| |
| |||||||
Log-Analyse und Auswertung: Win 10 Kaspersky meldet:PDM:Trojan.Win32.Generic und Trojan.Multi.GenAutorunReg.aWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML |
 |
02.11.2021, 20:16
| #1 |
| |  Win 10 Kaspersky meldet:PDM:Trojan.Win32.Generic und Trojan.Multi.GenAutorunReg.a Hallo, ich hab vor einer halben Stunde nach dem ich meinen PC gestartet hab, die Meldung von Kaspersky bekommen dass eine Schädliche Datei PDM:Trojan.Win32.Generic in meinem LGHUB(Maus Software) Ordner gefunden wurde. Daraufhin wurde mir der 1. Text unten angezeigt. Kaspersky hat die Dateien in die Quarantäne, gelöscht und dann einen vollständigen Check ausgeführt. Dort wurde dann Trojan.Multi.GenAutorunReg.a im System memory gefunden und gelöscht.(siehe 2. Text). Bin mir nun unsicher ob mein Rechner Sicher ist. Vielen Dank schon einmal im voraus. Ich poste hier auch noch FRST.txt, Addition.txt, Shortcut.txt,MBAM und ADWCleaner Kaspersky Meldung Code:
ATTFilter Heute, 02.11.2021 18:27:26 Die Aufgabe wurde gestartet. avp.exe C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3 NT-AUTORITÄT\SYSTEM Systembenutzer
Heute, 02.11.2021 18:23:36 Die Aufgabe wurde beendet. avp.exe C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3 DESKTOP-KLUV44P\yaddl Aktiver Benutzer
Heute, 02.11.2021 18:21:05 Das Objekt wurde gelöscht. LGHUB Updater lghub_updater.exe C:\ProgramData\LGHUB\depots\103670\core 1940 DESKTOP-KLUV44P\yaddl Aktiver Benutzer Gelöscht: PDM:Trojan.Win32.Generic Gelöscht PDM:Trojan.Win32.Generic Trojaner Hoch Genau lghub_updater.exe lghub_updater.exe c:\programdata\lghub\depots\103670\core Prozess
Heute, 02.11.2021 18:21:05 Das Objekt wurde gelöscht. LGHUB Updater lghub_updater.exe C:\ProgramData\LGHUB\depots\103670\core 1940 DESKTOP-KLUV44P\yaddl Aktiver Benutzer Gelöscht: PDM:Trojan.Win32.Generic Gelöscht PDM:Trojan.Win32.Generic Trojaner Hoch Genau trueforce_sdk_x86.dll trueforce_sdk_x86.dll c:\program files\lghub Prozess
Heute, 02.11.2021 18:21:05 Das Objekt wurde gelöscht. LGHUB Updater lghub_updater.exe C:\ProgramData\LGHUB\depots\103670\core 1940 DESKTOP-KLUV44P\yaddl Aktiver Benutzer Gelöscht: PDM:Trojan.Win32.Generic Gelöscht PDM:Trojan.Win32.Generic Trojaner Hoch Genau trueforce_sdk_x86.dll trueforce_sdk_x86.dll c:\program files\lghub Prozess
Heute, 02.11.2021 18:21:05 Das Objekt wurde gelöscht. LGHUB Updater lghub_updater.exe C:\ProgramData\LGHUB\depots\103670\core 1940 DESKTOP-KLUV44P\yaddl Aktiver Benutzer Gelöscht: PDM:Trojan.Win32.Generic Gelöscht PDM:Trojan.Win32.Generic Trojaner Hoch Genau trueforce_sdk_x64.dll trueforce_sdk_x64.dll c:\program files\lghub Prozess
Heute, 02.11.2021 18:21:05 Das Objekt wurde gelöscht. LGHUB Updater lghub_updater.exe C:\ProgramData\LGHUB\depots\103670\core 1940 DESKTOP-KLUV44P\yaddl Aktiver Benutzer Gelöscht: PDM:Trojan.Win32.Generic Gelöscht PDM:Trojan.Win32.Generic Trojaner Hoch Genau hidpp_forcefeedback_x86.dll hidpp_forcefeedback_x86.dll c:\program files\lghub Prozess
Heute, 02.11.2021 18:21:05 Das Objekt wurde gelöscht. LGHUB Updater lghub_updater.exe C:\ProgramData\LGHUB\depots\103670\core 1940 DESKTOP-KLUV44P\yaddl Aktiver Benutzer Gelöscht: PDM:Trojan.Win32.Generic Gelöscht PDM:Trojan.Win32.Generic Trojaner Hoch Genau hidpp_forcefeedback_x86.dll hidpp_forcefeedback_x86.dll c:\program files\lghub Prozess
Heute, 02.11.2021 18:21:05 Das Objekt wurde gelöscht. LGHUB Updater lghub_updater.exe C:\ProgramData\LGHUB\depots\103670\core 1940 DESKTOP-KLUV44P\yaddl Aktiver Benutzer Gelöscht: PDM:Trojan.Win32.Generic Gelöscht PDM:Trojan.Win32.Generic Trojaner Hoch Genau hidpp_forcefeedback_x64.dll hidpp_forcefeedback_x64.dll c:\program files\lghub Prozess
Heute, 02.11.2021 18:21:05 Das Objekt wurde gelöscht. LGHUB Updater lghub_updater.exe C:\ProgramData\LGHUB\depots\103670\core 1940 DESKTOP-KLUV44P\yaddl Aktiver Benutzer Gelöscht: PDM:Trojan.Win32.Generic Gelöscht PDM:Trojan.Win32.Generic Trojaner Hoch Genau legacy_forcefeedback_x86.dll legacy_forcefeedback_x86.dll c:\program files\lghub Prozess
Heute, 02.11.2021 18:21:05 Das Objekt wurde gelöscht. LGHUB Updater lghub_updater.exe C:\ProgramData\LGHUB\depots\103670\core 1940 DESKTOP-KLUV44P\yaddl Aktiver Benutzer Gelöscht: PDM:Trojan.Win32.Generic Gelöscht PDM:Trojan.Win32.Generic Trojaner Hoch Genau legacy_forcefeedback_x86.dll legacy_forcefeedback_x86.dll c:\program files\lghub Prozess
Heute, 02.11.2021 18:21:05 Das Objekt wurde gelöscht. LGHUB Updater lghub_updater.exe C:\ProgramData\LGHUB\depots\103670\core 1940 DESKTOP-KLUV44P\yaddl Aktiver Benutzer Gelöscht: PDM:Trojan.Win32.Generic Gelöscht PDM:Trojan.Win32.Generic Trojaner Hoch Genau legacy_forcefeedback_x64.dll legacy_forcefeedback_x64.dll c:\program files\lghub Prozess
Heute, 02.11.2021 18:21:05 Das Objekt wurde gelöscht. LGHUB Updater lghub_updater.exe C:\ProgramData\LGHUB\depots\103670\core 1940 DESKTOP-KLUV44P\yaddl Aktiver Benutzer Gelöscht: PDM:Trojan.Win32.Generic Gelöscht PDM:Trojan.Win32.Generic Trojaner Hoch Genau sdk_legacy_led_x86.dll sdk_legacy_led_x86.dll c:\program files\lghub Prozess
Heute, 02.11.2021 18:21:05 Das Objekt wurde gelöscht. LGHUB Updater lghub_updater.exe C:\ProgramData\LGHUB\depots\103670\core 1940 DESKTOP-KLUV44P\yaddl Aktiver Benutzer Gelöscht: PDM:Trojan.Win32.Generic Gelöscht PDM:Trojan.Win32.Generic Trojaner Hoch Genau sdk_legacy_led_x86.dll sdk_legacy_led_x86.dll c:\program files\lghub Prozess
Heute, 02.11.2021 18:21:05 Das Objekt wurde gelöscht. LGHUB Updater lghub_updater.exe C:\ProgramData\LGHUB\depots\103670\core 1940 DESKTOP-KLUV44P\yaddl Aktiver Benutzer Gelöscht: PDM:Trojan.Win32.Generic Gelöscht PDM:Trojan.Win32.Generic Trojaner Hoch Genau sdk_legacy_led_x64.dll sdk_legacy_led_x64.dll c:\program files\lghub Prozess
Heute, 02.11.2021 18:21:05 Das Objekt wurde gelöscht. LGHUB Updater lghub_updater.exe C:\ProgramData\LGHUB\depots\103670\core 1940 DESKTOP-KLUV44P\yaddl Aktiver Benutzer Gelöscht: PDM:Trojan.Win32.Generic Gelöscht PDM:Trojan.Win32.Generic Trojaner Hoch Genau sdk_legacy_steering_wheel_x64.dll sdk_legacy_steering_wheel_x64.dll c:\program files\lghub Prozess
Heute, 02.11.2021 18:21:05 Das Objekt wurde gelöscht. LGHUB Updater lghub_updater.exe C:\ProgramData\LGHUB\depots\103670\core 1940 DESKTOP-KLUV44P\yaddl Aktiver Benutzer Gelöscht: PDM:Trojan.Win32.Generic Gelöscht PDM:Trojan.Win32.Generic Trojaner Hoch Genau sdk_legacy_steering_wheel_x86.dll sdk_legacy_steering_wheel_x86.dll c:\program files\lghub Prozess
Heute, 02.11.2021 18:21:05 Das Objekt wurde gelöscht. LGHUB Updater lghub_updater.exe C:\ProgramData\LGHUB\depots\103670\core 1940 DESKTOP-KLUV44P\yaddl Aktiver Benutzer Gelöscht: PDM:Trojan.Win32.Generic Gelöscht PDM:Trojan.Win32.Generic Trojaner Hoch Genau sdk_legacy_steering_wheel_x86.dll sdk_legacy_steering_wheel_x86.dll c:\program files\lghub Prozess
Heute, 02.11.2021 18:21:05 Das Objekt wurde gelöscht. LGHUB Updater lghub_updater.exe C:\ProgramData\LGHUB\depots\103670\core 1940 DESKTOP-KLUV44P\yaddl Aktiver Benutzer Gelöscht: PDM:Trojan.Win32.Generic Gelöscht PDM:Trojan.Win32.Generic Trojaner Hoch Genau legacy_arx_control_sdk_x86.dll legacy_arx_control_sdk_x86.dll c:\program files\lghub Prozess
Heute, 02.11.2021 18:21:05 Das Objekt wurde gelöscht. LGHUB Updater lghub_updater.exe C:\ProgramData\LGHUB\depots\103670\core 1940 DESKTOP-KLUV44P\yaddl Aktiver Benutzer Gelöscht: PDM:Trojan.Win32.Generic Gelöscht PDM:Trojan.Win32.Generic Trojaner Hoch Genau legacy_arx_control_sdk_x86.dll legacy_arx_control_sdk_x86.dll c:\program files\lghub Prozess
Heute, 02.11.2021 18:21:05 Das Objekt wurde gelöscht. LGHUB Updater lghub_updater.exe C:\ProgramData\LGHUB\depots\103670\core 1940 DESKTOP-KLUV44P\yaddl Aktiver Benutzer Gelöscht: PDM:Trojan.Win32.Generic Gelöscht PDM:Trojan.Win32.Generic Trojaner Hoch Genau legacy_arx_control_sdk_x64.dll legacy_arx_control_sdk_x64.dll c:\program files\lghub Prozess
Heute, 02.11.2021 18:17:20 Der Prozess wurde beendet. LGHUB Updater lghub_updater.exe C:\ProgramData\LGHUB\depots\103670\core 1940 DESKTOP-KLUV44P\yaddl Aktiver Benutzer Beendet: PDM:Trojan.Win32.Generic Beendet PDM:Trojan.Win32.Generic Trojaner Hoch Genau lghub_updater.exe lghub_updater.exe C:\ProgramData\LGHUB\depots\103670\core Prozess
Heute, 02.11.2021 18:17:20 Schädliches Objekt wurde gefunden. LGHUB Updater lghub_updater.exe C:\ProgramData\LGHUB\depots\103670\core 1940 DESKTOP-KLUV44P\yaddl Aktiver Benutzer Gefunden: PDM:Trojan.Win32.Generic Gefunden PDM:Trojan.Win32.Generic Trojaner Hoch Genau lghub_updater.exe lghub_updater.exe c:\programdata\lghub\depots\103670\core Prozess Datenbanken
Heute, 02.11.2021 18:17:20 Schädliches Objekt wurde gefunden. LGHUB Updater lghub_updater.exe C:\ProgramData\LGHUB\depots\103670\core 1940 DESKTOP-KLUV44P\yaddl Aktiver Benutzer Gefunden: PDM:Trojan.Win32.Generic Gefunden PDM:Trojan.Win32.Generic Trojaner Hoch Genau trueforce_sdk_x86.dll trueforce_sdk_x86.dll c:\program files\lghub Prozess Datenbanken
Heute, 02.11.2021 18:17:20 Schädliches Objekt wurde gefunden. LGHUB Updater lghub_updater.exe C:\ProgramData\LGHUB\depots\103670\core 1940 DESKTOP-KLUV44P\yaddl Aktiver Benutzer Gefunden: PDM:Trojan.Win32.Generic Gefunden PDM:Trojan.Win32.Generic Trojaner Hoch Genau trueforce_sdk_x86.dll trueforce_sdk_x86.dll c:\program files\lghub Prozess Datenbanken
Heute, 02.11.2021 18:17:20 Schädliches Objekt wurde gefunden. LGHUB Updater lghub_updater.exe C:\ProgramData\LGHUB\depots\103670\core 1940 DESKTOP-KLUV44P\yaddl Aktiver Benutzer Gefunden: PDM:Trojan.Win32.Generic Gefunden PDM:Trojan.Win32.Generic Trojaner Hoch Genau trueforce_sdk_x64.dll trueforce_sdk_x64.dll c:\program files\lghub Prozess Datenbanken
Heute, 02.11.2021 18:17:20 Schädliches Objekt wurde gefunden. LGHUB Updater lghub_updater.exe C:\ProgramData\LGHUB\depots\103670\core 1940 DESKTOP-KLUV44P\yaddl Aktiver Benutzer Gefunden: PDM:Trojan.Win32.Generic Gefunden PDM:Trojan.Win32.Generic Trojaner Hoch Genau hidpp_forcefeedback_x86.dll hidpp_forcefeedback_x86.dll c:\program files\lghub Prozess Datenbanken
Heute, 02.11.2021 18:17:20 Schädliches Objekt wurde gefunden. LGHUB Updater lghub_updater.exe C:\ProgramData\LGHUB\depots\103670\core 1940 DESKTOP-KLUV44P\yaddl Aktiver Benutzer Gefunden: PDM:Trojan.Win32.Generic Gefunden PDM:Trojan.Win32.Generic Trojaner Hoch Genau hidpp_forcefeedback_x86.dll hidpp_forcefeedback_x86.dll c:\program files\lghub Prozess Datenbanken
Heute, 02.11.2021 18:17:20 Schädliches Objekt wurde gefunden. LGHUB Updater lghub_updater.exe C:\ProgramData\LGHUB\depots\103670\core 1940 DESKTOP-KLUV44P\yaddl Aktiver Benutzer Gefunden: PDM:Trojan.Win32.Generic Gefunden PDM:Trojan.Win32.Generic Trojaner Hoch Genau hidpp_forcefeedback_x64.dll hidpp_forcefeedback_x64.dll c:\program files\lghub Prozess Datenbanken
Heute, 02.11.2021 18:17:20 Schädliches Objekt wurde gefunden. LGHUB Updater lghub_updater.exe C:\ProgramData\LGHUB\depots\103670\core 1940 DESKTOP-KLUV44P\yaddl Aktiver Benutzer Gefunden: PDM:Trojan.Win32.Generic Gefunden PDM:Trojan.Win32.Generic Trojaner Hoch Genau legacy_forcefeedback_x86.dll legacy_forcefeedback_x86.dll c:\program files\lghub Prozess Datenbanken
Heute, 02.11.2021 18:17:20 Schädliches Objekt wurde gefunden. LGHUB Updater lghub_updater.exe C:\ProgramData\LGHUB\depots\103670\core 1940 DESKTOP-KLUV44P\yaddl Aktiver Benutzer Gefunden: PDM:Trojan.Win32.Generic Gefunden PDM:Trojan.Win32.Generic Trojaner Hoch Genau legacy_forcefeedback_x86.dll legacy_forcefeedback_x86.dll c:\program files\lghub Prozess Datenbanken
Heute, 02.11.2021 18:17:20 Schädliches Objekt wurde gefunden. LGHUB Updater lghub_updater.exe C:\ProgramData\LGHUB\depots\103670\core 1940 DESKTOP-KLUV44P\yaddl Aktiver Benutzer Gefunden: PDM:Trojan.Win32.Generic Gefunden PDM:Trojan.Win32.Generic Trojaner Hoch Genau legacy_forcefeedback_x64.dll legacy_forcefeedback_x64.dll c:\program files\lghub Prozess Datenbanken
Heute, 02.11.2021 18:17:20 Schädliches Objekt wurde gefunden. LGHUB Updater lghub_updater.exe C:\ProgramData\LGHUB\depots\103670\core 1940 DESKTOP-KLUV44P\yaddl Aktiver Benutzer Gefunden: PDM:Trojan.Win32.Generic Gefunden PDM:Trojan.Win32.Generic Trojaner Hoch Genau sdk_legacy_led_x86.dll sdk_legacy_led_x86.dll c:\program files\lghub Prozess Datenbanken
Heute, 02.11.2021 18:17:20 Schädliches Objekt wurde gefunden. LGHUB Updater lghub_updater.exe C:\ProgramData\LGHUB\depots\103670\core 1940 DESKTOP-KLUV44P\yaddl Aktiver Benutzer Gefunden: PDM:Trojan.Win32.Generic Gefunden PDM:Trojan.Win32.Generic Trojaner Hoch Genau sdk_legacy_led_x86.dll sdk_legacy_led_x86.dll c:\program files\lghub Prozess Datenbanken
Heute, 02.11.2021 18:17:20 Schädliches Objekt wurde gefunden. LGHUB Updater lghub_updater.exe C:\ProgramData\LGHUB\depots\103670\core 1940 DESKTOP-KLUV44P\yaddl Aktiver Benutzer Gefunden: PDM:Trojan.Win32.Generic Gefunden PDM:Trojan.Win32.Generic Trojaner Hoch Genau sdk_legacy_led_x64.dll sdk_legacy_led_x64.dll c:\program files\lghub Prozess Datenbanken
Heute, 02.11.2021 18:17:20 Schädliches Objekt wurde gefunden. LGHUB Updater lghub_updater.exe C:\ProgramData\LGHUB\depots\103670\core 1940 DESKTOP-KLUV44P\yaddl Aktiver Benutzer Gefunden: PDM:Trojan.Win32.Generic Gefunden PDM:Trojan.Win32.Generic Trojaner Hoch Genau sdk_legacy_steering_wheel_x64.dll sdk_legacy_steering_wheel_x64.dll c:\program files\lghub Prozess Datenbanken
Heute, 02.11.2021 18:17:20 Schädliches Objekt wurde gefunden. LGHUB Updater lghub_updater.exe C:\ProgramData\LGHUB\depots\103670\core 1940 DESKTOP-KLUV44P\yaddl Aktiver Benutzer Gefunden: PDM:Trojan.Win32.Generic Gefunden PDM:Trojan.Win32.Generic Trojaner Hoch Genau sdk_legacy_steering_wheel_x86.dll sdk_legacy_steering_wheel_x86.dll c:\program files\lghub Prozess Datenbanken
Heute, 02.11.2021 18:17:20 Schädliches Objekt wurde gefunden. LGHUB Updater lghub_updater.exe C:\ProgramData\LGHUB\depots\103670\core 1940 DESKTOP-KLUV44P\yaddl Aktiver Benutzer Gefunden: PDM:Trojan.Win32.Generic Gefunden PDM:Trojan.Win32.Generic Trojaner Hoch Genau sdk_legacy_steering_wheel_x86.dll sdk_legacy_steering_wheel_x86.dll c:\program files\lghub Prozess Datenbanken
Heute, 02.11.2021 18:17:20 Schädliches Objekt wurde gefunden. LGHUB Updater lghub_updater.exe C:\ProgramData\LGHUB\depots\103670\core 1940 DESKTOP-KLUV44P\yaddl Aktiver Benutzer Gefunden: PDM:Trojan.Win32.Generic Gefunden PDM:Trojan.Win32.Generic Trojaner Hoch Genau legacy_arx_control_sdk_x86.dll legacy_arx_control_sdk_x86.dll c:\program files\lghub Prozess Datenbanken
Heute, 02.11.2021 18:17:20 Schädliches Objekt wurde gefunden. LGHUB Updater lghub_updater.exe C:\ProgramData\LGHUB\depots\103670\core 1940 DESKTOP-KLUV44P\yaddl Aktiver Benutzer Gefunden: PDM:Trojan.Win32.Generic Gefunden PDM:Trojan.Win32.Generic Trojaner Hoch Genau legacy_arx_control_sdk_x86.dll legacy_arx_control_sdk_x86.dll c:\program files\lghub Prozess Datenbanken
Heute, 02.11.2021 18:17:20 Schädliches Objekt wurde gefunden. LGHUB Updater lghub_updater.exe C:\ProgramData\LGHUB\depots\103670\core 1940 DESKTOP-KLUV44P\yaddl Aktiver Benutzer Gefunden: PDM:Trojan.Win32.Generic Gefunden PDM:Trojan.Win32.Generic Trojaner Hoch Genau legacy_arx_control_sdk_x64.dll legacy_arx_control_sdk_x64.dll c:\program files\lghub Prozess Datenbanken
Code:
ATTFilter Heute, 02.11.2021 19:11:05 Die Aufgabe wurde abgeschlossen. Die Aufgabe wurde abgeschlossen. DESKTOP-KLUV44P\yaddl Aktiver Benutzer
Heute, 02.11.2021 19:11:05 F:\Anki\mpv.com Nicht bearbeitet Die Desinfektion ist nicht möglich. not-a-virus:RiskTool.Win32.SelfStarter.a Übersprungen Datei F:\Anki mpv.com Nicht bearbeitet legale Software, mit der Angreifer den Computer oder die Benutzerdaten beschädigen können, Niedrig Genau DESKTOP-KLUV44P\yaddl Aktiver Benutzer
Heute, 02.11.2021 19:07:24 Die Aufgabe wurde gestartet. Die Aufgabe wurde gestartet. DESKTOP-KLUV44P\yaddl Aktiver Benutzer
Heute, 02.11.2021 19:06:47 Die Aufgabe wurde gestartet. Die Aufgabe wurde gestartet. DESKTOP-KLUV44P\yaddl Aktiver Benutzer
Heute, 02.11.2021 19:06:35 Die Aufgabe wurde gestartet. Die Aufgabe wurde gestartet. DESKTOP-KLUV44P\yaddl Aktiver Benutzer
Heute, 02.11.2021 18:57:12 F:\Anki\mpv.com Nicht bearbeitet Die Desinfektion ist nicht möglich. not-a-virus:RiskTool.Win32.SelfStarter.a Zurückgestellt Datei F:\Anki mpv.com Nicht bearbeitet legale Software, mit der Angreifer den Computer oder die Benutzerdaten beschädigen können, Niedrig Genau DESKTOP-KLUV44P\yaddl Aktiver Benutzer
Heute, 02.11.2021 18:57:12 F:\Anki\mpv.com Gefunden Gefundene legale Software, die von Angreifern verwendet werden kann, um Ihren Computer oder die Benutzerdaten zu beschädigen not-a-virus:RiskTool.Win32.SelfStarter.a Experten-Analyse Datei F:\Anki mpv.com Gefunden legale Software, mit der Angreifer den Computer oder die Benutzerdaten beschädigen können, Niedrig Genau DESKTOP-KLUV44P\yaddl Aktiver Benutzer
Heute, 02.11.2021 18:47:34 Die Aufgabe wurde gestartet. Die Aufgabe wurde gestartet. DESKTOP-KLUV44P\yaddl Aktiver Benutzer
Heute, 02.11.2021 18:44:11 Die Aufgabe wurde gestartet. Die Aufgabe wurde gestartet. DESKTOP-KLUV44P\yaddl Aktiver Benutzer
Heute, 02.11.2021 18:28:45 Die Aufgabe wurde gestartet. Die Aufgabe wurde gestartet. DESKTOP-KLUV44P\yaddl Aktiver Benutzer
Heute, 02.11.2021 18:26:27 Die Aufgabe wurde abgeschlossen. Die Aufgabe wurde abgeschlossen. DESKTOP-KLUV44P\yaddl Aktiver Benutzer
Heute, 02.11.2021 18:23:57 System Memory Desinfiziert Das Objekt wurde desinfiziert. Trojan.Multi.GenAutorunReg.a Datei System Memory Desinfiziert Trojaner Hoch Genau DESKTOP-KLUV44P\yaddl Aktiver Benutzer
Heute, 02.11.2021 18:23:41 System Memory Gefunden Schädliches Objekt wurde gefunden. Trojan.Multi.GenAutorunReg.a Experten-Analyse Datei System Memory Gefunden Trojaner Hoch Genau DESKTOP-KLUV44P\yaddl Aktiver Benutzer
Heute, 02.11.2021 18:23:36 Die Aufgabe wurde gestartet. Die Aufgabe wurde gestartet. DESKTOP-KLUV44P\yaddl Aktiver Benutzer
Heute, 02.11.2021 10:03:45 Die Aufgabe wurde abgeschlossen. Die Aufgabe wurde abgeschlossen. DESKTOP-KLUV44P\yaddl Aktiver Benutzer
Heute, 02.11.2021 10:00:51 Die Aufgabe wurde gestartet. Die Aufgabe wurde gestartet. DESKTOP-KLUV44P\yaddl Aktiver Benutzer
Heute, 02.11.2021 09:58:18 Die Aufgabe wurde gestartet. Die Aufgabe wurde gestartet. DESKTOP-KLUV44P\yaddl Aktiver Benutzer
Heute, 02.11.2021 09:57:01 Die Aufgabe wurde gestartet. Die Aufgabe wurde gestartet. DESKTOP-KLUV44P\yaddl Aktiver Benutzer
Heute, 02.11.2021 09:56:30 Die Aufgabe wurde gestartet. Die Aufgabe wurde gestartet. DESKTOP-KLUV44P\yaddl Aktiver Benutzer
Heute, 02.11.2021 09:56:02 Die Aufgabe wurde gestartet. Die Aufgabe wurde gestartet. DESKTOP-KLUV44P\yaddl Aktiver Benutzer
Heute, 02.11.2021 09:55:36 Die Aufgabe wurde gestartet. Die Aufgabe wurde gestartet. DESKTOP-KLUV44P\yaddl Aktiver Benutzer
Heute, 02.11.2021 09:54:59 Die Aufgabe wurde gestartet. Die Aufgabe wurde gestartet. DESKTOP-KLUV44P\yaddl Aktiver Benutzer
Heute, 02.11.2021 09:48:05 Die Aufgabe wurde gestartet. Die Aufgabe wurde gestartet. DESKTOP-KLUV44P\yaddl Aktiver Benutzer
Heute, 02.11.2021 09:47:37 Die Aufgabe wurde gestartet. Die Aufgabe wurde gestartet. DESKTOP-KLUV44P\yaddl Aktiver Benutzer
Heute, 02.11.2021 09:29:46 Die Aufgabe wurde gestartet. Die Aufgabe wurde gestartet. DESKTOP-KLUV44P\yaddl Aktiver Benutzer
AdwCleaner[C00] Code:
ATTFilter # -------------------------------
# Malwarebytes AdwCleaner 8.3.0.0
# -------------------------------
# Build: 06-29-2021
# Database: 2021-10-26.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 11-02-2021
# Duration: 00:00:01
# OS: Windows 10 Home
# Cleaned: 7
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
Deleted C:\ProgramData\IObit\Advanced SystemCare
Deleted C:\Users\yaddl\AppData\Roaming\IObit\Advanced SystemCare
***** [ Files ] *****
Deleted C:\END
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
Deleted C:\Windows\System32\Tasks\DRIVER BOOSTER SCHEDULER
***** [ Registry ] *****
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BB8D6C39-AD54-4FFB-B313-6882545B1321}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Driver Booster Scheduler
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
Deleted Websuche
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1860 octets] - [02/11/2021 19:29:54]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
Code:
ATTFilter Malwarebytes
www.malwarebytes.com
-Protokolldetails-
Scan-Datum: 02.11.21
Scan-Zeit: 19:15
Protokolldatei: e7b64008-3c08-11ec-b3a3-309c23009610.json
-Softwaredaten-
Version: 4.4.9.142
Komponentenversion: 1.0.1486
Version des Aktualisierungspakets: 1.0.46680
Lizenz: Testversion
-Systemdaten-
Betriebssystem: Windows 10 (Build 19043.1288)
CPU: x64
Dateisystem: NTFS
Benutzer: DESKTOP-KLUV44P\yaddl
-Scan-Übersicht-
Scan-Typ: Bedrohungs-Scan
Scan gestartet von: Manuell
Ergebnis: Completed
Gescannte Objekte: 424553
Erkannte Bedrohungen: 0
In die Quarantäne verschobene Bedrohungen: 0
Abgelaufene Zeit: 8 Min., 25 Sek.
