| |
| |||||||
Alles rund um Windows: Windows 11: Maus zieht gelegentlich nach, Rechner manchmal langsamWindows 7 Hilfe zu allen Windows-Betriebssystemen: Windows XP, Windows Vista, Windows 7, Windows 8(.1) und Windows 10 / Windows 11- als auch zu sämtlicher Windows-Software. Alles zu Windows 10 ist auch gerne willkommen. Bitte benenne etwaige Fehler oder Bluescreens unter Windows mit dem Wortlaut der Fehlermeldung und Fehlercode. Erste Schritte für Hilfe unter Windows. |
 |
11.02.2022, 15:00
| #1 |
| |  Problem: Windows 11: Maus zieht gelegentlich nach, Rechner manchmal langsam Aus gegebenem Anlass, die im Titel erwähnte Problematik ist mir neuerdings bei zweien meiner Geräte aufgefallen, daher im Anhang die entsprechenden Logs von einem der beiden: FRST.txt FRST Logfile: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 05-02-2022
durchgeführt von schwa (Administrator) auf MASCHINERIE (Micro-Star International Co., Ltd. MS-7B89) (11-02-2022 14:51:13)
Gestartet von E:\Downloads
Geladene Profile: schwa
Plattform: Microsoft Windows 11 Pro Version 21H2 22000.434 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: Chrome
Start-Modus: Normal
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Discord Inc. -> Discord Inc.) C:\Users\schwa\AppData\Local\Discord\app-1.0.9003\Discord.exe <6>
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Google LLC -> ) C:\Program Files\Google\Drive File Stream\55.0.3.0\crashpad_handler.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <38>
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_appbroker.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe
(Microsoft Corporation -> ) C:\Program Files\PowerToys\modules\AlwaysOnTop\PowerToys.AlwaysOnTop.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe <2>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\PowerToys\modules\Awake\PowerToys.Awake.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\PowerToys\modules\ColorPicker\PowerToys.ColorPickerUI.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\PowerToys\modules\FancyZones\PowerToys.FancyZones.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\PowerToys\modules\KeyboardManager\KeyboardManagerEngine\PowerToys.KeyboardManagerEngine.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\PowerToys\modules\launcher\PowerToys.PowerLauncher.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\PowerToys\PowerToys.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\hvsimgr.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\hvsirdpclient.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\hvsirpcd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.8-0\MpCopyAccelerator.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.8-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.8-0\NisSrv.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Scans\MsMpEngCP.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\System32\vmwp.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> ) C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Thunderbird\thunderbird.exe <3>
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_31a2adf8c49e7799\Display.NvContainer\NVDisplay.Container.exe <2>
(Spotify AB) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.178.765.0_x86__zpdnekdrzrea0\Spotify.exe <6>
(Synology Inc. -> ) C:\Program Files (x86)\Synology\ActiveBackupforBusinessAgent\service\Synology Active Backup for Business Service.exe
(Synology Inc. -> Synology Inc.) C:\Users\schwa\AppData\Local\SynologyDrive\SynologyDrive.app\bin\cloud-drive-connect.exe
(Synology Inc. -> Synology Inc.) C:\Users\schwa\AppData\Local\SynologyDrive\SynologyDrive.app\bin\cloud-drive-daemon.exe
(Synology Inc. -> Synology Inc.) C:\Users\schwa\AppData\Local\SynologyDrive\SynologyDrive.app\bin\cloud-drive-ui.exe
(Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) C:\Program Files (x86)\Common Files\Zoom\Support\CptService.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3951024 2019-10-11] (Microsoft Windows Hardware Compatibility Publisher -> Logitech, Inc.)
HKLM-x32\...\Run: [Discord] => C:\ProgramData\SquirrelMachineInstalls\Discord.exe [62636856 2020-10-28] (Discord Inc. -> Discord Inc.)
HKLM-x32\...\Run: [TeamsMachineInstaller] => C:\Program Files (x86)\Teams Installer\Teams.exe [124599048 2021-08-18] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\RunOnce: [msedge_cleanup_{F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}] => C:\Program Files (x86)\Microsoft\EdgeWebView\Application\98.0.1108.43\Installer\setup.exe [3195784 2022-02-04] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\55.0.3.0\GoogleDriveFS.exe [55334232 2022-01-25] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\55.0.3.0\GoogleDriveFS.exe [55334232 2022-01-25] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-867440670-1444343760-607649241-1001\...\Run: [Discord] => C:\Users\schwa\AppData\Local\Discord\Update.exe [1512608 2021-09-21] (Discord Inc. -> GitHub)
HKU\S-1-5-21-867440670-1444343760-607649241-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\54.0.2.0\GoogleDriveFS.exe --startup_mode (Keine Datei)
HKU\S-1-5-21-867440670-1444343760-607649241-1001\...\Run: [Figma Agent] => C:\Users\schwa\AppData\Local\FigmaAgent\figma_agent.exe [6008544 2021-12-08] (Figma, Inc. -> )
HKU\S-1-5-21-867440670-1444343760-607649241-1001\...\Run: [GalaxyClient] => [X]
HKU\S-1-5-21-867440670-1444343760-607649241-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [33627104 2022-01-25] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-867440670-1444343760-607649241-1001\...\Run: [Battle.net] => C:\Program Files (x86)\Battle.net\Battle.net.exe [1087376 2022-01-15] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\55.0.3.0\GoogleDriveFS.exe [55334232 2022-01-25] (Google LLC -> Google, Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [OpenVPN_UserSetup] -> reg delete HKCU\Software\Microsoft\Windows\CurrentVersion\Run /v OPENVPN-GUI /f
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\98.0.4758.82\Installer\chrmstp.exe [2022-02-11] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SOLIDWORKS 2020 Fast Start.lnk [2021-09-26]
ShortcutTarget: SOLIDWORKS 2020 Fast Start.lnk -> C:\WINDOWS\Installer\{3F4681F3-B30B-4531-ADB2-3661B531F926}\NewShortcut2_87EDF6C81D0A4B7B84F42FE0C6A9D608.exe (Keine Datei)
Startup: C:\Users\donut\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Synology Drive Client.lnk [2021-10-08]
ShortcutTarget: Synology Drive Client.lnk -> C:\Program Files (x86)\Synology\SynologyDrive\bin\launcher.exe (Synology Inc. -> Synology Inc.)
Startup: C:\Users\schwa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\An OneNote senden.lnk [2022-01-19]
ShortcutTarget: An OneNote senden.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
Startup: C:\Users\schwa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Synology Drive Client.lnk [2022-02-06]
ShortcutTarget: Synology Drive Client.lnk -> C:\Program Files (x86)\Synology\SynologyDrive\bin\launcher.exe (Synology Inc. -> Synology Inc.)
Policies: C:\ProgramData\NTUSER.pol: Beschränkung <==== ACHTUNG
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {00BB54F7-1D09-4D71-A966-E5D8C791B942} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.8-0\MpCmdRun.exe [926912 2022-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {04EBBABB-0388-4BE2-B52D-2A04ED5A2BE9} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8573352 2022-02-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {0A221FED-1F2E-4A36-A54C-B7AEBEBEA50F} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3341312 2021-12-09] (Nvidia Corporation -> NVIDIA Corporation)
Task: {195A4AD6-629B-4398-A2FA-1A57F9412A13} - System32\Tasks\PowerToys\Autorun for schwa => C:\Program Files\PowerToys\PowerToys.exe [1029000 2022-02-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {268D2C6F-F624-4340-8F36-F1E0CF48A8A6} - System32\Tasks\AMDAutoUpdate => C:\Program Files\AMD\AutoUpdate\AMDAutoUpdate.exe [667832 2021-07-16] (Advanced Micro Devices INC. -> )
Task: {2AF46A2F-F614-4C2C-8092-6D97E213F563} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.8-0\MpCmdRun.exe [926912 2022-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {306FB293-AF22-4CD2-B11F-C00BCDEC314F} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {31EB52BD-542B-4679-8F84-8A9D2C339153} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [782320 2019-10-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
Task: {4141964A-2791-4AC2-8FD0-87AB1CC20ED3} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [904904 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {4A08BE20-1516-46C0-B7EB-24F58FFE5F2F} - System32\Tasks\MicrosoftEdgeShadowStackRollbackTask => C:\Program Files (x86)\Microsoft\Edge\Application\98.0.1108.50\Installer\setup.exe [3196816 2022-02-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {4BADD1F8-AF71-4F18-8012-0CA2C4684104} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8573352 2022-02-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {550D2AA0-4808-44AC-9F90-0364E180BFE6} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.8-0\MpCmdRun.exe [926912 2022-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {56425DC9-5927-4D72-89E3-53FFF355F5E5} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [139664 2022-02-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {6392B8AA-DDEB-4A39-9084-8F800E72D358} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-10-10] (Google LLC -> Google LLC)
Task: {79FD7DDC-E010-4FB2-B40F-028B6F0DA9E1} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-17] (Adobe Inc. -> Adobe Inc.)
Task: {96794CB3-705D-4C17-B82D-F8215A3F5850} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4078440 2022-01-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {96CDE9E4-DD95-4B63-AB82-7E438E2AB510} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.8-0\MpCmdRun.exe [926912 2022-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {9A009974-6B0A-4EF3-B628-FB80917274CD} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-10-10] (Google LLC -> Google LLC)
Task: {A0D0F120-8BEB-433E-B1CD-020F0AE029B8} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {A1A69E07-6E23-4273-9A70-45BC92C40909} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {B1164E63-186D-41E1-8414-969166BEEC7B} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22882216 2022-02-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {B7E79DE6-78C9-4339-AA6F-2B514B7F4E4B} - System32\Tasks\Microsoft\Office\Office Serviceability Manager => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe [4190296 2022-02-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {C1BE115C-C739-4052-B450-9D8F7F4DD3C2} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22882216 2022-02-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {C9C728DD-ADFA-4495-9FD4-518C6BA1E711} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [139664 2022-02-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {CC5BE95D-2224-461C-A284-7138AD3D81D0} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {DB08B41A-6FB8-4A29-B8D0-002892FFC147} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-11-16] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {DDCBA284-0B96-42A6-BCC7-5B90144D6818} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649216 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {E1E4C55C-1529-4405-85F2-A9532AD34E10} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-867440670-1444343760-607649241-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4078440 2022-01-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {EA517745-D8C9-4D37-826C-D803E7E895A3} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [904904 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-30] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.10
Tcpip\..\Interfaces\{6f8cb039-876b-42bf-a5c9-1de766b5b2c6}: [DhcpNameServer] 192.168.0.10
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\schwa\AppData\Local\Microsoft\Edge\User Data\Default [2022-02-04]
Edge Profile: C:\Users\schwa\AppData\Local\Microsoft\Edge\User Data\Profile 1 [2021-10-10]
FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-02-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2021-12-24] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-12-19] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-12-19] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR Profile: C:\Users\schwa\AppData\Local\Google\Chrome\User Data\Default [2022-02-11]
CHR DownloadDir: E:\Downloads
CHR Notifications: Default -> hxxps://calendar.google.com; hxxps://de.scalable.capital; hxxps://temp-mail.io
CHR HomePage: Default -> hxxp://www.bing.com/search?FORM=INCOH1&PC=IC03&PTAG=ICO-1c1986f5
CHR StartupUrls: Default -> "hxxp://www.bing.com/search?FORM=INCOH1&PC=IC03&PTAG=ICO-1c1986f5","hxxps://www.google.com/"
CHR Session Restore: Default -> ist aktiviert.
