|
Log-Analyse und Auswertung: Win 10: Zugriff auf Amazonkonto. Trojaner eingefangen?Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
08.06.2022, 17:34 | #1 |
| Win 10: Zugriff auf Amazonkonto. Trojaner eingefangen? Hallo an die Experten, Ich glaube mein PC hat sich was eingefangen. Letztes Wochenende wurde erst der Insta und Facebook Accout von meiner Frau gehackt und gestern wurde über mein Amazon Account etwas bestellt. Malwarebytes und frst hab ich laufen lassen. Log Dateien sind als .zip im Anhang Ich hoffe mir kann jemand helfen würde ungern mein System neu aufsetzen. |
08.06.2022, 21:30 | #2 | |
/// Winkelfunktion /// TB-Süch-Tiger™ | Win 10: Zugriff auf Amazonkonto. Trojaner eingefangen?Zitat:
Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit. Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ |
09.06.2022, 09:11 | #3 |
| Win 10: Zugriff auf Amazonkonto. Trojaner eingefangen? Oh entschuldige bitte. Hier nochmal als CodeTag
__________________Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 08-06-2022 durchgeführt von Paddy (Administrator) auf HEFDITSCHPC (08-06-2022 17:57:30) Gestartet von H:\ Geladene Profile: Paddy Plattform: Microsoft Windows 10 Pro Version 21H2 19044.1706 (X64) Sprache: Deutsch (Deutschland) Standard-Browser: Chrome Start-Modus: Normal ==================== Prozesse (Alle) ================= (C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe ->) (Motorola Mobility Inc. -> Motorola Mobility LLC) C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe (C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\conhost.exe (C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3> (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe (explorer.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe (explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthSystray.exe (explorer.exe ->) (Unified Intents AB -> Unified Intents AB) C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe (fontdrvhost.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\System32\csrss.exe <2> (fontdrvhost.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\System32\wininit.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler64.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\explorer.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\winlogon.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\System32\smss.exe (Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (services.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (services.exe ->) (Broadcom Corporation -> Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe (services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_4.66.2001.0_x64__8wekyb3d8bbwe\gamingservices.exe (services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_4.66.2001.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe (services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnetwk.exe (services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SearchIndexer.exe (services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\spoolsv.exe (services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\sppsvc.exe (services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\VSSVC.exe (services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WUDFHost.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\System32\SecurityHealthService.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\System32\SgrmBroker.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\System32\svchost.exe <85> (services.exe ->) (Motorola Mobility Inc. -> Motorola Mobility LLC) C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe (services.exe ->) (Motorola) [Datei ist nicht signiert] C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe (services.exe ->) (NETGEAR -> ) C:\Program Files (x86)\NETGEAR\WNA3100M\WifiSvc.exe (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <4> (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_7ad37590e62d4afc\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe (services.exe ->) (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe (services.exe ->) (Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF3\3.0.0.308\WsAppService3.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20970.0_x64__8wekyb3d8bbwe\HxOutlook.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20970.0_x64__8wekyb3d8bbwe\HxTsr.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22042.168.0_x64__8wekyb3d8bbwe\YourPhone.exe (svchost.exe ->) (Microsoft Windows -> ) C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\ApplicationFrameHost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\audiodg.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\ctfmon.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dasHost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\RuntimeBroker.exe <5> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\sihost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\taskhostw.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbem\WmiPrvSE.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TextInputHost.exe (wininit.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\System32\lsass.exe (wininit.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\System32\services.exe (winlogon.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dwm.exe (winlogon.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\fontdrvhost.exe <2> ==================== Registry (Alle) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.) HKLM\...\Run: [SecurityHealth] => C:\Windows\system32\SecurityHealthSystray.exe [86016 2019-12-07] (Microsoft Windows -> Microsoft Corporation) HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3831808 2021-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Logitech) HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe [34816 2019-12-07] (Microsoft Windows -> Microsoft Corporation) HKLM-x32\...\Winlogon: [Userinit] C:\Windows\sysWOW64\userinit.exe [28160 2019-12-07] (Microsoft Windows -> Microsoft Corporation) HKLM\...\Winlogon: [Shell] C:\Windows\explorer.exe [5114880 2022-05-10] (Microsoft Windows -> Microsoft Corporation) HKLM-x32\...\Winlogon: [Shell] C:\Windows\SysWOW64\explorer.exe [4491448 2022-05-10] (Microsoft Windows -> Microsoft Corporation) HKLM\...\Policies\Explorer: [ForceActiveDesktopOn] 0 HKLM\...\Policies\Explorer: [NoActiveDesktop] 1 HKLM\...\Policies\Explorer: [NoActiveDesktopChanges] 1 HKLM\...\Policies\Explorer: [NoRecentDocsHistory] 0 HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Beschränkung <==== ACHTUNG HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Beschränkung <==== ACHTUNG HKU\S-1-5-19\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [30870320 2019-12-07] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-20\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [30870320 2019-12-07] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-2343168550-1689659002-1608603552-1001\...\Run: [OneDrive] => C:\Users\Paddy\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2632096 2022-06-02] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-2343168550-1689659002-1608603552-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4282328 2022-05-28] (Valve Corp. -> Valve Corporation) HKU\S-1-5-21-2343168550-1689659002-1608603552-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [36836592 2022-05-11] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-2343168550-1689659002-1608603552-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [409280 2020-12-25] (AVB Disc Soft, SIA -> Disc Soft Ltd) HKU\S-1-5-21-2343168550-1689659002-1608603552-1001\...\Run: [Unified Remote V3] => C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe [3245752 2021-11-22] (Unified Intents AB -> Unified Intents AB) HKU\S-1-5-21-2343168550-1689659002-1608603552-1004\...\Run: [OneDrive] => C:\Users\cdolc\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2199936 2021-10-23] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-2343168550-1689659002-1608603552-1004\...\RunOnce: [Delete Cached Update Binary] => C:\Windows\system32\cmd.exe /q /c del /q "C:\Users\cdolc\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" (Keine Datei) HKU\S-1-5-21-2343168550-1689659002-1608603552-1004\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\Windows\system32\cmd.exe /q /c del /q "C:\Users\cdolc\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" (Keine Datei) HKU\S-1-5-21-2343168550-1689659002-1608603552-1004\...\RunOnce: [Uninstall 21.002.0104.0005\amd64] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\cdolc\AppData\Local\Microsoft\OneDrive\21.002.0104.0005\amd64" (Keine Datei) HKU\S-1-5-21-2343168550-1689659002-1608603552-1004\...\RunOnce: [Uninstall 21.002.0104.0005] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\cdolc\AppData\Local\Microsoft\OneDrive\21.002.0104.0005" (Keine Datei) HKLM\...\Providers\Internet Print Provider: C:\Windows\system32\inetpp.dll [184320 2021-10-23] (Microsoft Windows -> Microsoft Corporation) HKLM\...\Providers\LanMan Print Services: C:\Windows\system32\win32spl.dll [920576 2022-04-15] (Microsoft Windows -> Microsoft Corporation) HKLM\...\Windows x64\Print Processors\Canon MX350 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDA6.DLL [30208 2012-03-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Windows x64\Print Processors\winprint: C:\Windows\System32\spool\prtprocs\x64\winprint.dll [46080 2022-05-10] (Microsoft Windows -> Microsoft Corporation) HKLM\...\Print\Monitors\Appmon: C:\Windows\system32\AppMon.dll [116224 2022-04-15] (Microsoft Windows -> Microsoft Corporation) HKLM\...\Print\Monitors\Canon BJ Language Monitor MX350 series: C:\Windows\system32\CNMLMA6.DLL [385024 2012-03-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon MP FAX Language Monitor MX350 series: C:\Windows\system32\CNCF2Ll.DLL [343552 2009-10-22] (Microsoft Windows Hardware Compatibility Publisher -> Canon Inc.) HKLM\...\Print\Monitors\Local Port: C:\Windows\system32\localspl.dll [1272832 2022-05-10] (Microsoft Windows -> Microsoft Corporation) HKLM\...\Print\Monitors\Microsoft Shared Fax Monitor: C:\Windows\system32\FXSMON.DLL [49152 2021-02-10] (Microsoft Windows -> Microsoft Corporation) HKLM\...\Print\Monitors\Standard TCP/IP Port: C:\Windows\system32\tcpmon.dll [225792 2022-04-15] (Microsoft Windows -> Microsoft Corporation) HKLM\...\Print\Monitors\USB Monitor: C:\Windows\system32\usbmon.dll [933376 2022-04-15] (Microsoft Windows -> Microsoft Corporation) HKLM\...\Print\Monitors\WSD Port: C:\Windows\system32\APMon.dll [1487360 2022-04-15] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\Microsoft\Active Setup\Installed Components: [>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] -> C:\Windows\system32\unregmp2.exe [2019-12-06] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\Microsoft\Active Setup\Installed Components: [{2C7339CF-2B09-4501-B3F3-F3508C9228ED}] -> C:\Windows\system32\themeui.dll [2021-01-14] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\Microsoft\Active Setup\Installed Components: [{6BF52A52-394A-11d3-B153-00C04F79FAA6}] -> C:\Windows\system32\unregmp2.exe [2019-12-06] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\Microsoft\Active Setup\Installed Components: [{89820200-ECBD-11cf-8B85-00AA005B4340}] -> C:\Windows\system32\shell32.dll [2022-05-10] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\Microsoft\Active Setup\Installed Components: [{89820200-ECBD-11cf-8B85-00AA005B4383}] -> C:\Windows\System32\ie4uinit.exe [2022-03-12] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\Microsoft\Active Setup\Installed Components: [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -> C:\Windows\System32\mscories.dll [2019-12-07] (Microsoft Corporation -> Microsoft Corporation) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\102.0.5005.63\Installer\chrmstp.exe [2022-06-01] (Google LLC -> Google LLC) HKLM\Software\Microsoft\Active Setup\Installed Components: [{9459C573-B17A-45AE-9F64-1857B5D58CEE}] -> C:\Program Files (x86)\Microsoft\Edge\Application\102.0.1245.33\Installer\setup.exe [2022-06-04] (Microsoft Corporation -> Microsoft Corporation) HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] -> C:\Windows\SysWOW64\unregmp2.exe [2019-12-06] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{6BF52A52-394A-11d3-B153-00C04F79FAA6}] -> C:\Windows\SysWOW64\unregmp2.exe [2019-12-06] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -> C:\Windows\SysWOW64\mscories.dll [2019-12-07] (Microsoft Corporation -> Microsoft Corporation) HKLM\Software\...\Authentication\Credential Providers: [{01A30791-40AE-4653-AB2E-FD210019AE88}] -> C:\Windows\system32\mgmtrefreshcredprov.dll [2021-01-14] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Authentication\Credential Providers: [{1b283861-754f-4022-ad47-a5eaaa618894}] -> C:\Windows\system32\SmartcardCredentialProvider.dll [2021-10-23] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Authentication\Credential Providers: [{1ee7337f-85ac-45e2-a23c-37c753209769}] -> C:\Windows\system32\SmartcardCredentialProvider.dll [2021-10-23] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Authentication\Credential Providers: [{2135f72a-90b5-4ed3-a7f1-8bb705ac276a}] -> C:\Windows\system32\credprovslegacy.dll [2021-01-14] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Authentication\Credential Providers: [{25CBB996-92ED-457e-B28C-4774084BD562}] -> C:\Windows\system32\credprovs.dll [2022-03-12] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Authentication\Credential Providers: [{27FBDB57-B613-4AF2-9D7E-4FA7A66C21AD}] -> C:\Windows\system32\TrustedSignalCredProv.dll [2021-01-14] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Authentication\Credential Providers: [{3dd6bec0-8193-4ffe-ae25-e08e39ea4063}] -> C:\Windows\system32\credprovs.dll [2022-03-12] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Authentication\Credential Providers: [{48B4E58D-2791-456C-9091-D524C6C706F2}] -> C:\Windows\System32\devicengccredprov.dll [2021-10-23] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Authentication\Credential Providers: [{600e7adb-da3e-41a4-9225-3c0399e88c0c}] -> C:\Windows\system32\cngcredui.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Authentication\Credential Providers: [{60b78e88-ead8-445c-9cfd-0b87f74ea6cd}] -> C:\Windows\system32\credprovs.dll [2022-03-12] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Authentication\Credential Providers: [{8AF662BF-65A0-4D0A-A540-A338A999D36F}] -> C:\Windows\System32\FaceCredentialProvider.dll [2021-10-23] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Authentication\Credential Providers: [{8FD7E19C-3BF7-489B-A72C-846AB3678C96}] -> C:\Windows\system32\SmartcardCredentialProvider.dll [2021-10-23] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Authentication\Credential Providers: [{94596c7e-3744-41ce-893e-bbf09122f76a}] -> C:\Windows\system32\SmartcardCredentialProvider.dll [2021-10-23] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Authentication\Credential Providers: [{BEC09223-B018-416D-A0AC-523971B639F5}] -> C:\Windows\System32\BioCredProv.dll [2022-03-12] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Authentication\Credential Providers: [{C5D7540A-CD51-453B-B22B-05305BA03F07}] -> C:\Windows\System32\cxcredprov.dll [2021-10-23] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] -> C:\Windows\System32\FaceCredentialProvider.dll [2021-10-23] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Authentication\Credential Providers: [{cb82ea12-9f71-446d-89e1-8d0924e1256e}] -> C:\Windows\system32\credprovslegacy.dll [2021-01-14] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Authentication\Credential Providers: [{D6886603-9D2F-4EB2-B667-1971041FA96B}] -> C:\Windows\System32\ngccredprov.dll [2022-03-12] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Authentication\Credential Providers: [{e74e57b0-6c6d-44d5-9cda-fb2df5ed7435}] -> C:\Windows\system32\certCredProvider.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Windows\system32\wlidcredprov.dll [2021-01-14] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Authentication\Credential Providers: [{F8A1793B-7873-4046-B2A7-1F318747F427}] -> C:\Windows\system32\fidocredprov.dll [2022-03-12] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Authentication\Credential Provider Filters: [{DDC0EED2-ADBE-40b6-A217-EDE16A79A0DE}] -> C:\Windows\system32\credprovs.dll [2022-03-12] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Authentication\PLAP Providers: [{5537E283-B1E7-4EF8-9C6E-7AB0AFE5056D}] -> C:\Windows\system32\rasplap.dll [2021-03-13] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Winlogon\GPExtensions: [{0ACDD40C-75AC-47ab-BAA0-BF6DE7E7FE63}] -> C:\Windows\system32\wlgpclnt.dll [2020-09-27] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Winlogon\GPExtensions: [{0E28E245-9368-4853-AD84-6DA3BA35BB75}] -> C:\Windows\System32\gpprefcl.dll [2020-09-27] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Winlogon\GPExtensions: [{169EBF44-942F-4C43-87CE-13C93996EBBE}] -> C:\Windows\system32\AppManagementConfiguration.dll [2021-01-14] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Winlogon\GPExtensions: [{16be69fa-4209-4250-88cb-716cf41954e0}] -> C:\Windows\system32\auditcse.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Winlogon\GPExtensions: [{17D89FEC-5C44-4972-B12D-241CAEF74509}] -> C:\Windows\System32\gpprefcl.dll [2020-09-27] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Winlogon\GPExtensions: [{1A6364EB-776B-4120-ADE1-B63A406A76B5}] -> C:\Windows\System32\gpprefcl.dll [2020-09-27] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Winlogon\GPExtensions: [{25537BA6-77A8-11D2-9B6C-0000F8080861}] -> C:\Windows\system32\fdeploy.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Winlogon\GPExtensions: [{2A8FDC61-2347-4C87-92F6-B05EB91A201A}] -> C:\Windows\System32\gpprefcl.dll [2020-09-27] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Winlogon\GPExtensions: [{2BFCC077-22D2-48DE-BDE1-2F618D9B476D}] -> C:\Windows\system32\AppManagementConfiguration.dll [2021-01-14] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Winlogon\GPExtensions: [{35378EAC-683F-11D2-A89A-00C04FBBCFA2}] -> HKLM\Software\...\Winlogon\GPExtensions: [{3610eda5-77ef-11d2-8dc5-00c04fa31a66}] -> C:\Windows\System32\dskquota.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Winlogon\GPExtensions: [{3A0DBA37-F8B2-4356-83DE-3E90BD5C261F}] -> C:\Windows\System32\gpprefcl.dll [2020-09-27] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Winlogon\GPExtensions: [{426031c0-0b47-4852-b0ca-ac3d37bfcb39}] -> C:\Windows\system32\gptext.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Winlogon\GPExtensions: [{42B5FAAE-6536-11d2-AE5A-0000F87571E3}] -> C:\Windows\System32\gpscript.dll [2020-12-22] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Winlogon\GPExtensions: [{4B7C3B0F-E993-4E06-A241-3FBE06943684}] -> C:\Windows\System32\gpprefcl.dll [2020-09-27] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Winlogon\GPExtensions: [{4bcd6cde-777b-48b6-9804-43568e23545d}] -> C:\Windows\System32\TsUsbRedirectionGroupPolicyExtension.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Winlogon\GPExtensions: [{4CFB60C1-FAA6-47f1-89AA-0B18730C9FD3}] -> C:\Windows\System32\iedkcs32.dll [2021-11-11] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Winlogon\GPExtensions: [{4D2F9B6F-1E52-4711-A382-6A8B1A003DE6}] -> C:\Windows\System32\tsworkspace.dll [2021-01-14] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Winlogon\GPExtensions: [{4d968b55-cac2-4ff5-983f-0a54603781a3}] -> C:\Windows\system32\WorkFoldersGPExt.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Winlogon\GPExtensions: [{5794DAFD-BE60-433f-88A2-1A31939AC01F}] -> C:\Windows\System32\gpprefcl.dll [2020-09-27] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Winlogon\GPExtensions: [{6232C319-91AC-4931-9385-E70C2B099F0E}] -> C:\Windows\System32\gpprefcl.dll [2020-09-27] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Winlogon\GPExtensions: [{6A4C88C6-C502-4f74-8F60-2CB23EDC24E2}] -> C:\Windows\System32\gpprefcl.dll [2020-09-27] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Winlogon\GPExtensions: [{7150F9BF-48AD-4da4-A49C-29EF4A8369BA}] -> C:\Windows\System32\gpprefcl.dll [2020-09-27] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Winlogon\GPExtensions: [{728EE579-943C-4519-9EF7-AB56765798ED}] -> C:\Windows\System32\gpprefcl.dll [2020-09-27] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Winlogon\GPExtensions: [{74EE6C03-5363-4554-B161-627540339CAB}] -> C:\Windows\System32\gpprefcl.dll [2020-09-27] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Winlogon\GPExtensions: [{7909AD9E-09EE-4247-BAB9-7029D5F0A278}] -> C:\Windows\system32\dmenrollengine.dll [2022-05-10] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Winlogon\GPExtensions: [{7933F41E-56F8-41d6-A31C-4148A711EE93}] -> C:\Windows\System32\srchadmin.dll [2021-01-14] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Winlogon\GPExtensions: [{7B849a69-220F-451E-B3FE-2CB811AF94AE}] -> C:\Windows\System32\iedkcs32.dll [2021-11-11] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Winlogon\GPExtensions: [{827D319E-6EAC-11D2-A4EA-00C04F79F83A}] -> C:\Windows\system32\scecli.dll [2022-05-10] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Winlogon\GPExtensions: [{8A28E2C5-8D06-49A4-A08C-632DAA493E17}] -> C:\Windows\system32\gpprnext.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Winlogon\GPExtensions: [{91FBB303-0CD5-4055-BF42-E512A681B325}] -> C:\Windows\System32\gpprefcl.dll [2020-09-27] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Winlogon\GPExtensions: [{9650FDBC-053A-4715-AD14-FC2DC65E8330}] -> C:\Windows\system32\hvsigpext.dll [2021-02-10] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Winlogon\GPExtensions: [{A3F3E39B-5D83-4940-B954-28315B82F0A8}] -> C:\Windows\System32\gpprefcl.dll [2020-09-27] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Winlogon\GPExtensions: [{AADCED64-746C-4633-A97C-D61349046527}] -> C:\Windows\System32\gpprefcl.dll [2020-09-27] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Winlogon\GPExtensions: [{B087BE9D-ED37-454f-AF9C-04291E351182}] -> C:\Windows\System32\gpprefcl.dll [2020-09-27] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Winlogon\GPExtensions: [{B587E2B1-4D59-4e7e-AED9-22B9DF11D053}] -> C:\Windows\system32\dot3gpclnt.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Winlogon\GPExtensions: [{BA649533-0AAC-4E04-B9BC-4DBAE0325B12}] -> C:\Windows\system32\pwlauncher.dll [2021-01-14] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Winlogon\GPExtensions: [{BC75B1ED-5833-4858-9BB8-CBF0B166DF9D}] -> C:\Windows\System32\gpprefcl.dll [2020-09-27] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Winlogon\GPExtensions: [{C34B2751-1CF4-44F5-9262-C3FC39666591}] -> C:\Windows\system32\pwlauncher.dll [2021-01-14] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Winlogon\GPExtensions: [{C418DD9D-0D14-4efb-8FBF-CFE535C8FAC7}] -> C:\Windows\System32\gpprefcl.dll [2020-09-27] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Winlogon\GPExtensions: [{C631DF4C-088F-4156-B058-4375F0853CD8}] -> C:\Windows\System32\cscobj.dll [2021-01-14] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Winlogon\GPExtensions: [{c6dc5466-785a-11d2-84d0-00c04fb169f7}] -> C:\Windows\system32\appmgmts.dll [2020-12-22] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Winlogon\GPExtensions: [{cdeafc3d-948d-49dd-ab12-e578ba4af7aa}] -> C:\Windows\system32\gptext.