-Scan-Optionen-
Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Aktiviert
Heuristik: Aktiviert
PUP: Erkennung
PUM: Erkennung
-Scan-Details-
Prozess: 0
(keine bösartigen Elemente erkannt)
Modul: 0
(keine bösartigen Elemente erkannt)
Registrierungsschlüssel: 0
(keine bösartigen Elemente erkannt)
Registrierungswert: 0
(keine bösartigen Elemente erkannt)
Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)
Daten-Stream: 0
(keine bösartigen Elemente erkannt)
Ordner: 0
(keine bösartigen Elemente erkannt)
Datei: 0
(keine bösartigen Elemente erkannt)
Physischer Sektor: 0
(keine bösartigen Elemente erkannt)
WMI: 0
(keine bösartigen Elemente erkannt)
(end)
FRST.txt Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 02-11-2021
durchgeführt von yaddl (Administrator) auf DESKTOP-KLUV44P (MSI MS-7A63) (02-11-2021 19:42:56)
Gestartet von E:\Downloads
Geladene Profile: yaddl
Plattform: Microsoft Windows 10 Home Version 21H1 19043.1288 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: Chrome
Start-Modus: Normal
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Adobe Inc. -> Adobe Inc.) E:\WindowsApps\AdobeNotificationClient_2.0.1.8_x86__enpm4xejd91yc\AdobeNotificationClient.exe
(Adobe Systems, Incorporated -> ) E:\WindowsApps\AcrobatNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <22>
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_isolation.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_service.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\transport_proxy.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\avp.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\avpui.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\plugins_nms.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksde.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksdeui.exe
(Kaspersky Lab JSC -> Kaspersky Lab AO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\plugin-nm-server-v2.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdsi.inf_amd64_5d552f56b2dc9725\Display.NvContainer\NVDisplay.Container.exe <2>
(OpenVPN Inc. -> The OpenVPN Project) E:\OpenVPN\bin\openvpnserv.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzChromaStreamServer.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [3180256 2021-10-21] (Riot Games, Inc. -> Riot Games, Inc.)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412736 2021-09-07] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-10] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [5267168 2021-10-05] (Adobe Inc. -> Adobe Systems Inc.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-08-04] (Adobe Inc. -> )
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [452272 2012-08-31] (Canon Inc. -> CANON INC.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-06-09] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [781552 2021-10-30] (Adobe Inc. -> Adobe Inc.)
HKU\S-1-5-21-1657895749-1354642030-2233333917-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2340224 2021-11-02] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1657895749-1354642030-2233333917-1001\...\Run: [kpm.exe] => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm.exe [757432 2021-10-11] (Kaspersky Lab JSC -> AO Kaspersky Lab)
HKU\S-1-5-21-1657895749-1354642030-2233333917-1001\...\Run: [Steam] => F:\Steam\steam.exe [4267928 2021-10-13] (Valve -> Valve Corporation)
HKU\S-1-5-21-1657895749-1354642030-2233333917-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [136443968 2021-11-02] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-1657895749-1354642030-2233333917-1001\...\Run: [CCXProcess] => C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [190280 2021-09-30] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-1657895749-1354642030-2233333917-1001\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [5397216 2021-10-05] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-1657895749-1354642030-2233333917-1001\...\Run: [Overwolf] => E:\Overwolf\OverwolfLauncher.exe [1806680 2021-10-07] (Overwolf Ltd -> Overwolf Ltd.)
HKU\S-1-5-21-1657895749-1354642030-2233333917-1001\...\Run: [OPENVPN-GUI] => E:\OpenVPN\bin\openvpn-gui.exe [669112 2020-04-16] (OpenVPN Inc. -> )
HKU\S-1-5-21-1657895749-1354642030-2233333917-1001\...\Run: [EpicGamesLauncher] => F:\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [33249248 2021-06-19] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-1657895749-1354642030-2233333917-1001\...\Run: [GogGalaxy] => F:\GOG Galaxy\GalaxyClient.exe [14858824 2020-12-26] (GOG Sp. z o.o. -> GOG.com)
HKU\S-1-5-21-1657895749-1354642030-2233333917-1001\...\Run: [MobalyticsHQ.DesktopApp] => C:\Users\yaddl\AppData\Local\Programs\mobalytics-desktop\Mobalytics Desktop.exe [104280720 2020-08-21] (Gamers Net Inc -> Mobalytics)
HKU\S-1-5-21-1657895749-1354642030-2233333917-1001\...\Run: [Figma Agent] => C:\Users\yaddl\AppData\Local\FigmaAgent\figma_agent.exe [5660896 2021-04-28] (Figma, Inc. -> )
HKU\S-1-5-21-1657895749-1354642030-2233333917-1001\...\Run: [Discord] => C:\Users\yaddl\AppData\Local\Discord\Update.exe [1512040 2021-03-18] (Discord Inc. -> GitHub)
HKU\S-1-5-21-1657895749-1354642030-2233333917-1001\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3523704 2021-10-27] (Razer USA Ltd. -> Razer Inc.)
HKU\S-1-5-21-1657895749-1354642030-2233333917-1001\...\Policies\Explorer: [NoLogoff] 0
HKU\S-1-5-21-1657895749-1354642030-2233333917-1001\...\MountPoints2: {2fff1082-abd0-11ea-8d0b-806e6f6e6963} - "D:\Autorun.exe"
HKU\S-1-5-18\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3523704 2021-10-27] (Razer USA Ltd. -> Razer Inc.)
HKLM\...\Windows x64\Print Processors\Canon MX920 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDBL.DLL [30208 2012-09-20] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\Windows\system32\AdobePDF.dll [65160 2021-05-28] (Adobe Inc. -> Adobe Systems Inc)
HKLM\...\Print\Monitors\Canon BJ FAX Language Monitor MX920 series: C:\Windows\system32\CNCALBL.DLL [303104 2012-09-21] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MX920 series: C:\Windows\system32\CNMLMBL.DLL [390656 2012-09-20] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJNP Port: C:\Windows\system32\CNMN6PPM.DLL [359936 2012-07-31] (CANON INC.) [Datei ist nicht signiert]
HKLM\Software\Microsoft\Active Setup\Installed Components: [OpenVPN_UserSetup] -> reg add HKCU\Software\Microsoft\Windows\CurrentVersion\Run /v OPENVPN-GUI /t REG_SZ /d "E:\OpenVPN\bin\openvpn-gui.exe" /f
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\95.0.4638.69\Installer\chrmstp.exe [2021-10-29] (Google LLC -> Google LLC)
Startup: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\An OneNote senden.lnk [2021-04-20]
ShortcutTarget: An OneNote senden.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
Startup: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Twitch.lnk [2020-11-26]
ShortcutTarget: Twitch.lnk -> C:\Users\yaddl\AppData\Roaming\Twitch\Bin\Twitch.exe (Twitch Interactive, Inc. -> Twitch Interactive, Inc.)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {0279D520-0BAE-4441-87D6-106AA42DCC3C} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {10F9DB3F-1EB1-4B48-9FED-11B704B5D0FA} - System32\Tasks\MATLAB R2020b Startup Accelerator => F:\MatLab\bin\win64\MATLABStartupAccelerator.exe [53760 2020-07-29] () [Datei ist nicht signiert]
Task: {186115C9-43EA-49F7-B7DE-076D015C704A} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [3978624 2021-11-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {18D1F8B3-F78B-4459-92BD-44620C9DAF66} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-06-11] (Google LLC -> Google LLC)
Task: {1EA46D63-1BEE-44A2-A56C-BF56776540E7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-06-11] (Google LLC -> Google LLC)
Task: {2D9EDFFC-414F-4BAD-ABE6-D0A03AA2D5D7} - System32\Tasks\MSISW_Host => C:\Windows\SysWOW64\muachost.exe [1692840 2015-08-18] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
Task: {314B8D20-7F94-4110-9CE8-81C45BDA5D9E} - System32\Tasks\MSI Task Host - DisplayID => C:\Program Files (x86)\MSI\One Dragon Center\MSI.NotifyServer.exe [74528 2020-09-29] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {31DB70B6-32DA-4E35-9C5A-4D3A40F01C18} - System32\Tasks\SmartDefrag_AutoAnalyze => C:\Program Files (x86)\IObit\Smart Defrag\AutoDefrag.exe [314128 2018-05-02] (IObit Information Technology -> IObit)
Task: {32464988-98C9-4C06-BF3D-4D388171FF30} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22655904 2021-10-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {4498FFA8-1700-4F7D-866E-31729D2C6CD2} - System32\Tasks\IObitSelfCheckTask => C:\Program Files (x86)\IObit\Smart Defrag\IObitSelfCheck.exe
Task: {4CEE975E-6F9F-4072-B27A-DA9D3133E5A0} - System32\Tasks\update-S-1-5-21-1657895749-1354642030-2233333917-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
Task: {5D328EF1-8D08-4E8B-9710-AAD05A3C5331} - System32\Tasks\MSI Task Host - MSI.True Color => C:\Program Files (x86)\MSI\One Dragon Center\True Color\MSI.True Color.exe [44720 2020-05-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {632533B5-3CDF-4767-A069-2D50DB19EF3A} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {63C117E8-E8CA-4FE5-8BA9-EE2A42D27B23} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138600 2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {67897C5D-479F-45E6-A38A-BDB8D152D935} - System32\Tasks\Intel PTT EK Recertification => C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\IntelPTTEKRecertification.exe [918288 2020-04-22] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {7327B49A-85BB-43D2-822E-FD20BC815C79} - System32\Tasks\SmartDefrag_Update => C:\Program Files (x86)\IObit\Smart Defrag\AutoUpdate.exe [3477528 2021-05-26] (IObit CO., LTD -> IObit)
Task: {734708F5-A74D-401F-8840-4AD6496ED4EC} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {74691299-B49C-450D-B326-076AA0265B08} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {842DA49C-63A3-404E-B8C7-053D979B8ED0} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {889A3C6C-BADE-4826-ABC3-E795DC059E46} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [680888 2021-10-19] (Mozilla Corporation -> Mozilla Foundation)
Task: {8C3F3B75-42D7-4669-8682-0C6618CECB73} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {946DBD40-7629-43F3-BEF4-C8926BBB1F1A} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22655904 2021-10-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {97148A52-4DEA-4AFA-A8BC-B5A9606A6B3D} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
Task: {AC11D266-0E3A-4FB8-9D6D-A69BC2540758} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [645488 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {ADC01E2B-0370-44FB-AD15-DDBC35AC704C} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412736 2021-09-07] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {B22A9FE5-D736-446D-BC2E-8FC69CCC9F69} - System32\Tasks\Opera GX scheduled Autoupdate 1635754476 => C:\Users\yaddl\AppData\Local\Programs\Opera GX\launcher.exe [3963600 2021-10-19] (Opera Software AS -> Opera Software)
Task: {BDED7901-3DCA-4607-B828-36643D1722E0} - System32\Tasks\SmartDefrag_Startup => C:\Program Files (x86)\IObit\Smart Defrag\SmartDefrag.exe [5969432 2021-10-20] (IObit CO., LTD -> IObit)
Task: {C1FD5554-73BE-4EA1-B107-DF0BE888FFA4} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138600 2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {C3A3D14B-E542-4E49-B6C4-F925C6902D81} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe /NoUACCheck
Task: {C5092D20-A6A2-433F-BD52-B6F356540ADE} - System32\Tasks\Overwolf Updater Task => E:\Overwolf\OverwolfUpdater.exe [2484568 2021-10-07] (Overwolf Ltd -> Overwolf LTD)
Task: {C6147CC1-7D53-4A96-A3BB-3B1C6EA4D3FB} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CB3F90E8-5FD7-430D-BA99-7644263D4159} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1562376 2021-08-16] (Adobe Inc. -> Adobe Inc.)
Task: {D4BA5B1E-A2BA-4C1F-B241-2CBD88525DD0} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D651C985-F8F5-4196-9CDF-D2D8EA85DF51} - System32\Tasks\MSI Task Host - LEDKeeper2_Host => C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LEDKeeper2.exe [1634824 2021-01-14] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {DB1862AB-33E9-46D5-B308-6B266F05D766} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DF53178B-8927-41C6-ADCA-F656BFD3F0E9} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3339120 2021-06-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E468E74A-9818-419F-8ED6-2152D453CEAC} - System32\Tasks\MSI Task Host - Detect_Monitor => C:\Program Files (x86)\MSI\One Dragon Center\MSI.NotifyServer.exe [74528 2020-09-29] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\Windows\Tasks\MATLAB R2020b Startup Accelerator.job => F:\MatLab\bin\win64\MATLABStartupAccelerator.exe
Task: C:\Windows\Tasks\update-S-1-5-21-1657895749-1354642030-2233333917-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\Windows\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-30] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{6abcd32d-e579-45fe-9676-acc80491cc15}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{84066e34-4a51-4209-a0c5-9f8525ac40ef}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{f3590f45-dbd3-4243-945b-c2b0ba441a92}: [DhcpNameServer] 192.168.178.1
HKLM\System\...\Parameters\PersistentRoutes: [169.254.0.0,255.255.0.0,192.168.178.20,1]
Edge:
=======
Edge Extension: (Kein Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [nicht gefunden]
Edge Extension: (Kein Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [nicht gefunden]
Edge Extension: (Kein Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [nicht gefunden]
Edge Extension: (Kein Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [nicht gefunden]
Edge DefaultProfile: Default
Edge Profile: C:\Users\yaddl\AppData\Local\Microsoft\Edge\User Data\Default [2021-09-26]
Edge Extension: (Kaspersky Protection) - C:\Users\yaddl\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2021-09-22]
Edge HKU\S-1-5-21-1657895749-1354642030-2233333917-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm]
FireFox:
========
FF DefaultProfile: 9tb3uhup.default
FF ProfilePath: C:\Users\yaddl\AppData\Roaming\Mozilla\Firefox\Profiles\9tb3uhup.default [2020-06-24]
FF ProfilePath: C:\Users\yaddl\AppData\Roaming\Mozilla\Firefox\Profiles\bok6n5lg.default-release [2021-10-30]
FF Homepage: Mozilla\Firefox\Profiles\bok6n5lg.default-release -> google.com
FF Extension: (AdBlocker Ultimate) - C:\Users\yaddl\AppData\Roaming\Mozilla\Firefox\Profiles\bok6n5lg.default-release\Extensions\adblockultimate@adblockultimate.net.xpi [2021-10-19]
FF Extension: (BetterTTV) - C:\Users\yaddl\AppData\Roaming\Mozilla\Firefox\Profiles\bok6n5lg.default-release\Extensions\firefox@betterttv.net.xpi [2021-10-19]
FF Extension: (Kaspersky Password Manager) - C:\Users\yaddl\AppData\Roaming\Mozilla\Firefox\Profiles\bok6n5lg.default-release\Extensions\kpm_win_add_on_9.0@kaspersky.xpi [2021-09-22] [UpdateUrl:hxxps://special.s.kaspersky-labs.com/firefox_extensions/kpm_win_add_on/update.json]
FF Extension: (Kaspersky Protection) - C:\Users\yaddl\AppData\Roaming\Mozilla\Firefox\Profiles\bok6n5lg.default-release\Extensions\light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com.xpi [2021-09-22]
FF Extension: (Kaspersky Protection) - C:\Users\yaddl\AppData\Roaming\Mozilla\Firefox\Profiles\bok6n5lg.default-release\Extensions\light_plugin_B29D4AD94F82454BBC9215BCBD7E80AE@kaspersky.com.xpi [2021-09-22]
FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2020-05-29]
FF HKLM\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\FFExt\light_plugin_firefox\addon.xpi => nicht gefunden
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\FFExt\light_plugin_firefox\addon.xpi => nicht gefunden
FF Plugin: @java.com/DTPlugin,version=11.301.2 -> C:\Program Files\Java\jre1.8.0_301\bin\dtplugin\npDeployJava1.dll [2021-07-29] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.301.2 -> C:\Program Files\Java\jre1.8.0_301\bin\plugin2\npjp2.dll [2021-07-29] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.10 -> E:\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> E:\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2021-10-30] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2021-10-05] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2021-10-30] (Adobe Inc. -> Adobe Systems)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2020-06-24] <==== ACHTUNG (Zeigt auf eine *.cfg Datei)
FF ExtraCheck: C:\Program Files\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2020-06-24] <==== ACHTUNG
Chrome:
=======
CHR Profile: C:\Users\yaddl\AppData\Local\Google\Chrome\User Data\Default [2021-11-02]
CHR DownloadDir: E:\Downloads
CHR Notifications: Default -> hxxps://drive.google.com; hxxps://euw.op.gg; hxxps://tomato-timer.com; hxxps://www.igvault.de; hxxps://www.lieferando.de; hxxps://www.mydealz.de; hxxps://www.op.gg; hxxps://www.reddit.com
CHR Extension: (Präsentationen) - C:\Users\yaddl\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-06-11]
CHR Extension: (FUTBIN) - C:\Users\yaddl\AppData\Local\Google\Chrome\User Data\Default\Extensions\adicaaffkmhgnfheifkjhopmambgfihl [2020-10-01]
CHR Extension: (Kaspersky Protection) - C:\Users\yaddl\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2021-09-15]
CHR Extension: (BetterTTV) - C:\Users\yaddl\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2021-10-16]
CHR Extension: (Docs) - C:\Users\yaddl\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-06-11]
CHR Extension: (Google Drive) - C:\Users\yaddl\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-21]
CHR Extension: (FUTBIN Updater) - C:\Users\yaddl\AppData\Local\Google\Chrome\User Data\Default\Extensions\beejegoimbgpafoobegjmhjnehlmnbcn [2021-05-27]
CHR Extension: (YouTube) - C:\Users\yaddl\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-06-11]
CHR Extension: (Adblock Plus - kostenloser Adblocker) - C:\Users\yaddl\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-09-01]
CHR Extension: (Tampermonkey) - C:\Users\yaddl\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2021-07-11]
CHR Extension: (Kaspersky Password Manager) - C:\Users\yaddl\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhnkblpjbkfklfloegejegedcafpliaa [2021-10-27]
CHR Extension: (Adobe Acrobat) - C:\Users\yaddl\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-10-20]
CHR Extension: (uBlock) - C:\Users\yaddl\AppData\Local\Google\Chrome\User Data\Default\Extensions\epcnnfbjfcgphgdmggkamkmgojdagdnn [2020-06-11]
CHR Extension: (FrankerFaceZ) - C:\Users\yaddl\AppData\Local\Google\Chrome\User Data\Default\Extensions\fadndhdgpmmaapbmfcknlfgcflmmmieb [2021-04-20]
CHR Extension: (Tabellen) - C:\Users\yaddl\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-06-11]
CHR Extension: (Google Docs Offline) - C:\Users\yaddl\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-10-15]
CHR Extension: (Lightshot (Screenshot Tool)) - C:\Users\yaddl\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbniclmhobmnbdlbpiphghaielnnpgdp [2021-02-15]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\yaddl\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Google Mail) - C:\Users\yaddl\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (f*ck overlays) - C:\Users\yaddl\AppData\Local\Google\Chrome\User Data\Default\Extensions\ppedokobpbdajgiejhnjfbdjlgobcpkp [2020-06-11]
CHR HKLM\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
CHR HKLM-x32\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
Opera:
=======
StartMenuInternet: (HKU\S-1-5-21-1657895749-1354642030-2233333917-1001) Opera GXStable - "C:\Users\yaddl\AppData\Local\Programs\Opera GX\Launcher.exe"
==================== Dienste (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-08-16] (Adobe Inc. -> Adobe Inc.)