CHR Extension: (Cluster - Window & Tab Manager) - C:\Users\schwa\AppData\Local\Google\Chrome\User Data\Default\Extensions\aadahadfdmiibmdhfmpbeeebejmjnkef [2021-10-10]
CHR Extension: (Google Übersetzer) - C:\Users\schwa\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2022-01-19]
CHR Extension: (Präsentationen) - C:\Users\schwa\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-10-10]
CHR Extension: (WikiTube) - C:\Users\schwa\AppData\Local\Google\Chrome\User Data\Default\Extensions\aneddidibfifdpbeppmpoackniodpekj [2021-10-10]
CHR Extension: (Docs) - C:\Users\schwa\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-10-10]
CHR Extension: (Google Drive) - C:\Users\schwa\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-10-10]
CHR Extension: (WOT Website-Sicherheit und Schutz für sicheres Surfen) - C:\Users\schwa\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp [2022-01-25]
CHR Extension: (YouTube) - C:\Users\schwa\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-10-10]
CHR Extension: (Coin-Hive Blocker) - C:\Users\schwa\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccagdbjcbhmcdcbbknfebhhdbolnfimo [2021-10-10]
CHR Extension: (OneTab) - C:\Users\schwa\AppData\Local\Google\Chrome\User Data\Default\Extensions\chphlpgkkbolifaimnlloiipkdnihall [2021-10-10]
CHR Extension: (Adblock für Youtube™) - C:\Users\schwa\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2022-01-26]
CHR Extension: (Reader View) - C:\Users\schwa\AppData\Local\Google\Chrome\User Data\Default\Extensions\ecabifbgmdmgdllomnfinbmaellmclnh [2021-10-18]
CHR Extension: (Dark Reader) - C:\Users\schwa\AppData\Local\Google\Chrome\User Data\Default\Extensions\eimadpbcbfnmbkopoojfekhnkhdbieeh [2022-02-11]
CHR Extension: (Cleanflight - Configurator) - C:\Users\schwa\AppData\Local\Google\Chrome\User Data\Default\Extensions\enacoimjcgeinfnnnpajinjgmkahmfgb [2021-10-10]
CHR Extension: (uBlock) - C:\Users\schwa\AppData\Local\Google\Chrome\User Data\Default\Extensions\epcnnfbjfcgphgdmggkamkmgojdagdnn [2021-10-10]
CHR Extension: (Tabellen) - C:\Users\schwa\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-10-10]
CHR Extension: (EditThisCookie) - C:\Users\schwa\AppData\Local\Google\Chrome\User Data\Default\Extensions\fngmhnnpilhplaeedifhccceomclgfbg [2021-10-10]
CHR Extension: (Bits + Pieces) - C:\Users\schwa\AppData\Local\Google\Chrome\User Data\Default\Extensions\foocngohimdoacmhbjfkdldchhiipieo [2021-10-10]
CHR Extension: (HTTPS Everywhere) - C:\Users\schwa\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcbommkclmclpchllfjekcdonpmejbdp [2021-10-10]
CHR Extension: (Google Docs Offline) - C:\Users\schwa\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-01-25]
CHR Extension: (Shoop Cashback & Gutscheine) - C:\Users\schwa\AppData\Local\Google\Chrome\User Data\Default\Extensions\hacngjmphfcjdfpmfmlngemhddjdncpe [2022-01-25]
CHR Extension: (Grammarly for Chrome) - C:\Users\schwa\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2022-02-11]
CHR Extension: (Betaflight - Configurator) - C:\Users\schwa\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdaghagfopacdngbohiknlhcocjccjao [2021-10-10]
CHR Extension: (WavesLiteApp) - C:\Users\schwa\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfmcaklajknfekomaflnhkjjkcjabogm [2021-10-10]
CHR Extension: (Jitsi Meetings) - C:\Users\schwa\AppData\Local\Google\Chrome\User Data\Default\Extensions\kglhbbefdnlheedjiejgomgmfplipfeb [2021-10-10]
CHR Extension: (Notion Web Clipper) - C:\Users\schwa\AppData\Local\Google\Chrome\User Data\Default\Extensions\knheggckgoiihginacbkhaalnibhilkk [2021-12-30]
CHR Extension: (Synology Browser Notification) - C:\Users\schwa\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpgebblcakogfmdkegcjadjpgfdonifa [2021-10-10]
CHR Extension: (BLHeli - Configurator) - C:\Users\schwa\AppData\Local\Google\Chrome\User Data\Default\Extensions\mejfjggmbnocnfibbibmoogocnjbcjnk [2021-10-10]
CHR Extension: (Baseflight - Configurator) - C:\Users\schwa\AppData\Local\Google\Chrome\User Data\Default\Extensions\mppkgnedeapfejgfimkdoninnofofigk [2021-10-10]
CHR Extension: (MetaMask) - C:\Users\schwa\AppData\Local\Google\Chrome\User Data\Default\Extensions\nkbihfbeogaeaoehlefnkodbefgpgknn [2022-02-11]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\schwa\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-10-10]
CHR Extension: (AdBlocker Ultimate) - C:\Users\schwa\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohahllgiabjaoigichmmfljhkcfikeof [2021-12-08]
CHR Extension: (Grammatik- und Rechtschreibprüfung - LanguageTool) - C:\Users\schwa\AppData\Local\Google\Chrome\User Data\Default\Extensions\oldceeleldhonbafppcapldpdifcinji [2022-01-23]
CHR Extension: (Netflix Party is now Teleparty) - C:\Users\schwa\AppData\Local\Google\Chrome\User Data\Default\Extensions\oocalimimngaihdkbihfgmpkcpnmlaoa [2022-02-11]
CHR Extension: (PAYBACK Internet Assistent) - C:\Users\schwa\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbfjbhoglggakhkngkbfehgghkaadeba [2021-10-10]
CHR Extension: (EtherAddressLookup) - C:\Users\schwa\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdknmigbbbhmllnmgdfalmedcmcefdfn [2021-10-10]
CHR Extension: (Google Mail) - C:\Users\schwa\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-10-10]
==================== Dienste (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-17] (Adobe Inc. -> Adobe Inc.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8901960 2022-01-28] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12124536 2022-02-01] (Microsoft Corporation -> Microsoft Corporation)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [812520 2022-01-28] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934368 2021-10-01] (Epic Games Inc. -> Epic Games, Inc.)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\22.002.0103.0004\FileSyncHelper.exe [3354520 2022-01-28] (Microsoft Corporation -> Microsoft Corporation)
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [1990496 2021-09-30] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6484832 2021-09-30] (GOG Sp. z o.o. -> GOG.com)
S3 OfficeSvcManagerAddons; C:\Windows\system32\dllhost.exe /Processid:{2CA2E202-932F-4BA2-8771-195BB86398F5} [45368 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\22.002.0103.0004\OneDriveUpdaterService.exe [3812248 2022-01-28] (Microsoft Corporation -> Microsoft Corporation)
R2 OptionsPlusUpdaterService; C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe [14525504 2022-01-12] (Logitech Inc -> Logitech, Inc.)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2562776 2022-01-18] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3481312 2022-01-18] (Electronic Arts, Inc. -> Electronic Arts)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6078536 2021-12-20] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 Synology Active Backup for Business Service; C:\Program Files (x86)\Synology\ActiveBackupforBusinessAgent\service\Synology Active Backup for Business Service.exe [3225736 2021-08-31] (Synology Inc. -> )
S3 ucldr_battlegrounds_gl; C:\Program Files\Common Files\UNCHEATER\ucldr_battlegrounds_gl.exe [7152880 2022-01-28] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.8-0\NisSrv.exe [2909208 2022-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.8-0\MsMpEng.exe [128376 2022-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 zksvc; C:\Program Files\Common Files\PUBG\zksvc.exe [8737992 2022-01-28] (PUBG CORPORATION -> PUBG Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_31a2adf8c49e7799\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_31a2adf8c49e7799\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
R2 ZoomCptService; "C:\Program Files (x86)\Common Files\Zoom\Support\CptService.exe" -user_path "C:\Users\schwa\AppData\Roaming\Zoom"
===================== Treiber (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 atvi-brynhildr; C:\ProgramData\Battle.net_components\brynhildr_odin\brynhildr.sys [2355952 2021-12-19] (Activision Publishing Inc -> Activision Blizzard, Inc.)
R1 googledrivefs3688; C:\Windows\System32\DRIVERS\googledrivefs3688.sys [381456 2021-12-14] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
S3 Hsp; C:\Windows\System32\drivers\Hsp.sys [110904 2021-12-04] (Microsoft Windows -> Microsoft Corporation)
S3 HWiNFO_164; C:\Users\schwa\AppData\Local\Temp\HWiNFO64A_164.SYS [55816 2021-11-18] (Microsoft Windows Hardware Compatibility Publisher -> REALiX(tm)) <==== ACHTUNG
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
R3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [24000 2019-09-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
R3 rtcx21; C:\Windows\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_d2a498d51a4f7bec\rtcx21x64.sys [409000 2021-06-01] (Realtek Semiconductor Corp. -> Realtek)
S3 vmbusproxy; C:\Windows\system32\drivers\vmbusproxy.sys [90112 2021-10-15] (Microsoft Windows -> )
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [48536 2022-02-04] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [438520 2022-02-04] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [89320 2022-02-04] (Microsoft Windows -> Microsoft Corporation)
S3 WIMMount; C:\Program Files (x86)\Windows Kits\10\Assessment and Deployment Kit\Deployment Tools\amd64\DISM\wimmount.sys [65848 2021-06-04] (Microsoft Windows -> Microsoft Corporation)
S3 wtbt; e:\steamlibrary\steamapps\common\super people playtest\engine\binaries\thirdparty\wondertrust\wtdrv64.sys [4118752 2022-01-14] (Wonder People Co., Ltd. -> )
S3 xhunter1; C:\Windows\xhunter1.sys [2522256 2022-01-28] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat (erstellte) (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2022-02-11 14:51 - 2022-02-11 14:51 - 000000000 ____D C:\FRST
2022-02-11 14:36 - 2022-02-11 14:36 - 000000000 ___HD C:\$WinREAgent
2022-02-04 14:34 - 2022-02-04 16:49 - 000000000 ____D C:\Users\schwa\Cisco Packet Tracer 8.1.1
2022-02-04 14:34 - 2022-02-04 16:49 - 000000000 ____D C:\Users\schwa\Cisco Packet Tracer 8.1.1
2022-02-04 14:33 - 2022-02-04 14:34 - 000000000 ____D C:\Program Files\Cisco Packet Tracer 8.1.1
2022-02-03 14:06 - 2022-01-29 00:32 - 001905912 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2022-02-03 14:06 - 2022-01-29 00:32 - 001905912 _____ C:\Windows\system32\vulkaninfo.exe
2022-02-03 14:06 - 2022-01-29 00:32 - 001478392 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2022-02-03 14:06 - 2022-01-29 00:32 - 001478392 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2022-02-03 14:06 - 2022-01-29 00:32 - 001466000 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2022-02-03 14:06 - 2022-01-29 00:32 - 001432304 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2022-02-03 14:06 - 2022-01-29 00:32 - 001432304 _____ C:\Windows\system32\vulkan-1.dll
2022-02-03 14:06 - 2022-01-29 00:32 - 001207440 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2022-02-03 14:06 - 2022-01-29 00:32 - 001145592 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2022-02-03 14:06 - 2022-01-29 00:32 - 001145592 _____ C:\Windows\SysWOW64\vulkan-1.dll
2022-02-03 14:06 - 2022-01-29 00:29 - 000796328 _____ C:\Windows\system32\nvofapi64.dll