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Winlogon\GPExtensions: [{CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D}] -> C:\Windows\System32\iedkcs32.dll [2021-11-11] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Winlogon\GPExtensions: [{CFF649BD-601D-4361-AD3D-0FC365DB4DB7}] -> C:\Windows\system32\domgmt.dll [2022-03-12] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Winlogon\GPExtensions: [{e437bc1c-aa7d-11d2-a382-00c04f991e27}] -> C:\Windows\System32\polstore.dll [2022-05-10] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Winlogon\GPExtensions: [{E47248BA-94CC-49c4-BBB5-9EB7F05183D0}] -> C:\Windows\System32\gpprefcl.dll [2020-09-27] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Winlogon\GPExtensions: [{E4F48E54-F38D-4884-BFB9-D4D2E5729C18}] -> C:\Windows\System32\gpprefcl.dll [2020-09-27] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Winlogon\GPExtensions: [{E5094040-C46C-4115-B030-04FB2E545B00}] -> C:\Windows\System32\gpprefcl.dll [2020-09-27] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Winlogon\GPExtensions: [{E62688F0-25FD-4c90-BFF5-F508B9D2E31F}] -> C:\Windows\System32\gpprefcl.dll [2020-09-27] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Winlogon\GPExtensions: [{F312195E-3D9D-447A-A3F5-08DFFA24735E}] -> C:\Windows\system32\dggpext.dll [2020-12-22] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Winlogon\GPExtensions: [{f3ccc681-b74c-4060-9f26-cd84525dca2a}] -> C:\Windows\system32\auditcse.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Winlogon\GPExtensions: [{F9C77450-3A41-477E-9310-9ACD617BD9E3}] -> C:\Windows\System32\gpprefcl.dll [2020-09-27] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Winlogon\GPExtensions: [{FB2CA36D-0B40-4307-821B-A13B252DE56C}] -> C:\Windows\system32\gptext.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Winlogon\GPExtensions: [{fbf687e6-f063-4d9f-9f4f-fd9a26acdd5f}] -> C:\Windows\system32\gptext.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\...\Winlogon\GPExtensions: [{FC491EF1-C4AA-4CE1-B329-414B101DB823}] -> C:\Windows\system32\dggpext.dll [2020-12-22] (Microsoft Windows -> Microsoft Corporation) IFEO\SppExtComObj.exe: [Debugger] SppExtComObjPatcher.exe Lsa: [Authentication Packages] msv1_0 Lsa: [Notification Packages] scecli SecurityProviders: credssp.dll BootExecute: ddmmain AlternateShell: cmd.exe ==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============ (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) Task: {09E538F1-78F3-40E3-9C53-2ABCA4B42CBF} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {148CCE73-0DB4-4BC8-8B46-1B759E405516} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {1F33EFE5-88C3-4163-80DD-581D6BCD72E9} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {225FC98A-29B3-4F2E-B887-39A478ABCC51} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646344 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {3230E791-13CA-442D-B6E6-180A0849D732} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {52766DC2-9BFE-45C4-BB4E-073D4545C338} - System32\Tasks\CCleanerSkipUAC - Paddy => C:\Program Files\CCleaner\CCleaner.exe [30924528 2022-05-11] (Piriform Software Ltd -> Piriform Software Ltd) Task: {5C42740C-F0F9-4F64-B973-5C2559C49339} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [316632 2015-07-31] (Microsoft Corporation -> Microsoft Corporation) Task: {64EBF87F-5554-45CE-911D-DB55ED12425E} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {6733C1FC-8FA3-4733-876A-96602A4B164B} - System32\Tasks\Motorola Device Manager Initial Update => C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe [272176 2014-10-30] (Motorola Mobility Inc. -> ) Task: {6B47A110-9C9F-47D3-8D90-1B1A520C1D37} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {741450E4-76AC-42D4-81DD-BD9ECF4DC6A2} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-05-11] (Piriform Software Ltd -> Piriform) Task: {7B4BFBAB-035C-41C2-9DC5-2B3401ABA146} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-12-21] (Google LLC -> Google LLC) Task: {7D24FE96-CD0C-4254-821E-4140D0E21102} - System32\Tasks\Motorola Device Manager Update => C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe [272176 2014-10-30] (Motorola Mobility Inc. -> ) Task: {7D3A33B4-FE2E-4E7C-A48C-642C27384F6B} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342080 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {97DBBCA0-A6EA-40F5-A360-297E37527313} - System32\Tasks\Microsoft\Windows\WaaSMedic\MaintenanceWork => {72566E27-1ABB-4EB3-B4F0-EB431CB1CB32} Task: {B1260394-B748-4512-9A7E-937B9C36C144} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-12-21] (Google LLC -> Google LLC) Task: {D265CFCD-1C22-493B-A1A0-033B2A29BE70} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-01] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.) ==================== Internet (Alle) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.) Winsock: Catalog5 01 C:\Windows\SysWOW64\napinsp.dll [54784 2020-12-22] (Microsoft Windows -> Microsoft Corporation) Winsock: Catalog5 02 C:\Windows\SysWOW64\pnrpnsp.dll [70656 2020-12-22] (Microsoft Windows -> Microsoft Corporation) Winsock: Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [70656 2020-12-22] (Microsoft Windows -> Microsoft Corporation) Winsock: Catalog5 04 C:\Windows\SysWOW64\wshbth.dll [50688 2020-12-22] (Microsoft Windows -> Microsoft Corporation) Winsock: Catalog5 05 C:\Windows\SysWOW64\NLAapi.dll [71168 2020-12-22] (Microsoft Windows -> Microsoft Corporation) Winsock: Catalog5 06 C:\Windows\SysWOW64\mswsock.dll [324416 2020-12-22] (Microsoft Windows -> Microsoft Corporation) Winsock: Catalog5 07 C:\Windows\SysWOW64\winrnr.dll [34304 2020-12-22] (Microsoft Windows -> Microsoft Corporation) Winsock: Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [324416 2020-12-22] (Microsoft Windows -> Microsoft Corporation) Winsock: Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [324416 2020-12-22] (Microsoft Windows -> Microsoft Corporation) Winsock: Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [324416 2020-12-22] (Microsoft Windows -> Microsoft Corporation) Winsock: Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [324416 2020-12-22] (Microsoft Windows -> Microsoft Corporation) Winsock: Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [324416 2020-12-22] (Microsoft Windows -> Microsoft Corporation) Winsock: Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [324416 2020-12-22] (Microsoft Windows -> Microsoft Corporation) Winsock: Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [324416 2020-12-22] (Microsoft Windows -> Microsoft Corporation) Winsock: Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [324416 2020-12-22] (Microsoft Windows -> Microsoft Corporation) Winsock: Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [324416 2020-12-22] (Microsoft Windows -> Microsoft Corporation) Winsock: Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [324416 2020-12-22] (Microsoft Windows -> Microsoft Corporation) Winsock: Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [324416 2020-12-22] (Microsoft Windows -> Microsoft Corporation) Winsock: Catalog9 12 C:\Windows\SysWOW64\mswsock.dll [324416 2020-12-22] (Microsoft Windows -> Microsoft Corporation) Winsock: Catalog9 13 C:\Windows\SysWOW64\mswsock.dll [324416 2020-12-22] (Microsoft Windows -> Microsoft Corporation) Winsock: Catalog9 14 C:\Windows\SysWOW64\mswsock.dll [324416 2020-12-22] (Microsoft Windows -> Microsoft Corporation) Winsock: Catalog5-x64 01 C:\Windows\system32\napinsp.dll [70144 2020-12-22] (Microsoft Windows -> Microsoft Corporation) Winsock: Catalog5-x64 02 C:\Windows\system32\pnrpnsp.dll [89088 2020-12-22] (Microsoft Windows -> Microsoft Corporation) Winsock: Catalog5-x64 03 C:\Windows\system32\pnrpnsp.dll [89088 2020-12-22] (Microsoft Windows -> Microsoft Corporation) Winsock: Catalog5-x64 04 C:\Windows\system32\wshbth.dll [64000 2020-12-22] (Microsoft Windows -> Microsoft Corporation) Winsock: Catalog5-x64 05 C:\Windows\system32\NLAapi.dll [97280 2021-10-23] (Microsoft Windows -> Microsoft Corporation) Winsock: Catalog5-x64 06 C:\Windows\System32\mswsock.dll [418416 2020-12-22] (Microsoft Windows -> Microsoft Corporation) Winsock: Catalog5-x64 07 C:\Windows\System32\winrnr.dll [49152 2020-12-22] (Microsoft Windows -> Microsoft Corporation) Winsock: Catalog9-x64 01 C:\Windows\system32\mswsock.dll [418416 2020-12-22] (Microsoft Windows -> Microsoft Corporation) Winsock: Catalog9-x64 02 C:\Windows\system32\mswsock.dll [418416 2020-12-22] (Microsoft Windows -> Microsoft Corporation) Winsock: Catalog9-x64 03 C:\Windows\system32\mswsock.dll [418416 2020-12-22] (Microsoft Windows -> Microsoft Corporation) Winsock: Catalog9-x64 04 C:\Windows\system32\mswsock.dll [418416 2020-12-22] (Microsoft Windows -> Microsoft Corporation) Winsock: Catalog9-x64 05 C:\Windows\system32\mswsock.dll [418416 2020-12-22] (Microsoft Windows -> Microsoft Corporation) Winsock: Catalog9-x64 06 C:\Windows\system32\mswsock.dll [418416 2020-12-22] (Microsoft Windows -> Microsoft Corporation) Winsock: Catalog9-x64 07 C:\Windows\system32\mswsock.dll [418416 2020-12-22] (Microsoft Windows -> Microsoft Corporation) Winsock: Catalog9-x64 08 C:\Windows\system32\mswsock.dll [418416 2020-12-22] (Microsoft Windows -> Microsoft Corporation) Winsock: Catalog9-x64 09 C:\Windows\system32\mswsock.dll [418416 2020-12-22] (Microsoft Windows -> Microsoft Corporation) Winsock: Catalog9-x64 10 C:\Windows\system32\mswsock.dll [418416 2020-12-22] (Microsoft Windows -> Microsoft Corporation) Winsock: Catalog9-x64 11 C:\Windows\system32\mswsock.dll [418416 2020-12-22] (Microsoft Windows -> Microsoft Corporation) Winsock: Catalog9-x64 12 C:\Windows\system32\mswsock.dll [418416 2020-12-22] (Microsoft Windows -> Microsoft Corporation) Winsock: Catalog9-x64 13 C:\Windows\system32\mswsock.dll [418416 2020-12-22] (Microsoft Windows -> Microsoft Corporation) Winsock: Catalog9-x64 14 C:\Windows\system32\mswsock.dll [418416 2020-12-22] (Microsoft Windows -> Microsoft Corporation) Hosts: Es ist mehr als ein Eintrag in der Hosts Datei zu finden. Siehe Hosts-Bereich in Addition.txt Tcpip\..\Interfaces\{37eaf5e1-c826-484c-901c-b172cf3876c5}: [NameServer] 192.168.178.1 Tcpip\..\Interfaces\{6bf8d45b-c93c-44a9-a75b-19b96d85c580}: [DhcpNameServer] 192.168.44.1 Tcpip\..\Interfaces\{9b286d6f-4306-4534-ad77-fd055fb2afe3}: [DhcpNameServer] 192.168.178.1 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\Paddy\AppData\Local\Microsoft\Edge\User Data\Default [2022-06-02] StartMenuInternet: Microsoft Edge - "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" FireFox: ======== FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~3\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~4\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\Paddy\AppData\Local\Google\Chrome\User Data\Default [2022-06-07] CHR Notifications: Default -> hxxps://c.blandcaptcha.top; hxxps://freeadvworld.com; hxxps://odir.org; hxxps://www.lieferando.de CHR StartupUrls: Default -> "hxxps://www.google.de/" CHR DefaultSearchURL: Default -> {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchboxStats}{google:searchFieldtrialParameter}{google:iOSSearchLanguage}{google:prefetchSource}{google:searchClient}{google:sourceId}{google:contextualSearchVersion}ie={inputEncoding} CHR DefaultSearchKeyword: Default -> google.com CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:omniboxFocusType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:clientCacheTimeToLive}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter} CHR Extension: (Just Black) - C:\Users\Paddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aghfnjkcakhmadgdomlmlhhaocbkloab [2020-12-21] CHR Extension: (Adblock Plus - kostenloser Adblocker) - C:\Users\Paddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2022-05-31] CHR Extension: (PlayStation Store Plus) - C:\Users\Paddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\dopegccpneodjcmjigocogleccdmkkhl [2022-06-07] CHR Extension: (MyJDownloader Browser Erweiterung) - C:\Users\Paddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbcohnmimjicjdomonkcbcpbpnhggkip [2021-06-28] CHR Extension: (Startpage - Deutsch) - C:\Users\Paddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\fgmjlmbojbkmdpofahffgcpkhkngfpef [2021-12-05] CHR Extension: (Google Docs Offline) - C:\Users\Paddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-04-19] CHR Extension: (Beste Klassische Spiele) - C:\Users\Paddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\gjkigdnddgobcjbcicidhgfhdmkabjmd [2020-12-21] CHR Extension: (Emoji Keyboard- copy&past your emoji.) - C:\Users\Paddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\kgmeffmlnkfnjpgmdndccklfigfhajen [2021-08-03] CHR Extension: (IGRAAL : Cashback & Gutscheine) - C:\Users\Paddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\kmhkepipobnjllejbafajoemahjejdcm [2022-05-12] CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Paddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29] CHR Extension: (Grammatik- und Rechtschreibprüfung - LanguageTool) - C:\Users\Paddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\oldceeleldhonbafppcapldpdifcinji [2022-06-01] CHR Profile: C:\Users\Paddy\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-06-02] CHR Profile: C:\Users\Paddy\AppData\Local\Google\Chrome\User Data\System Profile [2022-06-02] CHR HKLM-x32\...\Chrome\Extension: [bfidboloedlamgdmenmlbipfnccokknp] StartMenuInternet: Google Chrome - "C:\Program Files\Google\Chrome\Application\chrome.exe" ==================== Dienste (Alle) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) S3 AarSvc; C:\Windows\System32\AarSvc.dll [461824 2022-04-15] (Microsoft Windows -> Microsoft Corporation) S3 AarSvc; C:\Windows\SysWOW64\AarSvc.dll [352256 2022-04-15] (Microsoft Windows -> Microsoft Corporation) S3 AarSvc_102c77; C:\Windows\system32\svchost.exe [59952 2022-03-12] (Microsoft Windows Publisher -> Microsoft Corporation) S3 AarSvc_102c77; C:\Windows\SysWOW64\svchost.exe [49600 2022-03-12] (Microsoft Windows Publisher -> Microsoft Corporation) S3 AJRouter; C:\Windows\System32\AJRouter.dll [26112 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 ALG; C:\Windows\System32\alg.exe [95744 2021-01-14] (Microsoft Windows -> Microsoft Corporation) S3 AppIDSvc; C:\Windows\System32\appidsvc.dll [85504 2021-10-23] (Microsoft Windows -> Microsoft Corporation) R3 Appinfo; C:\Windows\System32\appinfo.dll [223232 2022-04-15] (Microsoft Windows -> Microsoft Corporation) S3 AppMgmt; C:\Windows\System32\appmgmts.dll [207360 2020-12-22] (Microsoft Windows -> Microsoft Corporation) S3 AppMgmt; C:\Windows\SysWOW64\appmgmts.dll [160768 2020-12-22] (Microsoft Windows -> Microsoft Corporation) S3 AppReadiness; C:\Windows\system32\AppReadiness.dll [651776 2021-02-10] (Microsoft Windows -> Microsoft Corporation) S4 AppVClient; C:\Windows\system32\AppVClient.exe [777064 2022-03-12] (Microsoft Windows -> Microsoft Corporation) S3 AppXSvc; C:\Windows\system32\appxdeploymentserver.dll [3904512 2022-05-10] (Microsoft Windows -> Microsoft Corporation) S3 AssignedAccessManagerSvc; C:\Windows\System32\assignedaccessmanagersvc.dll [896000 2022-03-12] (Microsoft Windows -> Microsoft Corporation) R2 AudioEndpointBuilder; C:\Windows\System32\AudioEndpointBuilder.dll [744448 2022-02-09] (Microsoft Windows -> Microsoft Corporation) R2 Audiosrv; C:\Windows\System32\Audiosrv.dll [1838592 2022-03-12] (Microsoft Windows -> Microsoft Corporation) S3 autotimesvc; C:\Windows\System32\autotimesvc.dll [114176 2021-01-14] (Microsoft Windows -> Microsoft Corporation) S3 AxInstSV; C:\Windows\System32\AxInstSV.dll [116736 2021-03-13] (Microsoft Windows -> Microsoft Corporation) S3 BcastDVRUserService; C:\Windows\System32\BcastDVRUserService.dll [1387520 2022-05-10] (Microsoft Windows -> Microsoft Corporation) S3 BcastDVRUserService_102c77; C:\Windows\system32\svchost.exe [59952 2022-03-12] (Microsoft Windows Publisher -> Microsoft Corporation) S3 BcastDVRUserService_102c77; C:\Windows\SysWOW64\svchost.exe [49600 2022-03-12] (Microsoft Windows Publisher -> Microsoft Corporation) R2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2252504 2013-09-04] (Broadcom Corporation -> Broadcom Corporation.) S3 BDESVC; C:\Windows\System32\bdesvc.dll [558592 2022-04-15] (Microsoft Windows -> Microsoft Corporation) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8912272 2021-08-07] (BattlEye Innovations e.K. -> ) R2 BFE; C:\Windows\System32\bfe.dll [892928 2022-05-10] (Microsoft Windows -> Microsoft Corporation) R2 BITS; C:\Windows\System32\qmgr.dll [1481216 2021-10-23] (Microsoft Windows -> Microsoft Corporation) S3 BluetoothUserService; C:\Windows\System32\Microsoft.Bluetooth.UserService.dll [500736 2021-01-14] (Microsoft Windows -> Microsoft Corporation) S3 BluetoothUserService_102c77; C:\Windows\system32\svchost.exe [59952 2022-03-12] (Microsoft Windows Publisher -> Microsoft Corporation) S3 BluetoothUserService_102c77; C:\Windows\SysWOW64\svchost.exe [49600 2022-03-12] (Microsoft Windows Publisher -> Microsoft Corporation) R2 BrokerInfrastructure; C:\Windows\System32\psmsrv.dll [247296 2020-12-22] (Microsoft Windows -> Microsoft Corporation) R3 BTAGService; C:\Windows\System32\BTAGService.dll [1023488 2021-01-14] (Microsoft Windows -> Microsoft Corporation) R3 BTAGService; C:\Windows\SysWOW64\BTAGService.dll [733696 2021-01-14] (Microsoft Windows -> Microsoft Corporation) R3 BthAvctpSvc; C:\Windows\System32\BthAvctpSvc.dll [391168 2022-04-15] (Microsoft Windows -> Microsoft Corporation) R3 bthserv; C:\Windows\system32\bthserv.dll [213504 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 camsvc; C:\Windows\system32\CapabilityAccessManager.dll [391168 2021-01-14] (Microsoft Windows -> Microsoft Corporation) S3 CaptureService; C:\Windows\System32\CaptureService.dll [130560 2021-02-10] (Microsoft Windows -> Microsoft Corporation) S3 CaptureService_102c77; C:\Windows\system32\svchost.exe [59952 2022-03-12] (Microsoft Windows Publisher -> Microsoft Corporation) S3 CaptureService_102c77; C:\Windows\SysWOW64\svchost.exe [49600 2022-03-12] (Microsoft Windows Publisher -> Microsoft Corporation) S3 cbdhsvc; C:\Windows\System32\cbdhsvc.dll [1025024 2022-02-09] (Microsoft Windows -> Microsoft Corporation) R3 cbdhsvc_102c77; C:\Windows\system32\svchost.exe [59952 2022-03-12] (Microsoft Windows Publisher -> Microsoft Corporation) R3 cbdhsvc_102c77; C:\Windows\SysWOW64\svchost.exe [49600 2022-03-12] (Microsoft Windows Publisher -> Microsoft Corporation) R2 CDPSvc; C:\Windows\System32\CDPSvc.dll [611840 2022-02-09] (Microsoft Windows -> Microsoft Corporation) S2 CDPUserSvc; C:\Windows\System32\CDPUserSvc.dll [503296 2022-03-12] (Microsoft Windows -> Microsoft Corporation) R2 CDPUserSvc_102c77; C:\Windows\system32\svchost.exe [59952 2022-03-12] (Microsoft Windows Publisher -> Microsoft Corporation) R2 CDPUserSvc_102c77; C:\Windows\SysWOW64\svchost.exe [49600 2022-03-12] (Microsoft Windows Publisher -> Microsoft Corporation) R3 CertPropSvc; C:\Windows\System32\certprop.dll [196608 2021-03-13] (Microsoft Windows -> Microsoft Corporation) S3 ClipSVC; C:\Windows\System32\ClipSVC.dll [1110472 2022-03-12] (Microsoft Windows -> Microsoft Corporation) S3 cloudidsvc; C:\Windows\system32\cloudidsvc.dll [107520 2021-11-11] (Microsoft Windows -> Microsoft Corporation) S3 COMSysApp; C:\Windows\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235} [21312 2020-12-22] (Microsoft Windows -> Microsoft Corporation) S3 COMSysApp; C:\Windows\SysWOW64\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235} [19256 2020-12-22] (Microsoft Windows -> Microsoft Corporation) S3 ConsentUxUserSvc; C:\Windows\System32\ConsentUxClient.dll [170496 2021-01-14] (Microsoft Windows -> Microsoft Corporation) S3 ConsentUxUserSvc_102c77; C:\Windows\system32\svchost.exe [59952 2022-03-12] (Microsoft Windows Publisher -> Microsoft Corporation) S3 ConsentUxUserSvc_102c77; C:\Windows\SysWOW64\svchost.exe [49600 2022-03-12] (Microsoft Windows Publisher -> Microsoft Corporation) R2 CoreMessagingRegistrar; C:\Windows\system32\coremessaging.dll [986464 2021-01-14] (Microsoft Windows -> Microsoft Corporation) R2 CoreMessagingRegistrar; C:\Windows\SysWOW64\coremessaging.dll [630592 2021-03-13] (Microsoft Windows -> Microsoft Corporation) S3 CredentialEnrollmentManagerUserSvc; C:\Windows\system32\CredentialEnrollmentManager.exe [382696 2021-10-23] (Microsoft Windows -> Microsoft Corporation) S3 CredentialEnrollmentManagerUserSvc_102c77; C:\Windows\system32\CredentialEnrollmentManager.exe [382696 2021-10-23] (Microsoft Windows -> Microsoft Corporation) R2 CryptSvc; C:\Windows\system32\cryptsvc.dll [104960 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 CscService; C:\Windows\System32\cscsvc.dll [756736 2021-10-23] (Microsoft Windows -> Microsoft Corporation) R2 DcomLaunch; C:\Windows\system32\rpcss.dll [1328128 2022-05-10] (Microsoft Windows -> Microsoft Corporation) S3 defragsvc; C:\Windows\System32\defragsvc.dll [543232 2022-03-12] (Microsoft Windows -> Microsoft Corporation) S3 DeviceAssociationBrokerSvc; C:\Windows\System32\deviceaccess.dll [240688 2021-01-14] (Microsoft Windows -> Microsoft Corporation) S3 DeviceAssociationBrokerSvc; C:\Windows\SysWOW64\deviceaccess.dll [188536 2021-01-14] (Microsoft Windows -> Microsoft Corporation) S3 DeviceAssociationBrokerSvc_102c77; C:\Windows\system32\svchost.exe [59952 2022-03-12] (Microsoft Windows Publisher -> Microsoft Corporation) S3 DeviceAssociationBrokerSvc_102c77; C:\Windows\SysWOW64\svchost.exe [49600 2022-03-12] (Microsoft Windows Publisher -> Microsoft Corporation) R2 DeviceAssociationService; C:\Windows\system32\das.dll [489472 2021-01-14] (Microsoft Windows -> Microsoft Corporation) R3 DeviceInstall; C:\Windows\system32\umpnpmgr.dll [133120 2020-12-22] (Microsoft Windows -> Microsoft Corporation) S3 DevicePickerUserSvc; C:\Windows\System32\Windows.Devices.Picker.dll [482816 2021-10-23] (Microsoft Windows -> Microsoft Corporation) S3 DevicePickerUserSvc; C:\Windows\SysWOW64\Windows.Devices.Picker.dll [342016 2021-10-23] (Microsoft Windows -> Microsoft Corporation) S3 DevicePickerUserSvc_102c77; C:\Windows\system32\svchost.exe [59952 2022-03-12] (Microsoft Windows Publisher -> Microsoft Corporation) S3 DevicePickerUserSvc_102c77; C:\Windows\SysWOW64\svchost.exe [49600 2022-03-12] (Microsoft Windows Publisher -> Microsoft Corporation) S3 DevicesFlowUserSvc; C:\Windows\System32\DevicesFlowBroker.dll [598016 2021-10-23] (Microsoft Windows -> Microsoft Corporation) S3 DevicesFlowUserSvc_102c77; C:\Windows\system32\svchost.exe [59952 2022-03-12] (Microsoft Windows Publisher -> Microsoft Corporation) S3 DevicesFlowUserSvc_102c77; C:\Windows\SysWOW64\svchost.exe [49600 2022-03-12] (Microsoft Windows Publisher -> Microsoft Corporation) S3 DevQueryBroker; C:\Windows\system32\DevQueryBroker.dll [65024 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R2 Dhcp; C:\Windows\system32\dhcpcore.dll [400384 2020-12-22] (Microsoft Windows -> Microsoft Corporation) R2 Dhcp; C:\Windows\SysWOW64\dhcpcore.dll [329728 2020-12-22] (Microsoft Windows -> Microsoft Corporation) S3 diagnosticshub.standardcollector.service; C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [94208 2022-01-15] (Microsoft Windows -> Microsoft Corporation) S3 diagsvc; C:\Windows\system32\DiagSvc.dll [205824 2021-10-23] (Microsoft Windows -> Microsoft Corporation) R2 DiagTrack; C:\Windows\system32\diagtrack.dll [3819520 2022-04-15] (Microsoft Windows -> Microsoft Corporation) S4 DialogBlockingService; C:\Windows\System32\DialogBlockingService.dll [76288 2021-03-13] (Microsoft Windows -> Microsoft