S2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [844528 2021-10-30] (Adobe Inc. -> Adobe Inc.)
S2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3833088 2021-09-07] (Adobe Inc. -> Adobe Systems, Incorporated)
S2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3603200 2021-09-07] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AVP21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\avp.exe [184768 2021-06-17] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8894752 2021-01-21] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12034464 2021-10-12] (Microsoft Corporation -> Microsoft Corporation)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2021-09-30] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncHelper.exe [3253120 2021-11-02] (Microsoft Corporation -> Microsoft Corporation)
S3 GalaxyClientService; F:\GOG Galaxy\GalaxyClientService.exe [1741384 2020-12-26] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6821960 2020-05-06] (GOG Sp. z o.o. -> GOG.com)
S3 klvssbridge64_21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\x64\vssbridge64.exe [479280 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 kpm_launch_service; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_service.exe [375480 2021-10-11] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 KSDE5.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksde.exe [447104 2021-06-17] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [11148864 2021-11-02] (Logitech Inc -> Logitech, Inc.)
S2 LightKeeperService; C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LightKeeperService.exe [86776 2020-12-23] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7826104 2021-11-02] (Malwarebytes Inc -> Malwarebytes)
S2 MSI_Central_Service; C:\Program Files (x86)\MSI\One Dragon Center\MSI_Central_Service.exe [147088 2020-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
S2 MSI_Companion_Service; C:\Program Files (x86)\MSI\One Dragon Center\Game_Summary\MSI_Companion_Service.exe [131568 2021-01-08] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
S2 Mystic_Light_Service; C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\Mystic_Light_Service.exe [35504 2020-07-09] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\21.205.1003.0003\OneDriveUpdaterService.exe [3721600 2021-11-02] (Microsoft Corporation -> Microsoft Corporation)
S3 OpenVPNService; E:\OpenVPN\bin\openvpnserv2.exe [24192 2018-03-06] (OpenVPN Technologies, Inc. -> )
R2 OpenVPNServiceInteractive; E:\OpenVPN\bin\openvpnserv.exe [67000 2020-04-16] (OpenVPN Inc. -> The OpenVPN Project)
S3 OpenVPNServiceLegacy; E:\OpenVPN\bin\openvpnserv.exe [67000 2020-04-16] (OpenVPN Inc. -> The OpenVPN Project)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2557656 2021-10-19] (Electronic Arts, Inc. -> Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3476184 2021-10-19] (Electronic Arts, Inc. -> Electronic Arts)
S3 OverwolfUpdater; E:\Overwolf\OverwolfUpdater.exe [2484568 2021-10-07] (Overwolf Ltd -> Overwolf LTD)
R2 Razer Chroma SDK Server; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe [1142808 2021-10-19] (Razer USA Ltd. -> Razer Inc.)
R2 Razer Chroma SDK Service; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [451608 2021-10-19] (Razer USA Ltd. -> Razer Inc.)
R2 Razer Chroma Stream Server; C:\Program Files (x86)\Razer Chroma SDK\bin\RzChromaStreamServer.exe [1347640 2021-10-19] (Razer USA Ltd. -> Razer Inc.)
S2 Razer Game Manager Service; C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe [254224 2021-10-19] (Razer USA Ltd. -> Razer Inc)
S2 Razer Synapse Service; C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe [294520 2021-10-25] (Razer USA Ltd. -> Razer Inc.)
S3 Rockstar Service; F:\Launcher\RockstarService.exe [1729432 2021-04-30] (Rockstar Games, Inc. -> Rockstar Games)
S2 RzActionSvc; C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe [533824 2021-10-21] (Razer USA Ltd. -> Razer Inc.)
S3 ucldr_battlegrounds_gl; C:\Program Files\Common Files\Uncheater\ucldr_battlegrounds_gl.exe [6969856 2021-01-14] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
S3 VBoxSDS; E:\Oracle\VBoxSDS.exe [746728 2021-07-28] (Oracle Corporation -> Oracle Corporation)
S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [10165360 2021-10-21] (Riot Games, Inc. -> Riot Games, Inc.)
S2 VoiceControlService; C:\Program Files (x86)\MSI\One Dragon Center\VoiceControl\VoiceControl_Service.exe [32400 2020-07-06] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2010.7-0\NisSrv.exe [2467088 2020-11-12] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2010.7-0\MsMpEng.exe [128376 2020-11-12] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 zksvc; C:\Program Files\Common Files\PUBG\zksvc.exe [6876288 2021-01-21] (PUBG CORPORATION -> PUBG Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nvmdsi.inf_amd64_5d552f56b2dc9725\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nvmdsi.inf_amd64_5d552f56b2dc9725\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Treiber (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Datei ist nicht signiert]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Datei ist nicht signiert]
R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [250032 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 DroidCam; C:\Windows\System32\drivers\droidcam.sys [32240 2020-04-10] (Microsoft Windows Hardware Compatibility Publisher -> Dev47Apps)
R3 DroidCamVideo; C:\Windows\System32\drivers\droidcamvideo.sys [33768 2020-04-18] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
S3 ElgatoVAD; C:\Windows\System32\drivers\ElgatoVAD.sys [39208 2020-11-08] (Elgato Systems LLC -> Elgato Systems GmbH)
R1 EneTechIo; C:\Windows\system32\drivers\ene.sys [20992 2020-05-12] (Microsoft Windows Hardware Compatibility Publisher -> )
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [160176 2021-11-02] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2020-06-11] (Martin Malik - REALiX -> REALiX(tm))
R1 klbackupdisk; C:\Windows\system32\DRIVERS\klbackupdisk.sys [110336 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [211704 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [126216 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [41656 2021-02-19] (Microsoft Windows Early Launch Anti-Malware Publisher -> AO Kaspersky Lab)
R1 klflt; C:\Windows\system32\DRIVERS\klflt.sys [514840 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klgse; C:\Windows\System32\DRIVERS\klgse.sys [674104 2021-09-09] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klhk; C:\Windows\system32\DRIVERS\klhk.sys [1469240 2021-09-09] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klids; C:\ProgramData\Kaspersky Lab\AVP21.3\Bases\klids.sys [273176 2021-08-02] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [1042712 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klim6; C:\Windows\system32\DRIVERS\klim6.sys [98040 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [112392 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [112904 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [85256 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klpnpflt; C:\Windows\system32\DRIVERS\klpnpflt.sys [96008 2021-06-17] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 kltap; C:\Windows\System32\drivers\kltap.sys [55592 2020-10-21] (AnchorFree Inc -> The OpenVPN Project)
R0 klupd_klif_arkmon; C:\Windows\System32\Drivers\klupd_klif_arkmon.sys [265176 2021-09-20] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klupd_klif_klark; C:\Windows\System32\Drivers\klupd_klif_klark.sys [315032 2021-09-20] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R0 klupd_klif_klbg; C:\Windows\System32\Drivers\klupd_klif_klbg.sys [113952 2021-09-20] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klupd_klif_mark; C:\Windows\System32\Drivers\klupd_klif_mark.sys [225648 2021-09-22] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [155912 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klwtp; C:\Windows\system32\DRIVERS\klwtp.sys [327936 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [300808 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 logi_joy_bus_enum; C:\Windows\system32\drivers\logi_joy_bus_enum.sys [37200 2021-03-17] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\Windows\system32\drivers\logi_joy_vir_hid.sys [25928 2021-03-17] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\Windows\system32\drivers\logi_joy_xlcore.sys [66896 2021-03-17] (Logitech Inc -> Logitech)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [210352 2021-11-02] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [19912 2021-11-02] (Microsoft Windows Early Launch Anti-Malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [193448 2021-11-02] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [69040 2021-11-02] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248992 2021-11-02] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\Windows\system32\DRIVERS\mwac.sys [149424 2021-11-02] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [17424 2020-01-19] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
R3 NTIOLib_CC_COMM; C:\Program Files (x86)\MSI\One Dragon Center\Lib\SYS\NTIOLib_X64.sys [14288 2017-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NTIOLib_MysticLight; C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\Lib\NTIOLib_X64.sys [14288 2017-07-11] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 RzCommon; C:\Windows\System32\drivers\RzCommon.sys [54632 2021-03-30] (Razer USA Ltd. -> Razer Inc)
R3 RzDev_0221; C:\Windows\System32\drivers\RzDev_0221.sys [54168 2020-08-24] (Razer USA Ltd. -> Razer Inc)
S3 rzendpt; C:\Windows\System32\drivers\rzendpt.sys [52240 2020-06-11] (Razer USA Ltd. -> Razer Inc)
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [30744 2017-03-09] (IObit Information Technology -> IObit)
R3 tap0901; C:\Windows\System32\drivers\tap0901.sys [39920 2019-10-23] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
R3 VBAudioVACMME; C:\Windows\System32\drivers\vbaudio_cable64_win7.sys [41192 2014-09-02] (Vincent Burel -> Windows (R) Win 7 DDK provider)
S3 VBAudioVMAUXVAIOMME; C:\Windows\System32\drivers\vbaudio_vmauxvaio64_win10.sys [71920 2021-07-14] (Vincent Burel -> Windows (R) Win 7 DDK provider)
S3 VBAudioVMVAIOMME; C:\Windows\System32\drivers\vbaudio_vmvaio64_win10.sys [71712 2021-03-15] (Vincent Burel -> Windows (R) Win 7 DDK provider)
R3 VBoxNetAdp; C:\Windows\system32\DRIVERS\VBoxNetAdp6.sys [239664 2021-07-28] (Oracle Corporation -> Oracle Corporation)
R1 VBoxNetLwf; C:\Windows\system32\DRIVERS\VBoxNetLwf.sys [249568 2021-07-28] (Oracle Corporation -> Oracle Corporation)
R1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [8234256 2021-10-20] (Riot Games, Inc. -> Riot Games, Inc.)
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [48536 2020-11-12] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [429288 2020-11-12] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [71912 2020-11-12] (Microsoft Windows -> Microsoft Corporation)
S3 xhunter1; C:\Windows\xhunter1.sys [2742720 2021-01-21] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
S3 VBAudio100VMVAIO3MME; \SystemRoot\System32\drivers\vbaudio_vmvaio364_win10.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat (erstellte) (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2021-11-02 19:42 - 2021-11-02 19:43 - 000000000 ____D C:\FRST
2021-11-02 19:29 - 2021-11-02 19:31 - 000000000 ____D C:\AdwCleaner
2021-11-02 19:15 - 2021-11-02 19:15 - 000193448 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2021-11-02 19:15 - 2021-11-02 19:15 - 000149424 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2021-11-02 19:15 - 2021-11-02 19:15 - 000069040 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2021-11-02 19:15 - 2021-11-02 19:15 - 000000000 ____D C:\Users\yaddl\AppData\Local\mbam
2021-11-02 19:14 - 2021-11-02 19:14 - 000248992 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2021-11-02 19:14 - 2021-11-02 19:14 - 000210352 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2021-11-02 19:14 - 2021-11-02 19:14 - 000160176 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2021-11-02 19:14 - 2021-11-02 19:14 - 000019912 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamElam.sys
2021-11-02 19:14 - 2021-11-02 19:14 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-11-02 19:14 - 2021-11-02 19:14 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2021-11-02 19:14 - 2021-11-02 19:14 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-11-02 19:14 - 2021-11-02 19:14 - 000000000 ____D C:\Program Files\Malwarebytes
2021-11-02 18:17 - 2021-11-02 18:21 - 000000000 ____D C:\Program Files\LGHUB
2021-11-02 18:17 - 2021-11-02 18:17 - 000000650 _____ C:\Users\Public\Desktop\Logitech G HUB.lnk
2021-11-02 18:17 - 2021-11-02 18:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2021-11-01 09:14 - 2021-11-01 09:14 - 000004240 _____ C:\Windows\system32\Tasks\Opera GX scheduled Autoupdate 1635754476
2021-11-01 09:14 - 2021-11-01 09:14 - 000001432 _____ C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Browser Opera GX.lnk
2021-11-01 09:14 - 2021-11-01 09:14 - 000000000 ____D C:\Users\yaddl\AppData\Roaming\Opera Software
2021-11-01 09:14 - 2021-11-01 09:14 - 000000000 ____D C:\Users\yaddl\AppData\Local\Opera Software
2021-10-30 11:41 - 2019-09-12 08:59 - 000178960 _____ (IObit) C:\Windows\system32\IObitSmartDefragExtension.dll
2021-10-30 11:07 - 2021-10-30 11:07 - 000001233 _____ C:\Users\Public\Desktop\Smart Defrag 7.lnk
2021-10-26 14:01 - 2021-10-26 14:01 - 000002133 _____ C:\Users\yaddl\Industriedialog.txt
2021-10-26 11:04 - 2021-10-26 11:31 - 000027264 _____ C:\Users\yaddl\Modul3_img_proccv.ipynb
2021-10-26 10:58 - 2021-10-26 11:03 - 000043915 _____ C:\Users\yaddl\Modul3_Aliasing.ipynb
2021-10-21 09:45 - 2021-10-21 09:45 - 000354383 _____ C:\Users\yaddl\Getting Started Excercises Mario Hupka.pdf
2021-10-19 21:21 - 2021-10-19 21:21 - 000216088 _____ (Razer Inc.) C:\Windows\system32\RzChromaSDK64.dll
2021-10-19 21:19 - 2021-10-19 21:19 - 000186904 _____ (Razer Inc.) C:\Windows\SysWOW64\RzChromaSDK.dll
2021-10-19 12:27 - 2021-10-20 09:59 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-10-19 11:39 - 2021-10-19 11:59 - 000132313 _____ C:\Users\yaddl\Modul2_Nonlinear_Regression.ipynb
2021-10-19 11:39 - 2021-10-19 11:48 - 000038178 _____ C:\Users\yaddl\Modul2_Sensor_Calibration.ipynb
2021-10-19 10:55 - 2021-10-19 11:21 - 000181600 _____ C:\Users\yaddl\Modul2_SampleNoisy_Data2.ipynb
2021-10-19 10:55 - 2021-10-19 11:19 - 000075518 _____ C:\Users\yaddl\Modul2_Noisy_Data.ipynb
2021-10-19 08:51 - 2021-10-19 08:53 - 000055390 _____ C:\Users\yaddl\Musterloesungen_Python_Modul_1.ipynb
2021-10-13 17:57 - 2021-10-13 17:57 - 000706536 _____ C:\Windows\system32\TextShaping.dll
2021-10-13 17:57 - 2021-10-13 17:57 - 000611960 _____ C:\Windows\SysWOW64\TextShaping.dll
2021-10-13 17:57 - 2021-10-13 17:57 - 000570368 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2021-10-13 17:57 - 2021-10-13 17:57 - 000452096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2021-10-13 17:57 - 2021-10-13 17:57 - 000288768 _____ C:\Windows\system32\Windows.Management.InprocObjects.dll
2021-10-13 17:57 - 2021-10-13 17:57 - 000098304 _____ C:\Windows\system32\Drivers\cimfs.sys
2021-10-13 17:57 - 2021-10-13 17:57 - 000011495 _____ C:\Windows\system32\DrtmAuthTxt.wim
2021-10-13 17:52 - 2021-10-13 17:52 - 000000000 ___HD C:\$WinREAgent
2021-10-11 13:10 - 2021-10-11 13:10 - 000000000 ____D C:\Users\yaddl\.ssh
2021-10-11 09:27 - 2021-10-11 14:11 - 000000000 ____D C:\Users\yaddl\.vagrant.d
2021-10-11 09:27 - 2021-10-11 11:54 - 000000000 ____D C:\Users\yaddl\.vagrant
2021-10-11 09:08 - 2021-10-11 09:08 - 000000000 ____D C:\HashiCorp
2021-10-09 12:12 - 2021-10-09 12:12 - 000000000 ____D C:\Users\yaddl\.matplotlib
2021-10-09 10:53 - 2021-10-09 13:16 - 000034264 _____ C:\Users\yaddl\Übung Modul 1.ipynb
2021-10-09 10:50 - 2021-10-09 10:50 - 000000000 ____D C:\Users\yaddl\.jupyter
2021-10-07 08:11 - 2021-10-07 08:12 - 265420800 _____ C:\Users\yaddl\vagrant_2.2.18_x86_64.msi
2021-10-07 08:04 - 2021-10-07 08:04 - 000003004 _____ C:\Users\yaddl\Vagrantfile
2021-10-05 11:48 - 2021-10-09 13:08 - 000067630 _____ C:\Users\yaddl\Introduction to Jupyter Notebooks & Python.ipynb
2021-10-05 11:43 - 2021-10-26 11:07 - 000000000 ____D C:\Users\yaddl\.ipynb_checkpoints
2021-10-05 11:43 - 2021-10-05 11:43 - 000000072 _____ C:\Users\yaddl\Untitled.ipynb
2021-10-05 11:43 - 2021-10-05 11:43 - 000000000 ____D C:\Users\yaddl\.ipython
2021-10-05 11:43 - 2021-10-05 11:43 - 000000000 ____D C:\ProgramData\jupyter
2021-10-05 11:34 - 2021-10-05 11:34 - 000000000 ____D C:\Users\yaddl\AppData\Local\pip
2021-10-05 11:33 - 2021-10-05 11:33 - 000000000 ____D C:\Users\yaddl\.conda
2021-10-05 11:31 - 2021-10-26 11:31 - 000000000 ____D C:\Users\yaddl\AppData\Roaming\jupyter
2021-10-05 11:30 - 2021-10-05 11:35 - 000000000 ____D C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Anaconda3 (64-bit)
2021-10-05 11:30 - 2021-10-05 11:30 - 000000000 ____D C:\Users\yaddl\OneDrive\Dokumente\Python Scripts
2021-10-05 11:29 - 2021-10-05 11:30 - 000000000 ____D C:\Users\yaddl\anaconda3
2021-10-04 12:00 - 2021-10-04 12:00 - 000000000 ____D C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2021-10-03 12:17 - 2021-10-03 12:17 - 000000000 ____D C:\Users\yaddl\AppData\Roaming\AGS
2021-10-03 12:17 - 2021-10-03 12:17 - 000000000 ____D C:\Users\yaddl\AppData\Local\Persona
2021-10-03 12:17 - 2021-10-03 12:17 - 000000000 ____D C:\Users\yaddl\AppData\Local\AGS
2021-10-03 12:16 - 2021-10-03 12:16 - 000000000 ____D C:\Users\yaddl\AppData\Roaming\EasyAntiCheat
2021-10-03 12:16 - 2021-10-03 12:16 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat
==================== Ein Monat (geänderte) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2021-11-02 19:42 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-11-02 19:32 - 2020-06-13 14:26 - 000000000 ____D C:\ProgramData\NVIDIA
2021-11-02 19:31 - 2020-06-13 14:55 - 000000000 ____D C:\Users\yaddl\AppData\Roaming\LGHUB
2021-11-02 19:31 - 2020-06-11 11:35 - 000000000 ____D C:\Users\yaddl\AppData\Roaming\discord
2021-11-02 19:31 - 2020-06-11 00:39 - 000000000 ____D C:\ProgramData\ProductData
2021-11-02 19:31 - 2020-06-11 00:38 - 000000000 ____D C:\Users\yaddl\AppData\Roaming\IObit
2021-11-02 19:31 - 2020-06-11 00:38 - 000000000 ____D C:\ProgramData\IObit
2021-11-02 19:24 - 2020-06-24 13:15 - 000000000 ____D C:\Users\yaddl\AppData\LocalLow\Mozilla
2021-11-02 19:14 - 2019-12-07 10:14 - 000000000 ___HD C:\Windows\ELAMBKUP
2021-11-02 19:05 - 2021-04-29 13:59 - 000000000 ____D C:\Users\yaddl\AppData\Local\Discord
2021-11-02 18:49 - 2020-06-11 00:35 - 000000000 ____D C:\Program Files (x86)\Google
2021-11-02 18:44 - 2020-12-29 09:20 - 000000000 ____D C:\Users\yaddl\OneDrive\Dokumente\Outlook-Dateien
2021-11-02 18:34 - 2020-06-11 00:31 - 001722792 _____ C:\Windows\system32\PerfStringBackup.INI
2021-11-02 18:34 - 2019-12-07 15:50 - 000743714 _____ C:\Windows\system32\perfh007.dat
2021-11-02 18:34 - 2019-12-07 15:50 - 000150136 _____ C:\Windows\system32\perfc007.dat
2021-11-02 18:34 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF
2021-11-02 18:30 - 2020-06-11 11:42 - 000000001 _____ C:\Windows\vgkbootstatus.dat
2021-11-02 18:28 - 2020-06-13 14:55 - 000000000 ____D C:\Users\yaddl\AppData\Local\LGHUB
2021-11-02 18:27 - 2021-08-31 16:46 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2021-11-02 18:27 - 2020-06-11 00:24 - 000008192 ___SH C:\DumpStack.log.tmp
2021-11-02 18:27 - 2020-06-11 00:24 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-11-02 18:27 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ServiceState
2021-11-02 18:26 - 2019-12-07 10:03 - 000524288 _____ C:\Windows\system32\config\BBI
2021-11-02 16:02 - 2020-12-05 11:16 - 000000000 ____D C:\Users\yaddl\AppData\Roaming\RealtimeBoard