2022-02-03 14:06 - 2022-01-29 00:29 - 000715944 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll
2022-02-03 14:06 - 2022-01-29 00:29 - 000638936 _____ C:\Windows\SysWOW64\nvofapi.dll
2022-02-03 14:06 - 2022-01-29 00:28 - 002121360 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2022-02-03 14:06 - 2022-01-29 00:28 - 001602728 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2022-02-03 14:06 - 2022-01-29 00:28 - 001529512 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2022-02-03 14:06 - 2022-01-29 00:28 - 001178544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2022-02-03 14:06 - 2022-01-29 00:28 - 000985024 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2022-02-03 14:06 - 2022-01-29 00:28 - 000709760 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe
2022-02-03 14:06 - 2022-01-29 00:27 - 008611496 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2022-02-03 14:06 - 2022-01-29 00:27 - 007716320 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2022-02-03 14:06 - 2022-01-29 00:27 - 005727376 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2022-02-03 14:06 - 2022-01-29 00:27 - 005099152 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2022-02-03 14:06 - 2022-01-29 00:27 - 002933928 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2022-02-03 14:06 - 2022-01-29 00:27 - 000456848 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe
2022-02-03 14:06 - 2022-01-28 12:28 - 000089185 _____ C:\Windows\system32\nvinfo.pb
2022-02-03 14:06 - 2022-01-28 12:28 - 000040920 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhdap64.dll
2022-02-03 14:05 - 2022-02-06 21:22 - 000000000 ____D C:\Windows\system32\Tasks\PowerToys
2022-02-03 14:05 - 2022-02-03 14:05 - 000000000 ____D C:\Users\schwa\AppData\Local\ToastNotificationManagerCompat
2022-02-03 14:05 - 2022-02-03 14:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerToys (Preview)
2022-02-03 14:05 - 2022-01-29 00:26 - 000851904 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe
2022-01-28 20:51 - 2022-01-28 20:53 - 000000000 ____D C:\Program Files\Maxon Cinema 4D R21
2022-01-28 20:49 - 2022-02-04 17:47 - 000003134 _____ C:\Windows\system32\Tasks\MSIAfterburner
2022-01-28 20:13 - 2022-01-28 21:41 - 002522256 _____ (Wellbia.com Co., Ltd.) C:\Windows\xhunter1.sys
2022-01-28 20:13 - 2022-01-28 20:13 - 000000000 ____D C:\Users\schwa\AppData\Local\TslGame
2022-01-28 20:13 - 2022-01-28 20:13 - 000000000 ____D C:\Users\schwa\AppData\Local\BattlEye
2022-01-28 20:13 - 2022-01-28 20:13 - 000000000 ____D C:\Program Files\Common Files\UNCHEATER
2022-01-28 20:12 - 2022-01-28 22:50 - 000000000 ____D C:\Program Files\Common Files\PUBG
2022-01-28 20:12 - 2022-01-28 20:12 - 000000000 ____D C:\Users\schwa\AppData\Local\WELLBIA
2022-01-26 00:09 - 2022-01-26 00:10 - 000000000 ____D C:\Program Files\Epic Games
2022-01-25 12:37 - 2022-01-25 17:35 - 000000000 ____D C:\Program Files\Mozilla Thunderbird
2022-01-23 11:21 - 2022-01-23 11:21 - 000000000 ____D C:\Users\schwa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2022-01-23 10:48 - 2022-02-04 14:30 - 000000000 ____D C:\Users\schwa\AppData\Local\PacketTracer7
2022-01-23 10:48 - 2022-02-01 16:09 - 000000000 ____D C:\Users\schwa\Cisco Packet Tracer 7.2.2
2022-01-23 10:48 - 2022-02-01 16:09 - 000000000 ____D C:\Users\schwa\Cisco Packet Tracer 7.2.2
2022-01-23 10:48 - 2022-01-23 10:48 - 000000000 ____D C:\Program Files\Cisco Packet Tracer 7.2.2
2022-01-14 19:53 - 2022-01-14 19:53 - 000000000 ____D C:\Users\schwa\AppData\Local\CrashReportClient
2022-01-14 19:53 - 2022-01-14 19:53 - 000000000 ____D C:\Users\schwa\AppData\Local\BravoHotelGame
2022-01-14 19:52 - 2022-01-14 19:52 - 000000000 ____D C:\Users\schwa\AppData\Local\GeeGee
2022-01-14 19:51 - 2022-01-14 19:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GeeGee
2022-01-14 19:51 - 2022-01-14 19:51 - 000000000 ____D C:\Users\schwa\AppData\Local\AdvinstAnalytics
2022-01-14 19:51 - 2022-01-14 19:51 - 000000000 ____D C:\ProgramData\WonderPeople
2022-01-14 19:51 - 2022-01-14 19:51 - 000000000 ____D C:\ProgramData\WonderPeople
2022-01-14 19:51 - 2022-01-14 19:51 - 000000000 ____D C:\Program Files (x86)\WonderPeople
2022-01-14 16:59 - 2022-01-28 19:40 - 000000000 ____D C:\Users\schwa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2022-01-14 16:54 - 2022-01-29 00:24 - 006458912 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2022-01-14 16:54 - 2022-01-11 13:21 - 006455824 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\SET76E.tmp
2022-01-14 16:52 - 2022-01-14 16:52 - 000523776 _____ (curl, hxxps://curl.se/) C:\Windows\system32\curl.exe
2022-01-14 16:52 - 2022-01-14 16:52 - 000464384 _____ (curl, hxxps://curl.se/) C:\Windows\SysWOW64\curl.exe
2022-01-14 16:52 - 2022-01-14 16:52 - 000339968 _____ C:\Windows\system32\pku2u.dll
2022-01-14 16:52 - 2022-01-14 16:52 - 000247808 _____ C:\Windows\SysWOW64\pku2u.dll
2022-01-14 16:52 - 2022-01-14 16:52 - 000015050 _____ C:\Windows\system32\DrtmAuthTxt.wim
2022-01-12 15:08 - 2022-01-12 15:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
==================== Ein Monat (geänderte) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2022-02-11 14:53 - 2021-10-10 12:03 - 000000000 ____D C:\Users\schwa\AppData\Local\Packages
2022-02-11 14:52 - 2021-06-05 13:10 - 000000000 ____D C:\Windows\AppReadiness
2022-02-11 14:45 - 2021-10-10 12:03 - 000000000 ____D C:\Users\schwa\AppData\Local\D3DSCache
2022-02-11 14:45 - 2021-06-05 13:10 - 000000000 ____D C:\Windows\SystemTemp
2022-02-11 14:44 - 2021-10-10 12:10 - 000000000 ____D C:\Users\schwa\AppData\Roaming\discord
2022-02-11 14:44 - 2021-06-05 13:10 - 000000000 ___HD C:\Program Files\WindowsApps
2022-02-11 14:44 - 2020-12-04 14:59 - 000000000 ____D C:\Program Files\Microsoft Office
2022-02-11 14:42 - 2021-10-10 14:22 - 000000000 ____D C:\Users\schwa\AppData\Local\LogiOptionsPlus
2022-02-11 14:42 - 2021-08-24 12:08 - 000000000 ____D C:\ProgramData\ActiveBackupforBusinessAgent
2022-02-11 14:42 - 2021-08-24 12:08 - 000000000 ____D C:\ProgramData\ActiveBackupforBusinessAgent
2022-02-11 14:41 - 2021-10-10 12:09 - 000000000 ____D C:\Program Files (x86)\Google
2022-02-11 14:38 - 2021-06-05 13:01 - 000000000 ____D C:\Windows\CbsTemp
2022-02-11 14:36 - 2021-11-21 10:35 - 000004782 _____ C:\Windows\system32\Tasks\MicrosoftEdgeShadowStackRollbackTask
2022-02-11 14:36 - 2021-09-22 15:48 - 000002246 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-02-11 14:36 - 2020-11-06 23:53 - 000002445 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-02-11 14:35 - 2021-10-10 11:45 - 000000000 ____D C:\Windows\system32\SleepStudy
2022-02-06 21:25 - 2021-10-10 12:10 - 000000000 ____D C:\ProgramData\Mozilla
2022-02-06 21:25 - 2021-10-10 12:10 - 000000000 ____D C:\ProgramData\Mozilla
2022-02-06 21:24 - 2021-10-10 12:27 - 000000000 ____D C:\Users\schwa\AppData\LocalLow\Mozilla
2022-02-06 21:22 - 2021-10-10 15:18 - 000000000 ____D C:\Users\schwa\AppData\Local\SynologyDrive
2022-02-06 21:22 - 2021-10-10 12:11 - 000000000 ____D C:\ProgramData\NVIDIA
2022-02-06 21:22 - 2021-10-10 12:11 - 000000000 ____D C:\ProgramData\NVIDIA
2022-02-06 21:22 - 2021-10-10 12:10 - 000000000 ____D C:\Users\schwa\AppData\Local\Discord
2022-02-06 21:22 - 2021-06-05 13:10 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-02-06 21:22 - 2021-06-05 13:10 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-02-04 14:34 - 2021-10-10 16:01 - 000000520 _____ C:\Users\schwa\.packettracer
2022-02-04 14:34 - 2021-10-10 16:01 - 000000520 _____ C:\Users\schwa\.packettracer
2022-02-04 14:34 - 2021-10-10 12:01 - 000000000 ____D C:\Users\schwa
2022-02-04 14:34 - 2021-10-04 10:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cisco Packet Tracer
2022-02-04 14:24 - 2021-10-10 14:03 - 000000000 ____D C:\Users\schwa\AppData\Local\CrashDumps
2022-02-04 11:48 - 2021-10-10 11:45 - 000000000 ____D C:\Windows\system32\Drivers\wd
2022-02-03 16:57 - 2021-06-05 13:09 - 000000000 ____D C:\Windows\INF
2022-02-03 16:53 - 2021-10-11 16:04 - 000000000 ____D C:\Users\schwa\AppData\Roaming\draw.io
2022-02-03 14:07 - 2021-10-10 12:11 - 000000000 ____D C:\Users\schwa\AppData\Local\NVIDIA
2022-02-03 14:05 - 2021-10-10 12:09 - 000000000 ____D C:\ProgramData\Package Cache
2022-02-03 14:05 - 2021-10-10 12:09 - 000000000 ____D C:\ProgramData\Package Cache
2022-02-03 14:05 - 2021-04-21 15:36 - 000000000 ____D C:\Program Files\PowerToys
2022-02-03 14:04 - 2020-10-29 13:40 - 000000000 ____D C:\Program Files\dotnet
2022-02-03 12:09 - 2021-10-16 12:50 - 000002064 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2022-02-03 12:09 - 2021-10-10 12:21 - 000001906 _____ C:\Users\Default\Desktop\Google Slides.lnk
2022-02-03 12:09 - 2021-10-10 12:21 - 000001906 _____ C:\Users\Default\Desktop\Google Sheets.lnk
2022-02-03 12:09 - 2021-10-10 12:21 - 000001894 _____ C:\Users\Default\Desktop\Google Docs.lnk
2022-02-01 19:21 - 2021-10-10 15:26 - 000000000 ____D C:\Users\schwa\AppData\Roaming\Origin
2022-02-01 12:07 - 2021-10-10 15:29 - 000000000 ____D C:\Program Files (x86)\Origin Games
2022-02-01 12:07 - 2021-10-10 12:09 - 000000000 ____D C:\Users\schwa\AppData\Local\Origin
2022-02-01 12:07 - 2020-10-29 16:03 - 000000000 ____D C:\ProgramData\Origin
2022-02-01 12:07 - 2020-10-29 16:03 - 000000000 ____D C:\ProgramData\Origin
2022-01-29 07:18 - 2021-04-24 20:24 - 000000000 ____D C:\Program Files (x86)\Steam
2022-01-29 00:28 - 2021-10-10 12:17 - 000795616 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2022-01-29 00:24 - 2021-10-10 12:17 - 007612344 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2022-01-28 20:13 - 2021-10-14 10:44 - 000000000 ____D C:\Users\schwa\AppData\Local\UnrealEngine
2022-01-28 12:28 - 2021-10-10 12:19 - 000127968 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2022-01-28 12:18 - 2021-10-11 15:15 - 000000000 ____D C:\Users\schwa\AppData\Roaming\Figma
2022-01-28 08:49 - 2021-12-30 19:33 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2022-01-28 08:49 - 2021-12-20 16:48 - 000003588 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-867440670-1444343760-607649241-1001
2022-01-28 08:49 - 2021-12-19 14:59 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2022-01-28 08:49 - 2021-12-19 14:59 - 000002155 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-01-27 16:47 - 2021-10-10 11:56 - 001750916 _____ C:\Windows\system32\PerfStringBackup.INI
2022-01-27 16:47 - 2021-06-05 18:52 - 000757210 _____ C:\Windows\system32\perfh007.dat
2022-01-27 16:47 - 2021-06-05 18:52 - 000156454 _____ C:\Windows\system32\perfc007.dat
2022-01-25 23:19 - 2021-10-10 18:40 - 000000000 ____D C:\Users\schwa\AppData\Local\Epic Games
2022-01-25 23:19 - 2020-11-13 14:17 - 000000000 ____D C:\ProgramData\Epic
2022-01-25 23:19 - 2020-11-13 14:17 - 000000000 ____D C:\ProgramData\Epic
2022-01-25 23:19 - 2020-11-13 14:17 - 000000000 ____D C:\Program Files (x86)\Epic Games
2022-01-25 23:18 - 2020-11-13 14:17 - 000001272 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk
2022-01-25 23:08 - 2021-10-10 11:45 - 000003700 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-01-25 23:08 - 2021-10-10 11:45 - 000003576 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-01-25 17:35 - 2021-10-10 12:10 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-01-25 17:29 - 2021-10-15 13:37 - 000000441 _____ C:\Windows\system32\Drivers\etc\hosts.ics