Corporation) R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [5030592 2020-12-25] (AVB Disc Soft, SIA -> Disc Soft Ltd) R2 DispBrokerDesktopSvc; C:\Windows\System32\DispBroker.Desktop.dll [379392 2022-03-12] (Microsoft Windows -> Microsoft Corporation) S3 DisplayEnhancementService; C:\Windows\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll [1192448 2021-10-23] (Microsoft Windows -> Microsoft Corporation) S3 DmEnrollmentSvc; C:\Windows\system32\Windows.Internal.Management.dll [1015808 2022-05-10] (Microsoft Windows -> Microsoft Corporation) S3 DmEnrollmentSvc; C:\Windows\SysWOW64\Windows.Internal.Management.dll [712192 2022-05-10] (Microsoft Windows -> Microsoft Corporation) S3 dmwappushservice; C:\Windows\system32\dmwappushsvc.dll [58880 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R2 Dnscache; C:\Windows\System32\dnsrslvr.dll [349696 2022-04-15] (Microsoft Windows -> Microsoft Corporation) R2 DoSvc; C:\Windows\system32\dosvc.dll [1503232 2022-03-12] (Microsoft Windows -> Microsoft Corporation) S3 dot3svc; C:\Windows\System32\dot3svc.dll [329728 2022-05-10] (Microsoft Windows -> Microsoft Corporation) R2 DPS; C:\Windows\system32\dps.dll [175616 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R3 DsmSvc; C:\Windows\System32\DeviceSetupManager.dll [288256 2021-03-13] (Microsoft Windows -> Microsoft Corporation) S3 DsSvc; C:\Windows\System32\DsSvc.dll [162816 2020-09-27] (Microsoft Windows -> Microsoft Corporation) R2 DusmSvc; C:\Windows\System32\dusmsvc.dll [341504 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 Eaphost; C:\Windows\System32\eapsvc.dll [112640 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [781440 2022-01-16] (EasyAntiCheat Oy -> EasyAntiCheat Ltd) S2 edgeupdate; C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [213392 2020-09-27] (Microsoft Corporation -> Microsoft Corporation) S3 edgeupdatem; C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [213392 2020-09-27] (Microsoft Corporation -> Microsoft Corporation) S3 EFS; C:\Windows\system32\efssvc.dll [85504 2022-03-12] (Microsoft Windows -> Microsoft Corporation) S3 embeddedmode; C:\Windows\System32\embeddedmodesvc.dll [159744 2021-01-14] (Microsoft Windows -> Microsoft Corporation) S3 EntAppSvc; C:\Windows\system32\EnterpriseAppMgmtSvc.dll [601600 2021-03-13] (Microsoft Windows -> Microsoft Corporation) S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [16029472 2021-11-05] (Epic Games Inc. -> Epic Games, Inc.) R2 EventLog; C:\Windows\System32\wevtsvc.dll [1880576 2022-05-10] (Microsoft Windows -> Microsoft Corporation) R2 EventSystem; C:\Windows\system32\es.dll [414720 2022-01-15] (Microsoft Windows -> Microsoft Corporation) R2 EventSystem; C:\Windows\SysWOW64\es.dll [335360 2022-01-15] (Microsoft Windows -> Microsoft Corporation) S3 Fax; C:\Windows\system32\fxssvc.exe [661504 2022-03-12] (Microsoft Windows -> Microsoft Corporation) S3 fdPHost; C:\Windows\system32\fdPHost.dll [21504 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R2 FDResPub; C:\Windows\system32\fdrespub.dll [35840 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 fhsvc; C:\Windows\system32\fhsvc.dll [124416 2021-10-23] (Microsoft Windows -> Microsoft Corporation) R2 FontCache; C:\Windows\system32\FntCache.dll [1423872 2022-04-15] (Microsoft Windows -> Microsoft Corporation) S3 FontCache3.0.0.0; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [46184 2019-11-08] (Microsoft Corporation -> Microsoft Corporation) S3 FrameServer; C:\Windows\system32\FrameServer.dll [988672 2022-02-09] (Microsoft Windows -> Microsoft Corporation) S3 FvSvc; C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe [410232 2022-03-21] (Nvidia Corporation -> NVIDIA) S2 GameInput Service; C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe [75240 2022-05-25] (Microsoft Corporation -> Microsoft Corporation) R2 GamingServices; C:\Program Files\WindowsApps\Microsoft.GamingServices_4.66.2001.0_x64__8wekyb3d8bbwe\GamingServices.exe [75232 2022-06-07] (Microsoft Corporation -> Microsoft Corporation) R2 GamingServicesNet; C:\Program Files\WindowsApps\Microsoft.GamingServices_4.66.2001.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe [75232 2022-06-07] (Microsoft Corporation -> Microsoft Corporation) S3 GoogleChromeElevationService; C:\Program Files\Google\Chrome\Application\102.0.5005.63\elevation_service.exe [1637264 2022-05-18] (Google LLC -> Google LLC) S2 gpsvc; C:\Windows\System32\gpsvc.dll [1335808 2022-05-10] (Microsoft Windows -> Microsoft Corporation) S3 GraphicsPerfSvc; C:\Windows\System32\GraphicsPerfSvc.dll [106496 2021-01-14] (Microsoft Windows -> Microsoft Corporation) S2 gupdate; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-12-21] (Google LLC -> Google LLC) S3 gupdatem; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-12-21] (Google LLC -> Google LLC) R3 hidserv; C:\Windows\system32\hidserv.dll [36352 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R3 hidserv; C:\Windows\SysWOW64\hidserv.dll [29696 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 HvHost; C:\Windows\System32\hvhostsvc.dll [66360 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 icssvc; C:\Windows\System32\tetheringservice.dll [238080 2021-01-14] (Microsoft Windows -> Microsoft Corporation) R2 IKEEXT; C:\Windows\System32\ikeext.dll [1053696 2022-05-10] (Microsoft Windows -> Microsoft Corporation) R3 InstallService; C:\Windows\system32\InstallService.dll [2430976 2022-05-10] (Microsoft Windows -> Microsoft Corporation) R3 InstallService; C:\Windows\SysWOW64\InstallService.dll [1839616 2022-05-10] (Microsoft Windows -> Microsoft Corporation) R2 iphlpsvc; C:\Windows\System32\iphlpsvc.dll [841216 2022-05-10] (Microsoft Windows -> Microsoft Corporation) S3 IpxlatCfgSvc; C:\Windows\System32\IpxlatCfg.dll [66048 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R3 KeyIso; C:\Windows\system32\keyiso.dll [94208 2020-09-27] (Microsoft Windows -> Microsoft Corporation) R3 KeyIso; C:\Windows\SysWOW64\keyiso.dll [66560 2020-09-27] (Microsoft Windows -> Microsoft Corporation) S3 KtmRm; C:\Windows\system32\msdtckrm.dll [375296 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R2 LanmanServer; C:\Windows\system32\srvsvc.dll [302080 2022-05-10] (Microsoft Windows -> Microsoft Corporation) R2 LanmanWorkstation; C:\Windows\System32\wkssvc.dll [302080 2022-01-15] (Microsoft Windows -> Microsoft Corporation) R3 lfsvc; C:\Windows\System32\lfsvc.dll [48640 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R3 LicenseManager; C:\Windows\system32\LicenseManagerSvc.dll [51200 2021-01-14] (Microsoft Windows -> Microsoft Corporation) S3 lltdsvc; C:\Windows\System32\lltdsvc.dll [284672 2021-01-14] (Microsoft Windows -> Microsoft Corporation) S3 lmhosts; C:\Windows\System32\lmhsvc.dll [26112 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R2 LSM; C:\Windows\System32\lsm.dll [847360 2022-05-10] (Microsoft Windows -> Microsoft Corporation) S3 LxpSvc; C:\Windows\System32\LanguageOverlayServer.dll [302080 2021-01-14] (Microsoft Windows -> Microsoft Corporation) S2 MapsBroker; C:\Windows\System32\moshost.dll [94720 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8524512 2022-06-07] (Malwarebytes Inc. -> Malwarebytes) S3 MessagingService; C:\Windows\System32\MessagingService.dll [91648 2021-01-14] (Microsoft Windows -> Microsoft Corporation) S3 MessagingService_102c77; C:\Windows\system32\svchost.exe [59952 2022-03-12] (Microsoft Windows Publisher -> Microsoft Corporation) S3 MessagingService_102c77; C:\Windows\SysWOW64\svchost.exe [49600 2022-03-12] (Microsoft Windows Publisher -> Microsoft Corporation) S3 MicrosoftEdgeElevationService; C:\Program Files (x86)\Microsoft\Edge\Application\102.0.1245.33\elevation_service.exe [1656760 2022-06-03] (Microsoft Corporation -> Microsoft Corporation) S3 MixedRealityOpenXRSvc; C:\Windows\System32\MixedRealityRuntime.dll [134768 2021-01-14] (Microsoft Windows -> Microsoft Corporation) S3 MixedRealityOpenXRSvc; C:\Windows\SysWOW64\MixedRealityRuntime.dll [104824 2021-01-14] (Microsoft Windows -> Microsoft Corporation) R2 Motorola Device Manager; C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe [137528 2014-04-08] (Motorola Mobility Inc. -> Motorola Mobility LLC) R2 mpssvc; C:\Windows\system32\mpssvc.dll [1173504 2022-05-10] (Microsoft Windows -> Microsoft Corporation) S3 MSDTC; C:\Windows\System32\msdtc.exe [148480 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 MSiSCSI; C:\Windows\system32\iscsiexe.dll [160256 2022-04-15] (Microsoft Windows -> Microsoft Corporation) S3 msiserver; C:\Windows\system32\msiexec.exe /V [69632 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 msiserver; C:\Windows\SysWOW64\msiexec.exe /V [59904 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S4 MsKeyboardFilter; C:\Windows\System32\KeyboardFilterSvc.dll [161096 2021-10-23] (Microsoft Windows -> Microsoft Corporation) S3 NaturalAuthentication; C:\Windows\System32\NaturalAuth.dll [454656 2021-01-14] (Microsoft Windows -> Microsoft Corporation) S3 NcaSvc; C:\Windows\System32\ncasvc.dll [171520 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R3 NcbService; C:\Windows\System32\ncbservice.dll [382464 2021-10-23] (Microsoft Windows -> Microsoft Corporation) S3 NcdAutoSetup; C:\Windows\System32\NcdAutoSetup.dll [92672 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 Netlogon; C:\Windows\system32\netlogon.dll [875520 2022-05-10] (Microsoft Windows -> Microsoft Corporation) S3 Netlogon; C:\Windows\SysWOW64\netlogon.dll [679424 2022-05-10] (Microsoft Windows -> Microsoft Corporation) S3 Netman; C:\Windows\System32\netman.dll [288768 2021-01-14] (Microsoft Windows -> Microsoft Corporation) R3 netprofm; C:\Windows\System32\netprofmsvc.dll [878080 2022-03-12] (Microsoft Windows -> Microsoft Corporation) S3 NetSetupSvc; C:\Windows\System32\NetSetupSvc.dll [335360 2022-03-12] (Microsoft Windows -> Microsoft Corporation) S4 NetTcpPortSharing; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [139256 2019-12-07] (Microsoft Corporation -> Microsoft Corporation) R3 NgcCtnrSvc; C:\Windows\System32\NgcCtnrSvc.dll [771072 2022-03-12] (Microsoft Windows -> Microsoft Corporation) R3 NgcSvc; C:\Windows\system32\ngcsvc.dll [927744 2022-03-12] (Microsoft Windows -> Microsoft Corporation) R2 NlaSvc; C:\Windows\System32\nlasvc.dll [388608 2021-10-23] (Microsoft Windows -> Microsoft Corporation) R2 nsi; C:\Windows\system32\nsisvc.dll [34304 2020-12-22] (Microsoft Windows -> Microsoft Corporation) R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-01] (Nvidia Corporation -> NVIDIA Corporation) S2 OneSyncSvc; C:\Windows\System32\APHostService.dll [351744 2021-01-14] (Microsoft Windows -> Microsoft Corporation) R2 OneSyncSvc_102c77; C:\Windows\system32\svchost.exe [59952 2022-03-12] (Microsoft Windows Publisher -> Microsoft Corporation) R2 OneSyncSvc_102c77; C:\Windows\SysWOW64\svchost.exe [49600 2022-03-12] (Microsoft Windows Publisher -> Microsoft Corporation) S3 ose64; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [242864 2015-07-31] (Microsoft Corporation -> Microsoft Corporation) S3 p2pimsvc; C:\Windows\system32\pnrpsvc.dll [352768 2020-09-27] (Microsoft Windows -> Microsoft Corporation) S3 p2psvc; C:\Windows\system32\p2psvc.dll [439808 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R3 PcaSvc; C:\Windows\System32\pcasvc.dll [876344 2021-10-23] (Microsoft Windows -> Microsoft Corporation) S3 PeerDistSvc; C:\Windows\system32\peerdistsvc.dll [2007552 2022-03-12] (Microsoft Windows -> Microsoft Corporation) S3 perceptionsimulation; C:\Windows\system32\PerceptionSimulation\PerceptionSimulationService.exe [106496 2021-01-14] (Microsoft Windows -> Microsoft Corporation) S3 PerfHost; C:\Windows\SysWow64\perfhost.exe [21504 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 PhoneSvc; C:\Windows\System32\PhoneService.dll [964096 2022-05-10] (Microsoft Windows -> Microsoft Corporation) S3 PimIndexMaintenanceSvc; C:\Windows\System32\PimIndexMaintenance.dll [196096 2021-01-14] (Microsoft Windows -> Microsoft Corporation) R3 PimIndexMaintenanceSvc_102c77; C:\Windows\system32\svchost.exe [59952 2022-03-12] (Microsoft Windows Publisher -> Microsoft Corporation) R3 PimIndexMaintenanceSvc_102c77; C:\Windows\SysWOW64\svchost.exe [49600 2022-03-12] (Microsoft Windows Publisher -> Microsoft Corporation) S3 pla; C:\Windows\system32\pla.dll [1493504 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 pla; C:\Windows\SysWOW64\pla.dll [1532928 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R3 PlugPlay; C:\Windows\system32\umpnpmgr.dll [133120 2020-12-22] (Microsoft Windows -> Microsoft Corporation) S3 PNRPAutoReg; C:\Windows\system32\pnrpauto.dll [28160 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 PNRPsvc; C:\Windows\system32\pnrpsvc.dll [352768 2020-09-27] (Microsoft Windows -> Microsoft Corporation) S3 PolicyAgent; C:\Windows\System32\ipsecsvc.dll [463360 2022-05-10] (Microsoft Windows -> Microsoft Corporation) R2 Power; C:\Windows\system32\umpo.dll [178176 2021-10-23] (Microsoft Windows -> Microsoft Corporation) S3 PrintNotify; C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll [3596288 2022-05-10] (Microsoft Windows -> Microsoft Corporation) S3 PrintWorkflowUserSvc; C:\Windows\System32\PrintWorkflowService.dll [182272 2021-02-10] (Microsoft Windows -> Microsoft Corporation) S3 PrintWorkflowUserSvc; C:\Windows\SysWOW64\PrintWorkflowService.dll [138752 2021-02-10] (Microsoft Windows -> Microsoft Corporation) S3 PrintWorkflowUserSvc_102c77; C:\Windows\system32\svchost.exe [59952 2022-03-12] (Microsoft Windows Publisher -> Microsoft Corporation) S3 PrintWorkflowUserSvc_102c77; C:\Windows\SysWOW64\svchost.exe [49600 2022-03-12] (Microsoft Windows Publisher -> Microsoft Corporation) R2 ProfSvc; C:\Windows\system32\profsvc.dll [488960 2022-03-12] (Microsoft Windows -> Microsoft Corporation) R2 PST Service; C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe [65657 2011-09-02] (Motorola) [Datei ist nicht signiert] S3 PushToInstall; C:\Windows\system32\PushToInstall.dll [340480 2022-03-12] (Microsoft Windows -> Microsoft Corporation) S3 QWAVE; C:\Windows\system32\qwave.dll [287232 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 QWAVE; C:\Windows\SysWOW64\qwave.dll [228864 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 RasAuto; C:\Windows\System32\rasauto.dll [111616 2020-12-22] (Microsoft Windows -> Microsoft Corporation) R2 RasMan; C:\Windows\System32\rasmans.dll [1026560 2022-05-10] (Microsoft Windows -> Microsoft Corporation) S4 RemoteAccess; C:\Windows\System32\mprdim.dll [551936 2022-03-12] (Microsoft Windows -> Microsoft Corporation) S4 RemoteAccess; C:\Windows\SysWOW64\mprdim.dll [425472 2022-03-12] (Microsoft Windows -> Microsoft Corporation) S4 RemoteRegistry; C:\Windows\system32\regsvc.dll [166912 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 RetailDemo; C:\Windows\system32\RDXService.dll [734720 2021-01-14] (Microsoft Windows -> Microsoft Corporation) R3 RmSvc; C:\Windows\System32\RMapi.dll [152576 2021-01-14] (Microsoft Windows -> Microsoft Corporation) S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [2037040 2021-11-07] (Rockstar Games, Inc. -> Rockstar Games) R2 RpcEptMapper; C:\Windows\System32\RpcEpMap.dll [84480 2020-12-22] (Microsoft Windows -> Microsoft Corporation) S3 RpcLocator; C:\Windows\system32\locator.exe [11264 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R2 RpcSs; C:\Windows\system32\rpcss.dll [1328128 2022-05-10] (Microsoft Windows -> Microsoft Corporation) R2 SamSs; C:\Windows\system32\lsass.exe [59456 2022-03-12] (Microsoft Windows Publisher -> Microsoft Corporation) S3 SCardSvr; C:\Windows\System32\SCardSvr.dll [265216 2021-03-13] (Microsoft Windows -> Microsoft Corporation) S3 ScDeviceEnum; C:\Windows\System32\ScDeviceEnum.dll [205312 2021-03-13] (Microsoft Windows -> Microsoft Corporation) R2 Schedule; C:\Windows\system32\schedsvc.dll [814592 2022-02-09] (Microsoft Windows -> Microsoft Corporation) S3 SCPolicySvc; C:\Windows\System32\certprop.dll [196608 2021-03-13] (Microsoft Windows -> Microsoft Corporation) S3 SDRSVC; C:\Windows\System32\SDRSVC.dll [154112 2021-01-14] (Microsoft Windows -> Microsoft Corporation) S3 seclogon; C:\Windows\system32\seclogon.dll [32768 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R3 SecurityHealthService; C:\Windows\system32\SecurityHealthService.exe [988104 2022-03-12] (Microsoft Windows Publisher -> Microsoft Corporation) R3 SEMgrSvc; C:\Windows\system32\SEMgrSvc.dll [1223680 2021-01-14] (Microsoft Windows -> Microsoft Corporation) R2 SENS; C:\Windows\System32\sens.dll [77824 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6254856 2022-05-10] (Microsoft Windows Publisher -> Microsoft Corporation) S3 SensorDataService; C:\Windows\System32\SensorDataService.exe [1265152 2021-01-14] (Microsoft Windows -> Microsoft Corporation) S3 SensorService; C:\Windows\system32\SensorService.dll [466432 2020-09-27] (Microsoft Windows -> Microsoft Corporation) S3 SensrSvc; C:\Windows\system32\sensrsvc.dll [181760 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R3 SessionEnv; C:\Windows\system32\sessenv.dll [515072 2021-10-23] (Microsoft Windows -> Microsoft Corporation) R3 SessionEnv; C:\Windows\SysWOW64\sessenv.dll [425472 2021-10-23] (Microsoft Windows -> Microsoft Corporation) R2 SgrmBroker; C:\Windows\system32\SgrmBroker.exe [329504 2020-12-22] (Microsoft Windows Publisher -> Microsoft Corporation) S3 SharedAccess; C:\Windows\System32\ipnathlp.dll [619008 2021-01-14] (Microsoft Windows -> Microsoft Corporation) S3 SharedRealitySvc; C:\Windows\System32\SharedRealitySvc.dll [307200 2021-01-14] (Microsoft Windows -> Microsoft Corporation) R2 ShellHWDetection; C:\Windows\System32\shsvcs.dll [259584 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R2 ShellHWDetection; C:\Windows\SysWOW64\shsvcs.dll [193536 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S4 shpamsvc; C:\Windows\system32\Windows.SharedPC.AccountManager.dll [223232 2022-01-15] (Microsoft Windows -> Microsoft Corporation) S3 smphost; C:\Windows\System32\smphost.dll [36176 2021-10-23] (Microsoft Windows -> Microsoft Corporation) S3 smphost; C:\Windows\SysWOW64\smphost.dll [33104 2021-10-23] (Microsoft Windows -> Microsoft Corporation) S3 SmsRouter; C:\Windows\system32\SmsRouterSvc.dll [643072 2022-03-12] (Microsoft Windows -> Microsoft Corporation) S3 SNMPTRAP; C:\Windows\System32\snmptrap.exe [16896 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 spectrum; C:\Windows\system32\spectrum.exe [877568 2021-10-23] (Microsoft Windows -> Microsoft Corporation) R2 Spooler; C:\Windows\System32\spoolsv.exe [826880 2022-04-15] (Microsoft Windows -> Microsoft Corporation) R2 sppsvc; C:\Windows\system32\sppsvc.exe [4630368 2022-05-10] (Microsoft Windows -> Microsoft Corporation) R3 SSDPSRV; C:\Windows\System32\ssdpsrv.dll [276480 2022-03-12] (Microsoft Windows -> Microsoft Corporation) S4 ssh-agent; C:\Windows\System32\OpenSSH\ssh-agent.exe [382976 2021-10-23] (Microsoft Windows -> ) R3 SstpSvc; C:\Windows\system32\sstpsvc.dll [211968 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 ss_conn_launcher_service; C:\Windows\System32\Samsung\EasySetup\ss_conn_launcher.exe [182392 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2020-11-26] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) R2 ss_conn_service2; C:\Program Files (x86)\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [919992 2020-11-26] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) R3 StateRepository; C:\Windows\system32\windows.staterepository.dll [5858656 2022-01-15] (Microsoft Windows -> Microsoft Corporation) R3 StateRepository; C:\Windows\SysWOW64\windows.staterepository.dll [5420640 2022-01-15] (Microsoft Windows -> Microsoft Corporation) S3 Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2814424 2022-05-28] (Valve Corp. -> Valve Corporation) R2 stisvc; C:\Windows\System32\wiaservc.dll [687616 2020-09-27] (Microsoft Windows -> Microsoft Corporation) R2 StorSvc; C:\Windows\system32\storsvc.dll [1072128 2022-04-15] (Microsoft Windows -> Microsoft Corporation) S3 svsvc; C:\Windows\system32\svsvc.dll [14336 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R3 swprv; C:\Windows\System32\swprv.dll [506368 2022-03-12] (Microsoft Windows -> Microsoft Corporation) R2 SysMain; C:\Windows\system32\sysmain.dll [1005568 2021-10-23] (Microsoft Windows -> Microsoft Corporation) R2 SystemEventsBroker; C:\Windows\System32\SystemEventsBrokerServer.dll [251904 2021-10-23] (Microsoft Windows -> Microsoft Corporation) R3 TabletInputService; C:\Windows\System32\TabSvc.dll [235008 2021-10-23] (Microsoft Windows -> Microsoft Corporation) R3 TapiSrv; C:\Windows\System32\tapisrv.dll [316928 2020-09-27] (Microsoft Windows -> Microsoft Corporation) R3 TapiSrv; C:\Windows\SysWOW64\tapisrv.dll [251904 2020-09-27] (Microsoft Windows -> Microsoft Corporation) R3 TermService; C:\Windows\System32\termsrv.dll [1134080 2022-05-10] (Microsoft Windows -> Microsoft Corporation) R2 Themes; C:\Windows\system32\themeservice.dll [70656 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 TieringEngineService; C:\Windows\system32\TieringEngineService.exe [326144 2021-01-14] (Microsoft Windows -> Microsoft Corporation) R3 TimeBrokerSvc; C:\Windows\System32\TimeBrokerServer.dll [179712 2020-12-22] (Microsoft Windows -> Microsoft Corporation) R3 TokenBroker; C:\Windows\System32\TokenBroker.dll [1522176 2022-03-12] (Microsoft Windows -> Microsoft Corporation) R3 TokenBroker; C:\Windows\SysWOW64\TokenBroker.dll [1235456 2022-03-12] (Microsoft Windows -> Microsoft Corporation) R2 TrkWks; C:\Windows\System32\trkwks.dll [115200 2022-01-15] (Microsoft Windows -> Microsoft Corporation) S3 TroubleshootingSvc; C:\Windows\system32\MitigationClient.dll [487936 2021-10-23] (Microsoft Windows -> Microsoft Corporation) S3 TrustedInstaller; C:\Windows\servicing\TrustedInstaller.exe [192336 2022-03-12] (Microsoft Windows -> Microsoft Corporation) S3 tzautoupdate; C:\Windows\system32\tzautoupdate.dll [97792 2021-01-14] (Microsoft Windows -> Microsoft Corporation) S3 tzautoupdate; C:\Windows\SysWOW64\tzautoupdate.dll [73728 2021-01-14] (Microsoft Windows -> Microsoft Corporation) S3 UdkUserSvc; C:\Windows\System32\windowsudk.shellcommon.dll [2240000 2022-02-09] (Microsoft Windows -> Microsoft Corporation) S3 UdkUserSvc_102c77; C:\Windows\system32\svchost.exe [59952 2022-03-12] (Microsoft Windows Publisher -> Microsoft Corporation) S3 UdkUserSvc_102c77; C:\Windows\SysWOW64\svchost.exe [49600 2022-03-12] (Microsoft Windows Publisher -> Microsoft Corporation) S4 UevAgentService; C:\Windows\system32\AgentService.exe [1220096 2022-05-10] (Microsoft Windows -> Microsoft Corporation) S4 uhssvc; C:\Program Files\Microsoft Update Health Tools\uhssvc.exe [346448 2022-03-23] (Microsoft Windows -> Microsoft Corporation) R3 UmRdpService; C:\Windows\System32\umrdp.dll [396800 2021-01-14] (Microsoft Windows -> Microsoft Corporation) S3 UnistoreSvc; C:\Windows\System32\unistore.dll [1191936 2021-01-14] (Microsoft Windows -> Microsoft Corporation) S3 UnistoreSvc; C:\Windows\SysWOW64\unistore.dll [962048 2021-01-14] (Microsoft Windows -> Microsoft Corporation) R3 UnistoreSvc_102c77; C:\Windows\System32\svchost.exe [59952 2022-03-12] (Microsoft Windows Publisher -> Microsoft Corporation) R3 UnistoreSvc_102c77; C:\Windows\SysWOW64\svchost.exe [49600 2022-03-12] (Microsoft Windows Publisher -> Microsoft Corporation) R3 upnphost; C:\Windows\System32\upnphost.dll [471552 2021-03-13] (Microsoft Windows -> Microsoft Corporation) R3 upnphost; C:\Windows\SysWOW64\upnphost.dll [327680 2021-03-13] (Microsoft Windows -> Microsoft Corporation) S3 