2021-11-02 16:01 - 2021-05-17 08:08 - 000000000 ____D C:\Users\yaddl\AppData\Local\ElevatedDiagnostics
2021-11-02 14:42 - 2020-06-13 14:43 - 000004172 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{D69EE3D5-FF51-481A-812F-F87CCE1328C5}
2021-11-02 13:36 - 2020-12-05 11:16 - 000000000 ____D C:\Users\yaddl\AppData\Local\RealtimeBoard
2021-11-02 09:34 - 2020-06-11 00:24 - 000000000 ____D C:\Windows\system32\SleepStudy
2021-11-02 08:24 - 2020-06-11 20:37 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2021-11-02 08:24 - 2020-06-11 20:37 - 000002148 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-11-01 18:29 - 2021-03-16 21:25 - 000000000 ____D C:\Users\yaddl\.VirtualBox
2021-11-01 16:05 - 2021-03-16 21:25 - 000000000 ____D C:\ProgramData\VirtualBox
2021-11-01 14:30 - 2021-02-07 23:10 - 000000000 ____D C:\Users\yaddl\AppData\Roaming\Notion
2021-11-01 09:16 - 2020-06-11 11:27 - 000000000 ____D C:\Users\yaddl\AppData\Local\D3DSCache
2021-11-01 07:56 - 2020-08-27 22:52 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-11-01 07:56 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-11-01 07:56 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness
2021-10-31 12:40 - 2021-03-15 09:42 - 000000000 ____D C:\Users\yaddl\AppData\Roaming\obs-studio
2021-10-31 12:04 - 2020-06-11 20:53 - 000000000 ____D C:\Program Files\Microsoft Office
2021-10-31 09:20 - 2020-11-18 17:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2021-10-31 09:19 - 2020-11-18 17:32 - 000000000 ____D C:\Program Files (x86)\Razer Chroma SDK
2021-10-30 22:57 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\LiveKernelReports
2021-10-30 14:31 - 2021-05-09 08:55 - 000000000 ___HD C:\adobeTemp
2021-10-30 14:31 - 2020-10-05 10:15 - 000000000 ___RD C:\Users\yaddl\Creative Cloud Files
2021-10-30 14:31 - 2020-06-15 12:39 - 000000000 ____D C:\Program Files\Adobe
2021-10-30 14:30 - 2020-06-15 12:39 - 000000000 ____D C:\Program Files\Common Files\Adobe
2021-10-30 14:29 - 2020-06-15 12:40 - 000001386 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2021-10-30 14:29 - 2020-06-15 12:39 - 000000000 ____D C:\Program Files (x86)\Adobe
2021-10-30 14:16 - 2020-06-24 13:15 - 000000000 ____D C:\ProgramData\Mozilla
2021-10-30 11:41 - 2021-01-15 12:59 - 000003264 _____ C:\Windows\system32\Tasks\SmartDefrag_AutoAnalyze
2021-10-30 11:07 - 2021-01-15 12:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Defrag
2021-10-29 10:19 - 2020-06-11 00:44 - 000002293 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-10-28 20:49 - 2019-12-07 10:03 - 000032768 _____ C:\Windows\system32\config\ELAM
2021-10-28 19:51 - 2020-08-09 13:12 - 000000000 ____D C:\Users\yaddl\OneDrive\Dokumente\My Games
2021-10-26 15:30 - 2020-06-21 15:20 - 000000000 ____D C:\Users\yaddl\AppData\Local\CrashDumps
2021-10-26 14:01 - 2020-06-11 00:29 - 000000000 ____D C:\Users\yaddl
2021-10-25 22:29 - 2020-06-11 21:50 - 000000000 ____D C:\Users\yaddl\AppData\Local\Battle.net
2021-10-25 18:34 - 2020-11-05 18:53 - 000000000 ____D C:\Users\yaddl\OneDrive\Dokumente\StarCraft
2021-10-24 12:44 - 2020-06-11 11:19 - 000000000 ____D C:\Program Files\Riot Vanguard
2021-10-23 20:16 - 2020-06-14 14:50 - 000000000 ____D C:\Users\yaddl\AppData\Roaming\TS3Client
2021-10-23 18:01 - 2020-06-18 21:29 - 000000000 ____D C:\Users\yaddl\AppData\Local\Overwolf
2021-10-23 17:56 - 2020-06-11 11:12 - 000000000 ____D C:\ProgramData\Riot Games
2021-10-23 15:02 - 2020-06-11 11:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riot Games
2021-10-21 14:04 - 2020-06-11 00:31 - 000000000 ____D C:\Users\yaddl\AppData\Local\Packages
2021-10-20 18:47 - 2020-11-05 18:38 - 000000000 ____D C:\ProgramData\Origin
2021-10-20 18:47 - 2020-11-05 18:38 - 000000000 ____D C:\Program Files (x86)\Origin
2021-10-20 09:59 - 2020-06-24 13:15 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-10-19 22:05 - 2021-09-22 16:46 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2021-10-19 22:05 - 2020-06-24 13:15 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-10-16 16:28 - 2020-06-13 14:11 - 000000000 ____D C:\Users\yaddl\AppData\Roaming\NOW TV Player
2021-10-16 13:55 - 2020-06-11 00:29 - 000000000 ____D C:\ProgramData\Razer
2021-10-15 09:13 - 2020-06-15 13:29 - 000002114 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller DC.lnk
2021-10-15 09:13 - 2020-06-15 13:29 - 000002103 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2021-10-14 07:18 - 2020-06-15 12:43 - 000003522 _____ C:\Windows\system32\Tasks\AdobeGCInvoker-1.0
2021-10-13 23:14 - 2020-06-11 00:24 - 000461704 _____ C:\Windows\system32\FNTCACHE.DAT
2021-10-13 23:13 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\UNP
2021-10-13 23:13 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2021-10-13 23:13 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\oobe
2021-10-13 23:13 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources
2021-10-13 23:13 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2021-10-13 23:13 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\oobe
2021-10-13 23:13 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2021-10-13 23:13 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\DiagTrack
2021-10-13 23:13 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr
2021-10-13 17:59 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp
2021-10-13 17:52 - 2020-07-29 08:17 - 000000000 ____D C:\Windows\system32\MRT
2021-10-13 17:50 - 2020-07-29 08:17 - 139806512 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2021-10-11 13:07 - 2021-03-16 21:41 - 000000000 ____D C:\Users\yaddl\VirtualBox VMs
2021-10-11 12:42 - 2021-03-16 21:25 - 000000625 _____ C:\Users\Public\Desktop\Oracle VM VirtualBox.lnk
2021-10-11 11:20 - 2020-11-05 18:38 - 000000000 ____D C:\Users\yaddl\AppData\Roaming\Origin
2021-10-11 11:19 - 2020-12-10 21:24 - 000000000 ____D C:\Program Files (x86)\Origin Games
2021-10-11 11:19 - 2020-11-05 18:38 - 000000000 ____D C:\Users\yaddl\AppData\Local\Origin
2021-10-11 10:57 - 2020-06-15 15:20 - 000000000 ____D C:\Users\yaddl\AppData\Roaming\vlc
2021-10-10 12:43 - 2020-08-24 11:24 - 000000000 ___HD C:\Program Files\Common Files\EAInstaller
2021-10-10 09:31 - 2021-01-24 10:09 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-10-09 22:40 - 2020-08-27 22:50 - 000003700 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-10-09 22:40 - 2020-08-27 22:50 - 000003576 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-10-04 12:00 - 2020-06-11 20:22 - 000000000 ____D C:\Users\yaddl\AppData\Roaming\Zoom
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========
2021-06-01 13:03 - 2021-06-01 13:03 - 000063488 _____ () C:\Users\yaddl\xobglu16.dll
2021-06-01 13:03 - 2021-06-01 13:03 - 000023552 _____ () C:\Users\yaddl\xobglu32.dll
2020-12-21 09:58 - 2020-12-21 09:58 - 000001815 _____ () C:\Users\yaddl\AppData\Roaming\CoolTerm_Prefs.plist
2021-07-25 20:04 - 2021-07-25 20:04 - 000037889 _____ () C:\Users\yaddl\AppData\Roaming\VoiceMeeterBananaDefault.xml
2021-03-15 11:15 - 2021-07-14 16:09 - 000006058 _____ () C:\Users\yaddl\AppData\Roaming\VoiceMeeterDefault.xml
2021-07-14 16:09 - 2021-07-28 19:23 - 000070047 _____ () C:\Users\yaddl\AppData\Roaming\VoiceMeeterPotatoDefault.xml
2020-06-15 12:39 - 2020-06-15 12:39 - 000000410 _____ () C:\Users\yaddl\AppData\Local\oobelibMkey.log
2020-06-13 14:21 - 2021-09-16 14:18 - 000007597 _____ () C:\Users\yaddl\AppData\Local\Resmon.ResmonCfg
2021-01-18 19:18 - 2021-01-18 19:18 - 000000003 _____ () C:\Users\yaddl\AppData\Local\updater.log
2021-01-18 19:18 - 2021-01-19 08:54 - 000000059 _____ () C:\Users\yaddl\AppData\Local\UserProducts.xml
==================== SigCheck ============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
==================== Ende von FRST.txt ========================
Geändert von HiImCeddi (02.11.2021 um 20:24 Uhr) |
|
02.11.2021, 20:17
| #2 |
| | Win 10 Kaspersky meldet:PDM:Trojan.Win32.Generic und Trojan.Multi.GenAutorunReg.a Addition:
__________________Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 02-11-2021
durchgeführt von yaddl (02-11-2021 19:43:56)
Gestartet von E:\Downloads
Microsoft Windows 10 Home Version 21H1 19043.1288 (X64) (2020-06-10 23:26:22)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
Administrator (S-1-5-21-1657895749-1354642030-2233333917-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1657895749-1354642030-2233333917-503 - Limited - Disabled)
Gast (S-1-5-21-1657895749-1354642030-2233333917-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-1657895749-1354642030-2233333917-504 - Limited - Disabled)
yaddl (S-1-5-21-1657895749-1354642030-2233333917-1001 - Administrator - Enabled) => C:\Users\yaddl
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Kaspersky Total Security (Enabled - Up to date) {4F76F112-43EB-40E8-11D8-F7BD1853EA23}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AV: Kaspersky Total Security (Enabled - Up to date) {0AB30972-4BAC-7BEE-CBCA-B8F9E68797D8}
FW: Kaspersky Total Security (Enabled) {774D7037-0984-41B0-3A87-5E88E680AD58}
FW: Kaspersky Total Security (Enabled) {32888857-01C3-7AB6-E095-11CC1854D0A3}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
4K Capture Utility (HKLM\...\{D5F34565-253F-4F45-9BDB-439D02FC9CDE}) (Version: 1.7.4.4808 - Elgato Systems)
Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 21.007.20099 - Adobe Systems Incorporated)
Adobe After Effects 2021 (HKLM-x32\...\AEFT_18_4) (Version: 18.4 - Adobe Inc.)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 5.6.0.788 - Adobe Inc.)
Adobe Genuine Service (HKLM-x32\...\AdobeGenuineService) (Version: - Adobe)
Adobe Illustrator 2021 (HKLM-x32\...\ILST_25_4_1) (Version: 25.4.1 - Adobe Inc.)
Adobe InDesign 2021 (HKLM-x32\...\IDSN_16_3) (Version: 16.3 - Adobe Inc.)
Adobe Media Encoder 2021 (HKLM-x32\...\AME_15_4_1) (Version: 15.4.1 - Adobe Inc.)
Adobe Photoshop 2020 (HKLM-x32\...\PHSP_21_2_10) (Version: 21.2.10.118 - Adobe Inc.)
Adobe Photoshop 2021 (HKLM-x32\...\PHSP_22_4_3) (Version: 22.4.3.317 - Adobe Inc.)
Adobe Premiere Pro 2021 (HKLM-x32\...\PPRO_15_4_1) (Version: 15.4.1 - Adobe Inc.)
AMD Ryzen Master SDK (HKLM\...\{DBD50508-5F75-416B-995D-C42433A00944}) (Version: 2.7.0.1725 - Advanced Micro Devices, Inc.)
Anaconda3 2021.05 (Python 3.8.8 64-bit) (HKU\S-1-5-21-1657895749-1354642030-2233333917-1001\...\Anaconda3 2021.05 (Python 3.8.8 64-bit)) (Version: 2021.05 - Anaconda, Inc.)
Anki (HKLM-x32\...\Anki) (Version: 2.1.34 - )
Anno 1800 (HKLM-x32\...\Uplay Install 4553) (Version: - Ubisoft)
Assassin's Creed IV Black Flag (HKLM-x32\...\Uplay Install 273) (Version: - Ubisoft)
Assassin's Creed Odyssey (HKLM-x32\...\Uplay Install 5059) (Version: - Ubisoft)
Audacity 3.0.0 (HKLM-x32\...\Audacity_is1) (Version: 3.0.0 - Audacity Team)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Blender (HKLM\...\{D6E38255-FB12-4724-A6FF-075B43272C66}) (Version: 2.92.0 - Blender Foundation)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: - Canon Inc.)
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.2.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: - Canon Inc.)
Canon MX920 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MX920_series) (Version: 1.01 - Canon Inc.)
CurseForge (HKU\S-1-5-21-1657895749-1354642030-2233333917-1001\...\Overwolf_cchhcaiapeikjbdbpfplgmpobbcdkdaphclbmkbj) (Version: 0.185.2.1 - Overwolf app)
Dev-C++ (HKLM-x32\...\Dev-C++) (Version: 5.11 - Bloodshed Software)
DigiExam (HKU\S-1-5-21-1657895749-1354642030-2233333917-1001\...\DigiExam) (Version: 12.9.0 - DigiExam Solutions Sweden AB)
Discord (HKU\S-1-5-21-1657895749-1354642030-2233333917-1001\...\Discord) (Version: 1.0.9001 - Discord Inc.)
DroidCam Client (HKLM-x32\...\DroidCam) (Version: 6.2.7 - Dev47apps)
ENE_DRAM_RGB_AIO (HKLM\...\{1745D314-9077-46C9-8562-1C62BAE189B7}) (Version: 1.0.0.10 - Ene Tech.) Hidden
ENE_DRAM_RGB_AIO (HKLM-x32\...\{52d1d7de-19c3-4f83-97bb-f9435dc84c5b}) (Version: 1.0.0.10 - Ene Tech.) Hidden
ENE_EHD_M2_HAL (HKLM\...\{37A48B7F-D4EA-4863-844E-A284E2AA3C5D}) (Version: 1.0.7.11 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_M2_HAL (HKLM-x32\...\{fd812556-e0bb-4961-ac2b-cf5643484519}) (Version: 1.0.7.11 - ENE TECHNOLOGY INC.) Hidden
ENE_MousePad_HAL (HKLM\...\{9E97178A-ADB8-4778-BE60-7E28E2A72721}) (Version: 1.0.1.2 - ENE TECHNOLOGY INC.) Hidden
ENE_MousePad_HAL (HKLM-x32\...\{0c535d48-a3ba-4f7d-a1e2-10a941313631}) (Version: 1.0.1.2 - ENE TECHNOLOGY INC.) Hidden
ENE_X-JMI_HAL (HKLM\...\{2B8E611F-0B51-4FAC-87BB-AF50D82E7DDA}) (Version: 1.0.5.1 - ENE Tech) Hidden
ENE_X-JMI_HAL (HKLM-x32\...\{50ec3a07-291b-463e-be86-487eb8cbb71c}) (Version: 1.0.5.1 - ENE Tech) Hidden
Epic Games Launcher (HKLM-x32\...\{2D833785-910B-4E02-9A6B-51BD3D2F2FCE}) (Version: 1.1.279.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Figma (HKU\S-1-5-21-1657895749-1354642030-2233333917-1001\...\Figma) (Version: 96.4.0 - Figma, Inc.)
Figma Agent (HKU\S-1-5-21-1657895749-1354642030-2233333917-1001\...\FigmaAgent) (Version: 1.0.3 - Figma, Inc.)
Game Capture HD60 S v1.1.0.194 (HKLM-x32\...\Software_Elgato_Game Capture HD60 S) (Version: 1.1.0.194 - Elgato Systems)
GameRanger (HKU\S-1-5-21-1657895749-1354642030-2233333917-1001\...\GameRanger) (Version: - GameRanger Technologies)
Git version 2.27.0 (HKLM\...\Git_is1) (Version: 2.27.0 - The Git Development Community)
GOG GALAXY (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 95.0.4638.69 - Google LLC)
Grand Theft Auto V (HKLM-x32\...\{5EFC6C07-6B87-43FC-9524-F9E967241741}) (Version: 1.0.2245.0 - Rockstar Games)
Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{F70BCE36-25F2-4475-A918-6209B3D85BF3}) (Version: 15.0.179 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000000-0220-1031-84C8-B8D95FA3C8C3}) (Version: 22.00.0.2 - Intel Corporation)
Java 8 Update 251 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180251F0}) (Version: 8.0.2510.8 - Oracle Corporation)
Java 8 Update 271 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180271F0}) (Version: 8.0.2710.9 - Oracle Corporation)
Java 8 Update 281 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180281F0}) (Version: 8.0.2810.9 - Oracle Corporation)
Java 8 Update 291 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180291F0}) (Version: 8.0.2910.10 - Oracle Corporation)
Java 8 Update 301 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180301F0}) (Version: 8.0.3010.9 - Oracle Corporation)
Java SE Development Kit 8 Update 251 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180251}) (Version: 8.0.2510.8 - Oracle Corporation)
Kaspersky Password Manager (HKLM-x32\...\{B2F7333E-6C8D-4994-AAC4-FEC8EBBF9611}) (Version: 9.0.2.767 - Kaspersky Lab) Hidden
Kaspersky Password Manager (HKLM-x32\...\InstallWIX_{B2F7333E-6C8D-4994-AAC4-FEC8EBBF9611}) (Version: 9.0.2.767 - Kaspersky Lab)
Kaspersky Total Security (HKLM-x32\...\{4FC79BE9-AD63-46C0-9626-E4F6BCE6A976}) (Version: 21.3.10.391 - Kaspersky) Hidden
Kaspersky Total Security (HKLM-x32\...\InstallWIX_{4FC79BE9-AD63-46C0-9626-E4F6BCE6A976}) (Version: 21.3.10.391 - Kaspersky)
Kaspersky VPN (HKLM-x32\...\{FF2A12B8-AEB7-48C0-95C8-E2E3D67DFCB2}) (Version: 21.3.10.391 - Kaspersky) Hidden
Kaspersky VPN (HKLM-x32\...\InstallWIX_{FF2A12B8-AEB7-48C0-95C8-E2E3D67DFCB2}) (Version: 21.3.10.391 - Kaspersky)
Kinect for Windows Speech Recognition Language Pack (de-DE) (HKLM-x32\...\{898AA67F-99B8-4C7F-9611-B11F98EF6E78}) (Version: 11.0.7413.611 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-AU) (HKLM-x32\...\{48CEC0A3-AE10-4EE3-AC62-76D3D58792E5}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-CA) (HKLM-x32\...\{9C5505DA-F9C1-46CB-9F8F-AC38F8EA518A}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-GB) (HKLM-x32\...\{A0186231-0A8B-455A-8A25-B64AABCC11A6}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-IE) (HKLM-x32\...\{998D5259-3BED-4710-98FF-D63387B5429E}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-NZ) (HKLM-x32\...\{07FC9CAD-FCEC-4186-BB83-EF7CCC9372BA}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-US) (HKLM-x32\...\{8AAA44BB-487E-4D01-AF76-484ACB90DBFE}) (Version: 11.0.7400.336 - Microsoft Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKU\S-1-5-21-1657895749-1354642030-2233333917-1001\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc)
Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: 2021.11.8744 - Logitech)
Malwarebytes version 4.4.9.142 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.4.9.142 - Malwarebytes)
MATLAB R2020b (HKLM\...\Matlab R2020b) (Version: 9.9 - MathWorks)
Maxon Cinema 4D 22 (HKLM\...\Maxon Cinema 4D S22) (Version: S22 - Maxon)
Maxon Cinema 4D R21 (HKLM\...\Maxon Cinema 4D R21) (Version: R21 - Maxon)
Microsoft 365 - de-de (HKLM\...\O365HomePremRetail - de-de) (Version: 16.0.14527.20234 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 95.0.1020.40 - Microsoft Corporation)
Microsoft Edge WebView2-Laufzeit (HKLM-x32\...\Microsoft EdgeWebView) (Version: 95.0.1020.40 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 21.205.1003.0003 - Microsoft Corporation)
Microsoft Server Speech Platform Runtime (x64) (HKLM\...\{3B433087-E62E-4BF5-97F9-4AF6E1C2409C}) (Version: 11.0.7400.345 - Microsoft Corporation)
Microsoft Server Speech Recognition Language - TELE (en-IN) (HKLM-x32\...\{3B06AC90-DE68-44A9-95EB-0A3C1AF1514F}) (Version: 11.0.7400.335 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{29B15818-E79F-4AB0-8938-9410C807AD76}) (Version: 2.84.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{8e24fb65-31aa-446d-9c3e-35c5e11cb367}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.29.30040 (HKLM-x32\...\{5c6cccca-61ec-4667-a8d9-e133a59a5a73}) (Version: 14.29.30040.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.29.30040 (HKLM-x32\...\{a8968509-65be-4c09-a460-fd1584b1cdbf}) (Version: 14.29.30040.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Minecraft Launcher (HKLM-x32\...\{27B34E47-68AE-4802-822A-9F0C187AF84A}) (Version: 1.0.0.0 - Mojang)
Miro (HKU\S-1-5-21-1657895749-1354642030-2233333917-1001\...\RealtimeBoard) (Version: 0.6.6 - Miro)
Mozilla Firefox (x64 de) (HKLM\...\Mozilla Firefox 93.0 (x64 de)) (Version: 93.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 78.11.0 - Mozilla)
Mozilla Thunderbird 78.11.0 (x64 de) (HKLM\...\Mozilla Thunderbird 78.11.0 (x64 de)) (Version: 78.11.0 - Mozilla)
MSI SDK (HKLM-x32\...\{EE7D557C-3AE7-4348-8DCA-3A89790D0002}}_is1) (Version: 2.2021.0118.01 - MSI)
Need for Speed™ Most Wanted (HKLM-x32\...\{A48B9CD8-C2BA-4EC9-0081-7260D238C7CF}) (Version: - )
Notion 2.0.18 (HKU\S-1-5-21-1657895749-1354642030-2233333917-1001\...\fcdf0d7f-424b-5f10-a1c7-a8f643f21adf) (Version: 2.0.18 - Notion Labs, Incorporated)
NVIDIA FrameView SDK 1.1.4923.29968894 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29968894 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.23.0.74 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.23.0.74 - NVIDIA Corporation)
NVIDIA Grafiktreiber 472.12 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 472.12 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.38.60 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.60 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 26.1.1 - OBS Project)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.14527.20234 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.14527.20234 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0407-1000-0000000FF1CE}) (Version: 16.0.14527.20234 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenVPN 2.4.9-I601-Win10 (HKLM\...\OpenVPN) (Version: 2.4.9-I601-Win10 - OpenVPN Technologies, Inc.)
Opera GX Stable 80.0.4170.61 (HKU\S-1-5-21-1657895749-1354642030-2233333917-1001\...\Opera GX 80.0.4170.61) (Version: 80.0.4170.61 - Opera Software)
Oracle VM VirtualBox 6.1.26 (HKLM\...\{2CF0FF10-F808-40E1-B325-5EF6DA3B6624}) (Version: 6.1.26 - Oracle Corporation)
Origin (HKLM-x32\...\Origin) (Version: 10.5.106.49298 - Electronic Arts, Inc.)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.181.0.11 - Overwolf Ltd.)