2022-01-25 17:29 - 2021-10-15 13:36 - 000001607 _____ C:\Windows\system32\config\VSMIDK
2022-01-25 17:29 - 2021-10-10 11:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2022-01-25 17:29 - 2021-06-05 13:10 - 000000000 ____D C:\Windows\ServiceState
2022-01-25 17:29 - 2021-03-13 15:42 - 000012288 ___SH C:\DumpStack.log.tmp
2022-01-24 09:28 - 2021-10-10 14:05 - 000000000 ____D C:\ProgramData\Riot Games
2022-01-24 09:28 - 2021-10-10 14:05 - 000000000 ____D C:\ProgramData\Riot Games
2022-01-23 11:21 - 2021-10-10 12:10 - 000000000 ____D C:\Users\schwa\AppData\Roaming\Zoom
2022-01-23 11:15 - 2021-10-10 16:01 - 000000000 ____D C:\Users\schwa\Cisco Packet Tracer 8.0.1
2022-01-23 11:15 - 2021-10-10 16:01 - 000000000 ____D C:\Users\schwa\Cisco Packet Tracer 8.0.1
2022-01-23 09:10 - 2021-10-04 10:33 - 000000000 ____D C:\Program Files\Cisco Packet Tracer 8.0.1
2022-01-22 13:50 - 2021-10-10 12:09 - 000003632 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2022-01-22 13:50 - 2021-10-10 12:09 - 000003508 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2022-01-20 10:18 - 2020-10-29 16:04 - 000000000 ____D C:\Program Files (x86)\Origin
2022-01-18 22:23 - 2021-11-20 20:35 - 000000000 ____D C:\Users\schwa\AppData\Local\Battle.net
2022-01-15 02:21 - 2021-11-20 20:34 - 000000000 ____D C:\Program Files (x86)\Battle.net
2022-01-15 00:45 - 2021-10-10 11:45 - 000512856 _____ C:\Windows\system32\FNTCACHE.DAT
2022-01-15 00:45 - 2021-08-06 14:05 - 000000000 ____D C:\Program Files\Hyper-V
2022-01-15 00:45 - 2021-06-05 13:10 - 000000000 ___SD C:\Windows\system32\DiagSvcs
2022-01-15 00:45 - 2021-06-05 13:10 - 000000000 ____D C:\Windows\SysWOW64\setup
2022-01-15 00:45 - 2021-06-05 13:10 - 000000000 ____D C:\Windows\SysWOW64\Dism
2022-01-15 00:45 - 2021-06-05 13:10 - 000000000 ____D C:\Windows\SystemResources
2022-01-15 00:45 - 2021-06-05 13:10 - 000000000 ____D C:\Windows\system32\setup
2022-01-15 00:45 - 2021-06-05 13:10 - 000000000 ____D C:\Windows\system32\oobe
2022-01-15 00:45 - 2021-06-05 13:10 - 000000000 ____D C:\Windows\system32\Dism
2022-01-15 00:45 - 2021-06-05 13:10 - 000000000 ____D C:\Windows\bcastdvr
2022-01-15 00:45 - 2021-06-05 13:01 - 001048576 _____ C:\Windows\system32\config\BBI
2022-01-14 16:54 - 2021-10-11 05:52 - 000000000 ____D C:\Windows\system32\MRT
2022-01-14 16:53 - 2021-10-11 05:52 - 145765912 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2022-01-13 09:28 - 2021-10-10 17:53 - 000000000 ____D C:\Users\schwa\AppData\Local\Adobe
2022-01-13 09:21 - 2021-10-10 12:24 - 000000000 ____D C:\Users\schwa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps
2022-01-12 21:41 - 2021-11-30 09:35 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2022-01-12 21:41 - 2021-09-21 11:41 - 000002080 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2022-01-12 15:08 - 2021-11-18 21:37 - 000000000 ____D C:\Program Files\LogiOptionsPlus
2022-01-12 15:08 - 2021-10-10 14:22 - 000000000 ____D C:\Users\schwa\AppData\Roaming\logioptionsplus
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========
2021-10-11 12:13 - 2021-09-21 11:22 - 000000205 _____ () C:\Users\schwa\AppData\Local\oobelibMkey.log
2021-10-11 11:57 - 2021-06-03 18:40 - 000000128 _____ () C:\Users\schwa\AppData\Local\PUTTY.RND
2021-10-11 11:57 - 2021-09-03 16:01 - 000007605 _____ () C:\Users\schwa\AppData\Local\Resmon.ResmonCfg
2021-10-11 14:26 - 2021-09-26 16:51 - 000000000 _____ () C:\Users\schwa\AppData\Local\Temptable.xml
==================== SigCheck ============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
==================== Ende von FRST.txt ========================
additionals.txt FRST Additions Logfile: Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 05-02-2022
durchgeführt von schwa (11-02-2022 14:53:13)
Gestartet von E:\Downloads
Microsoft Windows 11 Pro Version 21H2 22000.434 (X64) (2021-10-10 10:52:00)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
Administrator (S-1-5-21-867440670-1444343760-607649241-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-867440670-1444343760-607649241-503 - Limited - Disabled)
defaultuser100001 (S-1-5-21-867440670-1444343760-607649241-1003 - Limited - Enabled)
Gast (S-1-5-21-867440670-1444343760-607649241-501 - Limited - Disabled)
schwa (S-1-5-21-867440670-1444343760-607649241-1001 - Administrator - Enabled) => C:\Users\schwa
WDAGUtilityAccount (S-1-5-21-867440670-1444343760-607649241-504 - Limited - Disabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
Adobe Acrobat DC (64-bit) (HKLM\...\{AC76BA86-1031-1033-7760-BC15014EA700}) (Version: 21.011.20039 - Adobe)
Affinity Designer (HKLM\...\{B1B34A4D-BEDE-4A44-ACEF-1B400F920A32}) (Version: 1.10.4.1198 - Serif (Europe) Ltd)
Affinity Photo (HKLM\...\{578AF6A8-2B01-4FC8-ADEF-4D05A96C9DBD}) (Version: 1.10.4.1198 - Serif (Europe) Ltd)
AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 3.10.08.506 - Advanced Micro Devices, Inc.)
AMD Ryzen Master (HKLM\...\AMD Ryzen Master) (Version: 2.8.0.1937 - Advanced Micro Devices, Inc.)
AMD_Chipset_Drivers (HKLM-x32\...\{aebb22c8-1fcb-4e7d-92ae-98f1012da7a2}) (Version: 3.10.08.506 - Advanced Micro Devices, Inc.) Hidden
Apex Legends (HKLM-x32\...\{D7FBF176-382D-484E-863A-DFD1124A2A1C}) (Version: 1.0.8.5 - Electronic Arts, Inc.)
Appman Auto Sequencer (HKLM-x32\...\{FB62C3F5-F5CE-0FD6-9D52-E885F3DFF9D1}) (Version: 10.1.17134.1 - Microsoft) Hidden
Appman Sequencer on amd64 (HKLM\...\{16FFEA1A-2C84-3E78-011C-ABB5EEE175B7}) (Version: 10.1.17134.1 - Microsoft) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlefield™ 1 (HKLM-x32\...\{335B50BC-6130-4BAF-9A6A-F1561270587B}) (Version: 1.0.57.44284 - Electronic Arts)
Blackmagic RAW Common Components (HKLM\...\{94C42023-ECF5-46E6-ACB4-2AED536B205D}) (Version: 2.2 - Blackmagic Design)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Call of Duty Modern Warfare (HKLM-x32\...\Call of Duty Modern Warfare) (Version: - Blizzard Entertainment)
Cisco Packet Tracer 7.2.2 64Bit (HKLM\...\Cisco Packet Tracer 7.2.2 64Bit_is1) (Version: - Cisco Systems, Inc.)
Cisco Packet Tracer 8.1.0 64Bit (HKLM\...\Cisco Packet Tracer 8.1.0 64Bit_is1) (Version: - Cisco Systems, Inc.)
Cisco Packet Tracer 8.1.1 64Bit (HKLM\...\Cisco Packet Tracer 8.1.1 64Bit_is1) (Version: - Cisco Systems, Inc.)
DaVinci Resolve (HKLM\...\{2B31CC55-2FF6-4E9F-AA31-8219F56E0680}) (Version: 17.3.20008 - Blackmagic Design)
DaVinci Resolve Control Panels (HKLM\...\{FB1E6849-EE02-49DB-952C-6DD093D74DB0}) (Version: 2.0.0.0 - Blackmagic Design)
Discord (HKU\S-1-5-21-867440670-1444343760-607649241-1001\...\Discord) (Version: 1.0.9003 - Discord Inc.)
Epic Games Launcher (HKLM-x32\...\{E0419FB0-0C46-4F07-9D5B-2FD78A8C45ED}) (Version: 1.3.0.0 - Epic Games, Inc.)
Epic Online Services (HKLM-x32\...\{32C68D93-D32F-4B01-8250-61642BFC22F8}) (Version: 2.0.28.0 - Epic Games, Inc.)
EurKEY Keyboard Layout (HKLM\...\{09ACEC13-1BC0-4C4A-858E-5BD3FE898242}) (Version: 1.0.3.40 - Steffen Brüntjen)
Figma (HKU\S-1-5-21-867440670-1444343760-607649241-1001\...\Figma) (Version: 107.1.0 - Figma, Inc.)
GeeGeeClient (HKLM-x32\...\{D10B7FBB-7C1A-4A4F-B765-8EA689E07732}) (Version: 1.1.23.0 - WonderPeople)
Ghostrunner (HKLM-x32\...\1957528513_is1) (Version: 40433_436 - GOG.com)
GOG GALAXY (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Chrome (HKLM\...\{39B78995-5EBF-329E-AB09-EC5FF4CB10BC}) (Version: 98.0.4758.82 - Google LLC)
Google Drive (HKLM\...\{6BBAE539-2232-434A-A4E5-9A33560C6283}) (Version: 55.0.3.0 - Google LLC)
HWiNFO64 Version 7.14 (HKLM\...\HWiNFO64_is1) (Version: 7.14 - Martin Malik - REALiX)
Imaging And Configuration Designer (HKLM-x32\...\{E0F2B4CC-8551-9304-84E0-73535C1AA953}) (Version: 10.1.17134.1 - Microsoft) Hidden
Imaging Designer (HKLM-x32\...\{E1A52E1E-7F37-2A0D-3F17-F4B349EB9EA2}) (Version: 10.1.17134.1 - Microsoft) Hidden
Imaging Tools Support (HKLM-x32\...\{0EAC56B8-9CC7-C9E0-A0FB-62A6787D2699}) (Version: 10.1.17134.1 - Microsoft) Hidden
Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{5C0B869E-82CA-48FB-92B6-4A476984611F}) (Version: 19.0.190 - Intel Corporation)
JabRef (HKLM\...\{0C247940-CA45-3506-B0E4-EF1D45F39412}) (Version: 5.3.60000 - JabRef)
Kits Configuration Installer (HKLM-x32\...\{C690B2D9-0AA8-8CDA-965D-FED648C3EF9C}) (Version: 10.1.17134.1 - Microsoft) Hidden
League of Legends (HKU\S-1-5-21-867440670-1444343760-607649241-1001\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc)
Logi Options+ (HKLM\...\{850cdc16-85df-4052-b06e-4e3e9e83c5c6}) (Version: 0.80.3597 - Logitech)
Maxon Cinema 4D R21 (HKLM\...\Maxon Cinema 4D R21) (Version: R21 - Maxon)
Microsoft 365 Apps for Enterprise - de-de (HKLM\...\O365ProPlusRetail - de-de) (Version: 16.0.14827.20192 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 98.0.1108.50 - Microsoft Corporation)
Microsoft Edge WebView2-Laufzeit (HKLM-x32\...\Microsoft EdgeWebView) (Version: 98.0.1108.43 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 22.002.0103.0004 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-867440670-1444343760-607649241-1001\...\Teams) (Version: 1.4.00.22976 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{2FA9DAAC-895B-4E99-99D9-DC2965FBE79C}) (Version: 2.87.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29334 (HKLM-x32\...\{a9cfe9c7-e54f-46cd-9c5c-542ff8e3e8c4}) (Version: 14.28.29334.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334 (HKLM-x32\...\{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.60724 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.60724 - Microsoft Corporation)
Microsoft Visual Studio Code (HKLM\...\{EA457B21-F73E-494C-ACAB-524FDE069978}_is1) (Version: 1.61.0 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 3.1.22 (x64) (HKLM-x32\...\{68de94b9-46ac-495e-a96b-de484c02f5b3}) (Version: 3.1.22.30721 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 5.0.13 (x64) (HKLM-x32\...\{e2d1ae32-dd1d-4ad7-a298-10e42e7840fc}) (Version: 5.0.13.30717 - Microsoft Corporation)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 91.2.0 - Mozilla)
Mozilla Thunderbird (x64 de) (HKLM\...\Mozilla Thunderbird 91.5.1 (x64 de)) (Version: 91.5.1 - Mozilla)
NVIDIA FrameView SDK 1.2.4999.30397803 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.2.4999.30397803 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.24.0.126 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.24.0.126 - NVIDIA Corporation)
NVIDIA Grafiktreiber 511.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 511.65 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.39.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.39.3 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.14827.20088 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.14827.20158 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0407-1000-0000000FF1CE}) (Version: 16.0.14827.20088 - Microsoft Corporation) Hidden
OpenOffice 4.1.11 (HKLM-x32\...\{372A5898-9772-4413-9767-06E9F4580830}) (Version: 4.111.9808 - Apache Software Foundation)
Origin (HKLM-x32\...\Origin) (Version: 10.5.110.50000 - Electronic Arts, Inc.)