UserDataSvc; C:\Windows\System32\userdataservice.dll [1554944 2021-01-14] (Microsoft Windows -> Microsoft Corporation) R3 UserDataSvc_102c77; C:\Windows\system32\svchost.exe [59952 2022-03-12] (Microsoft Windows Publisher -> Microsoft Corporation) R3 UserDataSvc_102c77; C:\Windows\SysWOW64\svchost.exe [49600 2022-03-12] (Microsoft Windows Publisher -> Microsoft Corporation) R2 UserManager; C:\Windows\System32\usermgr.dll [1484288 2022-03-12] (Microsoft Windows -> Microsoft Corporation) R2 UsoSvc; C:\Windows\system32\usosvc.dll [569856 2022-05-10] (Microsoft Windows -> Microsoft Corporation) S3 VacSvc; C:\Windows\System32\vac.dll [382720 2021-02-10] (Microsoft Windows -> Microsoft Corporation) R3 VaultSvc; C:\Windows\System32\vaultsvc.dll [370688 2022-04-15] (Microsoft Windows -> Microsoft Corporation) S3 vds; C:\Windows\System32\vds.exe [723968 2022-05-10] (Microsoft Windows -> Microsoft Corporation) S3 vmicguestinterface; C:\Windows\System32\icsvc.dll [293176 2021-01-14] (Microsoft Windows -> Microsoft Corporation) S3 vmicheartbeat; C:\Windows\System32\icsvc.dll [293176 2021-01-14] (Microsoft Windows -> Microsoft Corporation) S3 vmickvpexchange; C:\Windows\System32\icsvc.dll [293176 2021-01-14] (Microsoft Windows -> Microsoft Corporation) S3 vmicrdv; C:\Windows\System32\icsvcext.dll [304640 2021-10-23] (Microsoft Windows -> Microsoft Corporation) S3 vmicshutdown; C:\Windows\System32\icsvc.dll [293176 2021-01-14] (Microsoft Windows -> Microsoft Corporation) S3 vmictimesync; C:\Windows\System32\icsvc.dll [293176 2021-01-14] (Microsoft Windows -> Microsoft Corporation) S3 vmicvmsession; C:\Windows\System32\icsvc.dll [293176 2021-01-14] (Microsoft Windows -> Microsoft Corporation) S3 vmicvss; C:\Windows\System32\icsvcext.dll [304640 2021-10-23] (Microsoft Windows -> Microsoft Corporation) R3 VSS; C:\Windows\system32\vssvc.exe [1500672 2022-03-12] (Microsoft Windows -> Microsoft Corporation) S3 W32Time; C:\Windows\system32\w32time.dll [531456 2022-03-12] (Microsoft Windows -> Microsoft Corporation) S3 WaaSMedicSvc; C:\Windows\System32\WaaSMedicSvc.dll [433152 2022-05-10] (Microsoft Windows -> Microsoft Corporation) S3 WalletService; C:\Windows\system32\WalletService.dll [442368 2021-10-23] (Microsoft Windows -> Microsoft Corporation) S3 WarpJITSvc; C:\Windows\System32\Windows.WARP.JITService.dll [65536 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 wbengine; C:\Windows\system32\wbengine.exe [1585152 2021-01-14] (Microsoft Windows -> Microsoft Corporation) S3 WbioSrvc; C:\Windows\System32\wbiosrvc.dll [880128 2022-03-12] (Microsoft Windows -> Microsoft Corporation) R2 Wcmsvc; C:\Windows\System32\wcmsvc.dll [992768 2022-03-12] (Microsoft Windows -> Microsoft Corporation) R3 wcncsvc; C:\Windows\System32\wcncsvc.dll [483840 2021-01-14] (Microsoft Windows -> Microsoft Corporation) R3 WdiServiceHost; C:\Windows\system32\wdi.dll [105472 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R3 WdiServiceHost; C:\Windows\SysWOW64\wdi.dll [88064 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R3 WdiSystemHost; C:\Windows\system32\wdi.dll [105472 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R3 WdiSystemHost; C:\Windows\SysWOW64\wdi.dll [88064 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\NisSrv.exe [3116848 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WebClient; C:\Windows\System32\webclnt.dll [236544 2022-03-12] (Microsoft Windows -> Microsoft Corporation) S3 WebClient; C:\Windows\SysWOW64\webclnt.dll [194048 2022-03-12] (Microsoft Windows -> Microsoft Corporation) S3 Wecsvc; C:\Windows\system32\wecsvc.dll [205312 2020-12-22] (Microsoft Windows -> Microsoft Corporation) S3 WEPHOSTSVC; C:\Windows\system32\wephostsvc.dll [28672 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 wercplsupport; C:\Windows\System32\wercplsupport.dll [128000 2022-05-10] (Microsoft Windows -> Microsoft Corporation) S3 WerSvc; C:\Windows\System32\WerSvc.dll [246272 2022-05-10] (Microsoft Windows -> Microsoft Corporation) S3 WFDSConMgrSvc; C:\Windows\System32\wfdsconmgrsvc.dll [677888 2021-10-23] (Microsoft Windows -> Microsoft Corporation) S3 WiaRpc; C:\Windows\System32\wiarpc.dll [87040 2020-09-27] (Microsoft Windows -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe [133544 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation) R3 WinHttpAutoProxySvc; C:\Windows\system32\winhttp.dll [1087736 2022-05-10] (Microsoft Windows -> Microsoft Corporation) R3 WinHttpAutoProxySvc; C:\Windows\SysWOW64\winhttp.dll [822224 2022-05-10] (Microsoft Windows -> Microsoft Corporation) R2 Winmgmt; C:\Windows\system32\wbem\WMIsvc.dll [243712 2021-03-13] (Microsoft Windows -> Microsoft Corporation) S3 WinRM; C:\Windows\system32\WsmSvc.dll [2811392 2022-03-12] (Microsoft Windows -> Microsoft Corporation) S3 WinRM; C:\Windows\SysWOW64\WsmSvc.dll [2337280 2022-03-12] (Microsoft Windows -> Microsoft Corporation) S3 wisvc; C:\Windows\system32\flightsettings.dll [941032 2022-04-15] (Microsoft Windows -> Microsoft Corporation) S3 wisvc; C:\Windows\SysWOW64\flightsettings.dll [753584 2022-04-15] (Microsoft Windows -> Microsoft Corporation) R2 WlanSvc; C:\Windows\System32\wlansvc.dll [2652672 2022-05-10] (Microsoft Windows -> Microsoft Corporation) R3 wlidsvc; C:\Windows\system32\wlidsvc.dll [2244096 2022-05-10] (Microsoft Windows -> Microsoft Corporation) S3 wlpasvc; C:\Windows\System32\lpasvc.dll [1253888 2021-01-14] (Microsoft Windows -> Microsoft Corporation) S3 WManSvc; C:\Windows\system32\Windows.Management.Service.dll [811520 2022-05-10] (Microsoft Windows -> Microsoft Corporation) S3 wmiApSrv; C:\Windows\system32\wbem\WmiApSrv.exe [209920 2021-11-11] (Microsoft Windows -> Microsoft Corporation) R2 WMPNetworkSvc; C:\Program Files\Windows Media Player\wmpnetwk.exe [955904 2021-01-14] (Microsoft Windows -> Microsoft Corporation) S3 workfolderssvc; C:\Windows\system32\workfolderssvc.dll [2233176 2022-04-15] (Microsoft Windows -> Microsoft Corporation) S3 WpcMonSvc; C:\Windows\System32\WpcDesktopMonSvc.dll [1870848 2022-05-10] (Microsoft Windows -> Microsoft Corporation) S3 WPDBusEnum; C:\Windows\system32\wpdbusenum.dll [92672 2021-12-17] (Microsoft Windows -> Microsoft Corporation) R2 WpnService; C:\Windows\system32\WpnService.dll [245248 2021-01-14] (Microsoft Windows -> Microsoft Corporation) S2 WpnUserService; C:\Windows\System32\WpnUserService.dll [85504 2021-01-14] (Microsoft Windows -> Microsoft Corporation) R2 WpnUserService_102c77; C:\Windows\system32\svchost.exe [59952 2022-03-12] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WpnUserService_102c77; C:\Windows\SysWOW64\svchost.exe [49600 2022-03-12] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WsAppService3; C:\Program Files (x86)\Wondershare\WAF3\3.0.0.308\WsAppService3.exe [83232 2019-06-26] (Wondershare Technology Co.,Ltd -> Wondershare) R2 wscsvc; C:\Windows\System32\wscsvc.dll [332664 2022-03-12] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WSearch; C:\Windows\system32\SearchIndexer.exe [936448 2022-04-15] (Microsoft Windows -> Microsoft Corporation) R2 WSearch; C:\Windows\SysWOW64\SearchIndexer.exe [712192 2022-04-15] (Microsoft Windows -> Microsoft Corporation) R2 WSWNA3100M; C:\Program Files (x86)\NETGEAR\WNA3100M\WifiSvc.exe [316120 2014-08-18] (NETGEAR -> ) R3 wuauserv; C:\Windows\system32\wuaueng.dll [3406336 2022-05-10] (Microsoft Windows -> Microsoft Corporation) S3 WwanSvc; C:\Windows\System32\wwansvc.dll [1517056 2022-04-15] (Microsoft Windows -> Microsoft Corporation) S3 XblAuthManager; C:\Windows\System32\XblAuthManager.dll [1049088 2022-03-12] (Microsoft Windows -> Microsoft Corporation) S3 XblGameSave; C:\Windows\System32\XblGameSave.dll [1270272 2021-02-10] (Microsoft Windows -> Microsoft Corporation) S3 XboxGipSvc; C:\Windows\System32\XboxGipSvc.dll [72704 2021-03-13] (Microsoft Windows -> Microsoft Corporation) S3 XboxNetApiSvc; C:\Windows\system32\XboxNetApiSvc.dll [1295360 2021-01-14] (Microsoft Windows -> Microsoft Corporation) R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_7ad37590e62d4afc\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_7ad37590e62d4afc\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Treiber (Alle) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) S3 1394ohci; C:\Windows\System32\drivers\1394ohci.sys [266240 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S0 3ware; C:\Windows\System32\drivers\3ware.sys [107320 2019-12-07] (Microsoft Windows -> LSI) R0 ACPI; C:\Windows\System32\drivers\ACPI.sys [809288 2021-10-23] (Microsoft Windows -> Microsoft Corporation) S3 AcpiDev; C:\Windows\System32\drivers\AcpiDev.sys [23040 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R0 acpiex; C:\Windows\System32\Drivers\acpiex.sys [139792 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 acpipagr; C:\Windows\System32\drivers\acpipagr.sys [14336 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 AcpiPmi; C:\Windows\System32\drivers\acpipmi.sys [18432 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 acpitime; C:\Windows\System32\drivers\acpitime.sys [16384 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 Acx01000; C:\Windows\System32\drivers\Acx01000.sys [694272 2022-02-09] (Microsoft Windows -> Microsoft Corporation) S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [1135416 2019-12-07] (Microsoft Windows -> PMC-Sierra) R1 AFD; C:\Windows\system32\drivers\afd.sys [651096 2022-04-15] (Microsoft Windows -> Microsoft Corporation) R1 afunix; C:\Windows\system32\drivers\afunix.sys [48128 2022-03-12] (Microsoft Windows -> Microsoft Corporation) R1 afunix; C:\Windows\SysWOW64\drivers\afunix.sys [34304 2022-03-12] (Microsoft Windows -> Microsoft Corporation) R1 ahcache; C:\Windows\System32\DRIVERS\ahcache.sys [292352 2021-10-23] (Microsoft Windows -> Microsoft Corporation) R3 amdgpio2; C:\Windows\System32\drivers\amdgpio2.sys [46344 2020-12-21] (Advanced Micro Devices INC. -> Advanced Micro Devices, Inc) R3 amdgpio3; C:\Windows\System32\drivers\amdgpio3.sys [24520 2020-12-21] (AMD PMP-PE CB Code Signer v20160415 -> Advanced Micro Devices, Inc) S3 amdi2c; C:\Windows\System32\drivers\amdi2c.sys [45568 2019-12-07] (Microsoft Windows -> Advanced Micro Devices, Inc) S3 AmdK8; C:\Windows\System32\drivers\amdk8.sys [213848 2022-04-15] (Microsoft Windows -> Microsoft Corporation) R3 AMDPCIDev; C:\Windows\System32\drivers\AMDPCIDev.sys [32560 2021-05-21] (Advanced Micro Devices INC. -> Advanced Micro Devices) R3 AmdPPM; C:\Windows\System32\drivers\amdppm.sys [216904 2022-04-15] (Microsoft Windows -> Microsoft Corporation) S0 amdpsp; C:\Windows\System32\DRIVERS\amdpsp.sys [137424 2021-06-22] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) S0 amdsata; C:\Windows\System32\drivers\amdsata.sys [83256 2019-12-07] (Microsoft Windows -> Advanced Micro Devices) S0 amdsbs; C:\Windows\System32\drivers\amdsbs.sys [259384 2019-12-07] (Microsoft Windows -> AMD Technologies Inc.) S0 amdxata; C:\Windows\System32\drivers\amdxata.sys [26936 2019-12-07] (Microsoft Windows -> Advanced Micro Devices) R0 amd_sata; C:\Windows\System32\drivers\amd_sata.sys [85704 2020-12-21] (Advanced Micro Devices, Inc. -> Advanced Micro Devices) R0 amd_xata; C:\Windows\System32\drivers\amd_xata.sys [43720 2020-12-21] (Advanced Micro Devices, Inc. -> Advanced Micro Devices) S3 ampa; C:\Windows\system32\ampa.sys [38320 2017-02-28] (CHENGDU AOMEI Tech Co., Ltd. -> ) S3 AppID; C:\Windows\System32\drivers\appid.sys [215400 2022-03-12] (Microsoft Windows -> Microsoft Windows) S3 applockerfltr; C:\Windows\System32\drivers\applockerfltr.sys [18432 2022-03-12] (Microsoft Windows -> Microsoft Corporation) S3 AppvStrm; C:\Windows\system32\drivers\AppvStrm.sys [138056 2021-11-11] (Microsoft Windows -> Microsoft Corporation) S3 AppvVemgr; C:\Windows\system32\drivers\AppvVemgr.sys [174408 2021-11-11] (Microsoft Windows -> Microsoft Corporation) S3 AppvVfs; C:\Windows\system32\drivers\AppvVfs.sys [154952 2021-11-11] (Microsoft Windows -> Microsoft Corporation) S0 arcsas; C:\Windows\System32\drivers\arcsas.sys [131896 2019-12-07] (Microsoft Windows -> PMC-Sierra, Inc.) R0 asstahci64; C:\Windows\System32\drivers\asstahci64.sys [98696 2020-12-21] (ASMedia Technology Inc. -> Asmedia Technology) S3 AsyncMac; C:\Windows\System32\drivers\asyncmac.sys [31232 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S0 atapi; C:\Windows\System32\drivers\atapi.sys [30032 2021-10-23] (Microsoft Windows -> Microsoft Corporation) S0 b06bdrv; C:\Windows\System32\drivers\bxvbda.sys [533816 2019-12-07] (Microsoft Windows -> QLogic Corporation) R1 bam; C:\Windows\System32\drivers\bam.sys [78136 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R1 BasicDisplay; C:\Windows\System32\DriverStore\FileRepository\basicdisplay.inf_amd64_65ab9a260dbf7467\BasicDisplay.sys [68608 2021-10-23] (Microsoft Windows -> Microsoft Corporation) R1 BasicRender; C:\Windows\System32\DriverStore\FileRepository\basicrender.inf_amd64_df49c4daa6251397\BasicRender.sys [38912 2021-10-23] (Microsoft Windows -> Microsoft Corporation) U5 BattC; C:\Windows\System32\Drivers\BattC.sys [41272 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [186152 2020-12-21] (Broadcom Corporation -> Broadcom Corporation.) S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [9728 2019-12-07] (Microsoft Windows -> Windows (R) Win 7 DDK provider) R1 Beep; C:\Windows\System32\Drivers\Beep.sys [10240 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R2 bindflt; C:\Windows\system32\drivers\bindflt.sys [145760 2022-05-10] (Microsoft Windows -> Microsoft Corporation) R3 bowser; C:\Windows\System32\DRIVERS\bowser.sys [117760 2022-03-12] (Microsoft Windows -> Microsoft Corporation) S3 BTCFilterService; C:\Windows\System32\drivers\motfilt.sys [6144 2013-07-23] (Microsoft Windows Hardware Compatibility Publisher -> Motorola Inc) R3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [287744 2022-05-10] (Microsoft Windows -> Microsoft Corporation) R3 BthEnum; C:\Windows\System32\drivers\BthEnum.sys [113664 2022-05-10] (Microsoft Windows -> Microsoft Corporation) R3 BthHFAud; C:\Windows\System32\drivers\BthHfAud.sys [65536 2022-04-15] (Microsoft Windows -> Microsoft Corporation) R3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [147968 2022-04-15] (Microsoft Windows -> Microsoft Corporation) R3 BthLEEnum; C:\Windows\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [106496 2020-09-27] (Microsoft Windows -> Microsoft Corporation) S3 BthMini; C:\Windows\System32\drivers\BTHMINI.sys [45568 2022-05-10] (Microsoft Windows -> Microsoft Corporation) S3 BTHMODEM; C:\Windows\System32\drivers\bthmodem.sys [76800 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R3 BthPan; C:\Windows\System32\drivers\bthpan.sys [133632 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R3 BTHPORT; C:\Windows\System32\drivers\BTHport.sys [1555968 2022-05-10] (Microsoft Windows -> Microsoft Corporation) R3 BTHUSB; C:\Windows\System32\drivers\BTHUSB.sys [110592 2022-05-10] (Microsoft Windows -> Microsoft Corporation) S0 bttflt; C:\Windows\System32\drivers\bttflt.sys [43832 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 btwampfl; C:\Windows\system32\DRIVERS\btwampfl.sys [213312 2020-12-21] (Broadcom Corporation -> Broadcom Corporation.) S3 buttonconverter; C:\Windows\System32\drivers\buttonconverter.sys [44032 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 CAD; C:\Windows\System32\drivers\CAD.sys [66576 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S4 cdfs; C:\Windows\System32\DRIVERS\cdfs.sys [100864 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R1 cdrom; C:\Windows\System32\drivers\cdrom.sys [175616 2021-10-23] (Microsoft Windows -> Microsoft Corporation) S0 cht4iscsi; C:\Windows\System32\drivers\cht4sx64.sys [319800 2019-12-07] (Microsoft Windows -> Chelsio Communications) S3 cht4vbd; C:\Windows\System32\drivers\cht4vx64.sys [1853752 2019-12-07] (Microsoft Windows -> Chelsio Communications) R1 CimFS; C:\Windows\System32\Drivers\CimFS.sys [93696 2022-05-10] (Microsoft Windows -> ) S3 circlass; C:\Windows\System32\drivers\circlass.sys [52224 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R2 CldFlt; C:\Windows\System32\drivers\cldflt.sys [495616 2022-05-10] (Microsoft Windows -> Microsoft Corporation) R0 CLFS; C:\Windows\System32\drivers\CLFS.sys [415568 2022-04-15] (Microsoft Windows -> Microsoft Corporation) S3 CmBatt; C:\Windows\System32\drivers\CmBatt.sys [36864 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R0 CNG; C:\Windows\System32\Drivers\cng.sys [746416 2021-12-17] (Microsoft Windows -> Microsoft Corporation) S4 cnghwassist; C:\Windows\System32\DRIVERS\cnghwassist.sys [40968 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R3 CompositeBus; C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_amd64_7500cffa210c6946\CompositeBus.sys [41984 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R3 condrv; C:\Windows\System32\drivers\condrv.sys [57144 2021-10-23] (Microsoft Windows -> Microsoft Corporation) R1 CSC; C:\Windows\System32\drivers\csc.sys [586752 2022-05-10] (Microsoft Windows -> Microsoft Corporation) S1 dam; C:\Windows\System32\drivers\dam.sys [97096 2021-10-23] (Microsoft Windows -> Microsoft Corporation) R1 Dfsc; C:\Windows\System32\Drivers\dfsc.sys [152064 2021-03-13] (Microsoft Windows -> Microsoft Corporation) S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R0 disk; C:\Windows\System32\drivers\disk.sys [98624 2021-02-10] (Microsoft Windows -> Microsoft Corporation) S3 dmvsc; C:\Windows\System32\drivers\dmvsc.sys [59192 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 drmkaud; C:\Windows\System32\drivers\drmkaud.sys [16128 2021-01-14] (Microsoft Windows -> Microsoft Corporation) R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [42256 2020-12-25] (AVB Disc Soft, SIA -> Disc Soft Ltd) R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [59360 2020-12-25] (AVB Disc Soft, SIA -> Disc Soft Ltd) R1 DXGKrnl; C:\Windows\System32\drivers\dxgkrnl.sys [3814256 2022-04-15] (Microsoft Windows -> Microsoft Corporation) S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3418936 2019-12-07] (Microsoft Windows -> QLogic Corporation) R0 EhStorClass; C:\Windows\System32\drivers\EhStorClass.sys [95032 2021-10-23] (Microsoft Windows -> Microsoft Corporation) S0 EhStorTcgDrv; C:\Windows\System32\drivers\EhStorTcgDrv.sys [124728 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 ErrDev; C:\Windows\System32\drivers\errdev.sys [15872 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [103888 2022-06-07] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S3 exfat; C:\Windows\System32\Drivers\exfat.sys [418648 2022-03-12] (Microsoft Windows -> Microsoft Corporation) R3 fastfat; C:\Windows\System32\Drivers\fastfat.sys [426352 2022-03-12] (Microsoft Windows -> Microsoft Corporation) S3 fdc; C:\Windows\System32\drivers\fdc.sys [34816 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R1 FileCrypt; C:\Windows\System32\drivers\filecrypt.sys [59392 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R0 FileInfo; C:\Windows\System32\drivers\fileinfo.sys [94736 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 Filetrace; C:\Windows\System32\drivers\filetrace.sys [40448 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 flpydisk; C:\Windows\System32\drivers\flpydisk.sys [28672 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R0 FltMgr; C:\Windows\System32\drivers\fltmgr.sys [436560 2022-05-10] (Microsoft Windows -> Microsoft Corporation) S3 FsDepends; C:\Windows\System32\drivers\FsDepends.sys [69968 2021-10-23] (Microsoft Windows -> Microsoft Corporation) U0 Fs_Rec; C:\Windows\System32\Drivers\Fs_Rec.sys [33592 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R0 fvevol; C:\Windows\System32\DRIVERS\fvevol.sys [803152 2022-05-10] (Microsoft Windows -> Microsoft Corporation) R3 gameflt; C:\Windows\System32\DriverStore\FileRepository\gameflt.inf_amd64_e8beb16efa6399c0\gameflt.sys [150968 2022-06-07] (Microsoft Windows -> Microsoft Corporation) S3 gencounter; C:\Windows\System32\drivers\vmgencounter.sys [23864 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 genericusbfn; C:\Windows\System32\DriverStore\FileRepository\genericusbfn.inf_amd64_53931f0ae21d6d2c\genericusbfn.sys [23040 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 GeneStor; C:\Windows\system32\DRIVERS\GeneStor.sys [126168 2020-12-21] (Genesys Logic, Inc. -> GenesysLogic) R3 GPIOClx0101; C:\Windows\System32\Drivers\msgpioclx.sys [183112 2020-09-27] (Microsoft Windows -> Microsoft Corporation) R1 GpuEnergyDrv; C:\Windows\System32\drivers\gpuenergydrv.sys [8704 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R1 gvm; C:\Windows\system32\DRIVERS\gvm.sys [394408 2022-04-27] (Google LLC -> Google LLC) R3 HdAudAddService; C:\Windows\System32\drivers\HdAudio.sys [430080 2020-09-27] (Microsoft Windows -> Microsoft Corporation) R3 HDAudBus; C:\Windows\System32\drivers\HDAudBus.sys [134656 2022-03-12] (Microsoft Windows -> Microsoft Corporation) S3 HidBatt; C:\Windows\System32\drivers\HidBatt.sys [39440 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R3 HidBth; C:\Windows\System32\drivers\hidbth.sys [120320 2020-09-27] (Microsoft Windows -> Microsoft Corporation) S3 hidi2c; C:\Windows\System32\drivers\hidi2c.sys [57344 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 hidinterrupt; C:\Windows\System32\drivers\hidinterrupt.sys [55824 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 HidIr; C:\Windows\System32\drivers\hidir.sys [48640 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 hidspi; C:\Windows\System32\drivers\hidspi.sys [66560 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R3 HidUsb; C:\Windows\System32\drivers\hidusb.sys [44032 2021-10-23] (Microsoft Windows -> Microsoft Corporation) S0 HpSAMD; C:\Windows\System32\drivers\HpSAMD.sys [64312 2019-12-07] (Microsoft Windows -> Hewlett-Packard Company) R3 HTTP; C:\Windows\System32\drivers\HTTP.sys [1577808 2022-04-15] (Microsoft Windows -> Microsoft Corporation) S4 hvcrash; C:\Windows\System32\drivers\hvcrash.sys [35128 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 hvservice; C:\Windows\System32\drivers\hvservice.sys [96096 2022-04-15] (Microsoft Windows -> Microsoft Corporation) S3 HwNClx0101; C:\Windows\System32\Drivers\mshwnclx.sys [30208 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S0 hwpolicy; C:\Windows\System32\drivers\hwpolicy.sys [33096 2020-09-27] (Microsoft Windows -> Microsoft Corporation) S3 hyperkbd; C:\Windows\System32\drivers\hyperkbd.sys [27448 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 HyperVideo; C:\Windows\System32\drivers\HyperVideo.sys [41784 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 i8042prt; C:\Windows\System32\drivers\i8042prt.sys [118272 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 iagpio; C:\Windows\System32\drivers\iagpio.sys [36352 2019-12-07] (Microsoft Windows -> Intel(R) Corporation) S3 iai2c; C:\Windows\System32\drivers\iai2c.sys [91136 2019-12-07] (Microsoft Windows -> Intel(R) Corporation) S3 iaLPSS2i_GPIO2; C:\Windows\System32\drivers\iaLPSS2i_GPIO2.sys [79360 2019-12-07] (Microsoft Windows -> Intel Corporation) S3 iaLPSS2i_GPIO2_BXT_P; C:\Windows\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [93184 2019-12-07] (Microsoft Windows -> Intel Corporation) S3 iaLPSS2i_GPIO2_CNL; C:\Windows\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [112128 2019-12-07] (Microsoft Windows -> Intel Corporation) S3 iaLPSS2i_GPIO2_GLK; C:\Windows\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [96256 2019-12-07] (Microsoft Windows -> Intel Corporation) S3 iaLPSS2i_I2C; C:\Windows\System32\drivers\iaLPSS2i_I2C.sys [171520 