Paradox Launcher v2 (HKLM\...\{A92DB5D9-A24D-4678-9F91-B4FA6D895718}) (Version: 2.0.4.0 - Paradox Interactive)
Porofessor.gg (HKU\S-1-5-21-1657895749-1354642030-2233333917-1001\...\Overwolf_pibhbkkgefgheeglaeemkkfjlhidhcedalapdggh) (Version: 2.7.43 - Overwolf app)
RaiderIO 2.0.2 (HKLM\...\ea53c16d-4ef5-533f-83dc-5b0c5bb40cb2) (Version: 2.0.2 - jah@raider.io)
Raumschiffe bauen mit Willy Werkel (HKLM-x32\...\{E5BD5D44-EC2D-47FF-B451-6A6DA0B8AC60}) (Version: 1.00.0000 - Terzio Verlag)
Razer Synapse (HKLM-x32\...\Razer Synapse) (Version: 3.6.1030.102715 - Razer Inc.)
Riot Vanguard (HKLM\...\Riot Vanguard) (Version: - Riot Games, Inc.)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.39.355 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.8.1 - Rockstar Games)
RuneScape Launcher 2.2.9 (HKLM\...\RuneScape Launcher_is1) (Version: 2.2.9 - Jagex Ltd)
Sky Ticket 8.7.0.0 (HKU\S-1-5-21-1657895749-1354642030-2233333917-1001\...\com.bskyb.skyticket_is1) (Version: 8.7.0.0 - Sky Ticket)
Smart Defrag 7 (HKLM-x32\...\Smart Defrag_is1) (Version: 7.2.0.91 - IObit)
Spotify (HKU\S-1-5-21-1657895749-1354642030-2233333917-1001\...\Spotify) (Version: 1.1.63.568.gda8cb5ac - Spotify AB)
STAR WARS™ Battlefront™ II (HKLM-x32\...\{8a882ce0-0c0b-4eb2-850c-28ebadab4f50}) (Version: 1.1.8.16162 - Electronic Arts)
StarCraft (HKLM-x32\...\StarCraft) (Version: - Blizzard Entertainment)
StarCraft II (HKLM-x32\...\StarCraft II) (Version: - Blizzard Entertainment)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
STMicroelectronics stlink-server (HKLM-x32\...\{F47799D9-26B2-4E45-9689-603534A19A82}) (Version: 2.0.2-1 - STMicroelectronics)
STMicroelectronics STM32CubeIDE 1.5.0 (HKLM-x32\...\STMicroelectronics STM32CubeIDE 1.5.0) (Version: 1.5.0 - STMicroelectronics)
StreamElements OBS.Live (HKLM-x32\...\StreamElements OBS.Live) (Version: 21.9.27.783 - StreamElements)
TAP-Windows 9.24.2 (HKLM\...\TAP-Windows) (Version: 9.24.2 - OpenVPN Technologies, Inc.)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.5.2 - TeamSpeak Systems GmbH)
The Witcher 3: Wild Hunt - Game of the Year Edition (HKLM-x32\...\1495134320_is1) (Version: 1.32 - GOG.com)
thesettlers3 (HKLM-x32\...\Uplay Install 11784) (Version: - Ubisoft)
thesettlers6 (HKLM-x32\...\Uplay Install 11787) (Version: - Ubisoft)
thesettlers7 (HKLM-x32\...\Uplay Install 11788) (Version: - Ubisoft)
Trackmania (HKLM-x32\...\Uplay Install 5595) (Version: - Ubisoft)
Twitch (HKU\S-1-5-21-1657895749-1354642030-2233333917-1001\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 8.0.0 - Twitch Interactive, Inc.)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 109.0 - Ubisoft)
UXP WebView Support (HKLM-x32\...\UXPW_1_0_0) (Version: 1.0.0 - Adobe Inc.)
Vagrant (HKLM-x32\...\{16A5FBD6-485D-4C8E-A382-39E3138F4E5E}) (Version: 2.2.18 - HashiCorp)
VALORANT (HKU\S-1-5-21-1657895749-1354642030-2233333917-1001\...\Riot Game valorant.live) (Version: - Riot Games, Inc)
VBCABLE, The Virtual Audio Cable (HKLM\...\VB:VBCABLE {87459874-1236-4469}) (Version: - VB-Audio Software)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.12 - VideoLAN)
WD_BLACK AN1500 (HKLM\...\{085E2365-0A70-4230-B664-02D5E4FE7E9C}) (Version: 1.0.12.0 - ENE TECHNOLOGY INC.) Hidden
WD_BLACK AN1500 (HKLM-x32\...\{9c94735f-73fd-4b0f-9ddb-8be7b3cc4681}) (Version: 1.0.12.0 - ENE TECHNOLOGY INC.) Hidden
WD_BLACK D50 (HKLM\...\{BDE43F26-5917-44F8-B86A-F1D9A6B80B32}) (Version: 1.0.9.0 - ENE TECHNOLOGY INC.) Hidden
WD_BLACK D50 (HKLM-x32\...\{a1d1ba00-92b7-4a99-8ebd-65b25c0e9e44}) (Version: 1.0.9.0 - ENE TECHNOLOGY INC.) Hidden
Windows-Treiberpaket - Segger (jlink) USB (08/02/2018 2.70.08.0) (HKLM\...\67EA26CAD232922E8506AD97DBD93123C434F28F) (Version: 08/02/2018 2.70.08.0 - Segger)
Windows-Treiberpaket - SEGGER (JLinkCDC) Ports (06/06/2019 1.34.0.44950) (HKLM\...\132A9445F9095BD5CEE4933C0C25054C253BD8A3) (Version: 06/06/2019 1.34.0.44950 - SEGGER)
Windows-Treiberpaket - SEGGER Microcontroller GmbH (WinUSB) USBDevice (06/14/2019 3.00.00.000) (HKLM\...\BCE8431F6070A538518E2C2403B8E063956798AA) (Version: 06/14/2019 3.00.00.000 - SEGGER Microcontroller GmbH)
WinRAR 5.90 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.90.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
Yu-Gi-Oh! The Dawn of a New Era Version 5.24.0.5050 (HKLM-x32\...\{1F276EF8-ACD8-4805-845C-BA1FC14DCB3B}_is1) (Version: 5.24.0.5050 - Kaiba Corporation)
Zoom (HKU\S-1-5-21-1657895749-1354642030-2233333917-1001\...\ZoomUMX) (Version: 5.8.0 (1324) - Zoom Video Communications, Inc.)
Packages:
=========
Acrobat Notification Client -> C:\Program Files\WindowsApps\AcrobatNotificationClient_1.0.4.0_x86__e1rzdqpraam7r [2020-06-17] (Adobe Systems Incorporated)
Adobe Notification Client -> C:\Program Files\WindowsApps\AdobeNotificationClient_2.0.1.8_x86__enpm4xejd91yc [2020-07-10] (Adobe Systems Incorporated)
Candy Crush Friends -> C:\Program Files\WindowsApps\king.com.CandyCrushFriends_1.67.3.0_x86__kgqvnymyfvs32 [2021-10-22] (king.com)
Canon Inkjet Print Utility -> C:\Program Files\WindowsApps\34791E63.CanonInkjetPrintUtility_3.1.0.0_neutral__6e5tt8cgb93ep [2021-07-02] (Canon Inc.)
DragonCenter -> C:\Program Files\WindowsApps\9426MICRO-STARINTERNATION.DragonCenter_2.0.119.0_x64__kzh8wxbdkxb8p [2021-10-20] (MICRO-STAR INTERNATIONAL CO., LTD) [Startup Task]
Drawboard PDF -> C:\Program Files\WindowsApps\DRAWBOARD.DRAWBOARDPDF_6.4.14.0_x64__gqbn7fs4pywxm [2021-10-28] (Drawboard)
Media Engine-Add-On für Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-07-14] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-06-12] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-06-12] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.10.10270.0_x64__8wekyb3d8bbwe [2021-11-01] (Microsoft Studios) [MS Ad]
Microsoft To Do -> C:\Program Files\WindowsApps\Microsoft.Todos_2.55.42923.0_x64__8wekyb3d8bbwe [2021-10-22] (Microsoft Corporation) [Startup Task]
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.97.752.0_x64__mcm4njqhnhss8 [2020-07-15] (Netflix, Inc.)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.961.0_x64__56jybvy8sckqj [2021-09-24] (NVIDIA Corp.)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-1657895749-1354642030-2233333917-1001_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6} -> [OneDrive - Personal] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}
CustomCLSID: HKU\S-1-5-21-1657895749-1354642030-2233333917-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-4F25F1C7AEBE} -> [Creative Cloud Files] => C:\Users\yaddl\Creative Cloud Files [2020-10-05 10:15]
CustomCLSID: HKU\S-1-5-21-1657895749-1354642030-2233333917-1001_Classes\CLSID\{2F81B25E-7507-4844-BFF2-77D2CC24CED4}\localserver32 -> C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Inc. -> Adobe Inc.)
CustomCLSID: HKU\S-1-5-21-1657895749-1354642030-2233333917-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-11-02] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-11-02] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-11-02] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-11-02] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-11-02] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-11-02] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-11-02] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-09-15] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-09-15] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-09-15] (Adobe Inc. -> )
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-11-02] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-11-02] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-11-02] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-11-02] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-11-02] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-11-02] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-11-02] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-11-02] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-09-15] (Adobe Inc. -> )
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2021-09-09] (Adobe Inc. -> Adobe Systems Inc.)
ContextMenuHandlers1: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\x64\shellex.dll [2021-04-26] (Kaspersky Lab JSC -> AO Kaspersky Lab)
ContextMenuHandlers1: [SmartDefragExtension] -> {189F1E63-33A7-404B-B2F6-8C76A452CC54} => C:\Windows\System32\IObitSmartDefragExtension.dll [2019-09-12] (IObit Information Technology -> IObit)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => E:\winrar\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => E:\winrar\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\x64\shellex.dll [2021-04-26] (Kaspersky Lab JSC -> AO Kaspersky Lab)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-11-02] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-11-02] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\x64\shellex.dll [2021-04-26] (Kaspersky Lab JSC -> AO Kaspersky Lab)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-11-02] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nvmdsi.inf_amd64_5d552f56b2dc9725\nvshext.dll [2021-09-16] (Nvidia Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-09-15] (Adobe Inc. -> )
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2021-09-09] (Adobe Inc. -> Adobe Systems Inc.)
ContextMenuHandlers6: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\x64\shellex.dll [2021-04-26] (Kaspersky Lab JSC -> AO Kaspersky Lab)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-11-02] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [SmartDefragExtension] -> {189F1E63-33A7-404B-B2F6-8C76A452CC54} => C:\Windows\System32\IObitSmartDefragExtension.dll [2019-09-12] (IObit Information Technology -> IObit)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => E:\winrar\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => E:\winrar\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Nicht auf der Ausnahmeliste) ====================
==================== Verknüpfungen & WMI ========================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
ShortcutWithArgument: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Anaconda3 (64-bit)\Anaconda Prompt (anaconda3).lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> "/K" C:\Users\yaddl\anaconda3\Scripts\activate.bat C:\Users\yaddl\anaconda3
==================== Geladene Module (Nicht auf der Ausnahmeliste) =============
2021-09-09 06:16 - 2021-09-09 06:16 - 000022016 _____ (Adobe Systems Inc.) [Datei ist nicht signiert] C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\locale\de_de\Acrobat Elements\ContextMenuShim64.deu
2021-09-24 11:03 - 2021-09-24 11:03 - 001230336 _____ (Applied Informatics Software Engineering GmbH) [Datei ist nicht signiert] C:\Program Files (x86)\Razer Chroma SDK\bin\PocoFoundation.dll
2021-09-24 11:03 - 2021-09-24 11:03 - 000207872 _____ (Applied Informatics Software Engineering GmbH) [Datei ist nicht signiert] C:\Program Files (x86)\Razer Chroma SDK\bin\PocoJSON.dll
2021-09-24 11:03 - 2021-09-24 11:03 - 000810496 _____ (Applied Informatics Software Engineering GmbH) [Datei ist nicht signiert] C:\Program Files (x86)\Razer Chroma SDK\bin\PocoNet.dll
2021-09-24 11:03 - 2021-09-24 11:03 - 000238592 _____ (Applied Informatics Software Engineering GmbH) [Datei ist nicht signiert] C:\Program Files (x86)\Razer Chroma SDK\bin\PocoNetSSLWin.dll
2021-09-24 11:03 - 2021-09-24 11:03 - 000335360 _____ (Applied Informatics Software Engineering GmbH) [Datei ist nicht signiert] C:\Program Files (x86)\Razer Chroma SDK\bin\PocoUtil.dll
2021-09-24 11:03 - 2021-09-24 11:03 - 000455168 _____ (Applied Informatics Software Engineering GmbH) [Datei ist nicht signiert] C:\Program Files (x86)\Razer Chroma SDK\bin\PocoXML.dll
2021-01-29 10:51 - 2012-07-31 08:48 - 000359936 _____ (CANON INC.) [Datei ist nicht signiert] C:\Windows\System32\CNMN6PPM.DLL
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\Users\yaddl\Anwendungsdaten:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\yaddl\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394]
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================
==================== Internet Explorer (Nicht auf der Ausnahmeliste) ==========
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_301\bin\ssv.dll [2021-07-29] (Oracle America, Inc. -> Oracle Corporation)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2020-05-30] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_301\bin\jp2ssv.dll [2021-07-29] (Oracle America, Inc. -> Oracle Corporation)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2020-05-30] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2020-05-30] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2020-05-30] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2020-05-30] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2020-05-30] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts Inhalt: =========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2019-12-07 10:14 - 2019-12-07 10:12 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
==================== Andere Bereiche ===========================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Razer Chroma SDK\bin;C:\Program Files\Razer Chroma SDK\bin;C:\Program Files (x86)\Razer\ChromaBroadcast\bin;C:\Program Files\Razer\ChromaBroadcast\bin;C:\Program Files (x86)\Common Files\Intel\Shared Libraries\redist\intel64\compiler;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;E:\Git\cmd;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;F:\MatLab\bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\WindowsApps;C:\HashiCorp\Vagrant\bin
HKU\S-1-5-21-1657895749-1354642030-2233333917-1001\Control Panel\Desktop\\Wallpaper -> E:\Downloads\wallpaperbetter.com_1920x1080 (1).jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
ist aktiviert.
Network Binding:
=============
Ethernet: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled)
WLAN: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled)
LAN-Verbindung: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled)
Ethernet 2: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled)
VirtualBox Host-Only Network: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled)
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKU\S-1-5-21-1657895749-1354642030-2233333917-1001\...\StartupApproved\StartupFolder: => "Twitch.lnk"
HKU\S-1-5-21-1657895749-1354642030-2233333917-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-1657895749-1354642030-2233333917-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-1657895749-1354642030-2233333917-1001\...\StartupApproved\Run: => "launchOnStartup"
HKU\S-1-5-21-1657895749-1354642030-2233333917-1001\...\StartupApproved\Run: => "CCXProcess"
HKU\S-1-5-21-1657895749-1354642030-2233333917-1001\...\StartupApproved\Run: => "OPENVPN-GUI"
HKU\S-1-5-21-1657895749-1354642030-2233333917-1001\...\StartupApproved\Run: => "Overwolf"
HKU\S-1-5-21-1657895749-1354642030-2233333917-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-1657895749-1354642030-2233333917-1001\...\StartupApproved\Run: => "GogGalaxy"
HKU\S-1-5-21-1657895749-1354642030-2233333917-1001\...\StartupApproved\Run: => "MobalyticsHQ.DesktopApp"
HKU\S-1-5-21-1657895749-1354642030-2233333917-1001\...\StartupApproved\Run: => "Figma Agent"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{D755CD6C-1B06-4297-BB01-DA591C256AC8}] => (Allow) C:\Users\yaddl\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{2F0CCBD1-6DB9-42DC-A8A0-E95603540D60}] => (Allow) C:\Users\yaddl\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{52DF5BC3-A826-468E-B28B-2E126CBE55A8}] => (Allow) F:\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{C3426EE2-F082-4F9B-9FB1-261C62E423B3}] => (Allow) F:\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{402925F4-171A-48F2-83F0-1BCCE3DE5707}] => (Allow) F:\Steam\bin\cef\cef.win7\steamwebhelper.exe => Keine Datei
FirewallRules: [{8734C2E0-CEA2-4057-B07A-D74D3AA3F7AC}] => (Allow) F:\Steam\bin\cef\cef.win7\steamwebhelper.exe => Keine Datei
FirewallRules: [{5FD92ACD-8098-4F10-8EA6-AC3B30B1EA18}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{B68838EF-7E04-4ED3-BFEB-593E1C0D7BE3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{05973007-0673-4DF0-910A-D1C9B8727A0B}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{32B6CAF9-6F1F-4187-B5E9-EDFF83327F39}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{6A8C78DA-9749-44FF-AE20-F140985038F2}] => (Allow) F:\Ubisoft Game Launcher\games\Trackmania\trackmania.exe (NADEO SASU -> Nadeo)
FirewallRules: [{85E82322-1FD0-4CD7-8556-B6C9397CB9FF}] => (Allow) F:\Ubisoft Game Launcher\games\Trackmania\trackmania.exe (NADEO SASU -> Nadeo)
FirewallRules: [{5683886A-59C0-4F68-B5BD-2399A0A7EDE0}] => (Allow) F:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{47A30127-3C7D-4F7E-9399-A3908E422714}] => (Allow) F:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{E2E8A68E-935E-494D-9143-BEC77FF79C9A}] => (Allow) F:\Steam\steamapps\common\Batman Arkham Asylum GOTY\Binaries\BmLauncher.exe (Warner Bros. Interactive Entertainment, Inc. -> Rocksteady Studios Ltd)
FirewallRules: [{8BB6B0DE-F457-4260-B113-5C676D71C2BD}] => (Allow) F:\Steam\steamapps\common\Batman Arkham Asylum GOTY\Binaries\BmLauncher.exe (Warner Bros. Interactive Entertainment, Inc. -> Rocksteady Studios Ltd)
FirewallRules: [{F4FF1C49-A331-4E28-B102-976B618C87F7}] => (Allow) F:\Steam\steamapps\common\LEGO Harry Potter\LEGOHarryPotter.exe (Warner Bros. Interactive Entertainment) [Datei ist nicht signiert]
FirewallRules: [{345D58BA-F020-4655-82F6-5105558FCFB7}] => (Allow) F:\Steam\steamapps\common\LEGO Harry Potter\LEGOHarryPotter.exe (Warner Bros. Interactive Entertainment) [Datei ist nicht signiert]
FirewallRules: [{9412A18A-0863-4E4C-A4D4-8DF2318BCE66}] => (Allow) F:\Steam\steamapps\common\Among Us\Among Us.exe () [Datei ist nicht signiert]
FirewallRules: [{85EF9235-CA77-4544-8C6E-A5113D21C005}] => (Allow) F:\Steam\steamapps\common\Among Us\Among Us.exe () [Datei ist nicht signiert]
FirewallRules: [{1AB6D4E1-6007-46AC-B510-E521900B99A3}] => (Allow) F:\Program Files (x86)\Origin Games\STAR WARS Battlefront II\starwarsbattlefrontii_trial.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{9AFB64A2-8568-4C23-B11C-2DCE327BD1DF}] => (Allow) F:\Program Files (x86)\Origin Games\STAR WARS Battlefront II\starwarsbattlefrontii_trial.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{14A4300D-A2F6-4C4B-825F-B61D5D8252A8}] => (Allow) F:\Program Files (x86)\Origin Games\STAR WARS Battlefront II\starwarsbattlefrontii.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{6D736905-6316-405A-B67E-28BC826CB920}] => (Allow) F:\Program Files (x86)\Origin Games\STAR WARS Battlefront II\starwarsbattlefrontii.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{C2867ECE-C12C-465F-9F3B-8BA2B0BF43F8}] => (Allow) F:\Steam\steamapps\common\Cossacks 3\cossacks.exe (GSC Game World) [Datei ist nicht signiert]
FirewallRules: [{9131CBDD-8377-4463-8CC3-D7F2BB7E3F55}] => (Allow) F:\Steam\steamapps\common\Cossacks 3\cossacks.exe (GSC Game World) [Datei ist nicht signiert]
FirewallRules: [{759426E7-F7B2-43BB-9615-60C3FAD95176}] => (Allow) F:\Steam\steamapps\common\Cossacks 3\config.exe (GSC Game World) [Datei ist nicht signiert]
FirewallRules: [{C619756F-674E-4B75-8F64-B6480232BEFF}] => (Allow) F:\Steam\steamapps\common\Cossacks 3\config.exe (GSC Game World) [Datei ist nicht signiert]
FirewallRules: [{BBD07D39-C498-4B98-8897-51F4488E5679}] => (Allow) F:\Steam\steamapps\common\Cossacks 3\editor.exe (GSC Game World) [Datei ist nicht signiert]
FirewallRules: [{7E7500FC-6152-4C2D-BB20-E2AAA214040E}] => (Allow) F:\Steam\steamapps\common\Cossacks 3\editor.exe (GSC Game World) [Datei ist nicht signiert]
FirewallRules: [{614BA083-623D-4792-BD0A-14AF8649C05D}] => (Allow) F:\Steam\steamapps\common\Cossacks 3\modman.exe (GSC Game World) [Datei ist nicht signiert]
FirewallRules: [{A97A0541-3049-4AF1-93D0-0574F9257EB8}] => (Allow) F:\Steam\steamapps\common\Cossacks 3\modman.exe (GSC Game World) [Datei ist nicht signiert]
FirewallRules: [{7D3CC366-4B46-4F6B-9F35-27448480C7C6}] => (Allow) F:\Ubisoft Game Launcher\games\Assassin's Creed Odyssey\ACOdyssey_plus.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{C84872A1-134B-48C1-A507-C9E9C5C1D954}] => (Allow) F:\Ubisoft Game Launcher\games\Assassin's Creed Odyssey\ACOdyssey_plus.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{FF80A2EA-4994-49A7-9E4B-00ADE0049F6A}] => (Allow) F:\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFSP.exe (Ubisoft Entertainment -> )
FirewallRules: [{B3E1BE57-24DE-44D2-9F7F-3C74C74058B5}] => (Allow) F:\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFSP.exe (Ubisoft Entertainment -> )
FirewallRules: [{100E97A3-00A3-42BB-8AEF-6091A5CE179A}] => (Allow) F:\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFMP.exe (Ubisoft Entertainment SA -> )
FirewallRules: [{E2EC2EA4-1C31-4487-B363-B69892BF573F}] => (Allow) F:\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFMP.exe (Ubisoft Entertainment SA -> )
FirewallRules: [{94BFE856-94BD-43CE-939C-CE5EF62B82CC}] => (Allow) F:\Steam\steamapps\common\F1 2020\F1_2020_dx12.exe (Codemasters Software Company Limited) [Datei ist nicht signiert]
FirewallRules: [{9E99AEE9-459C-4EF5-9C35-B01003F70A08}] => (Allow) F:\Steam\steamapps\common\F1 2020\F1_2020_dx12.exe (Codemasters Software Company Limited) [Datei ist nicht signiert]
FirewallRules: [{B398FB9B-7851-43F8-BCE5-A60B905D4D9E}] => (Allow) F:\Steam\steamapps\common\F1 2020\F1_2020.exe (Codemasters Software Company Limited) [Datei ist nicht signiert]
FirewallRules: [{615FDE5A-9FD3-420E-8EC1-FBEE1BBD01A9}] => (Allow) F:\Steam\steamapps\common\F1 2020\F1_2020.exe (Codemasters Software Company Limited) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{D8E4F2B4-9D09-439C-8BD2-6E5FAE0AB33D}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [UDP Query User{E9B65D9E-71F4-4CB2-8ADE-9057E4133863}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [{2AFE7220-E171-41C8-8F1C-0DCCF8B18A99}] => (Allow) F:\Steam\steamapps\common\Stronghold Crusader Extreme\Stronghold Crusader.exe () [Datei ist nicht signiert]
FirewallRules: [{AB3250BF-8117-4034-BBD3-74794A144B3F}] => (Allow) F:\Steam\steamapps\common\Stronghold Crusader Extreme\Stronghold Crusader.exe () [Datei ist nicht signiert]
FirewallRules: [{97F5AF24-9716-421E-AD93-4BE1554014E3}] => (Allow) F:\Ubisoft Game Launcher\games\Anno 1800\Bin\Win64\Anno1800.exe (Ubisoft Blue Byte GmbH -> Ubisoft)
FirewallRules: [{B05975F5-4207-411E-88CB-7CEF688D2960}] => (Allow) F:\Steam\steamapps\common\Football Manager 2021\fm.exe (Sports Interactive) [Datei ist nicht signiert]
FirewallRules: [{CDDBB016-F891-4EDD-B7C7-967CF20D2E1A}] => (Allow) F:\Steam\steamapps\common\Football Manager 2021\fm.exe (Sports Interactive) [Datei ist nicht signiert]
FirewallRules: [{8228CD2E-AD37-404D-A861-D88B36AC6F22}] => (Allow) F:\Steam\steamapps\common\Crusader Kings III\launcher\dowser.exe (Paradox Interactive AB (publ) -> )
FirewallRules: [{993EF1F6-0088-4BFC-B01F-21516E77A41A}] => (Allow) F:\Steam\steamapps\common\Crusader Kings III\launcher\dowser.exe (Paradox Interactive AB (publ) -> )
FirewallRules: [{79032B6B-C269-4065-95B2-867BEF5FC122}] => (Allow) F:\Steam\steamapps\common\Lego Star Wars Saga\LEGOStarWarsSaga.exe (Traveller's Tales (UK) Ltd) [Datei ist nicht signiert]
FirewallRules: [{02B4DBDB-349A-431D-9E88-34A5F841C129}] => (Allow) F:\Steam\steamapps\common\Lego Star Wars Saga\LEGOStarWarsSaga.exe (Traveller's Tales (UK) Ltd) [Datei ist nicht signiert]
FirewallRules: [{C3869385-8A4B-487E-A732-8D9611DE0FB3}] => (Allow) F:\Steam\steamapps\common\Sid Meier's Civilization VI\2KLauncher\LauncherPatcher.exe (Take-Two Interactive Software, Inc. -> Take-Two Interactive Software, Inc.)