PDFsam Basic (HKLM\...\{941D04DA-189C-4FDB-B125-D18946DB362C}) (Version: 4.2.10.0 - Sober Lemur S.a.s. di Vacondio Andrea)
PowerToys (Preview) (HKLM\...\{F8E2F1CF-E4EE-498B-BC46-43943A71C86C}) (Version: 0.55.1 - Microsoft Corporation) Hidden
PowerToys (Preview) x64 (HKLM-x32\...\{a92e2f2f-f4e7-4ce9-b3ba-2c56acefde95}) (Version: 0.55.1 - Microsoft Corporation)
Promontory_GPIO Driver (HKLM-x32\...\{B5512BCC-F4CD-4159-86A4-B2AD7D38FFA9}) (Version: 2.0.1.0 - Advanced Micro Devices, Inc.) Hidden
PuTTY release 0.76 (64-bit) (HKLM\...\{1E0D5689-40F1-4E46-ABBB-EAAC68B5CD89}) (Version: 0.76.0.0 - Simon Tatham)
Python 3.10.0 (64-bit) (HKU\S-1-5-21-867440670-1444343760-607649241-1001\...\{21b42743-c8f9-49d7-b8b6-b5855317c7ed}) (Version: 3.10.150.0 - Python Software Foundation)
Python 3.10.0 Core Interpreter (64-bit) (HKLM\...\{B137EFE9-BD8A-4138-AC7F-360461C4EEAF}) (Version: 3.10.150.0 - Python Software Foundation) Hidden
Python 3.10.0 Development Libraries (64-bit) (HKLM\...\{A8E320AF-B8C7-493C-97D8-6328C1CE721B}) (Version: 3.10.150.0 - Python Software Foundation) Hidden
Python 3.10.0 Documentation (64-bit) (HKLM\...\{23A78F0F-0B41-497A-BB67-7E9AC3C20351}) (Version: 3.10.150.0 - Python Software Foundation) Hidden
Python 3.10.0 Executables (64-bit) (HKLM\...\{D623791F-7EBA-4794-BF56-79D4CFC6BE65}) (Version: 3.10.150.0 - Python Software Foundation) Hidden
Python 3.10.0 pip Bootstrap (64-bit) (HKLM\...\{D545AFB9-E0E8-4B43-897A-0EB97ED46859}) (Version: 3.10.150.0 - Python Software Foundation) Hidden
Python 3.10.0 Standard Library (64-bit) (HKLM\...\{BB3BA776-4C84-43FB-9CE6-5A37FFC23032}) (Version: 3.10.150.0 - Python Software Foundation) Hidden
Python 3.10.0 Tcl/Tk Support (64-bit) (HKLM\...\{AE37C7FB-835D-4E31-851E-801D5C659A3E}) (Version: 3.10.150.0 - Python Software Foundation) Hidden
Python 3.10.0 Test Suite (64-bit) (HKLM\...\{6B61C3C6-43DE-4D58-BDC4-76170C7C7C32}) (Version: 3.10.150.0 - Python Software Foundation) Hidden
Python 3.10.0 Utility Scripts (64-bit) (HKLM\...\{578C5B87-CBE0-4720-90C0-46A917C4FE5C}) (Version: 3.10.150.0 - Python Software Foundation) Hidden
Python Launcher (HKLM-x32\...\{463B0974-B1E1-401E-8F59-B0F9F81258E4}) (Version: 3.10.7581.0 - Python Software Foundation)
Skype Version 8.77 (HKLM-x32\...\Skype_is1) (Version: 8.77 - Skype Technologies S.A.)
Synology Active Backup for Business Agent (HKLM-x32\...\{EDEC65AE-C23F-4975-8D1A-88A83B35A697}) (Version: 2.2.2074 - Synology)
Teams Machine-Wide Installer (HKLM-x32\...\{731F6BAA-A986-45A4-8936-7C3AAAAA760B}) (Version: 1.4.0.22976 - Microsoft Corporation)
Toolkit Documentation (HKLM-x32\...\{563689A6-D95B-EA6D-665F-97959643E0DB}) (Version: 10.1.17134.1 - Microsoft) Hidden
UE4 Prerequisites (x64) (HKLM\...\{36EAD5CF-44EF-4FCF-8BE1-D96C4835D7A4}) (Version: 1.0.11.0 - Epic Games, Inc.) Hidden
UE4 Prerequisites (x64) (HKLM-x32\...\{2890ae6b-90e9-448d-b3e6-97e43c21e2fd}) (Version: 1.0.13.0 - Epic Games, Inc.) Hidden
UEV Tools on amd64 (HKLM\...\{45B55BB8-B09F-6204-E1A1-1443C81DCDA9}) (Version: 10.1.17134.1 - Microsoft) Hidden
User State Migration Tool (HKLM-x32\...\{E224B062-6D80-A746-F08C-9847DF1B5144}) (Version: 10.1.17134.1 - Microsoft) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 3.0.16 - VideoLAN)
Winamp (HKLM-x32\...\Winamp) (Version: 5.8 - Winamp SA)
Windows Assessment and Deployment Kit - Windows 10 (HKLM-x32\...\{d794748d-72e9-45d7-9ab7-83d6c4c80f7f}) (Version: 10.1.17134.1 - Microsoft Corporation)
WISO Steuer-Sparbuch 2021 (HKLM-x32\...\{50007CCE-F2FB-4EC5-A2BA-6F7E45BE9BE1}) (Version: 28.09.2510 - Buhl Data Service GmbH)
WP_CPTT_NT-x86-fre (HKLM-x32\...\{E6F4B9E6-6C5C-9EE0-1CEC-23F80B1960F5}) (Version: 10.1.17134.1 - Microsoft) Hidden
WPT Redistributables (HKLM-x32\...\{EEB65046-3AB2-821A-12BD-F0C0490D46D2}) (Version: 10.1.17134.1 - Microsoft) Hidden
WPTx64 (HKLM-x32\...\{0B2C58EB-67A2-225B-60B2-D1990E55DD33}) (Version: 8.100.26866 - Microsoft)
WPTx64 (HKLM-x32\...\{C7B318E4-43EF-AA14-637F-6C6EDF59917D}) (Version: 10.1.17134.1 - Microsoft) Hidden
XAMPP (HKLM\...\xampp) (Version: 8.0.11-2 - Bitnami)
Zoom (HKLM-x32\...\{07E19F66-2D5A-4A86-BD9C-8721F371A136}) (Version: 5.8.1324 - Zoom)
Zoom (HKU\S-1-5-21-867440670-1444343760-607649241-1001\...\ZoomUMX) (Version: 5.9.1 (2581) - Zoom Video Communications, Inc.)
Packages:
=========
Blender -> C:\Program Files\WindowsApps\BlenderFoundation.Blender_3.0.1.0_x64__ppwjx1n5r4v9t [2022-01-28] (Blender Foundation)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.12.1050.0_x64__8wekyb3d8bbwe [2022-01-12] (Microsoft Studios) [MS Ad]
Musixmatch Lyrics - Sing along Spotify, iTunes, Windows Media Player -> C:\Program Files\WindowsApps\MUSIXMATCH.LYRICS_3.15.15598.0_x86__7gejyv32yt3te [2021-10-10] (Musixmatch) [Startup Task]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.962.0_x64__56jybvy8sckqj [2022-02-03] (NVIDIA Corp.)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.178.765.0_x86__zpdnekdrzrea0 [2022-02-11] (Spotify AB) [Startup Task]
TIDAL -> C:\Program Files\WindowsApps\WiMPMusic.27241E05630EA_2.29.7.0_x86__kn85bz84x7te4 [2022-01-28] (TIDAL Music AS)
Versefy - Lyrics finder -> C:\Program Files\WindowsApps\2238JakubSteplowski.SpotifyLyrics.NET_2.2.0.0_x64__76k8dzmm3mrer [2021-10-17] (Jakub Steplowski)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-867440670-1444343760-607649241-1001_Classes\CLSID\{07665729-6243-4746-95b7-79579308d1b2}\InprocServer32 -> C:\Program Files\PowerToys\modules\FileExplorerPreview\PowerToys.PdfPreviewHandler.comhost.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-867440670-1444343760-607649241-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\schwa\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.21161.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-867440670-1444343760-607649241-1001_Classes\CLSID\{36B27788-A8BB-4698-A756-DF9F11F64F84}\InprocServer32 -> C:\Program Files\PowerToys\modules\FileExplorerPreview\PowerToys.SvgThumbnailProvider.comhost.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-867440670-1444343760-607649241-1001_Classes\CLSID\{45769bcc-e8fd-42d0-947e-02beef77a1f5}\InprocServer32 -> C:\Program Files\PowerToys\modules\FileExplorerPreview\PowerToys.MarkdownPreviewHandler.comhost.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-867440670-1444343760-607649241-1001_Classes\CLSID\{8BC8AFC2-4E7C-4695-818E-8C1FFDCEA2AF}\InprocServer32 -> C:\Program Files\PowerToys\modules\FileExplorerPreview\PowerToys.StlThumbnailProvider.comhost.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-867440670-1444343760-607649241-1001_Classes\CLSID\{afbd5a44-2520-4ae0-9224-6cfce8fe4400}\InprocServer32 -> C:\Program Files\PowerToys\modules\FileExplorerPreview\PowerToys.MonacoPreviewHandler.comhost.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-867440670-1444343760-607649241-1001_Classes\CLSID\{BCC13D15-9720-4CC4-8371-EA74A274741E}\InprocServer32 -> C:\Program Files\PowerToys\modules\FileExplorerPreview\PowerToys.PdfThumbnailProvider.comhost.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-867440670-1444343760-607649241-1001_Classes\CLSID\{BFEE99B4-B74D-4348-BCA5-E757029647FF}\InprocServer32 -> C:\Program Files\PowerToys\modules\FileExplorerPreview\PowerToys.GcodeThumbnailProvider.comhost.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-867440670-1444343760-607649241-1001_Classes\CLSID\{ddee2b8a-6807-48a6-bb20-2338174ff779}\InprocServer32 -> C:\Program Files\PowerToys\modules\FileExplorerPreview\PowerToys.SvgPreviewHandler.comhost.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-867440670-1444343760-607649241-1001_Classes\CLSID\{ec52dea8-7c9f-4130-a77b-1737d0418507}\InprocServer32 -> C:\Program Files\PowerToys\modules\FileExplorerPreview\PowerToys.GcodePreviewHandler.comhost.dll (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\22.002.0103.0004\FileSyncShell64.dll [2022-01-28] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\22.002.0103.0004\FileSyncShell64.dll [2022-01-28] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\22.002.0103.0004\FileSyncShell64.dll [2022-01-28] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\22.002.0103.0004\FileSyncShell64.dll [2022-01-28] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\22.002.0103.0004\FileSyncShell64.dll [2022-01-28] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\22.002.0103.0004\FileSyncShell64.dll [2022-01-28] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\22.002.0103.0004\FileSyncShell64.dll [2022-01-28] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\55.0.3.0\drivefsext.dll [2022-01-25] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\55.0.3.0\drivefsext.dll [2022-01-25] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\55.0.3.0\drivefsext.dll [2022-01-25] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\55.0.3.0\drivefsext.dll [2022-01-25] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\22.002.0103.0004\FileSyncShell64.dll [2022-01-28] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\22.002.0103.0004\FileSyncShell64.dll [2022-01-28] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\22.002.0103.0004\FileSyncShell64.dll [2022-01-28] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\22.002.0103.0004\FileSyncShell64.dll [2022-01-28] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\22.002.0103.0004\FileSyncShell64.dll [2022-01-28] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\22.002.0103.0004\FileSyncShell64.dll [2022-01-28] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\22.002.0103.0004\FileSyncShell64.dll [2022-01-28] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.002.0103.0004\FileSyncShell64.dll [2022-01-28] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\55.0.3.0\drivefsext.dll [2022-01-25] (Google LLC -> Google, Inc.)