2019-12-07] (Microsoft Windows -> Intel Corporation) S3 iaLPSS2i_I2C_BXT_P; C:\Windows\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [175104 2019-12-07] (Microsoft Windows -> Intel Corporation) S3 iaLPSS2i_I2C_CNL; C:\Windows\System32\drivers\iaLPSS2i_I2C_CNL.sys [177152 2019-12-07] (Microsoft Windows -> Intel Corporation) S3 iaLPSS2i_I2C_GLK; C:\Windows\System32\drivers\iaLPSS2i_I2C_GLK.sys [177664 2019-12-07] (Microsoft Windows -> Intel Corporation) S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [38128 2019-12-07] (Intel Corporation - Client Components Group -> Intel Corporation) S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [113152 2019-12-07] (Microsoft Windows -> Intel Corporation) S0 iaStorAVC; C:\Windows\System32\drivers\iaStorAVC.sys [884752 2019-12-07] (Microsoft Windows -> Intel Corporation) S0 iaStorV; C:\Windows\System32\drivers\iaStorV.sys [412176 2019-12-07] (Microsoft Windows -> Intel Corporation) S3 ibbus; C:\Windows\System32\drivers\ibbus.sys [558904 2019-12-07] (Microsoft Windows -> Mellanox) S3 IndirectKmd; C:\Windows\System32\drivers\IndirectKmd.sys [47104 2020-12-22] (Microsoft Windows -> Microsoft Corporation) S0 intelide; C:\Windows\System32\drivers\intelide.sys [19792 2021-10-23] (Microsoft Windows -> Microsoft Corporation) R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [418800 2021-10-23] (Microsoft Windows Hardware Abstraction Layer Publisher -> Microsoft Corporation) S3 intelpmax; C:\Windows\System32\drivers\intelpmax.sys [30720 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 intelppm; C:\Windows\System32\drivers\intelppm.sys [236360 2022-04-15] (Microsoft Windows -> Microsoft Corporation) R0 iorate; C:\Windows\System32\drivers\iorate.sys [57168 2021-10-23] (Microsoft Windows -> Microsoft Corporation) S3 IpFilterDriver; C:\Windows\System32\DRIVERS\ipfltdrv.sys [90112 2021-10-23] (Microsoft Windows -> Microsoft Corporation) S3 IPMIDRV; C:\Windows\System32\drivers\IPMIDrv.sys [117584 2021-10-23] (Microsoft Windows -> Microsoft Corporation) S3 IPNAT; C:\Windows\System32\drivers\ipnat.sys [225280 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 IPT; C:\Windows\System32\drivers\ipt.sys [59704 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S0 isapnp; C:\Windows\System32\drivers\isapnp.sys [22864 2021-10-23] (Microsoft Windows -> Microsoft Corporation) S3 iScsiPrt; C:\Windows\System32\drivers\msiscsi.sys [293176 2021-10-23] (Microsoft Windows -> Microsoft Corporation) S0 ItSas35i; C:\Windows\System32\drivers\ItSas35i.sys [172344 2019-12-07] (Microsoft Windows -> Avago Technologies) R3 kbdclass; C:\Windows\System32\drivers\kbdclass.sys [71480 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R3 kbdhid; C:\Windows\System32\drivers\kbdhid.sys [46592 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 kbldfltr; C:\Windows\System32\drivers\kbldfltr.sys [29000 2021-03-13] (Microsoft Windows -> Microsoft Corporation) R3 kdnic; C:\Windows\System32\drivers\kdnic.sys [33296 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R0 KSecDD; C:\Windows\System32\Drivers\ksecdd.sys [148312 2022-03-12] (Microsoft Windows -> Microsoft Corporation) R0 KSecPkg; C:\Windows\System32\Drivers\ksecpkg.sys [181096 2022-05-10] (Microsoft Windows -> Microsoft Corporation) R3 ksthunk; C:\Windows\system32\drivers\ksthunk.sys [29696 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R3 LEqdUsb; C:\Windows\system32\DRIVERS\LEqdUsb.Sys [94840 2021-01-14] (Logitech Inc -> Logitech, Inc.) R2 lltdio; C:\Windows\System32\drivers\lltdio.sys [72704 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S0 LSI_SAS; C:\Windows\System32\drivers\lsi_sas.sys [108856 2019-12-07] (Microsoft Windows -> LSI Corporation) S0 LSI_SAS2i; C:\Windows\System32\drivers\lsi_sas2i.sys [124216 2019-12-07] (Microsoft Windows -> LSI Corporation) S0 LSI_SAS3i; C:\Windows\System32\drivers\lsi_sas3i.sys [135992 2019-12-07] (Microsoft Windows -> Avago Technologies) S0 LSI_SSS; C:\Windows\System32\drivers\lsi_sss.sys [82744 2019-12-07] (Microsoft Windows -> LSI Corporation) R2 luafv; C:\Windows\system32\drivers\luafv.sys [140800 2021-03-13] (Microsoft Windows -> Microsoft Corporation) S3 mausbhost; C:\Windows\System32\drivers\mausbhost.sys [537608 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 mausbip; C:\Windows\System32\drivers\mausbip.sys [64016 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [223176 2022-06-07] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [21480 2022-06-07] (Microsoft Windows Early Launch Anti-Malware Publisher -> Malwarebytes) R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [194512 2022-06-08] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [74688 2022-06-08] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [239560 2022-06-07] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMWebProtection; C:\Windows\system32\DRIVERS\mwac.sys [181992 2022-06-08] (Malwarebytes Inc. -> Malwarebytes) S3 MbbCx; C:\Windows\System32\drivers\MbbCx.sys [386048 2022-04-15] (Microsoft Windows -> Microsoft Corporation) S0 megasas; C:\Windows\System32\drivers\megasas.sys [59704 2019-12-07] (Microsoft Windows -> Avago Technologies) S0 megasas2i; C:\Windows\System32\drivers\MegaSas2i.sys [81720 2019-12-07] (Microsoft Windows -> Avago Technologies) S0 megasas35i; C:\Windows\System32\drivers\megasas35i.sys [105480 2019-12-07] (Microsoft Windows -> Avago Technologies) S0 megasr; C:\Windows\System32\drivers\megasr.sys [575800 2019-12-07] (Microsoft Windows -> LSI Corporation, Inc.) R3 Microsoft_Bluetooth_AvrcpTransport; C:\Windows\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [65024 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 mlx4_bus; C:\Windows\System32\drivers\mlx4_bus.sys [1131320 2019-12-07] (Microsoft Windows -> Mellanox) R2 MMCSS; C:\Windows\system32\drivers\mmcss.sys [53248 2020-12-22] (Microsoft Windows -> Microsoft Corporation) S3 Modem; C:\Windows\System32\drivers\modem.sys [47104 2021-01-14] (Microsoft Windows -> Microsoft Corporation) R3 monitor; C:\Windows\System32\drivers\monitor.sys [83968 2021-10-23] (Microsoft Windows -> Microsoft Corporation) S3 motandroidusb; C:\Windows\System32\Drivers\motoandroid.sys [32768 2013-07-23] (Microsoft Windows Hardware Compatibility Publisher -> Motorola) S3 MotoSwitchService; C:\Windows\System32\drivers\motswch.sys [8832 2013-07-23] (Microsoft Windows Hardware Compatibility Publisher -> Motorola) S3 Motousbnet; C:\Windows\System32\drivers\Motousbnet.sys [27648 2013-07-23] (Microsoft Windows Hardware Compatibility Publisher -> Motorola Mobility Inc) R3 mouclass; C:\Windows\System32\drivers\mouclass.sys [67600 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R3 mouhid; C:\Windows\System32\drivers\mouhid.sys [35328 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R0 mountmgr; C:\Windows\System32\drivers\mountmgr.sys [110392 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R3 mpsdrv; C:\Windows\System32\drivers\mpsdrv.sys [80896 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 MRxDAV; C:\Windows\system32\drivers\mrxdav.sys [165888 2022-03-12] (Microsoft Windows -> Microsoft Corporation) R3 mrxsmb; C:\Windows\System32\DRIVERS\mrxsmb.sys [580960 2022-05-10] (Microsoft Windows -> Microsoft Corporation) R3 mrxsmb20; C:\Windows\System32\DRIVERS\mrxsmb20.sys [266080 2022-05-10] (Microsoft Windows -> Microsoft Corporation) S3 MsBridge; C:\Windows\System32\drivers\bridge.sys [127488 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R1 Msfs; C:\Windows\System32\Drivers\Msfs.sys [44048 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 msgpiowin32; C:\Windows\System32\drivers\msgpiowin32.sys [56120 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R3 mshidkmdf; C:\Windows\System32\drivers\mshidkmdf.sys [8192 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 mshidumdf; C:\Windows\System32\drivers\mshidumdf.sys [12288 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R0 msisadrv; C:\Windows\System32\drivers\msisadrv.sys [20280 2021-10-23] (Microsoft Windows -> Microsoft Corporation) S3 MSKSSRV; C:\Windows\System32\drivers\MSKSSRV.sys [34816 2020-12-22] (Microsoft Windows -> Microsoft Corporation) R2 MsLldp; C:\Windows\System32\drivers\mslldp.sys [78848 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 MSPCLOCK; C:\Windows\System32\drivers\MSPCLOCK.sys [11264 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 MSPQM; C:\Windows\System32\drivers\MSPQM.sys [11264 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R3 MsQuic; C:\Windows\System32\drivers\msquic.sys [322376 2020-09-27] (Microsoft Windows -> Microsoft Corporation) S3 MsRPC; C:\Windows\System32\Drivers\MsRPC.sys [376688 2022-05-10] (Microsoft Windows -> Microsoft Corporation) R0 MsSecFlt; C:\Windows\System32\drivers\mssecflt.sys [331080 2022-04-15] (Microsoft Windows -> Microsoft Corporation) R1 mssmbios; C:\Windows\System32\drivers\mssmbios.sys [47928 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 MSTEE; C:\Windows\System32\drivers\MSTEE.sys [12288 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 MTConfig; C:\Windows\System32\drivers\MTConfig.sys [17920 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R0 Mup; C:\Windows\System32\Drivers\mup.sys [132920 2021-03-13] (Microsoft Windows -> Microsoft Corporation) S0 mvumis; C:\Windows\System32\drivers\mvumis.sys [63800 2019-12-07] (Microsoft Windows -> Marvell Semiconductor, Inc.) R3 NativeWifiP; C:\Windows\System32\DRIVERS\nwifi.sys [757760 2021-12-17] (Microsoft Windows -> Microsoft Corporation) S3 ndfltr; C:\Windows\System32\drivers\ndfltr.sys [146232 2019-12-07] (Microsoft Windows -> Mellanox) R0 NDIS; C:\Windows\System32\drivers\ndis.sys [1476944 2021-12-17] (Microsoft Windows -> Microsoft Corporation) R1 NdisCap; C:\Windows\System32\drivers\ndiscap.sys [54272 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 NdisImPlatform; C:\Windows\System32\drivers\NdisImPlatform.sys [135168 2020-12-22] (Microsoft Windows -> Microsoft Corporation) R3 NdisTapi; C:\Windows\System32\DRIVERS\ndistapi.sys [28672 2020-12-22] (Microsoft Windows -> Microsoft Corporation) R3 Ndisuio; C:\Windows\System32\drivers\ndisuio.sys [70656 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [23040 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R3 NdisWan; C:\Windows\System32\drivers\ndiswan.sys [208384 2022-05-10] (Microsoft Windows -> Microsoft Corporation) S3 ndiswanlegacy; C:\Windows\System32\DRIVERS\ndiswan.sys [208384 2022-05-10] (Microsoft Windows -> Microsoft Corporation) S3 NDKPing; C:\Windows\System32\drivers\NDKPing.sys [72720 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R3 ndproxy; C:\Windows\System32\DRIVERS\NDProxy.sys [93696 2020-12-22] (Microsoft Windows -> Microsoft Corporation) R2 Ndu; C:\Windows\System32\drivers\Ndu.sys [131584 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 NetAdapterCx; C:\Windows\System32\drivers\NetAdapterCx.sys [210944 2022-04-15] (Microsoft Windows -> Microsoft Corporation) R1 NetBIOS; C:\Windows\System32\drivers\netbios.sys [64312 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R1 NetBT; C:\Windows\System32\DRIVERS\netbt.sys [341504 2020-12-22] (Microsoft Windows -> Microsoft Corporation) S3 netvsc; C:\Windows\System32\drivers\netvsc.sys [252256 2022-05-10] (Microsoft Windows -> Microsoft Corporation) R2 npf; C:\Windows\system32\drivers\npf.sys [36600 2017-08-03] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.) R1 Npfs; C:\Windows\System32\Drivers\Npfs.sys [87368 2022-02-09] (Microsoft Windows -> Microsoft Corporation) R1 npsvctrig; C:\Windows\System32\drivers\npsvctrig.sys [27648 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R1 nsiproxy; C:\Windows\System32\drivers\nsiproxy.sys [48640 2020-12-22] (Microsoft Windows -> Microsoft Corporation) R3 Ntfs; C:\Windows\System32\Drivers\Ntfs.sys [2852176 2022-05-10] (Microsoft Windows -> Microsoft Corporation) R1 Null; C:\Windows\System32\Drivers\Null.sys [7680 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S0 nvdimm; C:\Windows\System32\drivers\nvdimm.sys [168464 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R3 NVHDA; C:\Windows\system32\drivers\nvhda64v.sys [134832 2022-03-17] (Nvidia Corporation -> NVIDIA Corporation) R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_7ad37590e62d4afc\nvlddmkm.sys [42326096 2022-05-21] (Nvidia Corporation -> NVIDIA Corporation) R3 NvModuleTracker; C:\Windows\System32\drivers\NvModuleTracker.sys [43416 2020-08-14] (NVIDIA Corporation -> NVIDIA Corporation) S0 nvraid; C:\Windows\System32\drivers\nvraid.sys [150328 2019-12-07] (Microsoft Windows -> NVIDIA Corporation) S0 nvstor; C:\Windows\System32\drivers\nvstor.sys [166200 2019-12-07] (Microsoft Windows -> NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation) R3 nvvhci; C:\Windows\System32\drivers\nvvhci.sys [67464 2021-06-02] (NVIDIA Corporation -> NVIDIA Corporation) S3 Parport; C:\Windows\System32\drivers\parport.sys [109056 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R0 partmgr; C:\Windows\System32\drivers\partmgr.sys [182608 2021-12-17] (Microsoft Windows -> Microsoft Corporation) R0 pci; C:\Windows\System32\drivers\pci.sys [477040 2022-05-10] (Microsoft Windows -> Microsoft Corporation) S0 pciide; C:\Windows\System32\drivers\pciide.sys [16712 2021-10-23] (Microsoft Windows -> Microsoft Corporation) S0 pcmcia; C:\Windows\System32\drivers\pcmcia.sys [127800 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R0 pcw; C:\Windows\System32\drivers\pcw.sys [57656 2022-01-15] (Microsoft Windows -> Microsoft Corporation) R0 pdc; C:\Windows\System32\drivers\pdc.sys [159056 2021-10-23] (Microsoft Windows -> Microsoft Corporation) R2 PEAUTH; C:\Windows\System32\drivers\peauth.sys [825344 2022-05-10] (Microsoft Windows -> Microsoft Corporation) |
09.06.2022, 09:23 | #4 |
| Win 10: Zugriff auf Amazonkonto. Trojaner eingefangen? Teil 2 Code:
ATTFilter S0 percsas2i; C:\Windows\System32\drivers\percsas2i.sys [58680 2019-12-07] (Microsoft Windows -> Avago Technologies) S0 percsas3i; C:\Windows\System32\drivers\percsas3i.sys [68408 2019-12-07] (Microsoft Windows -> Avago Technologies) S3 PktMon; C:\Windows\System32\drivers\PktMon.sys [131424 2022-05-10] (Microsoft Windows -> Microsoft Corporation) S0 pmem; C:\Windows\System32\drivers\pmem.sys [142184 2022-05-10] (Microsoft Windows -> Microsoft Corporation) S3 PNPMEM; C:\Windows\System32\drivers\pnpmem.sys [17408 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 portcfg; C:\Windows\System32\drivers\portcfg.sys [27136 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R3 PptpMiniport; C:\Windows\System32\drivers\raspptp.sys [102400 2022-05-10] (Microsoft Windows -> Microsoft Corporation) S3 Processor; C:\Windows\System32\drivers\processr.sys [222040 2022-04-15] (Microsoft Windows -> Microsoft Corporation) R1 Psched; C:\Windows\System32\drivers\pacer.sys [161608 2020-12-22] (Microsoft Windows -> Microsoft Corporation) R0 pwdrvio; C:\Windows\System32\pwdrvio.sys [37336 2021-03-09] (MiniTool Solution Ltd -> ) S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2019-11-08] (MiniTool Solution Ltd -> ) S3 QWAVEdrv; C:\Windows\system32\drivers\qwavedrv.sys [53248 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S0 Ramdisk; C:\Windows\System32\DRIVERS\ramdisk.sys [42296 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 RasAcd; C:\Windows\System32\DRIVERS\rasacd.sys [20480 2020-12-22] (Microsoft Windows -> Microsoft Corporation) R3 RasAgileVpn; C:\Windows\System32\drivers\AgileVpn.sys [114176 2022-05-10] (Microsoft Windows -> Microsoft Corporation) R3 Rasl2tp; C:\Windows\System32\drivers\rasl2tp.sys [110080 2022-05-10] (Microsoft Windows -> Microsoft Corporation) R3 RasPppoe; C:\Windows\System32\drivers\raspppoe.sys [87552 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R3 RasSstp; C:\Windows\System32\drivers\rassstp.sys [86016 2020-09-27] (Microsoft Windows -> Microsoft Corporation) R1 rdbss; C:\Windows\System32\DRIVERS\rdbss.sys [462696 2022-03-12] (Microsoft Windows -> Microsoft Corporation) R3 rdpbus; C:\Windows\System32\drivers\rdpbus.sys [28672 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R3 RDPDR; C:\Windows\System32\drivers\rdpdr.sys [169984 2021-10-23] (Microsoft Windows -> Microsoft Corporation) R3 RdpVideoMiniport; C:\Windows\System32\drivers\rdpvideominiport.sys [32600 2022-05-10] (Microsoft Windows -> Microsoft Corporation) R0 rdyboost; C:\Windows\System32\drivers\rdyboost.sys [297784 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [2008400 2022-05-10] (Microsoft Windows -> Microsoft Corporation) S3 ReFSv1; C:\Windows\System32\Drivers\ReFSv1.sys [990536 2022-01-15] (Microsoft Windows -> Microsoft Corporation) R3 RFCOMM; C:\Windows\System32\drivers\rfcomm.sys [213504 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 rhproxy; C:\Windows\System32\drivers\rhproxy.sys [115712 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R2 rspndr; C:\Windows\System32\drivers\rspndr.sys [89088 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [1151992 2021-06-22] (Realtek Semiconductor Corp. -> Realtek) S3 RtlWlanu; C:\Windows\System32\drivers\rtwlanu.sys [3818056 2018-02-13] (NETGEAR TAIWAN CO., LTD -> Realtek Semiconductor Corporation) S3 s3cap; C:\Windows\System32\drivers\vms3cap.sys [18960 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S0 sbp2port; C:\Windows\System32\drivers\sbp2port.sys [118088 2021-10-23] (Microsoft Windows -> Microsoft Corporation) S3 scfilter; C:\Windows\System32\DRIVERS\scfilter.sys [44032 2021-03-13] (Microsoft Windows -> Microsoft Corporation) S0 scmbus; C:\Windows\System32\drivers\scmbus.sys [158520 2022-02-09] (Microsoft Windows -> Microsoft Corporation) R3 ScpVBus; C:\Windows\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions) S3 sdbus; C:\Windows\System32\drivers\sdbus.sys [306512 2022-05-10] (Microsoft Windows -> Microsoft Corporation) S3 SDFRd; C:\Windows\System32\drivers\SDFRd.sys [35128 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 sdstor; C:\Windows\System32\drivers\sdstor.sys [104264 2021-10-23] (Microsoft Windows -> Microsoft Corporation) S3 SerCx; C:\Windows\System32\drivers\SerCx.sys [86328 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [173072 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R3 Serenum; C:\Windows\System32\drivers\serenum.sys [27648 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R3 Serial; C:\Windows\System32\drivers\serial.sys [90624 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 sermouse; C:\Windows\System32\drivers\sermouse.sys [29184 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 sfloppy; C:\Windows\System32\drivers\sfloppy.sys [19456 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R0 SgrmAgent; C:\Windows\System32\drivers\SgrmAgent.sys [88080 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S0 SiSRaid2; C:\Windows\System32\drivers\SiSRaid2.sys [44856 2019-12-07] (Microsoft Windows -> Silicon Integrated Systems Corp.) S0 SiSRaid4; C:\Windows\System32\drivers\sisraid4.sys [81720 2019-12-07] (Microsoft Windows -> Silicon Integrated Systems) S0 SmartSAMD; C:\Windows\System32\drivers\SmartSAMD.sys [209720 2019-12-07] (Microsoft Windows -> Microsemi Corportation) S3 smbdirect; C:\Windows\System32\DRIVERS\smbdirect.sys [172544 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 spaceparser; C:\Windows\System32\drivers\spaceparser.sys [26624 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R0 spaceport; C:\Windows\System32\drivers\spaceport.sys [680784 2022-05-10] (Microsoft Windows -> Microsoft Corporation) S3 SpatialGraphFilter; C:\Windows\System32\drivers\SpatialGraphFilter.sys [90936 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 SpbCx; C:\Windows\System32\drivers\SpbCx.sys [87352 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R3 srv2; C:\Windows\System32\DRIVERS\srv2.sys [787968 2022-04-15] (Microsoft Windows -> Microsoft Corporation) R3 srvnet; C:\Windows\System32\DRIVERS\srvnet.sys [323584 2022-05-10] (Microsoft Windows -> Microsoft Corporation) S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 ss_conn_usb_driver2; C:\Windows\System32\Drivers\ss_conn_usb_driver2.sys [43640 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S0 stexstor; C:\Windows\System32\drivers\stexstor.sys [31032 2019-12-07] (Microsoft Windows -> Promise Technology, Inc.) R0 storahci; C:\Windows\System32\drivers\storahci.sys [186168 2021-10-23] (Microsoft Windows -> Microsoft Corporation) S0 storflt; C:\Windows\System32\drivers\vmstorfl.sys [54080 2021-10-23] (Microsoft Windows -> Microsoft Corporation) R0 stornvme; C:\Windows\System32\drivers\stornvme.sys [162128 2022-03-12] (Microsoft Windows -> Microsoft Corporation) R2 storqosflt; C:\Windows\System32\drivers\storqosflt.sys [92984 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S0 storufs; C:\Windows\System32\drivers\storufs.sys [64848 2022-05-10] (Microsoft Windows -> Microsoft Corporation) S0 storvsc; C:\Windows\System32\drivers\storvsc.sys [44048 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R3 swenum; C:\Windows\System32\DriverStore\FileRepository\swenum.inf_amd64_16a14542b63c02af\swenum.sys [18952 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 Synth3dVsc; C:\Windows\System32\drivers\Synth3dVsc.sys [6656 2021-10-23] (Microsoft Windows -> Microsoft Corporation) R3 tap0901; C:\Windows\System32\drivers\tap0901.sys [39920 2020-03-26] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project) R0 Tcpip; C:\Windows\System32\drivers\tcpip.sys [2992464 2022-05-10] (Microsoft Windows -> Microsoft Corporation) S3 Tcpip6; C:\Windows\System32\drivers\tcpip.sys [2992464 2022-05-10] (Microsoft Windows -> Microsoft Corporation) R2 tcpipreg; C:\Windows\System32\drivers\tcpipreg.sys [54784 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R1 tdx; C:\Windows\system32\DRIVERS\tdx.sys [117584 2021-10-23] (Microsoft Windows -> Microsoft Corporation) R0 Telemetry; C:\Windows\System32\drivers\IntelTA.sys [26608 2020-12-22] (Microsoft Windows Hardware Abstraction Layer Publisher -> Microsoft Corporation) S3 terminpt; C:\Windows\System32\drivers\terminpt.sys [41272 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 TPM; C:\Windows\System32\drivers\tpm.sys [255288 2021-01-14] (Microsoft Windows -> Microsoft Corporation) S3 TsUsbFlt; C:\Windows\System32\drivers\tsusbflt.sys [66560 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 TsUsbGD; C:\Windows\System32\drivers\TsUsbGD.sys [37888 2021-10-23] (Microsoft Windows -> Microsoft Corporation) R3 tsusbhub; C:\Windows\System32\drivers\tsusbhub.sys [137728 2022-03-12] (Microsoft Windows -> Microsoft Corporation) S3 tunnel; C:\Windows\System32\drivers\tunnel.sys [129024 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 UASPStor; C:\Windows\System32\drivers\uaspstor.sys [83792 2022-05-10] (Microsoft Windows -> Microsoft Corporation) S3 UcmCx0101; C:\Windows\System32\Drivers\UcmCx.sys [160256 2021-10-23] (Microsoft Windows -> Microsoft Corporation) S3 UcmTcpciCx0101; C:\Windows\System32\Drivers\UcmTcpciCx.sys [188416 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 UcmUcsiAcpiClient; C:\Windows\System32\drivers\UcmUcsiAcpiClient.sys [36864 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 UcmUcsiCx0101; C:\Windows\System32\Drivers\UcmUcsiCx.sys [113152 2020-09-27] (Microsoft Windows -> Microsoft Corporation) R3 Ucx01000; C:\Windows\System32\drivers\ucx01000.sys [259896 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [52736 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S4 udfs; C:\Windows\System32\DRIVERS\udfs.sys [344064 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R3 UEFI; C:\Windows\System32\DriverStore\FileRepository\uefi.inf_amd64_c1628ffa62c8e54c\UEFI.sys [34104 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S4 UevAgentDriver; C:\Windows\system32\drivers\UevAgentDriver.sys [41288 2021-11-11] (Microsoft Windows -> Microsoft Corporation) S3 Ufx01000; C:\Windows\System32\drivers\ufx01000.sys [324432 2021-11-11] (Microsoft Windows -> Microsoft Corporation) S3 UfxChipidea; C:\Windows\System32\DriverStore\FileRepository\ufxchipidea.inf_amd64_1c78775fffab6a0a\UfxChipidea.sys [110608 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 ufxsynopsys; C:\Windows\System32\drivers\ufxsynopsys.sys [168264 2020-12-22] (Microsoft Windows -> Microsoft Corporation) R3 umbus; C:\Windows\System32\DriverStore\FileRepository\umbus.inf_amd64_b78a9c5b6fd62c27\umbus.sys [58368 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 UmPass; C:\Windows\System32\drivers\umpass.sys [15360 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 UrsChipidea; C:\Windows\System32\DriverStore\FileRepository\urschipidea.inf_amd64_78ad1c14e33df968\urschipidea.sys [32056 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 UrsCx01000; C:\Windows\System32\drivers\urscx01000.sys [76304 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 UrsSynopsys; C:\Windows\System32\DriverStore\FileRepository\urssynopsys.inf_amd64_057fa37902020500\urssynopsys.sys [29496 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 usbaudio; C:\Windows\system32\drivers\usbaudio.sys [205312 2022-05-10] (Microsoft Windows -> Microsoft Corporation) S3 usbaudio2; C:\Windows\System32\drivers\usbaudio2.sys [260608 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R3 usbccgp; C:\Windows\System32\drivers\usbccgp.sys [185664 2020-09-27] (Microsoft Windows -> Microsoft Corporation) S3 usbcir; C:\Windows\System32\drivers\usbcir.sys [107520 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 usbehci; C:\Windows\System32\drivers\usbehci.sys [86544 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 usbhub; C:\Windows\System32\drivers\usbhub.sys [528184 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R3 USBHUB3; C:\Windows\System32\drivers\UsbHub3.sys [648016 2021-10-23] (Microsoft Windows -> Microsoft Corporation) S3 usbohci; C:\Windows\System32\drivers\usbohci.sys [30208 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 usbprint; C:\Windows\System32\drivers\usbprint.sys [40448 2022-02-09] (Microsoft Windows -> Microsoft Corporation) S3 usbscan; C:\Windows\system32\DRIVERS\usbscan.sys [49152 2020-09-27] (Microsoft Windows -> Microsoft Corporation) S3 usbser; C:\Windows\System32\drivers\usbser.sys [81408 2021-10-23] (Microsoft Windows -> Microsoft Corporation) R3 USBSTOR; C:\Windows\System32\drivers\USBSTOR.SYS [139600 2022-05-10] (Microsoft Windows -> Microsoft Corporation) S3 usbuhci; C:\Windows\System32\drivers\usbuhci.sys [39424 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 usbvideo; C:\Windows\System32\Drivers\usbvideo.sys [330576 2021-12-17] (Microsoft Windows -> Microsoft Corporation) R3 USBXHCI; C:\Windows\System32\drivers\USBXHCI.SYS [624976 2022-03-12] (Microsoft Windows -> Microsoft Corporation) R3 uvhid; C:\Windows\System32\drivers\uvhid.sys [29720 2021-11-20] (Microsoft Windows Hardware Compatibility Publisher -> ) R0 vdrvroot; C:\Windows\System32\drivers\vdrvroot.sys [67384 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S4 VerifierExt; C:\Windows\System32\drivers\VerifierExt.sys [347448 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 vhdmp; C:\Windows\System32\drivers\vhdmp.sys [821584 2022-03-12] (Microsoft Windows -> Microsoft Corporation) S3 vhf; C:\Windows\System32\drivers\vhf.sys [47616 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R1 Vid; C:\Windows\System32\drivers\Vid.sys [641352 2022-01-15] (Microsoft Windows -> Microsoft Corporation) S3 VirtualRender; C:\Windows\System32\DriverStore\FileRepository\vrd.inf_amd64_81fbd405ff2470fc\vrd.sys [11264 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S0 vmbus; C:\Windows\System32\drivers\vmbus.sys [160072 2022-01-15] (Microsoft Windows -> Microsoft Corporation) S3 VMBusHID; C:\Windows\System32\drivers\VMBusHID.sys [36664 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 vmgid; C:\Windows\System32\drivers\vmgid.sys [19768 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R0 volmgr; C:\Windows\System32\drivers\volmgr.sys [90960 2021-10-23] (Microsoft Windows -> Microsoft Corporation) R0 volmgrx; C:\Windows\System32\drivers\volmgrx.sys [389432 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R0 volsnap; C:\Windows\System32\drivers\volsnap.sys [429880 2020-09-27] (Microsoft Windows -> Microsoft Corporation) R0 volume; C:\Windows\System32\drivers\volume.sys [16696 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S0 vpci; C:\Windows\System32\drivers\vpci.sys [89400 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S0 vsmraid; C:\Windows\System32\drivers\vsmraid.sys [166712 2019-12-07] (Microsoft Windows -> VIA Technologies Inc.,Ltd) S0 VSTXRAID; C:\Windows\System32\drivers\vstxraid.sys [305464 2019-12-07] (Microsoft Windows -> VIA Corporation) S3 vwifibus; C:\Windows\System32\drivers\vwifibus.sys [29184 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R1 vwififlt; C:\Windows\System32\drivers\vwififlt.sys [77824 2021-10-23] (Microsoft Windows -> Microsoft Corporation) S3 vwifimp; C:\Windows\System32\drivers\vwifimp.sys [50688 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 WacomPen; C:\Windows\System32\drivers\wacompen.sys [31232 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R2 wanarp; C:\Windows\System32\DRIVERS\wanarp.sys [93184 2020-12-22] (Microsoft Windows -> Microsoft Corporation) S3 wanarpv6; C:\Windows\System32\DRIVERS\wanarp.sys [93184 2020-12-22] (Microsoft Windows -> Microsoft Corporation) R2 wcifs; C:\Windows\system32\drivers\wcifs.sys [202568 2021-11-11] (Microsoft Windows -> Microsoft Corporation) S3 wcnfs; C:\Windows\system32\drivers\wcnfs.sys [93184 2021-03-13] (Microsoft Windows -> Microsoft Corporation) S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [49600 2022-04-08] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation) R0 Wdf01000; C:\Windows\System32\drivers\Wdf01000.sys [828240 2022-03-12] (Microsoft Windows -> Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [443664 2022-04-08] (Microsoft Windows -> Microsoft Corporation) S3 wdiwifi; C:\Windows\System32\DRIVERS\wdiwifi.sys [967168 2021-11-11] (Microsoft Windows -> Microsoft Corporation) S3 WdmCompanionFilter; C:\Windows\System32\drivers\WdmCompanionFilter.sys [23560 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [90384 2022-04-08] (Microsoft Windows -> Microsoft Corporation) R0 WFPLWFS; C:\Windows\System32\drivers\wfplwfs.sys [181600 2022-05-10] (Microsoft Windows -> Microsoft Corporation) S3 WIMMount; C:\Windows\System32\drivers\wimmount.sys [39760 2021-10-23] (Microsoft Windows -> Microsoft Corporation) R0 WindowsTrustedRT; C:\Windows\System32\drivers\WindowsTrustedRT.sys [76984 2019-12-07] (Microsoft Windows Hardware Abstraction Layer Publisher -> Microsoft Corporation) R0 WindowsTrustedRTProxy; C:\Windows\System32\drivers\WindowsTrustedRTProxy.sys [18920 2019-12-07] (Microsoft Windows Hardware Abstraction Layer Publisher -> Microsoft Corporation) S3 WinMad; C:\Windows\System32\drivers\winmad.sys [36152 2019-12-07] (Microsoft Windows -> Mellanox) S3 WinNat; C:\Windows\System32\drivers\winnat.sys [261120 2022-03-12] (Microsoft Windows -> Microsoft Corporation) S3 WINUSB; C:\Windows\System32\drivers\WinUSB.SYS [107008 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 WinVerbs; C:\Windows\System32\drivers\winverbs.sys [73016 2019-12-07] (Microsoft Windows -> Mellanox) R3 WmiAcpi; C:\Windows\System32\drivers\wmiacpi.sys [19456 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R0 Wof; C:\Windows\System32\Drivers\Wof.sys [234296 2021-10-23] (Microsoft Windows -> Microsoft Corporation) R3 WpdUpFltr; C:\Windows\System32\drivers\WpdUpFltr.sys [32568 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S4 ws2ifsl; C:\Windows\system32\drivers\ws2ifsl.sys [25088 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 WSDPrintDevice; C:\Windows\System32\drivers\WSDPrint.sys [23552 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 WSDScan; C:\Windows\system32\DRIVERS\WSDScan.sys [26112 2020-09-27] (Microsoft Windows -> Microsoft Corporation) S3 WudfPf; C:\Windows\System32\drivers\WudfPf.sys [136192 2022-04-15] (Microsoft Windows -> Microsoft Corporation) R3 WUDFRd; C:\Windows\System32\drivers\WUDFRd.sys [322560 2022-04-15] (Microsoft Windows -> Microsoft Corporation) R3 WUDFWpdFs; C:\Windows\System32\drivers\WUDFRd.sys [322560 2022-04-15] (Microsoft Windows -> Microsoft Corporation) R3 WUDFWpdMtp; C:\Windows\system32\DRIVERS\WUDFRd.sys [322560 2022-04-15] (Microsoft Windows -> Microsoft Corporation) S3 xboxgip; C:\Windows\System32\drivers\xboxgip.sys [332288 2022-03-12] (Microsoft Windows -> Microsoft Corporation) S3 xinputhid; C:\Windows\System32\drivers\xinputhid.sys [51712 2021-12-17] (Microsoft Windows -> Microsoft Corporation) R3 xusb22; C:\Windows\System32\drivers\xusb22.sys [102400 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R3 Xvdd; C:\Windows\System32\DriverStore\FileRepository\xvdd.inf_amd64_b97d81aa5aab7ab2\xvdd.sys [617904 2022-06-07] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (Nicht auf der Ausnahmeliste) =================== Code:
ATTFilter Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Ein Monat (erstellte) (Alle) ========= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2022-06-08 17:49 - 2022-06-08 17:57 - 000000000 ____D C:\FRST 2022-06-08 17:46 - 2022-06-08 17:46 - 000006129 _____ C:\Users\Paddy\Desktop\malwarebytes.txt 2022-06-08 17:43 - 2022-06-08 17:43 - 000194512 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys 2022-06-08 17:43 - 2022-06-08 17:43 - 000181992 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys 2022-06-08 17:43 - 2022-06-08 17:43 - 000074688 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys 2022-06-07 21:07 - 2022-06-07 21:07 - 000000000 ____D C:\Program Files (x86)\Windows Kits 2022-06-07 21:07 - 2022-06-07 21:07 - 000000000 ____D C:\Program Files (x86)\Microsoft GameInput 2022-06-07 21:07 - 2022-05-25 04:29 - 000243176 _____ (Microsoft Corporation) C:\Windows\system32\GameInputRedist.dll 2022-06-07 21:07 - 2022-05-25 02:52 - 000140248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GameInputRedist.dll 2022-06-07 17:33 - 2022-06-07 17:37 - 000000000 ____D C:\Users\Paddy\AppData\Local\mbam 2022-06-07 17:33 - 2022-06-07 17:33 - 000239560 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys 2022-06-07 17:33 - 2022-06-07 17:33 - 000223176 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys 2022-06-07 17:33 - 2022-06-07 17:33 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2022-06-07 17:33 - 2022-06-07 17:32 - 000103888 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys 2022-06-07 17:33 - 2022-06-07 17:32 - 000021480 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamElam.sys 2022-06-07 17:32 - 2022-06-07 17:32 - 000000000 ____D C:\ProgramData\Malwarebytes 2022-06-07 17:32 - 2022-06-07 17:32 - 000000000 ____D C:\Program Files\Malwarebytes 2022-06-07 17:30 - 2022-06-07 17:31 - 000000000 ____D C:\AdwCleaner 2022-06-03 17:04 - 2022-06-03 17:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Need for Speed Underground 2 2022-06-03 15:25 - 2022-06-03 15:25 - 000000000 ____D C:\Windows\SysWOW64\Macromed 2022-06-02 18:45 - 2022-06-02 18:45 - 000000877 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++.lnk 2022-06-02 18:45 - 2022-06-02 18:45 - 000000000 ____D C:\Users\Paddy\AppData\Roaming\Notepad++ 2022-06-02 18:45 - 2022-06-02 18:45 - 000000000 ____D C:\Program Files\Notepad++ 2022-06-02 16:03 - 2022-06-02 16:03 - 000000000 ____D C:\Windows\LastGood.Tmp 2022-06-02 15:57 - 2022-05-21 05:26 - 001905912 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe 2022-06-02 15:57 - 2022-05-21 05:26 - 001905912 _____ C:\Windows\system32\vulkaninfo.exe 2022-06-02 15:57 - 2022-05-21 05:26 - 001478384 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2022-06-02 15:57 - 2022-05-21 05:26 - 001478384 _____ C:\Windows\SysWOW64\vulkaninfo.exe 2022-06-02 15:57 - 2022-05-21 05:26 - 001467080 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2022-06-02 15:57 - 2022-05-21 05:26 - 001432304 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll 2022-06-02 15:57 - 2022-05-21 05:26 - 001432304 _____ C:\Windows\system32\vulkan-1.dll 2022-06-02 15:57 - 2022-05-21 05:26 - 001209408 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2022-06-02 15:57 - 2022-05-21 05:26 - 001145584 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll 2022-06-02 15:57 - 2022-05-21 05:26 - 001145584 _____ C:\Windows\SysWOW64\vulkan-1.dll 2022-06-02 15:57 - 2022-05-21 05:23 - 000587336 _____ C:\Windows\system32\nvofapi64.dll 2022-06-02 15:57 - 2022-05-21 05:23 - 000460496 _____ C:\Windows\SysWOW64\nvofapi.dll 2022-06-02 15:57 - 2022-05-21 05:22 - 002120896 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2022-06-02 15:57 - 2022-05-21 05:22 - 001603144 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2022-06-02 15:57 - 2022-05-21 05:22 - 001530456 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2022-06-02 15:57 - 2022-05-21 05:22 - 001177312 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2022-06-02 15:57 - 2022-05-21 05:22 - 000730320 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll 2022-06-02 15:57 - 2022-05-21 05:22 - 000724688 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll 2022-06-02 15:57 - 2022-05-21 05:22 - 000712416 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe 2022-06-02 15:57 - 2022-05-21 05:21 - 006964824 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2022-06-02 15:57 - 2022-05-21 05:21 - 006226640 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2022-06-02 15:57 - 2022-05-21 05:21 - 005100752 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2022-06-02 15:57 - 2022-05-21 05:21 - 002932952 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2022-06-02 15:57 - 2022-05-21 05:21 - 000582712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll 2022-06-02 15:57 - 2022-05-21 05:21 - 000457944 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe 2022-06-02 15:57 - 2022-05-21 05:20 - 005730880 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2022-06-02 15:57 - 2022-05-20 02:51 - 000089337 _____ C:\Windows\system32\nvinfo.pb 2022-06-02 15:56 - 2022-05-21 05:19 - 000851136 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe 2022-06-02 15:56 - 2022-05-21 05:18 - 006465200 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll 2022-06-02 13:25 - 2022-06-02 13:51 - 000000000 ____D C:\Program Files (x86)\Minimal ADB and Fastboot 2022-06-02 13:25 - 2022-06-02 13:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minimal ADB and Fastboot 2022-06-02 13:21 - 2022-06-02 13:21 - 000000000 ____D C:\Program Files\DIFX 2022-06-02 13:20 - 2022-06-02 13:20 - 000000000 ____D C:\adb 2022-06-02 12:53 - 2022-06-02 13:23 - 000000000 ____D C:\Users\Paddy\AppData\Roaming\System 2022-06-02 08:41 - 2022-06-02 08:41 - 000000000 ____D C:\Users\Paddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\InfinityBox 2022-06-02 08:13 - 2022-06-02 08:13 - 000684984 _____ (Mozilla Foundation) C:\Users\Paddy\AppData\LocalLow\freebl3.dll 2022-06-02 08:13 - 2022-06-02 08:13 - 000627128 _____ (Mozilla Foundation) C:\Users\Paddy\AppData\LocalLow\mozglue.dll 2022-06-02 08:13 - 2022-06-02 08:13 - 000449280 _____ (Microsoft Corporation) C:\Users\Paddy\AppData\LocalLow\msvcp140.dll 2022-06-02 08:13 - 2022-06-02 08:13 - 000254392 _____ (Mozilla Foundation) C:\Users\Paddy\AppData\LocalLow\softokn3.dll 2022-06-02 08:13 - 2022-06-02 08:13 - 000080128 _____ (Microsoft Corporation) C:\Users\Paddy\AppData\LocalLow\vcruntime140.dll 2022-06-02 08:13 - 2022-06-02 08:13 - 000000162 _____ C:\Users\Paddy\AppData\LocalLow\nssdbm3.dll 2022-06-02 07:52 - 2022-06-02 09:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\InfinityBox 2022-05-26 11:32 - 2022-06-08 17:44 - 000000000 ____D C:\Temp 2022-05-26 11:32 - 2022-05-26 11:32 - 000003606 _____ C:\Windows\system32\Tasks\Motorola Device Manager Update 2022-05-26 11:32 - 2022-05-26 11:32 - 000003430 _____ C:\Windows\system32\Tasks\Motorola Device Manager Initial Update 2022-05-26 11:32 - 2022-05-26 11:32 - 000000000 ____D C:\Users\Paddy\AppData\Roaming\Motorola Mobility 2022-05-26 11:31 - 2022-05-26 11:32 - 000000000 ____D C:\Program Files (x86)\Motorola Mobility 2022-05-26 11:31 - 2022-05-26 11:31 - 000000000 ____D C:\Users\Paddy\AppData\Roaming\Motorola 2022-05-26 11:31 - 2022-05-26 11:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Motorola Device Manager 2022-05-26 11:31 - 2022-05-26 11:31 - 000000000 ____D C:\Program Files\Motorola Mobility LLC 2022-05-26 11:31 - 2022-05-26 11:31 - 000000000 ____D C:\Program Files\Common Files\Motorola Shared 2022-05-26 11:31 - 2022-05-26 11:31 - 000000000 ____D C:\Program Files (x86)\MSXML 4.0 2022-05-26 11:31 - 2022-05-26 11:31 - 000000000 ____D C:\Program Files (x86)\Motorola 2022-05-13 19:44 - 2022-05-13 19:44 - 000000028 ____H C:\.GamingRoot 2022-05-13 19:44 - 2022-05-13 19:44 - 000000000 ____D C:\XboxGames 2022-05-10 20:27 - 2022-05-10 20:27 - 026268672 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 024272384 _____ (Microsoft Corporation) C:\Windows\system32\Hydrogen.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 023447040 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 019865600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 018768384 _____ (Microsoft Corporation) C:\Windows\system32\HologramWorld.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 018080256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 014760448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 010848616 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2022-05-10 20:27 - 2022-05-10 20:27 - 008890016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 008249344 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 007703552 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 007650392 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 007548648 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 007120384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 006490624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 006375144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 006016696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 005820928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 005355624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 005107712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AuthFWSnapin.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 005107712 _____ (Microsoft Corporation) C:\Windows\system32\AuthFWSnapin.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 004801952 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 004748288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 004684160 _____ (Microsoft Corporation) C:\Windows\system32\setupapi.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 004630368 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe 2022-05-10 20:27 - 2022-05-10 20:27 - 004491448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe 2022-05-10 20:27 - 2022-05-10 20:27 - 004461528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setupapi.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 004305920 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 003945472 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 003828872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneCoreUAPCommonProxyStub.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 003656704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 003562768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 003336192 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 002992464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys 2022-05-10 20:27 - 2022-05-10 20:27 - 002946624 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 002852176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys 2022-05-10 20:27 - 2022-05-10 20:27 - 002844672 _____ (Microsoft Corporation) C:\Windows\system32\xpsservices.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 002813440 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 002753024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys 2022-05-10 20:27 - 2022-05-10 20:27 - 002692096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 002630496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 002539520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 002520056 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 002454424 _____ (Microsoft Corporation) C:\Windows\system32\WMVCORE.DLL 2022-05-10 20:27 - 2022-05-10 20:27 - 002432000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AcGenral.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 002404688 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.AppAgent.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 002340304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 002272656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 002221568 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.ModernAppAgent.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 002200768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 002142208 _____ (Microsoft Corporation) C:\Windows\system32\MdmDiagnostics.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 002138304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVCORE.DLL 2022-05-10 20:27 - 2022-05-10 20:27 - 002026296 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 002024280 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntSubsystems64.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 001983328 _____ (Microsoft Corporation) C:\Windows\system32\wsp_fs.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 001957576 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 001949184 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 001839616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallService.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 001831424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xpsservices.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 001752472 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 001722200 _____ (Microsoft Corporation) C:\Windows\system32\wsp_health.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 001709056 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 001698824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 001681744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 001680896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 001657344 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 001645928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Microsoft.Uev.AppAgent.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 001635840 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 001572192 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe 2022-05-10 20:27 - 2022-05-10 20:27 - 001543680 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe 2022-05-10 20:27 - 2022-05-10 20:27 - 001511344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 001507680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_fs.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 001504104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppVEntSubsystems32.