FirewallRules: [{D9473A57-7E85-4335-919B-A4FE45BFC22B}] => (Allow) F:\Steam\steamapps\common\Sid Meier's Civilization VI\2KLauncher\LauncherPatcher.exe (Take-Two Interactive Software, Inc. -> Take-Two Interactive Software, Inc.)
FirewallRules: [{97AB6E3A-D10D-4F11-B813-22696DBFBBA9}] => (Allow) F:\Steam\steamapps\common\The Forgotten City\ModernStoryteller01.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [{4EDB247B-E2ED-4BD8-A7CA-69AFC4B9364A}] => (Allow) F:\Steam\steamapps\common\The Forgotten City\ModernStoryteller01.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [{873E0AA3-8F96-4BDD-A3DA-FD2194338E3A}] => (Allow) F:\Steam\steamapps\common\Stardew Valley\Stardew Valley.exe (ConcernedApe) [Datei ist nicht signiert]
FirewallRules: [{C63DB554-8B93-49AB-B861-246BFA29A149}] => (Allow) F:\Steam\steamapps\common\Stardew Valley\Stardew Valley.exe (ConcernedApe) [Datei ist nicht signiert]
FirewallRules: [{975CE9E7-AF74-4E84-B470-3A1E8F1B293B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{AACAB4A9-5306-4C02-A56D-D00545B92B42}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{2A83DF2F-BA65-4354-8050-2C59F2F5FF1F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{4460A2A8-E67F-4171-A156-41A3E489CA8C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{7D734A38-249F-48F7-8D41-9E8A5D349D3F}] => (Allow) C:\Program Files\Elgato\4KCaptureUtility\4KCaptureUtility.exe (Corsair Memory, Inc. -> Elgato Systems)
FirewallRules: [{1BF4D998-6E67-43D9-A541-BF967FA14A9E}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{58E5737C-DC1D-460E-9072-D0AEF66FFF04}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{EBC48D60-D75B-4EBA-A196-716A7FDE3E45}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{F2EEAB14-4712-4A1C-AEE7-42091566D066}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{E6F4F109-98F9-4A51-A47A-F11FFBB229FB}] => (Allow) F:\Steam\steamapps\common\New World\NewWorldLauncher.exe (Amazon.com Services LLC -> EasyAntiCheat Ltd)
FirewallRules: [{CFD28124-0FBE-4293-BCA2-906F14835BDC}] => (Allow) F:\Steam\steamapps\common\New World\NewWorldLauncher.exe (Amazon.com Services LLC -> EasyAntiCheat Ltd)
FirewallRules: [{EDD50292-633D-403A-9A54-34EF0CFA9130}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{AA04C169-B844-417E-AA38-E1977CB83F77}] => (Allow) F:\Steam\steamapps\common\Total War THREE KINGDOMS\launcher\launcher.exe (The Creative Assembly Ltd -> Creative Assembly Ltd)
FirewallRules: [{DFC7623C-1CE9-43EA-B927-80A4BDABA7E1}] => (Allow) F:\Steam\steamapps\common\Total War THREE KINGDOMS\launcher\launcher.exe (The Creative Assembly Ltd -> Creative Assembly Ltd)
FirewallRules: [{A017B18B-4D40-4744-8223-0B42ADF253EC}] => (Allow) E:\Overwolf\0.180.0.6\OverwolfBrowser.exe => Keine Datei
FirewallRules: [{AE9B776E-4EC2-4C20-B1FE-B51E66EE2D8B}] => (Allow) E:\Overwolf\0.180.0.6\OverwolfBrowser.exe => Keine Datei
FirewallRules: [{5A0E2EA4-18EB-4D06-9D24-C4DFA6A6B550}] => (Block) E:\Overwolf\0.180.0.6\OverwolfBrowser.exe => Keine Datei
FirewallRules: [{3A6B43C9-02D8-4C6E-8806-1C2FF92154D8}] => (Block) E:\Overwolf\0.180.0.6\OverwolfBrowser.exe => Keine Datei
FirewallRules: [{44155C24-6FD0-41B3-A5AF-BEE9F4ACA8A4}] => (Allow) E:\Overwolf\0.180.0.5\OverwolfBrowser.exe => Keine Datei
FirewallRules: [{E9CBC886-4739-48C0-A0A3-3695EA831C41}] => (Allow) E:\Overwolf\0.180.0.5\OverwolfBrowser.exe => Keine Datei
FirewallRules: [{E7901AA0-35A7-4CC1-82F2-3A8AD5FF47EF}] => (Block) E:\Overwolf\0.180.0.5\OverwolfBrowser.exe => Keine Datei
FirewallRules: [{A6DC1363-D154-4587-9E50-0B3AAD512E24}] => (Block) E:\Overwolf\0.180.0.5\OverwolfBrowser.exe => Keine Datei
FirewallRules: [{A4B7C395-7D9A-4414-B2C3-5EC1D0623F65}] => (Allow) E:\Overwolf\0.181.0.11\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{B7CF8F3B-6C9C-4A7B-9EDD-426F7075EBB2}] => (Allow) E:\Overwolf\0.181.0.11\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{7C58C7DB-0881-4609-A6C1-78B2C8B1CF14}] => (Block) E:\Overwolf\0.181.0.11\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{DC5856BB-2AEA-49AE-AE5F-73753DECCE3D}] => (Block) E:\Overwolf\0.181.0.11\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{5E46F0D2-C1C9-425A-97AA-E3BBBCC4A198}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.77.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{28E0192C-FDFC-41BF-BD8F-09B00791627E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.77.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{9A6831B8-28C4-4692-B965-635682D57D1C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.77.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{4D56EEF0-D938-4B12-BED9-BADA98265CF1}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.77.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E366C9A2-03AB-48E5-9979-601D2BE695AD}] => (Allow) F:\Steam\steamapps\common\Age of Empires IV\RelicCardinal.exe (RELIC ENTERTAINMENT, INC. -> Relic Entertainment)
FirewallRules: [{50AC41BB-2331-417C-9690-CA6EE6DD6461}] => (Allow) F:\Steam\steamapps\common\Age of Empires IV\RelicCardinal.exe (RELIC ENTERTAINMENT, INC. -> Relic Entertainment)
FirewallRules: [{F8B999D9-D9B3-4C62-A2D6-700E3152EDC8}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{1CE91A7A-E8A2-4969-AEAA-74DF96ED8BF5}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\95.0.1020.40\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{31F5EFE1-1C98-4FDC-9BE0-493D961C7700}] => (Allow) LPort=32682
==================== Wiederherstellungspunkte =========================
==================== Fehlerhafte Geräte im Gerätemanager ============
Name: PS/2-Standardtastatur
Description: PS/2-Standardtastatur
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standardtastaturen)
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
Name: Microsoft PS/2-Maus
Description: Microsoft PS/2-Maus
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
==================== Fehlereinträge in der Ereignisanzeige: ========================
Applikationsfehler:
==================
Error: (11/01/2021 07:55:19 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Local Hostname DESKTOP-KLUV44P.local already in use; will try DESKTOP-KLUV44P-2.local instead
Error: (11/01/2021 07:55:19 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: ProbeCount 2; will deregister 4 DESKTOP-KLUV44P.local. Addr 192.168.178.20
Error: (11/01/2021 07:55:19 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.178.20:5353 16 DESKTOP-KLUV44P.local. AAAA 2A02:8070:0790:8F00:A492:589D:F9E5:3A3A
Error: (10/29/2021 02:36:31 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Die Speicheroptimierung konnte erneut optimieren auf Lahmer arsch (G:) nicht abschließen. Grund: Der angeforderte Vorgang wird von der Hardware des Volumes nicht unterstützt. (0x8900002A)
Error: (10/29/2021 02:36:31 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Die Speicheroptimierung konnte erneut optimieren auf System-reserviert nicht abschließen. Grund: Der angeforderte Vorgang wird von der Hardware des Volumes nicht unterstützt. (0x8900002A)
Error: (10/28/2021 05:07:26 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Local Hostname DESKTOP-KLUV44P.local already in use; will try DESKTOP-KLUV44P-2.local instead
Error: (10/28/2021 05:07:26 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: ProbeCount 2; will deregister 4 DESKTOP-KLUV44P.local. Addr 192.168.178.20
Error: (10/28/2021 05:07:26 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.178.20:5353 16 DESKTOP-KLUV44P.local. AAAA 2A02:8070:0790:8F00:A492:589D:F9E5:3A3A
Systemfehler:
=============
Error: (11/02/2021 07:31:50 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Origin Web Helper Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (11/02/2021 07:31:49 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "LGHUB Updater Service" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 5000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (11/02/2021 07:31:49 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Razer Central Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (11/02/2021 07:31:49 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Kaspersky Password Manager Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (11/02/2021 07:31:49 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Razer Synapse Service" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 0 Millisekunden durchgeführt: Aufführung des konfigurierten Wiederherstellungsp.
Error: (11/02/2021 07:31:49 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel(R) Dynamic Application Loader Host Interface Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (11/02/2021 07:31:49 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Razer Chroma SDK Service" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 120000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (11/02/2021 07:31:49 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "LightKeeperService" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Windows Defender:
================
Date: 2020-09-18 00:04:19
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {DC6CE006-E974-4589-8198-AEAE34BE5A1B}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Date: 2021-03-14 20:33:55
Description:
Fehler von Microsoft Defender Antivirus beim Aktualisieren des Moduls.
Neue Modulversion: 1.1.17900.7
Vorherige Modulversion: 1.1.17600.5
Benutzer: NT-AUTORITÄT\SYSTEM
Fehlercode: 0x80004004
Fehlerbeschreibung: Vorgang abgebrochen
Date: 2020-11-02 00:09:22
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.
Neue Version der Sicherheitsinformationen:
%Vorherige Version der Sicherheitsinformationen: 1.325.904.0
Update Source: Microsoft Center zum Schutz vor Schadsoftware
Sicherheitstyp: AntiSpyware
Updatetyp: Voll
Benutzer: NT-AUTORITÄT\Netzwerkdienst
Aktuelle Modulversion:
%Vorherige Modulversion: 1.1.17500.4
Fehlercode: 0x80072f8f
Fehlerbeschreibung: Es ist ein Sicherheitsfehler aufgetreten.
Date: 2020-11-02 00:09:22
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.
Neue Version der Sicherheitsinformationen:
%Vorherige Version der Sicherheitsinformationen: 1.325.904.0
Update Source: Microsoft Center zum Schutz vor Schadsoftware
Sicherheitstyp: AntiVirus
Updatetyp: Voll
Benutzer: NT-AUTORITÄT\Netzwerkdienst
Aktuelle Modulversion:
%Vorherige Modulversion: 1.1.17500.4
Fehlercode: 0x80072f8f
Fehlerbeschreibung: Es ist ein Sicherheitsfehler aufgetreten.
Date: 2020-11-02 00:09:21
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.
Neue Version der Sicherheitsinformationen:
%Vorherige Version der Sicherheitsinformationen: 1.325.904.0
Update Source: Microsoft Update-Server
Sicherheitstyp: AntiVirus
Updatetyp: Voll
Benutzer: NT-AUTORITÄT\SYSTEM
Aktuelle Modulversion:
%Vorherige Modulversion: 1.1.17500.4
Fehlercode: 0x8024001e
Fehlerbeschreibung: Unerwartetes Problem bei der Überprüfung auf Updates. Informationen zum Installieren von Updates oder zur Problembehandlung finden Sie unter "Hilfe und Support".
CodeIntegrity:
===============
Date: 2021-11-02 19:45:38
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Windows signing level requirements.
Date: 2021-11-02 19:43:04
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\avp.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2021-11-02 19:38:41
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
==================== Speicherinformationen ===========================
BIOS: American Megatrends Inc. 1.40 03/31/2017
Hauptplatine: MSI Z270 GAMING PRO CARBON (MS-7A63)
Prozessor: Intel(R) Core(TM) i5-7600K CPU @ 3.80GHz
Prozentuale Nutzung des RAM: 41%
Installierter physikalischer RAM: 16343.33 MB
Verfügbarer physikalischer RAM: 9527.06 MB
Summe virtueller Speicher: 18775.33 MB
Verfügbarer virtueller Speicher: 10057.15 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:232.37 GB) (Free:47.73 GB) NTFS
Drive d: (NFSMW) (CDROM) (Total:2.1 GB) (Free:0 GB) UDF
Drive e: (SSD1) (Fixed) (Total:465.76 GB) (Free:378.3 GB) NTFS
Drive f: (SSD2) (Fixed) (Total:931.51 GB) (Free:69.04 GB) NTFS
Drive g: (Lahmer arsch) (Fixed) (Total:931.46 GB) (Free:853.87 GB) NTFS
\\?\Volume{ccc1acc2-0000-0000-0000-100000000000}\ (System-reserviert) (Fixed) (Total:0.05 GB) (Free:0.02 GB) NTFS
\\?\Volume{ccc1acca-0000-0000-0000-00183a000000}\ () (Fixed) (Total:0.51 GB) (Free:0.08 GB) NTFS
==================== MBR & Partitionstabelle ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 465.8 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 1 (Size: 232.9 GB) (Disk ID: CCC1ACCA)
Partition 1: (Not Active) - (Size=232.4 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=521 MB) - (Type=27)
==========================================================
Disk: 2 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 3 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: CCC1ACC2)
Partition 1: (Active) - (Size=50 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
==================== Ende von Addition.txt =======================
|
|
02.11.2021, 20:18
| #3 |
| | Win 10 Kaspersky meldet:PDM:Trojan.Win32.Generic und Trojan.Multi.GenAutorunReg.a Shortcut:
__________________Code:
ATTFilter Untersuchungsergebnis der Verknüpfungen des Benutzers (x64) Version: 02-11-2021
durchgeführt von yaddl (02-11-2021 19:46:21)
Gestartet von E:\Downloads
Start-Modus: Normal
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TAP-Windows\Utilities\Add a new TAP virtual ethernet adapter.lnk -> C:\Program Files\TAP-Windows\bin\addtap.bat ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TAP-Windows\Utilities\Delete ALL TAP virtual ethernet adapters.lnk -> C:\Program Files\TAP-Windows\bin\deltapall.bat ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES\Need for Speed™ Most Wanted\Webseite besuchen.lnk -> hxxp://www.eagames.com/official/nfs/mostwanted/us/home.js
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk -> C:\Program Files\Microsoft Office\root\Office16\MSACCESS.EXE (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrobat.exe (Adobe Systems Incorporated)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller DC.lnk -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\acrodist.exe (Adobe Systems Incorporated.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe After Effects 2021.lnk -> C:\Program Files\Adobe\Adobe After Effects 2021\Support Files\AfterFX.exe (Adobe Systems Incorporated)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk -> C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Illustrator 2021.lnk -> C:\Program Files\Adobe\Adobe Illustrator 2021\Support Files\Contents\Windows\Illustrator.exe (Adobe Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe InDesign 2021.lnk -> C:\Program Files\Adobe\Adobe InDesign 2021\InDesign.exe (Adobe Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Media Encoder 2021.lnk -> C:\Program Files\Adobe\Adobe Media Encoder 2021\Adobe Media Encoder.exe (Adobe)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop 2020.lnk -> C:\Program Files\Adobe\Adobe Photoshop 2020\Photoshop.exe (Adobe)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop 2021.lnk -> C:\Program Files\Adobe\Adobe Photoshop 2021\Photoshop.exe (Adobe)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Pro 2021.lnk -> C:\Program Files\Adobe\Adobe Premiere Pro 2021\Adobe Premiere Pro.exe (Adobe)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Anki.lnk -> F:\Anki\anki.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk -> C:\Program Files (x86)\Audacity\audacity.exe (Audacity Team)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk -> F:\Epic Games\Launcher\Portal\Binaries\Win32\EpicGamesLauncher.exe (Epic Games, Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk -> C:\Program Files\Microsoft Office\root\Office16\EXCEL.EXE (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk -> C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Immersive Control Panel.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk -> C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe (Malwarebytes)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk -> C:\Program Files\Mozilla Thunderbird\thunderbird.exe (Mozilla Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk -> C:\Program Files\Microsoft OneDrive\OneDrive.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTE.EXE (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk -> C:\Program Files\Microsoft Office\root\Office16\OUTLOOK.EXE (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk -> C:\Program Files\Microsoft Office\root\Office16\POWERPNT.EXE (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk -> C:\Program Files\Microsoft Office\root\Office16\MSPUB.EXE (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RaiderIO Client.lnk -> C:\Program Files\RaiderIO\RaiderIO.exe (jah@raider.io)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client.lnk -> E:\TS3\ts3client_win64.exe (TeamSpeak Systems GmbH)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk -> C:\Program Files\Microsoft Office\root\Office16\WINWORD.EXE (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Yu-Gi-Oh! The Dawn of a New Era\Yu-Gi-Oh! The Dawn of a New Era entfernen.lnk -> C:\Yu-Gi-Oh! The Dawn of a New Era\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Yu-Gi-Oh! The Dawn of a New Era\Yu-Gi-Oh! The Dawn of a New Era.lnk -> C:\Yu-Gi-Oh! The Dawn of a New Era\YGOPRO Dawn of a New Era Launcher Pro.exe (Kaiba Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\Benutzerhandbuch für die Konsolenversion von RAR.lnk -> E:\winrar\Rar.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\Hilfe zu WinRAR.lnk -> E:\winrar\WinRAR.chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\Was ist neu in dieser Version.lnk -> E:\winrar\WhatsNew.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\WinRAR.lnk -> E:\winrar\WinRAR.exe (Alexander Roshal)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell ISE (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell ISE.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\Documentation.lnk -> E:\VLC\Documentation.url ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\Release Notes.lnk -> E:\VLC\NEWS.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VideoLAN Website.lnk -> E:\VLC\VideoLAN Website.url ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VLC media player.lnk -> E:\VLC\vlc.exe (VideoLAN)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Witcher 3 - Wild Hunt - Game of the Year Edition [GOG.com]\Deinstallieren The Witcher 3 - Wild Hunt - Game of the Year Edition.lnk -> F:\GOG Galaxy\Games\The Witcher 3 Wild Hunt GOTY\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Terzio\Raumschiffe bauen mit Willy Werkel\Liesmich zu Raumschiffe bauen mit Willy Werkel.lnk -> C:\Terzio\WillyRaumschiff\liesmich.wri (Keine Datei)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Terzio\Raumschiffe bauen mit Willy Werkel\Online-Registrierung.lnk -> C:\Terzio\WillyRaumschiff\install.htm (Keine Datei)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Terzio\Raumschiffe bauen mit Willy Werkel\Raumschiffe bauen mit Willy Werkel.lnk -> C:\Terzio\WillyRaumschiff\WillyRaumschiff.exe (Keine Datei)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\STMicroelectronics\STM32CubeIDE 1.5.0\STM32CubeIDE 1.5.0.lnk -> E:\STM32CubeIDE_1.5.0\STM32CubeIDE\stm32cubeide.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam\Steam.lnk -> F:\Steam\steam.exe (Valve Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Defrag\Smart Defrag 7.lnk -> C:\Program Files (x86)\IObit\Smart Defrag\SmartDefrag.exe (IObit)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Defrag\Smart Defrag entfernen.lnk -> C:\Program Files (x86)\IObit\Smart Defrag\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riot Games\Riot Client.lnk -> F:\Riot Games\Riot Client\RiotClientServices.exe (Riot Games, Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer\Razer Synapse.lnk -> C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe (Razer Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin\Origin deinstallieren.lnk -> C:\Program Files (x86)\Origin\OriginUninstall.exe (Electronic Arts)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin\Origin Fehlermeldungs-Hilfe.lnk -> C:\Program Files (x86)\Origin\OriginER.exe (Electronic Arts)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin\Origin.lnk -> C:\Program Files (x86)\Origin\Origin.exe (Electronic Arts)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenVPN\OpenVPN GUI.lnk -> E:\OpenVPN\bin\openvpn-gui.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenVPN\Uninstall OpenVPN.lnk -> E:\OpenVPN\Uninstall.exe (OpenVPN Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenVPN\Shortcuts\OpenVPN configuration file directory.lnk -> E:\OpenVPN\config ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenVPN\Shortcuts\OpenVPN log file directory.lnk -> E:\OpenVPN\log ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenVPN\Shortcuts\OpenVPN Sample Configuration Files.lnk -> E:\OpenVPN\sample-config ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenVPN\Documentation\OpenVPN Manual Page.lnk -> E:\OpenVPN\doc\openvpn.8.html ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenVPN\Documentation\OpenVPN Windows Notes.lnk -> E:\OpenVPN\doc\INSTALL-win32.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio\OBS Studio (64bit).lnk -> C:\Program Files\obs-studio\bin\64bit\obs64.exe (OBS)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio\Uninstall.lnk -> C:\Program Files\obs-studio\uninstall.exe (obsproject.com)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation\GeForce Experience.lnk -> C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe (NVIDIA Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft Launcher\Minecraft Launcher.lnk -> E:\Minecraft\MinecraftLauncher.exe (Mojang)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight\Microsoft Silverlight.lnk -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\Silverlight.Configuration.