users\x\Desktop\Discord.lnk -> C:\Users\x\AppData\Local\Discord\Update.exe (GitHub) -> --processStart Discord.exe
ShortcutWithArgument: C:\Users\x\Desktop\Porofessor.gg.lnk -> C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe (Overwolf Ltd.) -> -launchapp pibhbkkgefgheeglaeemkkfjlhidhcedalapdggh -from-desktop
ShortcutWithArgument: C:\Users\x\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Administrative Tools.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.AdministrativeTools
ShortcutWithArgument: C:\Users\x\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Overwolf\Overwolf.lnk -> C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe (Overwolf Ltd.) -> -from-desktop
ShortcutWithArgument: C:\Users\x\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Overwolf\Porofessor.gg.lnk -> C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe (Overwolf Ltd.) -> -launchapp pibhbkkgefgheeglaeemkkfjlhidhcedalapdggh -from-startmenu
ShortcutWithArgument: C:\Users\x\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc\Discord.lnk -> C:\Users\x\AppData\Local\Discord\Update.exe (GitHub) -> --processStart Discord.exe
ShortcutWithArgument: C:\Users\x\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\x\AppData\Roaming\Microsoft\Windows\SendTo\Faxempfänger.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\x\AppData\Roaming\Microsoft\Windows\SendTo\TeamViewer.lnk -> C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH) -> --sendto
ShortcutWithArgument: C:\Users\x\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\99c99cf9daa9ee83\Porofessor.gg.lnk -> C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe (Overwolf Ltd.) -> -launchapp pibhbkkgefgheeglaeemkkfjlhidhcedalapdggh -from-taskbar
ShortcutWithArgument: C:\Users\x\AppData\Local\Microsoft\Windows\WinX\Group3\04-1 - NetworkStatus.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageNetworkStatus
ShortcutWithArgument: C:\Users\x\AppData\Local\Microsoft\Windows\WinX\Group3\05 - Device Manager.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DeviceManager
ShortcutWithArgument: C:\Users\x\AppData\Local\Microsoft\Windows\WinX\Group3\06 - SystemAbout.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPagePCSystemInfo
ShortcutWithArgument: C:\Users\x\AppData\Local\Microsoft\Windows\WinX\Group3\08 - PowerAndSleep.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageScreenPowerAndSleep
ShortcutWithArgument: C:\Users\x\AppData\Local\Microsoft\Windows\WinX\Group3\10 - AppsAndFeatures.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageAppsSizes
ShortcutWithArgument: C:\Users\x\AppData\Local\Microsoft\Windows\WinX\Group2\1 - Run.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f3-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\x\AppData\Local\Microsoft\Windows\WinX\Group2\2 - Search.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f8-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\x\AppData\Local\Microsoft\Windows\WinX\Group2\3 - Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{52205fd8-5dfb-447d-801a-d0b52f2e83e1}
ShortcutWithArgument: C:\Users\x\AppData\Local\Microsoft\Windows\WinX\Group2\5 - Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /0
ShortcutWithArgument: C:\Users\x\AppData\Local\Microsoft\Windows\WinX\Group1\1 - Desktop.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{3080F90D-D7AD-11D9-BD98-0000947B0257}
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam\Steam Support Center.url -> URL: hxxp//support.steampowered.com/
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\obs-ndi\obs-ndi on the Web.url -> URL: hxxp//github.com/Palakis/obs-ndi
InternetURL: C:\Users\x\Favorites\Bing.url -> URL: hxxp//go.microsoft.com/fwlink/p/?LinkId=255142
InternetURL: C:\Users\x\Desktop\Crysis Remastered.url -> URL: steam://rungameid/1715130
InternetURL: C:\Users\x\Desktop\Rising Storm 2 Vietnam.url -> URL: steam://rungameid/418460
InternetURL: C:\Users\x\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\Crysis Remastered.url -> URL: steam://rungameid/1715130
InternetURL: C:\Users\x\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\Rising Storm 2 Vietnam.url -> URL: steam://rungameid/418460
==================== Ende vom Shortcut.txt =============================
|
| Themen zu Kaspersky hat pdM:Trojan.Win32.Generic gefunden - auf OpenOffice.de reingefallen |
| .dll, computer, defender, explorer, firewall, geforce, iexplore.exe, installation, internet, internet explorer, kaspersky, nvcontainer, nvcontainer.exe, performance, photoshop, problem, prozesse, registry, rojaner gefunden, rundll, scan, schädling, security, services.exe, svchost.exe, temp, windows, wmi |
Baum-Darstellung