ContextMenuHandlers3: [PowerRenameExt] -> {0440049F-D1DC-4E46-B27B-98393D79486B} => C:\Program Files\PowerToys\modules\PowerRename\PowerToys.PowerRenameExt.dll [2022-02-02] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.002.0103.0004\FileSyncShell64.dll [2022-01-28] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\55.0.3.0\drivefsext.dll [2022-01-25] (Google LLC -> Google, Inc.)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.002.0103.0004\FileSyncShell64.dll [2022-01-28] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\55.0.3.0\drivefsext.dll [2022-01-25] (Google LLC -> Google, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_31a2adf8c49e7799\nvshext.dll [2022-01-29] (Nvidia Corporation -> NVIDIA Corporation)
==================== Codecs (Nicht auf der Ausnahmeliste) ====================
==================== Verknüpfungen & WMI ========================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
ShortcutWithArgument: C:\Users\schwa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Baseflight - Configurator.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=mppkgnedeapfejgfimkdoninnofofigk
ShortcutWithArgument: C:\Users\schwa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Betaflight - Configurator.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=kdaghagfopacdngbohiknlhcocjccjao
ShortcutWithArgument: C:\Users\schwa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\BLHeli - Configurator.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=mejfjggmbnocnfibbibmoogocnjbcjnk
ShortcutWithArgument: C:\Users\schwa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Cleanflight - Configurator.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=enacoimjcgeinfnnnpajinjgmkahmfgb
ShortcutWithArgument: C:\Users\schwa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Codecademy.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=bofmgbnabldjiepanmphnjngepkcgnmf
ShortcutWithArgument: C:\Users\schwa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\WavesLiteApp.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=kfmcaklajknfekomaflnhkjjkcjabogm
ShortcutWithArgument: C:\Users\schwa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Beta-Apps\Baseflight - Configurator.lnk -> C:\Program Files\Google\Chrome Beta\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=mppkgnedeapfejgfimkdoninnofofigk
ShortcutWithArgument: C:\Users\schwa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Beta-Apps\Betaflight - Configurator.lnk -> C:\Program Files\Google\Chrome Beta\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=kdaghagfopacdngbohiknlhcocjccjao
ShortcutWithArgument: C:\Users\schwa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Beta-Apps\BLHeli - Configurator.lnk -> C:\Program Files\Google\Chrome Beta\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=mejfjggmbnocnfibbibmoogocnjbcjnk
ShortcutWithArgument: C:\Users\schwa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Beta-Apps\Cleanflight - Configurator.lnk -> C:\Program Files\Google\Chrome Beta\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=enacoimjcgeinfnnnpajinjgmkahmfgb
ShortcutWithArgument: C:\Users\schwa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Beta-Apps\Google Drive.lnk -> C:\Program Files\Google\Chrome Beta\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=aghbiahbpaijignceidepookljebhfak
ShortcutWithArgument: C:\Users\schwa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Beta-Apps\Jitsi Meet.lnk -> C:\Program Files\Google\Chrome Beta\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=ibiognfelmneebngbnbeonnllapmffmb
ShortcutWithArgument: C:\Users\schwa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Beta-Apps\WavesLiteApp.lnk -> C:\Program Files\Google\Chrome Beta\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=kfmcaklajknfekomaflnhkjjkcjabogm
ShortcutWithArgument: C:\Users\schwa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Anaconda3 (64-bit)\Anaconda Prompt (anaconda3).lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> "/K" C:\Users\donut\anaconda3\Scripts\activate.bat C:\Users\donut\anaconda3
==================== Geladene Module (Nicht auf der Ausnahmeliste) =============
2019-10-26 12:04 - 2019-10-26 12:04 - 000232960 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\MSI Afterburner\RTCore.dll
2019-10-26 12:03 - 2019-10-26 12:03 - 000057344 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\MSI Afterburner\RTFC.dll
2019-10-26 12:04 - 2019-10-26 12:04 - 000650240 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\MSI Afterburner\RTHAL.dll
2019-10-26 12:03 - 2019-10-26 12:03 - 000074240 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\MSI Afterburner\RTMUI.dll
2019-10-26 12:03 - 2019-10-26 12:03 - 000369664 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\MSI Afterburner\RTUI.dll
2021-05-20 14:16 - 2021-05-20 14:16 - 000580096 _____ (Hystax) [Datei ist nicht signiert] C:\Program Files (x86)\Synology\ActiveBackupforBusinessAgent\service\vsstracker_x64.dll
2021-10-10 14:02 - 2021-10-10 14:02 - 000010240 _____ (Steffen Brüntjen) [Datei ist nicht signiert] C:\Windows\system32\eurkey.dll
2021-05-13 16:16 - 2021-10-21 12:18 - 001282048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\LIBEAY32.dll
2021-05-13 16:16 - 2021-10-21 12:18 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\ssleay32.dll
2021-05-20 14:16 - 2021-05-20 14:16 - 004113408 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [Datei ist nicht signiert] C:\Program Files (x86)\Synology\ActiveBackupforBusinessAgent\service\libcrypto-1_1-x64.dll
2021-05-20 14:16 - 2021-05-20 14:16 - 001203712 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [Datei ist nicht signiert] C:\Program Files (x86)\Synology\ActiveBackupforBusinessAgent\service\libssl-1_1-x64.dll
2021-05-13 16:16 - 2021-10-21 12:18 - 001611264 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2022-01-20 10:18 - 2021-10-21 12:18 - 005487104 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Core.dll
2022-01-20 10:18 - 2021-10-21 12:18 - 005841920 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Gui.dll
2022-01-20 10:18 - 2021-10-21 12:18 - 001179136 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Network.dll
2022-01-20 10:18 - 2021-10-21 12:18 - 000146432 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5WebSockets.dll
2022-01-20 10:18 - 2021-10-21 12:18 - 005089792 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2022-01-20 10:18 - 2021-10-21 12:18 - 000184832 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Xml.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\Windows\ProgramData:BDSDRMHK [64]
AlternateDataStreams: C:\Users\schwa\Anwendungsdaten:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\schwa\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\schwa\Anwendungsdaten:00e481b5e22dbe1f649fcddd505d3eb7 [394]
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
HKU\S-1-5-21-867440670-1444343760-607649241-1001\Software\Classes\.bat: => <==== ACHTUNG
HKU\S-1-5-21-867440670-1444343760-607649241-1001\Software\Classes\.cmd: => <==== ACHTUNG
==================== Internet Explorer (Nicht auf der Ausnahmeliste) ==========
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2022-02-01] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2021-12-19] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-02-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-02-01] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-02-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-02-01] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-02-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-02-01] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-02-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-02-01] (Microsoft Corporation -> Microsoft Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE trusted site: HKU\S-1-5-21-867440670-1444343760-607649241-1001\...\sharepoint.com -> hxxps://officehn-files.sharepoint.com
==================== Hosts Inhalt: =========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2021-06-05 13:08 - 2021-06-05 13:08 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
2021-10-15 13:37 - 2022-01-25 17:29 - 000000441 _____ C:\Windows\system32\drivers\etc\hosts.ics
172.24.176.1 Maschinerie.mshome.net # 2027 1 0 24 16 29 43 12
==================== Andere Bereiche ===========================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> %INTEL_DEV_REDIST%redist\intel64_win\compiler;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files\PuTTY\;C:\Program Files\Microsoft VS Code\bin;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Windows Kits\10\Windows Performance Toolkit\;C:\Program Files (x86)\Windows Kits\10\Microsoft Application Virtualization\Sequencer\;C:\Program Files (x86)\Windows Kits\8.1\Windows Performance Toolkit\;C:\Program Files\dotnet\
HKU\S-1-5-21-867440670-1444343760-607649241-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\schwa\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.0.10
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
HKLM\...\StartupApproved\StartupFolder: => "SOLIDWORKS 2020 Fast Start.lnk"
HKLM\...\StartupApproved\Run32: => "TeamsMachineInstaller"
HKU\S-1-5-21-867440670-1444343760-607649241-1001\...\StartupApproved\StartupFolder: => "An OneNote senden.lnk"
HKU\S-1-5-21-867440670-1444343760-607649241-1001\...\StartupApproved\Run: => "Battle.net"
HKU\S-1-5-21-867440670-1444343760-607649241-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-867440670-1444343760-607649241-1001\...\StartupApproved\Run: => "Figma Agent"
HKU\S-1-5-21-867440670-1444343760-607649241-1001\...\StartupApproved\Run: => "GoogleDriveFS"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [TCP Query User{0C76D5FA-56A3-4A30-B062-F7E5EEA1AD8A}E:\downloads\fritz.box_7330-06.55-recover.exe] => (Allow) E:\downloads\fritz.box_7330-06.55-recover.exe (AVM Computersysteme Vertriebs GmbH -> AVM Berlin)
FirewallRules: [UDP Query User{5A63E7BD-9C50-449C-A2CF-5034DE4809B3}E:\downloads\fritz.box_7330-06.55-recover.exe] => (Allow) E:\downloads\fritz.box_7330-06.55-recover.exe (AVM Computersysteme Vertriebs GmbH -> AVM Berlin)
FirewallRules: [TCP Query User{90DC0AFC-786C-4DA4-9810-2CBB579AE3C1}C:\program files\google\chrome\application\chrome.exe] => (Block) C:\program files\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [UDP Query User{4F7AE0C6-CFC3-43FF-BA37-F221A78F8232}C:\program files\google\chrome\application\chrome.exe] => (Block) C:\program files\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{BBA362BF-96D7-4C3D-9C13-E37553BF8391}C:\program files\windowsapps\spotifyab.spotifymusic_1.170.610.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) C:\program files\windowsapps\spotifyab.spotifymusic_1.170.610.0_x86__zpdnekdrzrea0\spotify.exe => Keine Datei
FirewallRules: [UDP Query User{142D9339-E068-4E89-AACC-FA8961705583}C:\program files\windowsapps\spotifyab.spotifymusic_1.170.610.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) C:\program files\windowsapps\spotifyab.spotifymusic_1.170.610.0_x86__zpdnekdrzrea0\spotify.exe => Keine Datei
FirewallRules: [TCP Query User{505E07C1-6DA7-413D-9AAB-D2382A0709C7}C:\program files\blackmagic design\davinci resolve\resolve.exe] => (Block) C:\program files\blackmagic design\davinci resolve\resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [UDP Query User{414C6C59-9B0C-4865-85A3-E986A0D91ECE}C:\program files\blackmagic design\davinci resolve\resolve.exe] => (Block) C:\program files\blackmagic design\davinci resolve\resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [TCP Query User{883776AC-95CC-4EEB-8D41-C9D8FAF6C03F}C:\program files\blackmagic design\davinci resolve\dpdecoder.exe] => (Block) C:\program files\blackmagic design\davinci resolve\dpdecoder.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [UDP Query User{4AD6C4F5-488D-45EA-AA1E-9AF00BD98778}C:\program files\blackmagic design\davinci resolve\dpdecoder.exe] => (Block) C:\program files\blackmagic design\davinci resolve\dpdecoder.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [TCP Query User{3F1B3D80-97F6-4E9F-A5AA-DB78C590637E}C:\program files\blackmagic design\davinci resolve\fuscript.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\fuscript.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [UDP Query User{B6F1CA11-ECF4-4BD6-84DA-1C8900EA8B6B}C:\program files\blackmagic design\davinci resolve\fuscript.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\fuscript.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [TCP Query User{59A9B87C-B037-4441-899C-DE62446B2A65}C:\program files\logioptionsplus\logioptionsplus_agent.exe] => (Allow) C:\program files\logioptionsplus\logioptionsplus_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [UDP Query User{E730F9AE-EAFC-4590-96F5-34E8432A11A4}C:\program files\logioptionsplus\logioptionsplus_agent.exe] => (Allow) C:\program files\logioptionsplus\logioptionsplus_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [TCP Query User{5CA12C01-A668-4DB9-BE2B-D3D5D96189C9}C:\program files\cisco packet tracer 8.0.1\bin\packettracer.exe] => (Block) C:\program files\cisco packet tracer 8.0.1\bin\packettracer.exe (CISCO SYSTEMS, INC. -> Cisco Systems, Inc)
FirewallRules: [UDP Query User{A2C0AC47-442E-4529-97F9-9D53DE260023}C:\program files\cisco packet tracer 8.0.1\bin\packettracer.exe] => (Block) C:\program files\cisco packet tracer 8.0.1\bin\packettracer.exe (CISCO SYSTEMS, INC. -> Cisco Systems, Inc)
FirewallRules: [TCP Query User{FE8D9743-0649-4F86-89CE-28ADF383DFCD}C:\xampp\mysql\bin\mysqld.exe] => (Block) C:\xampp\mysql\bin\mysqld.exe (MariaDB Corporation Ab -> )
FirewallRules: [UDP Query User{728840AA-5D14-4B62-82DC-4BBD329AC985}C:\xampp\mysql\bin\mysqld.exe] => (Block) C:\xampp\mysql\bin\mysqld.exe (MariaDB Corporation Ab -> )
FirewallRules: [TCP Query User{6105FB08-0863-448D-8633-3C55AF714AF7}C:\xampp\apache\bin\httpd.exe] => (Block) C:\xampp\apache\bin\httpd.exe (Apache Software Foundation) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{D1C09E4A-C681-4601-AD8F-85DD88D63CEC}C:\xampp\apache\bin\httpd.exe] => (Block) C:\xampp\apache\bin\httpd.exe (Apache Software Foundation) [Datei ist nicht signiert]
FirewallRules: [{0A76A033-919E-4EF8-8701-7ED75C8C3ABA}] => (Allow) C:\Program Files (x86)\Steam\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{1CC158EE-D1FB-4680-A41E-29B2EA204451}] => (Allow) C:\Program Files (x86)\Steam\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{BF9DF01E-EEA8-4A30-8E2C-80E2F30EED48}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{55AD2EC0-07AA-4373-A627-ACD44AA0A18F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [TCP Query User{BE6D4F28-5D4C-4A36-A811-B67692756D62}C:\program files (x86)\zoom\bin\zoom.exe] => (Allow) C:\program files (x86)\zoom\bin\zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [UDP Query User{4AC71AF3-9C32-4CD5-8A6C-5F1FBCB393BD}C:\program files (x86)\zoom\bin\zoom.exe] => (Allow) C:\program files (x86)\zoom\bin\zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{EEEBC49E-2192-4F8D-9D72-0E1DDAB15499}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_21302.202.1065.6968_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{753C1F88-B290-4232-80D7-5B1281758D6C}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_21302.202.1065.6968_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1139B908-3B1E-4A4C-93AA-1A40D83F4310}] => (Allow) C:\Users\schwa\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{B65AA30B-89C6-4C12-9CB8-C46AE75B7115}] => (Allow) C:\Users\schwa\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{6B7E2DC4-025A-424E-A040-9100B80C0588}] => (Allow) C:\Users\schwa\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [TCP Query User{2770E40E-2E01-4580-BB85-7F82752D4CEB}E:\warzone\call of duty modern warfare\modernwarfare.exe] => (Block) E:\warzone\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [UDP Query User{93F5843F-3702-4BE1-91BE-22988A56985D}E:\warzone\call of duty modern warfare\modernwarfare.exe] => (Block) E:\warzone\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [TCP Query User{38ADAFDE-BBF4-4C9A-A39C-2A2F75201CE9}C:\program files\windowsapps\wimpmusic.27241e05630ea_2.28.0.0_x86__kn85bz84x7te4\app\tidal.exe] => (Allow) C:\program files\windowsapps\wimpmusic.27241e05630ea_2.28.0.0_x86__kn85bz84x7te4\app\tidal.exe => Keine Datei
FirewallRules: [UDP Query User{3EB0C1A7-0BC0-49DB-AAEC-3CB8458BF0B4}C:\program files\windowsapps\wimpmusic.27241e05630ea_2.28.0.0_x86__kn85bz84x7te4\app\tidal.exe] => (Allow) C:\program files\windowsapps\wimpmusic.27241e05630ea_2.28.0.0_x86__kn85bz84x7te4\app\tidal.exe => Keine Datei
FirewallRules: [TCP Query User{7ED65A3A-F117-4300-A646-B4358462E804}C:\users\schwa\appdata\local\synologydrive\synologydrive.app\bin\cloud-drive-connect.exe] => (Block) C:\users\schwa\appdata\local\synologydrive\synologydrive.app\bin\cloud-drive-connect.exe (Synology Inc. -> Synology Inc.)