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools\Office-Spracheinstellungen.lnk -> C:\Program Files\Microsoft Office\root\Office16\SETLANG.EXE (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maxon\Maxon Cinema 4D\Commandline 22.lnk -> C:\Program Files\Maxon Cinema 4D R22\Commandline.exe (MAXON Computer GmbH)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maxon\Maxon Cinema 4D\Commandline R21.lnk -> C:\Program Files\Maxon Cinema 4D R21\Commandline.exe (MAXON Computer GmbH)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maxon\Maxon Cinema 4D\Maxon Cinema 4D 22.lnk -> C:\Program Files\Maxon Cinema 4D R22\Cinema 4D.exe (MAXON Computer GmbH)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maxon\Maxon Cinema 4D\Maxon Cinema 4D R21.lnk -> C:\Program Files\Maxon Cinema 4D R21\Cinema 4D.exe (MAXON Computer GmbH)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maxon\Maxon Cinema 4D\Team Render Client 22.lnk -> C:\Program Files\Maxon Cinema 4D R22\Cinema 4D Team Render Client.exe (MAXON Computer GmbH)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maxon\Maxon Cinema 4D\Team Render Client R21.lnk -> C:\Program Files\Maxon Cinema 4D R21\Cinema 4D Team Render Client.exe (MAXON Computer GmbH)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maxon\Maxon Cinema 4D\Team Render Server 22.lnk -> C:\Program Files\Maxon Cinema 4D R22\Cinema 4D Team Render Server.exe (MAXON Computer GmbH)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maxon\Maxon Cinema 4D\Team Render Server R21.lnk -> C:\Program Files\Maxon Cinema 4D R21\Cinema 4D Team Render Server.exe (MAXON Computer GmbH)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MATLAB R2020b\Activate MATLAB R2020b.lnk -> F:\MatLab\bin\win64\activate_matlab.exe (The MathWorks, Inc)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MATLAB R2020b\Deactivate MATLAB R2020b.lnk -> F:\MatLab\uninstall\bin\win64\deactivate_matlab.exe (The MathWorks, Inc)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MATLAB R2020b\MATLAB R2020b.lnk -> F:\MatLab\bin\matlab.exe (The MathWorks Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi\Logitech G HUB.lnk -> C:\Program Files\LGHUB\lghub.exe (Logitech, Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky VPN\Endbenutzer-Lizenzvertrag.lnk -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\Doc\KSDE\de-DE\consumer_gdpr_kaspersky_secure_connection_for_windows_4_0_eula__eula.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky VPN\Kaspersky VPN.lnk -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksdeui.exe (AO Kaspersky Lab)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky VPN\My Kaspersky.lnk -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\kl.url ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Total Security\Kaspersky im Internet besuchen.lnk -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\kl.url ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Total Security\Kaspersky Total Security.lnk -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\avpui.exe (AO Kaspersky Lab)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Password Manager\Kaspersky Password Manager Hilfe.lnk -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\help.url ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Password Manager\Kaspersky Password Manager.lnk -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm.exe (AO Kaspersky Lab)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Password Manager\Weiter zu My Kaspersky.lnk -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpc.url ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit\Java Mission Control.lnk -> C:\Program Files\Java\jdk1.8.0_251\bin\jmc.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Java konfigurieren.lnk -> C:\Program Files\Java\jre1.8.0_301\bin\javacpl.exe (Oracle Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com\GOG GALAXY\GOG GALAXY.lnk -> F:\GOG Galaxy\GalaxyClient.exe (GOG.com)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Git\Git GUI.lnk -> E:\Git\cmd\git-gui.exe (The Git Development Community)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Git\Git Release Notes.lnk -> E:\Git\ReleaseNotes.html ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elgato\4KCapture\4K Capture Utility.lnk -> C:\Program Files\Elgato\4KCaptureUtility\4KCaptureUtility.exe (Elgato Systems)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES\Need for Speed™ Most Wanted\Kundendienst.lnk -> C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\Support\European Help Files\EA_Help_Select.htm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES\Need for Speed™ Most Wanted\Microsoft DirectX EULA.lnk -> C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\Support\de_eula.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES\Need for Speed™ Most Wanted\Need for Speed™ Most Wanted deinstallieren.lnk -> C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\eauninstall.exe (Electronic Arts Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES\Need for Speed™ Most Wanted\Need for Speed™ Most Wanted.lnk -> C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES\Need for Speed™ Most Wanted\Readme.lnk -> C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\Support\de\readme.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\IJ Scan Utility\IJ Scan Utility.lnk -> C:\Program Files (x86)\Canon\IJ Scan Utility\SCANUTILITY.exe (CANON INC.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\IJ Network Tool\IJ Network Tool.lnk -> C:\Program Files (x86)\Canon\Canon IJ Network Tool\CNMNPUT.EXE (CANON INC.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\IJ Network Scanner Selector EX\IJ Network Scanner Selector EX.lnk -> C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe (CANON INC.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bloodshed Dev-C++\Dev-C++.lnk -> E:\Dev-Cpp\devcpp.exe (Bloodshed Software)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bloodshed Dev-C++\License.lnk -> E:\Dev-Cpp\COPYING.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bloodshed Dev-C++\Uninstall Dev-C++.lnk -> E:\Dev-Cpp\uninstall.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net\Battle.net.lnk -> F:\Battle.net\Battle.net Launcher.exe (Blizzard Entertainment)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Component Services.lnk -> C:\Windows\System32\comexp.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\dfrgui.lnk -> C:\Windows\System32\dfrgui.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Disk Cleanup.lnk -> C:\Windows\System32\cleanmgr.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\iSCSI Initiator.lnk -> C:\Windows\System32\iscsicpl.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Memory Diagnostics Tool.lnk -> C:\Windows\System32\MdSched.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\ODBC Data Sources (32-bit).lnk -> C:\Windows\SysWOW64\odbcad32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\ODBC Data Sources (64-bit).lnk -> C:\Windows\System32\odbcad32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\RecoveryDrive.lnk -> C:\Windows\System32\RecoveryDrive.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Registry Editor.lnk -> C:\Windows\regedit.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk -> C:\Windows\System32\services.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\System Configuration.lnk -> C:\Windows\System32\msconfig.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\System Information.lnk -> C:\Windows\System32\msinfo32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows Defender Firewall with Advanced Security.lnk -> C:\Windows\System32\WF.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Math Input Panel.lnk -> C:\Program Files\Common Files\Microsoft Shared\ink\mip.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Paint.lnk -> C:\Windows\System32\mspaint.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Quick Assist.lnk -> C:\Windows\System32\quickassist.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Remote Desktop Connection.lnk -> C:\Windows\System32\mstsc.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Snipping Tool.lnk -> C:\Windows\System32\SnippingTool.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Steps Recorder.lnk -> C:\Windows\System32\psr.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Fax and Scan.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Wordpad.lnk -> C:\Program Files\Windows NT\Accessories\wordpad.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Character Map.lnk -> C:\Windows\System32\charmap.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\computer.lnk -> C:\Windows\explorer.exe,-30
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Control Panel.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\File Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Run.lnk -> C:\Windows\System32\shell32.dll (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\01 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\01a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\02 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\02a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\03 - Computer Management.lnk -> C:\Windows\System32\compmgmt.msc ()
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\04 - Disk Management.lnk -> C:\Windows\System32\diskmgmt.msc ()
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\07 - Event Viewer.lnk -> C:\Windows\System32\eventvwr.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\09 - Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\4 - Control Panel.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation)
Shortcut: C:\Users\Public\Desktop\4K Capture Utility.lnk -> C:\Program Files\Elgato\4KCaptureUtility\4KCaptureUtility.exe (Elgato Systems)
Shortcut: C:\Users\Public\Desktop\Anki.lnk -> F:\Anki\anki.exe ()
Shortcut: C:\Users\Public\Desktop\Canon IJ Network Tool.lnk -> C:\Program Files (x86)\Canon\Canon IJ Network Tool\CNMNPUT.EXE (CANON INC.)
Shortcut: C:\Users\Public\Desktop\Firefox.lnk -> C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
Shortcut: C:\Users\Public\Desktop\Kaspersky Password Manager.lnk -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm.exe (AO Kaspersky Lab)
Shortcut: C:\Users\Public\Desktop\Kaspersky Total Security.lnk -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\avpui.exe (AO Kaspersky Lab)
Shortcut: C:\Users\Public\Desktop\Kaspersky VPN.lnk -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksdeui.exe (AO Kaspersky Lab)
Shortcut: C:\Users\Public\Desktop\Logitech G HUB.lnk -> C:\Program Files\LGHUB\lghub.exe (Logitech, Inc.)
Shortcut: C:\Users\Public\Desktop\Malwarebytes.lnk -> C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe (Malwarebytes)
Shortcut: C:\Users\Public\Desktop\MATLAB R2020b.lnk -> F:\MatLab\bin\matlab.exe (The MathWorks Inc.)
Shortcut: C:\Users\Public\Desktop\Minecraft Launcher.lnk -> E:\Minecraft\MinecraftLauncher.exe (Mojang)
Shortcut: C:\Users\Public\Desktop\Mozilla Thunderbird.lnk -> C:\Program Files\Mozilla Thunderbird\thunderbird.exe (Mozilla Corporation)
Shortcut: C:\Users\Public\Desktop\Need for Speed™ Most Wanted.lnk -> C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe ()
Shortcut: C:\Users\Public\Desktop\OBS Studio.lnk -> C:\Program Files\obs-studio\bin\64bit\obs64.exe (OBS)
Shortcut: C:\Users\Public\Desktop\OpenVPN GUI.lnk -> E:\OpenVPN\bin\openvpn-gui.exe ()
Shortcut: C:\Users\Public\Desktop\Oracle VM VirtualBox.lnk -> E:\Oracle\VirtualBox.exe (Oracle Corporation)
Shortcut: C:\Users\Public\Desktop\RaiderIO Client.lnk -> C:\Program Files\RaiderIO\RaiderIO.exe (jah@raider.io)
Shortcut: C:\Users\Public\Desktop\Smart Defrag 7.lnk -> C:\Program Files (x86)\IObit\Smart Defrag\SmartDefrag.exe (IObit)
Shortcut: C:\Users\Public\Desktop\STM32CubeIDE 1.5.0.lnk -> E:\STM32CubeIDE_1.5.0\STM32CubeIDE\stm32cubeide.exe ()
Shortcut: C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk -> E:\TS3\ts3client_win64.exe (TeamSpeak Systems GmbH)
Shortcut: C:\Users\Public\Desktop\VLC media player.lnk -> E:\VLC\vlc.exe (VideoLAN)
Shortcut: C:\Users\yaddl\OneDrive\Dokumente\Downloads - Verknüpfung.lnk -> E:\Downloads ()
Shortcut: C:\Users\yaddl\OneDrive\Dokumente\StarCraft II\HiImCeddi_335@2.lnk -> C:\Users\yaddl\OneDrive\Dokumente\StarCraft II\Accounts\404158777\2-S2-1-6726157 ()
Shortcut: C:\Users\yaddl\OneDrive\Dokumente\Adobe\After Effects 2020\User Presets\(Adobe).lnk -> C:\Program Files\Adobe\Adobe After Effects 2020\Support Files\Presets (Keine Datei)
Shortcut: C:\Users\yaddl\OneDrive\Desktop\blender.lnk -> C:\Program Files\Blender Foundation\Blender 2.92\blender.exe (Blender Foundation)
Shortcut: C:\Users\yaddl\OneDrive\Desktop\Browser Opera GX.lnk -> C:\Users\yaddl\AppData\Local\Programs\Opera GX\launcher.exe (Opera Software)
Shortcut: C:\Users\yaddl\OneDrive\Desktop\Dev-C++.lnk -> E:\Dev-Cpp\devcpp.exe (Bloodshed Software)
Shortcut: C:\Users\yaddl\OneDrive\Desktop\DigiExam.lnk -> C:\Users\yaddl\AppData\Local\DigiExam\DigiExam.exe (DigiExam Solutions Sweden AB)
Shortcut: C:\Users\yaddl\OneDrive\Desktop\E-Books Studium - Verknüpfung.lnk -> E:\OneDrive\E-Books Studium ()
Shortcut: C:\Users\yaddl\OneDrive\Desktop\Eclipse IDE for Java Developers - 2020-03.lnk -> E:\Eclipse\eclipse\eclipse.exe ()
Shortcut: C:\Users\yaddl\OneDrive\Desktop\Figma.lnk -> C:\Users\yaddl\AppData\Local\Figma\Figma.exe (Figma, Inc.)
Shortcut: C:\Users\yaddl\OneDrive\Desktop\Miro.lnk -> C:\Users\yaddl\AppData\Local\RealtimeBoard\Miro.exe (Miro)
Shortcut: C:\Users\yaddl\OneDrive\Desktop\Notion.lnk -> C:\Users\yaddl\AppData\Local\Programs\Notion\Notion.exe (Notion Labs, Incorporated)
Shortcut: C:\Users\yaddl\OneDrive\Desktop\Prüfungen 3. Semester - Verknüpfung.lnk -> E:\OneDrive\Prüfungen 3. Semester ()
Shortcut: C:\Users\yaddl\OneDrive\Desktop\Prüfungen Semster 2 - Verknüpfung.lnk -> E:\OneDrive\Prüfungen Semster 2 ()
Shortcut: C:\Users\yaddl\OneDrive\Desktop\Riot Client.lnk -> F:\Riot Games\Riot Client\RiotClientServices.exe (Riot Games, Inc.)
Shortcut: C:\Users\yaddl\OneDrive\Desktop\Sky Ticket.lnk -> C:\Users\yaddl\AppData\Roaming\Sky Ticket\Sky Ticket\Sky Ticket.exe (Sky Ticket)
Shortcut: C:\Users\yaddl\OneDrive\Desktop\Spotify.lnk -> C:\Users\yaddl\AppData\Roaming\Spotify\Spotify.exe (Spotify Ltd)
Shortcut: C:\Users\yaddl\OneDrive\Desktop\StreamElements OBS.Live.lnk -> C:\Program Files\obs-studio\bin\64bit\obs64.exe (OBS)
Shortcut: C:\Users\yaddl\OneDrive\Desktop\Twitch.lnk -> C:\Users\yaddl\AppData\Roaming\Twitch\Bin\Twitch.exe (Twitch Interactive, Inc.)
Shortcut: C:\Users\yaddl\OneDrive\Desktop\Zoom.lnk -> C:\Users\yaddl\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc.)
Shortcut: C:\Users\yaddl\Links\Desktop.lnk -> C:\Users\yaddl\OneDrive\Desktop ()
Shortcut: C:\Users\yaddl\Links\Downloads.lnk -> E:\Downloads ()
Shortcut: C:\Users\yaddl\Creative Cloud Files cedriclanger0205@gmail.com daa11be4969a0c50c49938e1cd20325ee18b37ff22bfb32426c7f6d5f1e4f984\_Cloud-Dokumente.lnk -> C:\Program Files (x86)\Adobe\Adobe Sync\CoreSync\CoreSync.exe ()
Shortcut: C:\Users\yaddl\Creative Cloud Files\_Cloud-Dokumente.lnk -> C:\Program Files (x86)\Adobe\Adobe Sync\CoreSync\CoreSync.exe ()
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Browser Opera GX.lnk -> C:\Users\yaddl\AppData\Local\Programs\Opera GX\launcher.exe (Opera Software)
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameRanger.lnk -> C:\Users\yaddl\AppData\Roaming\GameRanger\GameRanger\GameRanger.exe (GameRanger Technologies)
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notion.lnk -> C:\Users\yaddl\AppData\Local\Programs\Notion\Notion.exe (Notion Labs, Incorporated)
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Outlook.lnk -> C:\Program Files\Microsoft Office\root\Office16\OUTLOOK.EXE (Microsoft Corporation)
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk -> C:\Users\yaddl\AppData\Roaming\Spotify\Spotify.exe (Spotify Ltd)
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Twitch.lnk -> C:\Users\yaddl\AppData\Roaming\Twitch\Bin\Twitch.exe (Twitch Interactive, Inc.)
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom\Zoom.lnk -> C:\Users\yaddl\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc.)
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\Benutzerhandbuch für die Konsolenversion von RAR.lnk -> E:\winrar\Rar.txt ()
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\Hilfe zu WinRAR.lnk -> E:\winrar\WinRAR.chm ()
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\Was ist neu in dieser Version.lnk -> E:\winrar\WhatsNew.txt ()
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\WinRAR.lnk -> E:\winrar\WinRAR.exe (Alexander Roshal)
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft\Uplay\Uninstall.lnk -> F:\Ubisoft Game Launcher\Uninstall.exe (Ubisoft)
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft\Uplay\Uplay.lnk -> F:\Ubisoft Game Launcher\Uplay.exe (Ubisoft)
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft\UbisoftConnect\Ubisoft Connect.lnk -> F:\Ubisoft Game Launcher\UbisoftConnect.exe (Ubisoft)
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft\UbisoftConnect\Uninstall.lnk -> F:\Ubisoft Game Launcher\Uninstall.exe (Ubisoft)
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\computer.lnk -> C:\Windows\explorer.exe,-30
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Control Panel.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\File Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Run.lnk -> C:\Windows\System32\shell32.dll (Microsoft Corporation)
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sky Ticket\Sky Ticket.lnk -> C:\Users\yaddl\AppData\Roaming\Sky Ticket\Sky Ticket\Sky Ticket.exe (Sky Ticket)
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rockstar Games\Grand Theft Auto V.lnk -> F:\RockstarGames\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games)
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rockstar Games\Rockstar Games Launcher.lnk -> F:\Launcher\LauncherPatcher.exe (Rockstar Games)
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Miro\Miro.lnk -> C:\Users\yaddl\AppData\Local\RealtimeBoard\Miro.exe (Miro)
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line\More....lnk -> C:\Program Files (x86)\Image-Line\Shared\Start (Keine Datei)
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Figma, Inc\Figma.lnk -> C:\Users\yaddl\AppData\Local\Figma\Figma.exe (Figma, Inc.)
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Eclipse\Eclipse IDE for Java Developers - 2020-03.lnk -> E:\Eclipse\eclipse\eclipse.exe ()
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DroidCam\DroidCam Client.lnk -> E:\DroidCam\DroidCamApp.exe ()
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DroidCam\Uninstall.lnk -> E:\DroidCam\Uninstall.exe ()
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DigiExam Solutions Sweden AB\DigiExam.lnk -> C:\Users\yaddl\AppData\Local\DigiExam\DigiExam.exe (DigiExam Solutions Sweden AB)
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Blender\blender.lnk -> C:\Program Files\Blender Foundation\Blender 2.92\blender.exe (Blender Foundation)
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bibi Blocksberg\Wo ist Kartoffelbrei\Bibi - Wo ist Kartoffelbrei - Entfernen.lnk -> C:\Kiddinx\Bibi_Kartoffelbrei\Unwise.exe (Keine Datei)
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bibi Blocksberg\Wo ist Kartoffelbrei\Bibi - Wo ist Kartoffelbrei.lnk -> D:\start.exe (Keine Datei)
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bibi Blocksberg\Wo ist Kartoffelbrei\Internet Readme.lnk -> D:\Internet\internet_readme.txt (Keine Datei)
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bibi Blocksberg\Wo ist Kartoffelbrei\Internet.lnk -> D:\Internet\Internet.exe (Keine Datei)
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bibi Blocksberg\Wo ist Kartoffelbrei\Komplettlösung.lnk -> C:\Kiddinx\Bibi_Kartoffelbrei\komplettlösung.txt (Keine Datei)
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bibi Blocksberg\Wo ist Kartoffelbrei\Readme.lnk -> C:\Kiddinx\Bibi_Kartoffelbrei\Readme.txt (Keine Datei)
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\SendTo\Bluetooth-Dateiübertragung.LNK -> C:\Windows\System32\fsquirt.exe (Microsoft Corporation)
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC)
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation)
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Browser Opera GX.lnk -> C:\Users\yaddl\AppData\Local\Programs\Opera GX\launcher.exe (Opera Software)
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\File Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Firefox.lnk -> C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC)
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Notion.lnk -> C:\Users\yaddl\AppData\Local\Programs\Notion\Notion.exe (Notion Labs, Incorporated)
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Tombstones\Driver Booster (3).lnk -> C:\Program Files (x86)\IObit\Driver Booster\8.7.0\DriverBooster.exe (Keine Datei)
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\c4789a2f01b0b5bc\League of Legends.lnk -> F:\Riot Games\League of Legends\LeagueClient.exe (Riot Games, Inc.)