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 001449984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 001440504 _____ (Microsoft Corporation) C:\Windows\system32\msvproc.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 001434112 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.Handlers.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 001395040 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 001387520 _____ (Microsoft Corporation) C:\Windows\system32\bcastdvruserservice.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 001353312 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 001335808 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 001328128 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 001316704 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi 2022-05-10 20:27 - 2022-05-10 20:27 - 001315664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_health.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 001302648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 001269080 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe 2022-05-10 20:27 - 2022-05-10 20:27 - 001264640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe 2022-05-10 20:27 - 2022-05-10 20:27 - 001262296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvproc.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 001260904 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntSubsystemController.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 001220096 _____ (Microsoft Corporation) C:\Windows\system32\AgentService.exe 2022-05-10 20:27 - 2022-05-10 20:27 - 001217536 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.CommonBridge.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 001196272 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 001138024 _____ (Microsoft Corporation) C:\Windows\system32\DolbyDecMFT.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 001134080 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 001129600 _____ (Microsoft Corporation) C:\Windows\system32\ClipUp.exe 2022-05-10 20:27 - 2022-05-10 20:27 - 001126912 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 001092096 _____ (Microsoft Corporation) C:\Windows\system32\HoloSI.PCShell.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 001088864 _____ (Microsoft Corporation) C:\Windows\system32\pidgenx.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 001087736 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 001076928 _____ (Microsoft Corporation) C:\Windows\system32\gdi32full.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 001047040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpnapps.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 001026560 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 001015944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 001015808 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 001011040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudExperienceHostCommon.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000966656 _____ (Microsoft Corporation) C:\Windows\system32\WFS.exe 2022-05-10 20:27 - 2022-05-10 20:27 - 000960160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DolbyDecMFT.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000940032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TpmCoreProvisioning.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000897112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinTypes.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000897024 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000896104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32full.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000892928 _____ (Microsoft Corporation) C:\Windows\system32\werconcpl.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000889704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pidgenx.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000889424 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000885248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000875520 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000864256 _____ (Microsoft Corporation) C:\Windows\system32\CustomShellHost.exe 2022-05-10 20:27 - 2022-05-10 20:27 - 000848896 _____ (Microsoft Corporation) C:\Windows\system32\HolographicExtensions.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000841216 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000837632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000822224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000809344 _____ (Microsoft Corporation) C:\Windows\system32\tcblaunch.exe 2022-05-10 20:27 - 2022-05-10 20:27 - 000803152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys 2022-05-10 20:27 - 2022-05-10 20:27 - 000793088 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000776824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000771584 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.PrinterCustomActions.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000754688 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.Office2013CustomActions.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000745952 _____ (Microsoft Corporation) C:\Windows\system32\BioIso.exe 2022-05-10 20:27 - 2022-05-10 20:27 - 000737792 _____ (Microsoft Corporation) C:\Windows\system32\vpnike.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000712192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Management.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000706568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000685568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uReFS.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000681472 _____ (Microsoft Corporation) C:\Windows\system32\dmenrollengine.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000679424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netlogon.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000674040 _____ (Microsoft Corporation) C:\Windows\system32\GenValObj.exe 2022-05-10 20:27 - 2022-05-10 20:27 - 000669696 _____ (Microsoft Corporation) C:\Windows\system32\WFSR.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000646688 _____ (Microsoft Corporation) C:\Windows\system32\policymanager.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000637744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000617984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000614400 _____ (Microsoft Corporation) C:\Windows\system32\PlayToManager.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000608768 _____ (Microsoft Corporation) C:\Windows\system32\sppcext.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000601944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys 2022-05-10 20:27 - 2022-05-10 20:27 - 000592896 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Cortana.Desktop.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000586752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\csc.sys 2022-05-10 20:27 - 2022-05-10 20:27 - 000580960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2022-05-10 20:27 - 2022-05-10 20:27 - 000576336 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe 2022-05-10 20:27 - 2022-05-10 20:27 - 000572928 _____ (Microsoft Corporation) C:\Windows\system32\SppExtComObj.Exe 2022-05-10 20:27 - 2022-05-10 20:27 - 000566784 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000561152 _____ (Microsoft Corporation) C:\Windows\system32\authfwcfg.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000558080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_isv.exe 2022-05-10 20:27 - 2022-05-10 20:27 - 000556032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmenrollengine.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d9on12.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000546816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sppcext.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000544768 _____ (Microsoft Corporation) C:\Windows\system32\nltest.exe 2022-05-10 20:27 - 2022-05-10 20:27 - 000541184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate.exe 2022-05-10 20:27 - 2022-05-10 20:27 - 000539648 _____ (Microsoft Corporation) C:\Windows\system32\InputSwitch.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000539192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000532992 _____ (Microsoft Corporation) C:\Windows\system32\IESettingSync.exe 2022-05-10 20:27 - 2022-05-10 20:27 - 000532032 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000531992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\policymanager.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000529920 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000520704 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000512000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Microsoft.Uev.Office2013CustomActions.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000505856 _____ (Microsoft Corporation) C:\Windows\system32\rascustom.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000503648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS 2022-05-10 20:27 - 2022-05-10 20:27 - 000496360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000496352 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000489320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe 2022-05-10 20:27 - 2022-05-10 20:27 - 000478720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp.exe 2022-05-10 20:27 - 2022-05-10 20:27 - 000468992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000463360 _____ (Microsoft Corporation) C:\Windows\system32\IPSECSVC.DLL 2022-05-10 20:27 - 2022-05-10 20:27 - 000459776 _____ (Microsoft Corporation) C:\Windows\system32\rdpshell.exe 2022-05-10 20:27 - 2022-05-10 20:27 - 000448000 _____ (Microsoft Corporation) C:\Windows\system32\edgeIso.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000445952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv 2022-05-10 20:27 - 2022-05-10 20:27 - 000437248 _____ (Microsoft Corporation) C:\Windows\system32\wincorlib.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000436560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fltMgr.sys 2022-05-10 20:27 - 2022-05-10 20:27 - 000434176 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOMPOSE.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000431616 _____ (Microsoft Corporation) C:\Windows\system32\omadmclient.exe 2022-05-10 20:27 - 2022-05-10 20:27 - 000431104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FirewallAPI.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000430080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InputSwitch.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000425472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToManager.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000424272 _____ (Microsoft Corporation) C:\Windows\system32\MSAudDecMFT.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000419440 _____ (Microsoft Corporation) C:\Windows\system32\SgrmEnclave.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000416840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000415344 _____ (Microsoft Corporation) C:\Windows\system32\SgrmEnclave_secure.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000415232 _____ (Microsoft Corporation) C:\Windows\system32\AcGenral.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000408576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000402944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgeIso.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000387464 _____ (Microsoft Corporation) C:\Windows\system32\SIHClient.exe 2022-05-10 20:27 - 2022-05-10 20:27 - 000376688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msrpc.sys 2022-05-10 20:27 - 2022-05-10 20:27 - 000373248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authfwcfg.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000363128 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDECD.DLL 2022-05-10 20:27 - 2022-05-10 20:27 - 000363064 _____ (Microsoft Corporation) C:\Windows\system32\sppwinob.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000354304 _____ (Microsoft Corporation) C:\Windows\system32\polstore.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000351744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhoneOm.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000350208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000348160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_isv.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000347648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL 2022-05-10 20:27 - 2022-05-10 20:27 - 000345600 _____ (Microsoft Corporation) C:\Windows\system32\scecli.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000344456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP4SDECD.DLL 2022-05-10 20:27 - 2022-05-10 20:27 - 000343552 _____ (Microsoft Corporation) C:\Windows\system32\rdpinit.exe 2022-05-10 20:27 - 2022-05-10 20:27 - 000343488 _____ (Microsoft Corporation) C:\Windows\system32\shlwapi.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000339456 _____ (Microsoft Corporation) C:\Windows\system32\msIso.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000335872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wldap32.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000330752 _____ (Microsoft Corporation) C:\Windows\system32\dmenterprisediagnostics.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000329728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32k.sys 2022-05-10 20:27 - 2022-05-10 20:27 - 000327168 _____ (Microsoft Corporation) C:\Windows\system32\Wldap32.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000323584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys 2022-05-10 20:27 - 2022-05-10 20:27 - 000315048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000307984 _____ (Microsoft Corporation) C:\Windows\system32\skci.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000302080 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000297984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincorlib.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000296448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\polstore.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000294920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wevtapi.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000276864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shlwapi.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000272744 _____ (Microsoft Corporation) C:\Windows\system32\offlinesam.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000271872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msIso.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000271648 _____ (Microsoft Corporation) C:\Windows\system32\logoncli.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000268056 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000266080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2022-05-10 20:27 - 2022-05-10 20:27 - 000264192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mdmregistration.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000255488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scecli.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000254056 _____ (Microsoft Corporation) C:\Windows\system32\weretw.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000249344 _____ (Microsoft Corporation) C:\Windows\system32\werui.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000248320 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe 2022-05-10 20:27 - 2022-05-10 20:27 - 000246272 _____ (Microsoft Corporation) C:\Windows\system32\wersvc.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000244224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fwpolicyiomgr.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000240128 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_AnalogShell.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000237056 _____ (Microsoft Corporation) C:\Windows\system32\IndexedDbLegacy.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000236904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\offlinesam.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000235008 _____ (Microsoft Corporation) C:\Windows\system32\DWWIN.EXE 2022-05-10 20:27 - 2022-05-10 20:27 - 000229848 _____ (Microsoft Corporation) C:\Windows\system32\dmcmnutils.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000229712 _____ (Microsoft Corporation) C:\Windows\system32\wermgr.exe 2022-05-10 20:27 - 2022-05-10 20:27 - 000228864 _____ (Microsoft Corporation) C:\Windows\system32\rdsdwmdr.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000223592 _____ (Microsoft Corporation) C:\Windows\system32\tcbloader.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000209920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werui.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wevtutil.exe 2022-05-10 20:27 - 2022-05-10 20:27 - 000208384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndiswan.sys 2022-05-10 20:27 - 2022-05-10 20:27 - 000202600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe 2022-05-10 20:27 - 2022-05-10 20:27 - 000199352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\logoncli.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000196736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\weretw.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000189440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWWIN.EXE 2022-05-10 20:27 - 2022-05-10 20:27 - 000188928 _____ C:\Windows\system32\uwfcfgmgmt.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000188928 _____ (Microsoft Corporation) C:\Windows\system32\rasman.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000187392 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallServiceTasks.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000186368 _____ (Microsoft Corporation) C:\Windows\system32\FXSUTILITY.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000181096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2022-05-10 20:27 - 2022-05-10 20:27 - 000178688 _____ (Microsoft Corporation) C:\Windows\system32\Robocopy.exe 2022-05-10 20:27 - 2022-05-10 20:27 - 000176640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IndexedDbLegacy.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000173144 _____ (Microsoft Corporation) C:\Windows\system32\vertdll.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000173056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fwbase.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000172072 _____ (Microsoft Corporation) C:\Windows\system32\WerFaultSecure.exe 2022-05-10 20:27 - 2022-05-10 20:27 - 000169984 _____ (Microsoft Corporation) C:\Windows\system32\mdmmigrator.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000164240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmcmnutils.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\L2SecHC.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000160256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasman.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000152936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFaultSecure.exe 2022-05-10 20:27 - 2022-05-10 20:27 - 000150856 _____ (Microsoft Corporation) C:\Windows\system32\Windows.System.Profile.HardwareId.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000149328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hvsocket.sys 2022-05-10 20:27 - 2022-05-10 20:27 - 000147232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KerbClientShared.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000146944 _____ (Microsoft Corporation) C:\Windows\system32\slc.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000146776 _____ (Microsoft Corporation) C:\Windows\system32\CscMig.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000141536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wldp.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000139264 _____ (Microsoft Corporation) C:\Windows\system32\hlink.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000137728 _____ (Microsoft Corporation) C:\Windows\system32\samlib.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000136016 _____ (Microsoft Corporation) C:\Windows\system32\offlinelsa.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000135680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Robocopy.exe 2022-05-10 20:27 - 2022-05-10 20:27 - 000134776 _____ (Microsoft Corporation) C:\Windows\system32\gpapi.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000131424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PktMon.sys 2022-05-10 20:27 - 2022-05-10 20:27 - 000130160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000130048 _____ (Microsoft Corporation) C:\Windows\system32\sppc.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000129024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hlink.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000128000 _____ (Microsoft Corporation) C:\Windows\system32\wercplsupport.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000125776 _____ (Microsoft Corporation) C:\Windows\system32\kdnet.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000114176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\slc.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000114176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\agilevpn.sys 2022-05-10 20:27 - 2022-05-10 20:27 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\wsqmcons.exe 2022-05-10 20:27 - 2022-05-10 20:27 - 000110080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rasl2tp.sys 2022-05-10 20:27 - 2022-05-10 20:27 - 000105320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\crashdmp.sys 2022-05-10 20:27 - 2022-05-10 20:27 - 000102400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\raspptp.sys 2022-05-10 20:27 - 2022-05-10 20:27 - 000101888 _____ (Microsoft Corporation) C:\Windows\system32\winipsec.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000101888 _____ (Microsoft Corporation) C:\Windows\system32\FwRemoteSvr.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000099328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cldapi.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000098816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sppc.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000098128 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000095184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpfve.sys 2022-05-10 20:27 - 2022-05-10 20:27 - 000094008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32u.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000093184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\samlib.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000088576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000086528 _____ (Microsoft Corporation) C:\Windows\system32\efslsaext.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000078024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000074432 _____ (Microsoft Corporation) C:\Windows\system32\SortWindows62.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000071168 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winipsec.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000068728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SortWindows62.