FirewallRules: [UDP Query User{540D963F-3C56-42DC-8922-0A813D46E51B}C:\users\schwa\appdata\local\synologydrive\synologydrive.app\bin\cloud-drive-connect.exe] => (Block) C:\users\schwa\appdata\local\synologydrive\synologydrive.app\bin\cloud-drive-connect.exe (Synology Inc. -> Synology Inc.)
FirewallRules: [{026254E4-AA0B-4CC1-97C5-B0AD74D9EDD7}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0A937995-2BB0-43B2-B1DE-749A5FAE4E28}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{54D6C8B8-F552-43E3-9CB9-5CE7D394F15C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{C2CFAD26-03A7-4495-922F-C4B098696A56}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{C6DD91E3-7437-489D-8B02-0320B7E73B7C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{3372524A-997A-454B-BDDF-075AF84FF536}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{53CAB19C-57D0-4CC7-BA4C-6A3C394BA798}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{A0CC9AC4-273C-49C8-9A02-600607AAC503}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{56193D78-DA54-45F3-8B95-ACCFCFB201D1}C:\users\schwa\appdata\local\synologydrive\synologydrive.app\bin\cloud-drive-ui.exe] => (Allow) C:\users\schwa\appdata\local\synologydrive\synologydrive.app\bin\cloud-drive-ui.exe (Synology Inc. -> Synology Inc.)
FirewallRules: [UDP Query User{904ED96E-A33A-4ED0-B3D5-68DF68C26F1A}C:\users\schwa\appdata\local\synologydrive\synologydrive.app\bin\cloud-drive-ui.exe] => (Allow) C:\users\schwa\appdata\local\synologydrive\synologydrive.app\bin\cloud-drive-ui.exe (Synology Inc. -> Synology Inc.)
FirewallRules: [{AF29CA6D-F289-4E20-8789-F6A90885F8A4}] => (Block) C:\users\schwa\appdata\local\synologydrive\synologydrive.app\bin\cloud-drive-ui.exe (Synology Inc. -> Synology Inc.)
FirewallRules: [{3B4F1291-B512-4956-9739-92BA2C09D9C1}] => (Block) C:\users\schwa\appdata\local\synologydrive\synologydrive.app\bin\cloud-drive-ui.exe (Synology Inc. -> Synology Inc.)
FirewallRules: [{49C5FF4B-64A9-4486-8CB6-9AED514916E6}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{02220890-A517-4338-8D1D-76FF2664C00E}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{901DEFB9-CE2A-4887-8CFB-845F84F64F0B}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E74F6C6C-C0BB-4405-9897-115E6B6AA2A3}] => (Allow) E:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve Corp. -> )
FirewallRules: [{2B1CF33D-B841-4839-A092-C5197373755A}] => (Allow) E:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve Corp. -> )
FirewallRules: [{B1091F49-2B99-49DB-B707-3679BFFF415F}] => (Allow) E:\SteamLibrary\steamapps\common\SUPER PEOPLE Playtest\geegeerun.exe (Wonder People Co., Ltd. -> Wonder People Co.,Ltd.)
FirewallRules: [{01530811-9C37-4220-950D-C139091EBEB4}] => (Allow) E:\SteamLibrary\steamapps\common\SUPER PEOPLE Playtest\geegeerun.exe (Wonder People Co., Ltd. -> Wonder People Co.,Ltd.)
FirewallRules: [TCP Query User{3AB79244-6F80-46C8-AF11-5A163B921057}E:\steamlibrary\steamapps\common\super people playtest\bravohotelgame\binaries\win64\bravohotelclient-win64-shipping.protected.exe] => (Allow) E:\steamlibrary\steamapps\common\super people playtest\bravohotelgame\binaries\win64\bravohotelclient-win64-shipping.protected.exe (Wonder People Co., Ltd. -> Wonder People Co.,Ltd)
FirewallRules: [UDP Query User{FAD77C2A-E27A-4B26-9F87-D87B093C1688}E:\steamlibrary\steamapps\common\super people playtest\bravohotelgame\binaries\win64\bravohotelclient-win64-shipping.protected.exe] => (Allow) E:\steamlibrary\steamapps\common\super people playtest\bravohotelgame\binaries\win64\bravohotelclient-win64-shipping.protected.exe (Wonder People Co., Ltd. -> Wonder People Co.,Ltd)
FirewallRules: [{DB72032C-DA73-42D5-8DF7-0FDA3A48D3FA}] => (Block) E:\steamlibrary\steamapps\common\super people playtest\bravohotelgame\binaries\win64\bravohotelclient-win64-shipping.protected.exe (Wonder People Co., Ltd. -> Wonder People Co.,Ltd)
FirewallRules: [{1808835E-2061-489F-9DCD-670E3B1B171A}] => (Block) E:\steamlibrary\steamapps\common\super people playtest\bravohotelgame\binaries\win64\bravohotelclient-win64-shipping.protected.exe (Wonder People Co., Ltd. -> Wonder People Co.,Ltd)
FirewallRules: [{5C9D9107-1CBD-42B0-89A4-A8637C6D3A25}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 1\bf1Trial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{33E9ACE2-4DA3-49BB-9840-D79A5A55A95C}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 1\bf1Trial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{9EEDE8F0-AD93-4ECB-BA3E-2C196155A498}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 1\bf1.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{05601525-C952-4779-AA05-3F9639C32FF0}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 1\bf1.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [TCP Query User{17E85565-0C52-4A81-ADCD-E29887DD5C4C}C:\program files\cisco packet tracer 7.2.2\bin\packettracer7.exe] => (Block) C:\program files\cisco packet tracer 7.2.2\bin\packettracer7.exe (CISCO SYSTEMS, INC. -> Cisco Systems, Inc)
FirewallRules: [UDP Query User{1B35CF96-38FD-4975-9456-98A71A45197C}C:\program files\cisco packet tracer 7.2.2\bin\packettracer7.exe] => (Block) C:\program files\cisco packet tracer 7.2.2\bin\packettracer7.exe (CISCO SYSTEMS, INC. -> Cisco Systems, Inc)
FirewallRules: [{C5C4A15F-4DFB-4318-8538-66FB8E6612E8}] => (Allow) E:\SteamLibrary\steamapps\common\Team Wipe\BaseOnlineBobby.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [{707CF772-54E2-41D3-9991-79B4424543E2}] => (Allow) E:\SteamLibrary\steamapps\common\Team Wipe\BaseOnlineBobby.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{92D2E69C-0504-4E05-8E06-A07E1A18CB52}E:\steamlibrary\steamapps\common\team wipe\baseonlinebobby\binaries\win64\baseonlinebobby.exe] => (Allow) E:\steamlibrary\steamapps\common\team wipe\baseonlinebobby\binaries\win64\baseonlinebobby.exe (Janis Baumeister) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{12E6EE08-6041-4DE6-B611-55A88825AFAF}E:\steamlibrary\steamapps\common\team wipe\baseonlinebobby\binaries\win64\baseonlinebobby.exe] => (Allow) E:\steamlibrary\steamapps\common\team wipe\baseonlinebobby\binaries\win64\baseonlinebobby.exe (Janis Baumeister) [Datei ist nicht signiert]
FirewallRules: [{5563D53F-119C-489F-8EB5-4B21AAA85D1E}] => (Block) E:\steamlibrary\steamapps\common\team wipe\baseonlinebobby\binaries\win64\baseonlinebobby.exe (Janis Baumeister) [Datei ist nicht signiert]
FirewallRules: [{FA80D1AF-CDA0-4B8A-B3DB-1507E4C5443F}] => (Block) E:\steamlibrary\steamapps\common\team wipe\baseonlinebobby\binaries\win64\baseonlinebobby.exe (Janis Baumeister) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{1D390B52-5A59-4D01-8332-1F6D56151A58}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Block) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{80509F4A-0B08-4EB5-9C44-CBCB407785EF}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Block) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{BEE68AE3-2636-4E4D-B390-BD87350484FA}] => (Allow) C:\Program Files (x86)\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{95F50BA5-1816-426D-B5B8-EB21CC9E8359}] => (Allow) C:\Program Files (x86)\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{B104AF15-8C2B-45BB-8F20-8D5E1DAD8BC0}] => (Allow) E:\SteamLibrary\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (PUBG CORPORATION -> KRAFTON, Inc.)
FirewallRules: [{430660A5-F507-4181-A692-100DF7CF451F}] => (Allow) E:\SteamLibrary\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (PUBG CORPORATION -> KRAFTON, Inc.)
FirewallRules: [TCP Query User{49E27C66-3887-4A4C-8FEB-E56B4833F4B5}E:\steamlibrary\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Block) E:\steamlibrary\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (PUBG CORPORATION -> Bluehole GinnoGames, Inc.)
FirewallRules: [UDP Query User{019EF3C7-E387-4728-AB1F-6F8B1F363611}E:\steamlibrary\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Block) E:\steamlibrary\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (PUBG CORPORATION -> Bluehole GinnoGames, Inc.)