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\7111c0ce965b7246\Battle.net.lnk -> F:\Battle.net\Battle.net.exe (Blizzard Entertainment)
Shortcut: C:\Users\yaddl\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\26c8e4b9a90483d\Rockstar Games Launcher.lnk -> F:\Launcher\Launcher.exe (Rockstar Games)
Shortcut: C:\Users\yaddl\AppData\Local\Microsoft\Windows\WinX\Group3\01 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\yaddl\AppData\Local\Microsoft\Windows\WinX\Group3\01a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\yaddl\AppData\Local\Microsoft\Windows\WinX\Group3\02 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\yaddl\AppData\Local\Microsoft\Windows\WinX\Group3\02a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\yaddl\AppData\Local\Microsoft\Windows\WinX\Group3\03 - Computer Management.lnk -> C:\Windows\System32\compmgmt.msc ()
Shortcut: C:\Users\yaddl\AppData\Local\Microsoft\Windows\WinX\Group3\04 - Disk Management.lnk -> C:\Windows\System32\diskmgmt.msc ()
Shortcut: C:\Users\yaddl\AppData\Local\Microsoft\Windows\WinX\Group3\07 - Event Viewer.lnk -> C:\Windows\System32\eventvwr.exe (Microsoft Corporation)
Shortcut: C:\Users\yaddl\AppData\Local\Microsoft\Windows\WinX\Group3\09 - Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation)
Shortcut: C:\Users\yaddl\AppData\Local\Microsoft\Windows\WinX\Group2\4 - Control Panel.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation)
ShortcutWithArgument: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Anaconda3 (64-bit)\Anaconda Prompt (anaconda3).lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> "/K" C:\Users\yaddl\anaconda3\Scripts\activate.bat C:\Users\yaddl\anaconda3
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Warcraft\World of Warcraft.lnk -> F:\World of Warcraft\World of Warcraft Launcher.exe (Blizzard Entertainment) -> --productcode=wow
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VLC media player - reset preferences and cache files.lnk -> E:\VLC\vlc.exe (VideoLAN) -> --reset-config --reset-plugins-cache vlc://quit
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VLC media player skinned.lnk -> E:\VLC\vlc.exe (VideoLAN) -> -Iskins
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Witcher 3 - Wild Hunt - Game of the Year Edition [GOG.com]\The Witcher 3 - Wild Hunt - Game of the Year Edition.lnk -> F:\GOG Galaxy\GalaxyClient.exe (GOG.com) -> /command=runGame /gameId=1495134320 /path="F:\GOG Galaxy\Games\The Witcher 3 Wild Hunt GOTY"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Terzio\Raumschiffe bauen mit Willy Werkel\Raumschiffe bauen mit Willy Werkel deinstallieren.lnk -> C:\Windows\SysWOW64\msiexec.exe (Microsoft Corporation) -> -x {E5BD5D44-EC2D-47FF-B451-6A6DA0B8AC60}
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools\Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /7
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riot Games\League of Legends.lnk -> F:\Riot Games\Riot Client\RiotClientServices.exe (Riot Games, Inc.) -> --launch-product=league_of_legends --launch-patchline=live
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riot Games\VALORANT.lnk -> F:\Riot Games\Riot Client\RiotClientServices.exe (Riot Games, Inc.) -> --launch-product=valorant --launch-patchline=live
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenVPN\Utilities\Generate a static OpenVPN key.lnk -> E:\OpenVPN\bin\openvpn.exe (The OpenVPN Project) -> --pause-exit --verb 3 --genkey --secret "E:\OpenVPN\config\key.txt"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky VPN\Kaspersky VPN entfernen.lnk -> C:\Windows\SysWOW64\msiexec.exe (Microsoft Corporation) -> /i{FF2A12B8-AEB7-48C0-95C8-E2E3D67DFCB2} REMOVE=ALL
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Total Security\Kaspersky Total Security entfernen.lnk -> C:\Windows\SysWOW64\msiexec.exe (Microsoft Corporation) -> /i{4FC79BE9-AD63-46C0-9626-E4F6BCE6A976} REMOVE=ALL
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Password Manager\Löschen Kaspersky Password Manager.lnk -> C:\Windows\SysWOW64\msiexec.exe (Microsoft Corporation) -> /i{B2F7333E-6C8D-4994-AAC4-FEC8EBBF9611} REMOVE=ALL
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Auf Updates prüfen.lnk -> C:\Program Files\Java\jre1.8.0_301\bin\javacpl.exe (Oracle Corporation) -> -tab update
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Info zu Java.lnk -> C:\Program Files\Java\jre1.8.0_301\bin\javacpl.exe (Oracle Corporation) -> -tab about
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Git\Git Bash.lnk -> E:\Git\git-bash.exe (The Git Development Community) -> --cd-to-home
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Git\Git CMD.lnk -> E:\Git\git-cmd.exe (The Git Development Community) -> --cd-to-home
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elgato\Game Capture HD\Deinstallieren.lnk -> C:\Windows\SysWOW64\msiexec.exe (Microsoft Corporation) -> /x {61992573-D995-4F0D-AB57-4747D3C5320D}
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elgato\4KCapture\Deinstallieren.lnk -> C:\Windows\SysWOW64\msiexec.exe (Microsoft Corporation) -> /x {D5F34565-253F-4F45-9BDB-439D02FC9CDE}
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES\Need for Speed™ Most Wanted\Elektronische Registrierung.lnk -> C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\Support\EReg.exe (Electronic Arts Inc.) -> "speed.exe"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES\Need for Speed™ Most Wanted\Need for Speed™ Most Wanted Abgesicherter Modus.lnk -> C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Computer Management.lnk -> C:\Windows\System32\compmgmt.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Event Viewer.lnk -> C:\Windows\System32\eventvwr.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Performance Monitor.lnk -> C:\Windows\System32\perfmon.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Resource Monitor.lnk -> C:\Windows\System32\perfmon.exe (Microsoft Corporation) -> /res
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Task Scheduler.lnk -> C:\Windows\System32\taskschd.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Media Player.lnk -> C:\Program Files (x86)\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility\Speech Recognition.lnk -> C:\Windows\Speech\Common\sapisvr.exe (Microsoft Corporation) -> -SpeechUX
ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Administrative Tools.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.AdministrativeTools
ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\04-1 - NetworkStatus.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageNetworkStatus
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\05 - Device Manager.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DeviceManager
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\06 - SystemAbout.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPagePCSystemInfo
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\08 - PowerAndSleep.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageScreenPowerAndSleep
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\10 - AppsAndFeatures.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageAppsSizes
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\1 - Run.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f3-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\2 - Search.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f8-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\3 - Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{52205fd8-5dfb-447d-801a-d0b52f2e83e1}
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\5 - Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /0
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group1\1 - Desktop.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{3080F90D-D7AD-11D9-BD98-0000947B0257}
ShortcutWithArgument: C:\Users\yaddl\OneDrive\Desktop\CurseForge.lnk -> E:\Overwolf\OverwolfLauncher.exe (Overwolf Ltd.) -> -launchapp cchhcaiapeikjbdbpfplgmpobbcdkdaphclbmkbj -from-desktop
ShortcutWithArgument: C:\Users\yaddl\OneDrive\Desktop\Discord.lnk -> C:\Users\yaddl\AppData\Local\Discord\Update.exe (GitHub) -> --processStart Discord.exe
ShortcutWithArgument: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom\Uninstall Zoom.lnk -> C:\Users\yaddl\AppData\Roaming\Zoom\uninstall\Installer.exe (Zoom Video Communications, Inc.) -> /uninstall
ShortcutWithArgument: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Administrative Tools.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.AdministrativeTools
ShortcutWithArgument: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\An OneNote senden.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation) -> /tsr
ShortcutWithArgument: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Twitch.lnk -> C:\Users\yaddl\AppData\Roaming\Twitch\Bin\Twitch.exe (Twitch Interactive, Inc.) -> /startup
ShortcutWithArgument: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Overwolf\CurseForge.lnk -> E:\Overwolf\OverwolfLauncher.exe (Overwolf Ltd.) -> -launchapp cchhcaiapeikjbdbpfplgmpobbcdkdaphclbmkbj
ShortcutWithArgument: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Overwolf\Overwolf.lnk -> E:\Overwolf\OverwolfLauncher.exe (Overwolf Ltd.) -> -from-desktop
ShortcutWithArgument: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Overwolf\Porofessor.gg.lnk -> E:\Overwolf\OverwolfLauncher.exe (Overwolf Ltd.) -> -launchapp pibhbkkgefgheeglaeemkkfjlhidhcedalapdggh
ShortcutWithArgument: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DroidCam\HD Mode.lnk -> E:\DroidCam\DroidCamApp.exe () -> -hd
ShortcutWithArgument: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc\Discord.lnk -> C:\Users\yaddl\AppData\Local\Discord\Update.exe (GitHub) -> --processStart Discord.exe
ShortcutWithArgument: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Anaconda3 (64-bit)\Anaconda Navigator (anaconda3).lnk -> C:\Users\yaddl\anaconda3\pythonw.exe (Python Software Foundation) -> C:\Users\yaddl\anaconda3\cwp.py C:\Users\yaddl\anaconda3 C:\Users\yaddl\anaconda3\pythonw.exe C:\Users\yaddl\anaconda3\Scripts\anaconda-navigator-script.py
ShortcutWithArgument: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Anaconda3 (64-bit)\Anaconda Powershell Prompt (anaconda3).lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation) -> -ExecutionPolicy ByPass -NoExit -Command "& 'C:\Users\yaddl\anaconda3\shell\condabin\conda-hook.ps1' ; conda activate 'C:\Users\yaddl\anaconda3' "
ShortcutWithArgument: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Anaconda3 (64-bit)\Jupyter Notebook (anaconda3).lnk -> C:\Users\yaddl\anaconda3\python.exe (Python Software Foundation) -> C:\Users\yaddl\anaconda3\cwp.py C:\Users\yaddl\anaconda3 C:\Users\yaddl\anaconda3\python.exe C:\Users\yaddl\anaconda3\Scripts\jupyter-notebook-script.py "%USERPROFILE%/"
ShortcutWithArgument: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Anaconda3 (64-bit)\Jupyter Notebook (cv2env).lnk -> C:\Users\yaddl\anaconda3\python.exe (Python Software Foundation) -> C:\Users\yaddl\anaconda3\cwp.py C:\Users\yaddl\anaconda3\envs\cv2env C:\Users\yaddl\anaconda3\envs\cv2env\python.exe C:\Users\yaddl\anaconda3\envs\cv2env\Scripts\jupyter-notebook-script.py "%USERPROFILE%/"
ShortcutWithArgument: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Anaconda3 (64-bit)\Reset Spyder Settings (anaconda3).lnk -> C:\Users\yaddl\anaconda3\python.exe (Python Software Foundation) -> C:\Users\yaddl\anaconda3\cwp.py C:\Users\yaddl\anaconda3 C:\Users\yaddl\anaconda3\python.exe C:\Users\yaddl\anaconda3\Scripts\spyder-script.py --reset
ShortcutWithArgument: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Anaconda3 (64-bit)\Spyder (anaconda3).lnk -> C:\Users\yaddl\anaconda3\pythonw.exe (Python Software Foundation) -> C:\Users\yaddl\anaconda3\cwp.py C:\Users\yaddl\anaconda3 C:\Users\yaddl\anaconda3\pythonw.exe C:\Users\yaddl\anaconda3\Scripts\spyder-script.py
ShortcutWithArgument: C:\Users\yaddl\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\yaddl\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Microsoft Outlook.lnk -> C:\Program Files\Microsoft Office\root\Office16\OUTLOOK.EXE (Microsoft Corporation) -> /recycle
ShortcutWithArgument: C:\Users\yaddl\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Discord.lnk -> C:\Users\yaddl\AppData\Local\Discord\Update.exe (GitHub) -> --processStart Discord.exe
ShortcutWithArgument: C:\Users\yaddl\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\ba2c9e60cd98a2b1\Porofessor.gg.lnk -> E:\Overwolf\OverwolfLauncher.exe (Overwolf Ltd.) -> -launchapp pibhbkkgefgheeglaeemkkfjlhidhcedalapdggh -from-taskbar
ShortcutWithArgument: C:\Users\yaddl\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\8c62ee8d245988ae\Porofessor.gg.lnk -> E:\Overwolf\OverwolfLauncher.exe (Overwolf Ltd.) -> -launchapp pibhbkkgefgheeglaeemkkfjlhidhcedalapdggh -from-taskbar
ShortcutWithArgument: C:\Users\yaddl\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\19f998c45073757e\Porofessor.gg.lnk -> E:\Overwolf\OverwolfLauncher.exe (Overwolf Ltd.) -> -launchapp pibhbkkgefgheeglaeemkkfjlhidhcedalapdggh -from-taskbar
ShortcutWithArgument: C:\Users\yaddl\AppData\Local\Microsoft\Windows\WinX\Group3\04-1 - NetworkStatus.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageNetworkStatus
ShortcutWithArgument: C:\Users\yaddl\AppData\Local\Microsoft\Windows\WinX\Group3\05 - Device Manager.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DeviceManager
ShortcutWithArgument: C:\Users\yaddl\AppData\Local\Microsoft\Windows\WinX\Group3\06 - SystemAbout.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPagePCSystemInfo
ShortcutWithArgument: C:\Users\yaddl\AppData\Local\Microsoft\Windows\WinX\Group3\08 - PowerAndSleep.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageScreenPowerAndSleep
ShortcutWithArgument: C:\Users\yaddl\AppData\Local\Microsoft\Windows\WinX\Group3\10 - AppsAndFeatures.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageAppsSizes
ShortcutWithArgument: C:\Users\yaddl\AppData\Local\Microsoft\Windows\WinX\Group2\1 - Run.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f3-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\yaddl\AppData\Local\Microsoft\Windows\WinX\Group2\2 - Search.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f8-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\yaddl\AppData\Local\Microsoft\Windows\WinX\Group2\3 - Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{52205fd8-5dfb-447d-801a-d0b52f2e83e1}
ShortcutWithArgument: C:\Users\yaddl\AppData\Local\Microsoft\Windows\WinX\Group2\5 - Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /0
ShortcutWithArgument: C:\Users\yaddl\AppData\Local\Microsoft\Windows\WinX\Group1\1 - Desktop.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{3080F90D-D7AD-11D9-BD98-0000947B0257}
ShortcutWithArgument: C:\Users\yaddl\AppData\Local\Microsoft\Edge\User Data\Default\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation) -> --profile-directory=Default
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Yu-Gi-Oh! The Dawn of a New Era\Yu-Gi-Oh! The Dawn of a New Era im Internet.url -> URL: hxxps://ygopro.org
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Witcher 3 - Wild Hunt - Game of the Year Edition [GOG.com]\Dokumente\Support.url -> URL: hxxp://www.gog.com/en/support/the_witcher_3_wild_hunt
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam\Steam Support Center.url -> URL: hxxp://support.steampowered.com/
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Defrag\Smart Defrag Home Page.url -> URL: hxxps://www.iobit.com/en/iobitsmartdefrag.php
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenVPN\Documentation\OpenVPN HOWTO.url -> URL: hxxps://openvpn.net/howto.html
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenVPN\Documentation\OpenVPN Support.url -> URL: hxxps://community.openvpn.net/openvpn/wiki/GettingHelp
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenVPN\Documentation\OpenVPN Web Site.url -> URL: hxxps://openvpn.net/
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenVPN\Documentation\OpenVPN Wiki.url -> URL: hxxps://community.openvpn.net/openvpn/wiki/
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit\Referenzdokumentation.url -> URL: hxxps://docs.oracle.com/javase/8/docs
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Besuchen Sie Java.com.url -> URL: hxxps://java.com/
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Hilfe aufrufen.url -> URL: hxxps://java.com/help
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Jagex\RuneScape Launcher.url -> URL: rs-launch://www.runescape.com/k=5/l=$(Language:0)/jav_config.ws
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Git\Git FAQs (Frequently Asked Questions).url -> URL: hxxps://github.com/git-for-windows/git/wiki/FAQ
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES\Need for Speed™ Most Wanted\Online nach Update suchen.url -> URL: hxxp://patches.ea.com/nfs_mostwanted/home.html
InternetURL: C:\Users\Public\Desktop\RuneScape Launcher.url -> URL: rs-launch://www.runescape.com/k=5/l=$(Language:0)/jav_config.ws
InternetURL: C:\Users\yaddl\STM32Cube\Repository\STM32Cube_FW_F0_V1.11.2\Middlewares\Third_Party\FreeRTOS\links_to_doc_pages_for_the_demo_projects.url -> URL: hxxp://www.freertos.org/a00090.html
InternetURL: C:\Users\yaddl\STM32Cube\Repository\STM32Cube_FW_F0_V1.11.2\Middlewares\Third_Party\FreeRTOS\Source\portable\MemMang\ReadMe.url -> URL: hxxp://www.freertos.org/a00111.html
InternetURL: C:\Users\yaddl\OneDrive\Desktop\Paint Splatter - Overlay\003_Paint Splatter\LIGHT MODE\LIGHT MODE\Paint_Overlay-YELLOW-Light_Mode\001_Installation_Guide\Free Overlay Install Tutorial.url -> URL: hxxp://bit.ly/FreeTwitchOverlaysPlaylist
InternetURL: C:\Users\yaddl\OneDrive\Desktop\Paint Splatter - Overlay\003_Paint Splatter\LIGHT MODE\LIGHT MODE\Paint_Overlay-RED-Light_Mode\001_Installation_Guide\Free Overlay Install Tutorial.url -> URL: hxxp://bit.ly/FreeTwitchOverlaysPlaylist
InternetURL: C:\Users\yaddl\OneDrive\Desktop\Paint Splatter - Overlay\003_Paint Splatter\LIGHT MODE\LIGHT MODE\Paint_Overlay-PINK-Light_Mode\001_Installation_Guide\Free Overlay Install Tutorial.url -> URL: hxxp://bit.ly/FreeTwitchOverlaysPlaylist
InternetURL: C:\Users\yaddl\OneDrive\Desktop\Paint Splatter - Overlay\003_Paint Splatter\LIGHT MODE\LIGHT MODE\Paint_Overlay-GREEN-Light_Mode\001_Installation_Guide\Free Overlay Install Tutorial.url -> URL: hxxp://bit.ly/FreeTwitchOverlaysPlaylist
InternetURL: C:\Users\yaddl\OneDrive\Desktop\Paint Splatter - Overlay\003_Paint Splatter\LIGHT MODE\LIGHT MODE\Paint_Overlay-BLUE-Light_Mode\001_Installation_Guide\Free Overlay Install Tutorial.url -> URL: hxxp://bit.ly/FreeTwitchOverlaysPlaylist
InternetURL: C:\Users\yaddl\OneDrive\Desktop\Paint Splatter - Overlay\003_Paint Splatter\LIGHT MODE\LIGHT MODE\Paint_Overlay-BLACK-Light_Mode\001_Installation_Guide\Free Overlay Install Tutorial.url -> URL: hxxp://bit.ly/FreeTwitchOverlaysPlaylist
InternetURL: C:\Users\yaddl\OneDrive\Desktop\Paint Splatter - Overlay\003_Paint Splatter\DARK MODE\DARK MODE\Paint_Overlay-YELLOW-Dark_Mode\001_Installation_Guide\Free Overlay Install Tutorial.url -> URL: hxxp://bit.ly/FreeTwitchOverlaysPlaylist
InternetURL: C:\Users\yaddl\OneDrive\Desktop\Paint Splatter - Overlay\003_Paint Splatter\DARK MODE\DARK MODE\Paint_Overlay-WHITE-Dark_Mode\001_Installation_Guide\Free Overlay Install Tutorial.url -> URL: hxxp://bit.ly/FreeTwitchOverlaysPlaylist
InternetURL: C:\Users\yaddl\OneDrive\Desktop\Paint Splatter - Overlay\003_Paint Splatter\DARK MODE\DARK MODE\Paint_Overlay-RED-Dark_Mode\001_Installation_Guide\Free Overlay Install Tutorial.url -> URL: hxxp://bit.ly/FreeTwitchOverlaysPlaylist
InternetURL: C:\Users\yaddl\OneDrive\Desktop\Paint Splatter - Overlay\003_Paint Splatter\DARK MODE\DARK MODE\Paint_Overlay-PINK-Dark_Mode\001_Installation_Guide\Free Overlay Install Tutorial.url -> URL: hxxp://bit.ly/FreeTwitchOverlaysPlaylist
InternetURL: C:\Users\yaddl\OneDrive\Desktop\Paint Splatter - Overlay\003_Paint Splatter\DARK MODE\DARK MODE\Paint_Overlay-GREEN-Dark_Mode\001_Installation_Guide\Free Overlay Install Tutorial.url -> URL: hxxp://bit.ly/FreeTwitchOverlaysPlaylist
InternetURL: C:\Users\yaddl\OneDrive\Desktop\Paint Splatter - Overlay\003_Paint Splatter\DARK MODE\DARK MODE\Paint_Overlay-BLUE-Dark_Mode\001_Installation_Guide\Free Overlay Install Tutorial.url -> URL: hxxp://bit.ly/FreeTwitchOverlaysPlaylist
InternetURL: C:\Users\yaddl\Favorites\Bing.url -> URL: hxxp://go.microsoft.com/fwlink/p/?LinkId=255142
==================== Ende vom Shortcut.txt =============================
|
|
02.11.2021, 21:04
| #4 |
| /// Winkelfunktion /// TB-Süch-Tiger™   | Win 10 Kaspersky meldet:PDM:Trojan.Win32.Generic und Trojan.Multi.GenAutorunReg.a Das ist ein Fehlalarm. Bitte trotzdem weitermachen und im ersten Schritt das völlig überflüssige bis kontraproduktive Kaspersky deinstallieren. Außerde muss alles von Java weg, denn das ist uralt bei dir. Gib Bescheid wenn das erledigt ist, dann gehts weiter.
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
02.11.2021, 21:24
| #5 |
| | Win 10 Kaspersky meldet:PDM:Trojan.Win32.Generic und Trojan.Multi.GenAutorunReg.a Danke, da bin ich erleichtert. Beides wurde erledigt. |
|
02.11.2021, 21:34
| #6 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Win 10 Kaspersky meldet:PDM:Trojan.Win32.Generic und Trojan.Multi.GenAutorunReg.a Dann jetzt nochmal: adwCleaner Führe AdwCleaner gemäß der bebilderten Anleitung aus und poste abschließend die Logdatei in CODE-Tags. adwcleaner zwecks Kontrolle bitte wiederholen, falls es Funde gab.
__________________ --> Win 10 Kaspersky meldet:PDM:Trojan.Win32.Generic und Trojan.Multi.GenAutorunReg.a |
|
02.11.2021, 21:54
| #7 |
| | Win 10 Kaspersky meldet:PDM:Trojan.Win32.Generic und Trojan.Multi.GenAutorunReg.a Hier: Code:
ATTFilter # -------------------------------
# Malwarebytes AdwCleaner 8.3.0.0
# -------------------------------
# Build: 06-29-2021
# Database: 2021-10-26.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 11-02-2021
# Duration: 00:00:00
# OS: Windows 10 Home
# Cleaned: 0
# Failed: 1
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
No malicious registry entries cleaned.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
Not Deleted Websuche
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1860 octets] - [02/11/2021 19:29:54]
AdwCleaner[C00].txt - [1914 octets] - [02/11/2021 19:31:50]
AdwCleaner[S01].txt - [1535 octets] - [02/11/2021 19:33:09]
AdwCleaner[S02].txt - [1596 octets] - [02/11/2021 19:33:28]
AdwCleaner[S03].txt - [1657 octets] - [02/11/2021 19:56:36]
AdwCleaner[S04].txt - [1718 octets] - [02/11/2021 21:51:47]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C04].txt ##########
|
|
02.11.2021, 22:11
| #8 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Win 10 Kaspersky meldet:PDM:Trojan.Win32.Generic und Trojan.Multi.GenAutorunReg.a Ich denke dabei können wir es belassen. Vergiss wie gesagt aber so einen Krempel wie das Kaspersky-Theater, das ist nicht nur kontraproduktiv sondern kostet auch noch Geld  Dann wären wir durch!  Wenn Du möchtest, kannst Du hier sagen, ob Du mit mir und meiner Hilfe zufrieden warst...  und/oder das Forum mit einer kleinen Spende  unterstützen.  Abschließend bitte noch einen Cleanup mit unserem TB-Cleanup-Script durchführen und unbedingt die Sicherheitsmaßnahmen lesen und umsetzen - beides ist in folgendem Lesestoff verlinkt:
__________________ Logfiles bitte immer in CODE-Tags posten |
|
02.11.2021, 22:14
| #9 |
| | Win 10 Kaspersky meldet:PDM:Trojan.Win32.Generic und Trojan.Multi.GenAutorunReg.a Danke dir vielmals! Habe eine kleine Spende dagelassen. |
|
04.11.2021, 20:00
| #10 |
| /// TB-Ausbilder | Win 10 Kaspersky meldet:PDM:Trojan.Win32.Generic und Trojan.Multi.GenAutorunReg.a Vielen Dank für die Spende. Sie dient zur Erhaltung des Forums. Wir sind froh, dass wir helfen konnten  Dieses Thema scheint erledigt und wird aus unseren Abos gelöscht. Solltest Du das Thema erneut brauchen, schicke uns bitte eine Erinnerung inklusive Link zum Thema. Jeder andere bitte hier klicken und ein eigenes Thema erstellen. |
|
| Themen zu Win 10 Kaspersky meldet:PDM:Trojan.Win32.Generic und Trojan.Multi.GenAutorunReg.a |
| appdata, canon, check, code, computer, datei, dateien, failed, firefox, gelöscht, kaspersky, malwarebytes, maus, microsoft, nvcontainer, nvcontainer.exe, ordner, rechner, registry, reset, roaming, security, services, software, system, system32, windows, wmi |
Linear-Darstellung