FirewallRules: [TCP Query User{117CC580-A7BF-4C6B-A597-C0823EDAEF4A}C:\program files\cisco packet tracer 8.1.1\bin\packettracer.exe] => (Block) C:\program files\cisco packet tracer 8.1.1\bin\packettracer.exe (CISCO SYSTEMS, INC. -> Cisco Systems, Inc)
FirewallRules: [UDP Query User{315DEC2E-40F7-4FFB-BC81-507DE783375A}C:\program files\cisco packet tracer 8.1.1\bin\packettracer.exe] => (Block) C:\program files\cisco packet tracer 8.1.1\bin\packettracer.exe (CISCO SYSTEMS, INC. -> Cisco Systems, Inc)
FirewallRules: [{38389AED-CF5A-4A85-A274-0A858BE2F948}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.178.765.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{51EB0602-CB46-4CE5-BFCE-0C7751B0028B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.178.765.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{08A35797-E90D-4896-A777-DC0C4AD2D7C6}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.178.765.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{14329869-027E-4E67-9955-D26191C3DA92}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.178.765.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{FEF730B7-E734-41A6-A62D-8EB057AB39D0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.178.765.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{28EA5B61-8222-4F16-B970-E22642693052}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.178.765.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{28EE4569-5578-46B4-B73F-BAC5B00486BD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.178.765.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{6B9384D0-4896-48D0-9CC3-ADEC6D7945DB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.178.765.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{4FD4DBA4-20F3-4781-B5BA-54F4E66EB911}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\98.0.1108.43\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{954BA0AF-D792-4FF7-B383-FC5532F22658}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Wiederherstellungspunkte =========================
28-01-2022 18:25:29 DirectX wurde installiert
03-02-2022 14:04:36 PowerToys (Preview) x64
11-02-2022 14:37:53 Windows Modules Installer
==================== Fehlerhafte Geräte im Gerätemanager ============
==================== Fehlereinträge in der Ereignisanzeige: ========================
Applikationsfehler:
==================
Error: (02/04/2022 04:50:00 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Das Programm SystemSettings.exe Version 10.0.22000.348 hat die Interaktion mit Windows beendet und wurde geschlossen. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 3f0c
Startzeit: 01d81919d1a5adff
Beendigungszeit: 4294967295
Anwendungspfad: C:\Windows\ImmersiveControlPanel\SystemSettings.exe
Bericht-ID: 66a4fe96-a3d6-4d4f-9339-86f47f6653a8
Vollständiger Name des fehlerhaften Pakets: windows.immersivecontrolpanel_10.0.6.1000_neutral_neutral_cw5n1h2txyewy
Relative Anwendungs-ID des fehlerhaften Pakets: microsoft.windows.immersivecontrolpanel
Absturztyp: Cross-process
Error: (02/04/2022 02:24:50 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: ShellExperienceHost.exe, Version: 10.0.22000.132, Zeitstempel: 0xdd210a66
Name des fehlerhaften Moduls: Windows.UI.QuickActions.dll, Version: 10.0.22000.348, Zeitstempel: 0x6bfd3a05
Ausnahmecode: 0x80000003
Fehleroffset: 0x00000000000431d1
ID des fehlerhaften Prozesses: 0x3944
Startzeit der fehlerhaften Anwendung: 0x01d818fe94768965
Pfad der fehlerhaften Anwendung: C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
Pfad des fehlerhaften Moduls: C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.QuickActions.dll
Berichtskennung: d00538e5-6582-4637-9b7f-73a828b5ec3a
Vollständiger Name des fehlerhaften Pakets: Microsoft.Windows.ShellExperienceHost_10.0.22000.71_neutral_neutral_cw5n1h2txyewy
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: App
Error: (01/28/2022 08:48:19 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: ucldr_battlegrounds_gl.exe, Version: 2021.6.29.973, Zeitstempel: 0x60dac8ea
Name des fehlerhaften Moduls: ntdll.dll, Version: 10.0.22000.434, Zeitstempel: 0xe4fbcaba
Ausnahmecode: 0xc0000374
Fehleroffset: 0x000000000010be99
ID des fehlerhaften Prozesses: 0x1164
Startzeit der fehlerhaften Anwendung: 0x01d8147fb778724e
Pfad der fehlerhaften Anwendung: C:\Program Files\Common Files\UNCHEATER\ucldr_battlegrounds_gl.exe
Pfad des fehlerhaften Moduls: C:\Windows\SYSTEM32\ntdll.dll
Berichtskennung: ddc240e0-0e52-4cee-8065-54fa1cb8d3c7
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (01/28/2022 06:25:17 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: ShellExperienceHost.exe, Version: 10.0.22000.132, Zeitstempel: 0xdd210a66
Name des fehlerhaften Moduls: Windows.UI.QuickActions.dll, Version: 10.0.22000.348, Zeitstempel: 0x6bfd3a05
Ausnahmecode: 0x80000003
Fehleroffset: 0x00000000000431d1
ID des fehlerhaften Prozesses: 0x2cc0
Startzeit der fehlerhaften Anwendung: 0x01d8146b3ebf7c05
Pfad der fehlerhaften Anwendung: C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
Pfad des fehlerhaften Moduls: C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.QuickActions.dll
Berichtskennung: 83731f17-80ef-4ef7-a6ed-d246adaabb7e
Vollständiger Name des fehlerhaften Pakets: Microsoft.Windows.ShellExperienceHost_10.0.22000.71_neutral_neutral_cw5n1h2txyewy
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: App
Error: (01/25/2022 05:29:45 PM) (Source: CertEnroll) (EventID: 86) (User: NT-AUTORITÄT)
Description: Fehler bei der Initialisierung der SCEP-Zertifikatregistrierung für WORKGROUP\MASCHINERIE$ über https://AMD-KeyId-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net/templates/Aik/scep:
GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Tue, 25 Jan 2022 16:29:46 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: dacaffbd-5924-4442-a3ab-c0fc6b79ecca
Methode: GET(172ms)
Phase: GetCACaps
Nicht gefunden (404). 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)
Error: (01/25/2022 05:29:44 PM) (Source: CertEnroll) (EventID: 86) (User: NT-AUTORITÄT)
Description: Fehler bei der Initialisierung der SCEP-Zertifikatregistrierung für Lokales System über https://AMD-KeyId-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net/templates/Aik/scep:
GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Tue, 25 Jan 2022 16:29:46 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 7610c325-0576-45b0-8c15-41a4b60b301d
Methode: GET(188ms)
Phase: GetCACaps
Nicht gefunden (404). 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)
Error: (01/25/2022 05:29:35 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Local Hostname Maschinerie.local already in use; will try Maschinerie-2.local instead
Error: (01/25/2022 05:29:35 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: ProbeCount 2; will deregister 4 Maschinerie.local. Addr 192.168.0.20
Systemfehler:
=============
Error: (02/11/2022 02:35:31 PM) (Source: Server) (EventID: 2505) (User: )
Description: Aufgrund eines doppelten Netzwerknamens konnte zu der Transportschicht \Device\NetBT_Tcpip_{6F8CB039-876B-42BF-A5C9-1DE766B5B2C6} vom Serverdienst nicht gebunden werden. Der Serverdienst konnte nicht gestartet werden.
Error: (02/06/2022 09:35:29 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80073d02 fehlgeschlagen: 9NCBCSZSJRSB-SpotifyAB.SpotifyMusic
Error: (02/06/2022 09:22:22 PM) (Source: Server) (EventID: 2505) (User: )
Description: Aufgrund eines doppelten Netzwerknamens konnte zu der Transportschicht \Device\NetBT_Tcpip_{6F8CB039-876B-42BF-A5C9-1DE766B5B2C6} vom Serverdienst nicht gebunden werden. Der Serverdienst konnte nicht gestartet werden.
Error: (02/05/2022 06:43:59 AM) (Source: Server) (EventID: 2505) (User: )
Description: Aufgrund eines doppelten Netzwerknamens konnte zu der Transportschicht \Device\NetBT_Tcpip_{6F8CB039-876B-42BF-A5C9-1DE766B5B2C6} vom Serverdienst nicht gebunden werden. Der Serverdienst konnte nicht gestartet werden.
Error: (02/04/2022 02:15:54 PM) (Source: Server) (EventID: 2505) (User: )
Description: Aufgrund eines doppelten Netzwerknamens konnte zu der Transportschicht \Device\NetBT_Tcpip_{6F8CB039-876B-42BF-A5C9-1DE766B5B2C6} vom Serverdienst nicht gebunden werden. Der Serverdienst konnte nicht gestartet werden.
Error: (02/04/2022 11:48:28 AM) (Source: Server) (EventID: 2505) (User: )
Description: Aufgrund eines doppelten Netzwerknamens konnte zu der Transportschicht \Device\NetBT_Tcpip_{6F8CB039-876B-42BF-A5C9-1DE766B5B2C6} vom Serverdienst nicht gebunden werden. Der Serverdienst konnte nicht gestartet werden.
Error: (02/03/2022 04:57:35 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x800700b7 fehlgeschlagen: 9NMPJ99VJBWV-Microsoft.YourPhone
Error: (02/03/2022 02:07:19 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "NVIDIA LocalSystem Container" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 6000 Millisekunden durchgeführt: Neustart des Diensts.
Windows Defender:
================
Date: 2022-02-06 21:35:50
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {85C031BB-5BAE-41E0-9F69-F357B6C18C10}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Date: 2022-02-03 12:19:07
Description:
N/A@
Date: 2022-02-01 16:19:06
Description:
N/A
Date: 2022-01-28 20:59:00
Description:
N/A
Date: 2022-01-28 11:59:04
Description:
N/A
CodeIntegrity:
===============
Date: 2022-02-11 14:53:59
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Windows signing level requirements.
==================== Speicherinformationen ===========================
BIOS: American Megatrends International, LLC. 2.D3 04/12/2021
Hauptplatine: Micro-Star International Co., Ltd. B450M MORTAR MAX (MS-7B89)
Prozessor: AMD Ryzen 7 5800X 8-Core Processor
Prozentuale Nutzung des RAM: 41%
Installierter physikalischer RAM: 32693.7 MB
Verfügbarer physikalischer RAM: 19149.31 MB
Summe virtueller Speicher: 38837.7 MB
Verfügbarer virtueller Speicher: 21888.54 MB
==================== Laufwerke ================================
Drive c: (Windows) (Fixed) (Total:930.36 GB) (Free:293.4 GB) NTFS
Drive d: (Visuell) (Fixed) (Total:116.84 GB) (Free:56.75 GB) NTFS
Drive e: (Downloads) (Fixed) (Total:931.5 GB) (Free:427.21 GB) NTFS
Drive h: (Docs) (Fixed) (Total:585 GB) (Free:148.31 GB) NTFS
\\?\Volume{248b902d-5b69-434b-88cb-89e21e5681a7}\ (Wiederherstellung) (Fixed) (Total:0.52 GB) (Free:0.07 GB) NTFS
\\?\Volume{c9fa143c-b415-425a-8dfd-9e309a0f81af}\ () (Fixed) (Total:0.52 GB) (Free:0.08 GB) NTFS
\\?\Volume{6565c2d8-0000-0000-0000-20361d000000}\ () (Fixed) (Total:0.53 GB) (Free:0.08 GB) NTFS
\\?\Volume{99d57452-68ed-4cb8-92b6-7e7ba25ec30f}\ () (Fixed) (Total:0.09 GB) (Free:0.06 GB) FAT32
==================== MBR & Partitionstabelle ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 117.4 GB) (Disk ID: 6565C2D8)
Partition 1: (Not Active) - (Size=116.8 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=544 MB) - (Type=27)
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 119.2 GB) (Disk ID: B576E8A5)
Partition 1: (Not Active) - (Size=119.2 GB) - (Type=42)
==========================================================
Disk: 2 (Size: 465.8 GB) (Disk ID: 18D08338)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=42)
==========================================================
Disk: 3 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 4 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
==================== Ende von Addition.txt =======================
Beste Dank vorab. Geändert von plebski (11.02.2022 um 15:06 Uhr) |
|
11.02.2022, 15:11
| #2 |
| /// Winkelfunktion /// TB-Süch-Tiger™   | Windows 11: Maus zieht gelegentlich nach, Rechner manchmal langsam Anleitung / Hilfe Und das kann deiner Meinung nach nichts anderes als ein Virus sein?
__________________
__________________ |
|
11.02.2022, 15:39
| #3 | |
| | Windows 11: Maus zieht gelegentlich nach, Rechner manchmal langsam DetailsZitat:
Da ich aber keine Ahnung habe, hatte ich gehofft jemand mit mehr Ahnung, kann mir unter Zuhilfenahme der Logs genaueres sagen..  |
|
11.02.2022, 15:55
| #4 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Lösung: Windows 11: Maus zieht gelegentlich nach, Rechner manchmal langsam Dann verschieb ich mal nach Windows.
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
11.02.2022, 16:59
| #5 | |
 | Wie Windows 11: Maus zieht gelegentlich nach, Rechner manchmal langsamZitat:
Du hast aber eine Menge Bloatware installiert, insbesondere Gaming-Kram, die teilweise im Hintergund läuft. Davon könnte wahrscheinlich einiges gelöscht werden. Ich finde außerdem dies: Code:
ATTFilter Error: (02/06/2022 09:22:22 PM) (Source: Server) (EventID: 2505) (User: )
Description: Aufgrund eines doppelten Netzwerknamens konnte zu der Transportschicht \Device\NetBT_Tcpip_{6F8CB039-876B-42BF-A5C9-1DE766B5B2C6} vom Serverdienst nicht gebunden werden. Der Serverdienst konnte nicht gestartet werden.
__________________ "Consider again that dot. That's here. That's home. That's us. On it everyone you love, everyone you know, everyone you ever heard of, every human being who ever was, lived out their lives."— Carl Sagan |
|
11.02.2022, 22:23
| #6 |
  | Wo Windows 11: Maus zieht gelegentlich nach, Rechner manchmal langsam Lösung! Zudem veraltete Software drauf (Systempflege, wo bist du?), und dann obendrein noch eine alte MBR-Struktur alter Windows-Installationen (statt UEFI/GPT): Code:
ATTFilter Disk: 0 (MBR Code: Windows 7/8/10) (Size: 117.4 GB) (Disk ID: 6565C2D8)
Partition 1: (Not Active) - (Size=116.8 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=544 MB) - (Type=27)
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 119.2 GB) (Disk ID: B576E8A5)
Partition 1: (Not Active) - (Size=119.2 GB) - (Type=42)
Nachtrag, bevor ein Einwand dazu kommt: Ja, ich habe gesehen, dass... Code:
ATTFilter Drive c: (Windows) (Fixed) (Total:930.36 GB) (Free:293.4 GB) NTFS
Geändert von mmk (11.02.2022 um 22:32 Uhr) |
|
| Themen zu Windows 11: Maus zieht gelegentlich nach, Rechner manchmal langsam |
| 192.168.0.2, autorun, bonjour, defender, desktop, google, homepage, internet, internet explorer, langsam, maus, microsoft defender, monitor, mozilla, netzwerk, nvcontainer, nvcontainer.exe, performance, prozesse, realtek, registry, scan, schutz, software, svchost.exe, udp, updates, windows |
Linear-Darstellung