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000065536 _____ (Microsoft Corporation) C:\Windows\system32\iemigplugin.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000062976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iemigplugin.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000062800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GameInput.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FwRemoteSvr.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000058880 _____ (Microsoft Corporation) C:\Windows\system32\fwcfg.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000056320 _____ (Microsoft Corporation) C:\Windows\system32\enrollmentapi.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000054784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000048128 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000047104 _____ (Microsoft Corporation) C:\Windows\system32\werdiagcontroller.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000046080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fwcfg.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000041296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys 2022-05-10 20:27 - 2022-05-10 20:27 - 000040960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\enrollmentapi.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000038912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werdiagcontroller.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000038240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Dumpstorport.sys 2022-05-10 20:27 - 2022-05-10 20:27 - 000035328 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOMPOSERES.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000034304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LaunchWinApp.exe 2022-05-10 20:27 - 2022-05-10 20:27 - 000032600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys 2022-05-10 20:27 - 2022-05-10 20:27 - 000030208 _____ (Microsoft Corporation) C:\Windows\system32\CheckNetIsolation.exe 2022-05-10 20:27 - 2022-05-10 20:27 - 000026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CheckNetIsolation.exe 2022-05-10 20:27 - 2022-05-10 20:27 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000022528 _____ (Microsoft Corporation) C:\Windows\system32\slcext.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000020480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Dmpusbstor.sys 2022-05-10 20:27 - 2022-05-10 20:27 - 000019968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\slcext.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wfapigp.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000012288 _____ (Microsoft Corporation) C:\Windows\system32\TSErrRedir.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000012288 _____ (Microsoft Corporation) C:\Windows\system32\pacjsworker.exe 2022-05-10 20:27 - 2022-05-10 20:27 - 000011799 _____ C:\Windows\system32\DrtmAuthTxt.wim 2022-05-10 20:27 - 2022-05-10 20:27 - 000010752 _____ (Microsoft Corporation) C:\Windows\system32\DMAlertListener.ProxyStub.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DMAlertListener.ProxyStub.dll 2022-05-10 20:27 - 2022-05-10 20:27 - 000003584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TpmCertResources.dll 2022-05-10 20:26 - 2022-05-10 20:27 - 003503896 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 017543168 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 010345720 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 009037312 _____ (Microsoft Corporation) C:\Windows\system32\BingMaps.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 008022840 _____ (Microsoft Corporation) C:\Windows\system32\OneCoreUAPCommonProxyStub.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 007984592 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 006417920 _____ (Microsoft Corporation) C:\Windows\system32\twinui.pcshell.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 006190080 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 005114880 _____ (Microsoft Corporation) C:\Windows\explorer.exe 2022-05-10 20:26 - 2022-05-10 20:26 - 003904512 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 003814400 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys 2022-05-10 20:26 - 2022-05-10 20:26 - 003750912 _____ (Microsoft Corporation) C:\Windows\system32\EdgeContent.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 003574784 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 003406336 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 003063296 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 002977792 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 002652672 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 002632704 _____ (Microsoft Corporation) C:\Windows\system32\MapGeocoder.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 002461696 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 002430976 _____ (Microsoft Corporation) C:\Windows\system32\InstallService.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 002378752 _____ (Microsoft Corporation) C:\Windows\system32\smartscreen.exe 2022-05-10 20:26 - 2022-05-10 20:26 - 002308096 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.3D.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 002250240 _____ (Microsoft Corporation) C:\Windows\system32\ISM.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 002244096 _____ (Microsoft Corporation) C:\Windows\system32\wlidsvc.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 002008400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\refs.sys 2022-05-10 20:26 - 2022-05-10 20:26 - 001880576 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 001870848 _____ (Microsoft Corporation) C:\Windows\system32\WpcDesktopMonSvc.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 001828984 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi 2022-05-10 20:26 - 2022-05-10 20:26 - 001785544 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 001768960 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 001677312 _____ (Microsoft Corporation) C:\Windows\system32\MoUsoCoreWorker.exe 2022-05-10 20:26 - 2022-05-10 20:26 - 001580544 _____ (Microsoft Corporation) C:\Windows\system32\SpeechPal.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 001561872 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe 2022-05-10 20:26 - 2022-05-10 20:26 - 001555968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys 2022-05-10 20:26 - 2022-05-10 20:26 - 001506816 _____ (Microsoft Corporation) C:\Windows\system32\wpncore.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 001413120 _____ (Microsoft Corporation) C:\Windows\system32\usocoreworker.exe 2022-05-10 20:26 - 2022-05-10 20:26 - 001396624 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi 2022-05-10 20:26 - 2022-05-10 20:26 - 001334784 _____ (Microsoft Corporation) C:\Windows\system32\wpnapps.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 001272832 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 001207040 _____ (Microsoft Corporation) C:\Windows\system32\ApplyTrustOffline.exe 2022-05-10 20:26 - 2022-05-10 20:26 - 001200888 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe 2022-05-10 20:26 - 2022-05-10 20:26 - 001187176 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHostCommon.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 001173504 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 001171456 _____ (Microsoft Corporation) C:\Windows\system32\TpmCoreProvisioning.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 001101824 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 001053696 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL 2022-05-10 20:26 - 2022-05-10 20:26 - 001026560 _____ (Microsoft Corporation) C:\Windows\system32\refsutil.exe 2022-05-10 20:26 - 2022-05-10 20:26 - 000964096 _____ (Microsoft Corporation) C:\Windows\system32\PhoneService.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000923656 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000892928 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL 2022-05-10 20:26 - 2022-05-10 20:26 - 000885248 _____ (Microsoft Corporation) C:\Windows\system32\agentactivationruntimewindows.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000847360 _____ (Microsoft Corporation) C:\Windows\system32\lsm.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000825344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys 2022-05-10 20:26 - 2022-05-10 20:26 - 000811520 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Management.Service.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000806400 _____ (Microsoft Corporation) C:\Windows\system32\uReFS.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000766040 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000739328 _____ (Microsoft Corporation) C:\Windows\system32\d3d9on12.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000723968 _____ (Microsoft Corporation) C:\Windows\system32\vds.exe 2022-05-10 20:26 - 2022-05-10 20:26 - 000699872 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000680784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys 2022-05-10 20:26 - 2022-05-10 20:26 - 000635904 _____ (Microsoft Corporation) C:\Windows\system32\FirewallAPI.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000607744 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe 2022-05-10 20:26 - 2022-05-10 20:26 - 000596992 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2022-05-10 20:26 - 2022-05-10 20:26 - 000590848 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv 2022-05-10 20:26 - 2022-05-10 20:26 - 000579584 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe 2022-05-10 20:26 - 2022-05-10 20:26 - 000569856 _____ (Microsoft Corporation) C:\Windows\system32\usosvc.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000548352 _____ (Microsoft Corporation) C:\Windows\system32\SettingsEnvironment.Desktop.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000506368 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL 2022-05-10 20:26 - 2022-05-10 20:26 - 000501760 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe 2022-05-10 20:26 - 2022-05-10 20:26 - 000495616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cldflt.sys 2022-05-10 20:26 - 2022-05-10 20:26 - 000480768 _____ (Microsoft Corporation) C:\Windows\system32\wlansec.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000477040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys 2022-05-10 20:26 - 2022-05-10 20:26 - 000470536 _____ (Microsoft Corporation) C:\Windows\system32\wlanapi.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000465920 _____ (Microsoft Corporation) C:\Windows\system32\PhoneOm.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000435712 _____ (Microsoft Corporation) C:\Windows\system32\wlanmsm.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000433152 _____ (Microsoft Corporation) C:\Windows\system32\WaaSMedicSvc.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000418888 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000403936 _____ (Microsoft Corporation) C:\Windows\system32\wevtapi.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000402432 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000399872 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000358912 _____ (Microsoft Corporation) C:\Windows\system32\WaaSMedicCapsule.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000330752 _____ (Microsoft Corporation) C:\Windows\system32\mdmregistration.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000329728 _____ (Microsoft Corporation) C:\Windows\system32\dot3svc.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000312320 _____ (Microsoft Corporation) C:\Windows\system32\fwpolicyiomgr.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000306512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys 2022-05-10 20:26 - 2022-05-10 20:26 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000295424 _____ (Microsoft Corporation) C:\Windows\system32\TpmTasks.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000288768 _____ C:\Windows\system32\Windows.Management.InprocObjects.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000287744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BthA2dp.sys 2022-05-10 20:26 - 2022-05-10 20:26 - 000285184 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.AppDefaults.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000278016 _____ (Microsoft Corporation) C:\Windows\system32\wevtutil.exe 2022-05-10 20:26 - 2022-05-10 20:26 - 000273920 _____ (Microsoft Corporation) C:\Windows\system32\wuuhosdeployment.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000252256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netvsc.sys 2022-05-10 20:26 - 2022-05-10 20:26 - 000231936 _____ (Microsoft Corporation) C:\Windows\system32\InstallServiceTasks.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000226304 _____ (Microsoft Corporation) C:\Windows\system32\PeopleBand.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000220008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spacedump.sys 2022-05-10 20:26 - 2022-05-10 20:26 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\fwbase.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000210944 _____ (Microsoft Corporation) C:\Windows\system32\AppXApplicabilityBlob.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000205312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBAUDIO.sys 2022-05-10 20:26 - 2022-05-10 20:26 - 000203264 _____ (Microsoft Corporation) C:\Windows\system32\L2SecHC.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000199952 _____ (Microsoft Corporation) C:\Windows\system32\KerbClientShared.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000198496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys 2022-05-10 20:26 - 2022-05-10 20:26 - 000185856 _____ (Microsoft Corporation) C:\Windows\system32\cimfs.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000181600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wfplwfs.sys 2022-05-10 20:26 - 2022-05-10 20:26 - 000181248 _____ (Microsoft Corporation) C:\Windows\system32\fwmdmcsp.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000174048 _____ (Microsoft Corporation) C:\Windows\system32\wldp.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000165728 _____ (Microsoft Corporation) C:\Windows\system32\icfupgd.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000145760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bindflt.sys 2022-05-10 20:26 - 2022-05-10 20:26 - 000142184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pmem.sys 2022-05-10 20:26 - 2022-05-10 20:26 - 000139600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS 2022-05-10 20:26 - 2022-05-10 20:26 - 000138752 _____ (Microsoft Corporation) C:\Windows\system32\CustomInstallExec.exe 2022-05-10 20:26 - 2022-05-10 20:26 - 000135168 _____ (Microsoft Corporation) C:\Windows\system32\vdsutil.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000133800 _____ (Microsoft Corporation) C:\Windows\system32\win32u.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000115200 _____ (Microsoft Corporation) C:\Windows\system32\cldapi.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000113664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthenum.sys 2022-05-10 20:26 - 2022-05-10 20:26 - 000112128 _____ (Microsoft Corporation) C:\Windows\system32\WaaSMedicAgent.exe 2022-05-10 20:26 - 2022-05-10 20:26 - 000112128 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000110592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS 2022-05-10 20:26 - 2022-05-10 20:26 - 000109056 _____ (Microsoft Corporation) C:\Windows\system32\vds_ps.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000106496 _____ (Microsoft Corporation) C:\Windows\system32\dot3msm.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000103936 _____ (Microsoft Corporation) C:\Windows\system32\bindfltapi.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000094208 _____ (Microsoft Corporation) C:\Windows\system32\dot3api.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000094072 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000093696 _____ C:\Windows\system32\Drivers\cimfs.sys 2022-05-10 20:26 - 2022-05-10 20:26 - 000083792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\uaspstor.sys 2022-05-10 20:26 - 2022-05-10 20:26 - 000082136 _____ (Microsoft Corporation) C:\Windows\system32\WindowsManagementServiceWinRt.ProxyStub.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000080384 _____ (Microsoft Corporation) C:\Windows\system32\autopilot.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000072032 _____ (Microsoft Corporation) C:\Windows\system32\GameInput.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000071168 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000065048 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2022-05-10 20:26 - 2022-05-10 20:26 - 000064848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storufs.sys 2022-05-10 20:26 - 2022-05-10 20:26 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000052736 _____ (Microsoft Corporation) C:\Windows\system32\MdmDiagnosticsTool.exe 2022-05-10 20:26 - 2022-05-10 20:26 - 000045568 _____ (Microsoft Corporation) C:\Windows\system32\WiredNetworkCSP.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000045568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BthMini.SYS 2022-05-10 20:26 - 2022-05-10 20:26 - 000045056 _____ (Microsoft Corporation) C:\Windows\system32\LaunchWinApp.exe 2022-05-10 20:26 - 2022-05-10 20:26 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Resources.Common.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000041984 _____ (Microsoft Corporation) C:\Windows\system32\WiFiConfigSP.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\wfdprov.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000040784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Dumpata.sys 2022-05-10 20:26 - 2022-05-10 20:26 - 000036352 _____ (Microsoft Corporation) C:\Windows\system32\wlansvcpal.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000031744 _____ (Microsoft Corporation) C:\Windows\system32\FaxPrinterInstaller.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000029184 _____ (Microsoft Corporation) C:\Windows\system32\WaaSMedicPS.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000027136 _____ (Microsoft Corporation) C:\Windows\system32\vdsldr.exe 2022-05-10 20:26 - 2022-05-10 20:26 - 000027136 _____ (Microsoft Corporation) C:\Windows\system32\kdcpw.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000025088 _____ (Microsoft Corporation) C:\Windows\system32\wfapigp.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000016896 _____ (Microsoft Corporation) C:\Windows\system32\wlanhlp.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000003584 _____ (Microsoft Corporation) C:\Windows\system32\TpmCertResources.dll 2022-05-10 20:26 - 2022-05-10 20:26 - 000002560 _____ (Microsoft Corporation) C:\Windows\system32\PhoneServiceRes.dll 2022-05-10 20:22 - 2022-05-10 20:22 - 000000000 ___HD C:\$WinREAgent 2022-05-10 20:22 - 2022-04-26 06:07 - 000495616 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe 2022-05-10 20:22 - 2022-04-26 05:32 - 000391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe |
09.06.2022, 09:29 | #5 |
| Win 10: Zugriff auf Amazonkonto. Trojaner eingefangen? Teil 4 Code:
ATTFilter ==================== Ein Monat (geänderte) ================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2022-06-08 17:50 - 2020-12-21 18:49 - 001723220 _____ C:\Windows\system32\PerfStringBackup.INI 2022-06-08 17:50 - 2019-12-07 16:51 - 000743818 _____ C:\Windows\system32\perfh007.dat 2022-06-08 17:50 - 2019-12-07 16:51 - 000150240 _____ C:\Windows\system32\perfc007.dat 2022-06-08 17:50 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF 2022-06-08 17:46 - 2020-12-22 20:07 - 000004210 _____ C:\Windows\system32\Tasks\CCleaner Update 2022-06-08 17:45 - 2020-12-21 20:58 - 000000000 ____D C:\Program Files (x86)\Google 2022-06-08 17:44 - 2020-12-21 20:25 - 000000000 ____D C:\ProgramData\NVIDIA 2022-06-08 17:43 - 2020-09-27 09:33 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2022-06-08 17:43 - 2020-09-27 07:33 - 000008192 ___SH C:\DumpStack.log.tmp 2022-06-08 17:43 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-06-08 17:42 - 2019-12-07 11:03 - 000786432 _____ C:\Windows\system32\config\BBI 2022-06-08 17:35 - 2020-12-22 20:07 - 000000000 ____D C:\Program Files\CCleaner 2022-06-08 17:32 - 2022-03-28 20:42 - 000000000 ____D C:\ProgramData\Unified Remote 2022-06-08 17:32 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2022-06-08 17:32 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness 2022-06-07 20:51 - 2020-09-27 07:33 - 000000000 ____D C:\Windows\system32\SleepStudy 2022-06-07 18:12 - 2021-11-19 20:05 - 000136672 _____ (Microsoft Corporation) C:\Windows\system32\gamelaunchhelper.dll 2022-06-07 18:12 - 2021-04-05 14:29 - 002762208 _____ (Microsoft Corporation) C:\Windows\system32\xgameruntime.dll 2022-06-07 18:12 - 2021-04-05 14:29 - 000402920 _____ (Microsoft Corporation) C:\Windows\system32\gameplatformservices.dll 2022-06-07 18:12 - 2021-04-05 14:29 - 000230864 _____ (Microsoft Corporation) C:\Windows\system32\gamingservicesproxy.dll 2022-06-07 18:12 - 2021-04-05 14:29 - 000198112 _____ (Microsoft Corporation) C:\Windows\system32\gameconfighelper.dll 2022-06-07 18:12 - 2021-04-05 14:29 - 000131072 _____ (Microsoft Corporation) C:\Windows\system32\gamingtcuihelpers.dll 2022-06-07 18:12 - 2021-04-05 14:29 - 000062928 _____ (Microsoft Corporation) C:\Windows\system32\gamemodcontrol.exe 2022-06-07 17:33 - 2019-12-07 11:14 - 000000000 ___HD C:\Windows\ELAMBKUP 2022-06-07 17:31 - 2021-10-04 20:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung 2022-06-07 17:31 - 2021-10-04 19:26 - 000000000 ____D C:\Users\Paddy\AppData\Roaming\Samsung 2022-06-07 17:31 - 2021-10-04 19:26 - 000000000 ____D C:\Program Files (x86)\Samsung 2022-06-07 17:31 - 2020-12-21 20:17 - 000000000 ____D C:\Users\Paddy\AppData\Roaming\IObit 2022-06-05 11:38 - 2020-09-27 09:36 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-06-04 21:09 - 2021-01-11 14:12 - 000000000 ____D C:\Program Files (x86)\GZ Systems 2022-06-03 18:54 - 2020-09-27 09:37 - 000000000 ____D C:\ProgramData\Packages 2022-06-03 16:13 - 2020-12-27 00:05 - 000000000 ____D C:\Users\Paddy\AppData\Local\CrashDumps 2022-06-03 16:10 - 2021-01-22 22:10 - 000000000 ____D C:\Users\Paddy\AppData\Roaming\DS4Windows 2022-06-03 15:17 - 2020-12-21 21:02 - 000000000 ____D C:\Program Files (x86)\Steam 2022-06-02 18:44 - 2020-12-21 18:53 - 000000000 ____D C:\Users\Paddy\AppData\Local\Packages 2022-06-02 18:35 - 2021-05-24 00:01 - 000000000 ____D C:\Users\Paddy\Documents\Steuer 2020 2022-06-02 18:34 - 2021-12-13 12:18 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2343168550-1689659002-1608603552-1001 2022-06-02 18:34 - 2020-12-21 18:54 - 000003372 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2343168550-1689659002-1608603552-1001 2022-06-02 18:34 - 2020-12-21 18:52 - 000002440 _____ C:\Users\Paddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2022-06-02 16:15 - 2020-12-21 18:55 - 000000000 ____D C:\Users\Paddy\AppData\Local\PlaceholderTileLogoFolder 2022-06-02 16:06 - 2020-12-21 20:41 - 000000000 ____D C:\Users\Paddy\AppData\Local\NVIDIA 2022-06-01 20:13 - 2020-12-21 20:59 - 000002239 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2022-05-31 12:15 - 2022-03-12 17:14 - 000000000 ____D C:\Users\Paddy\Desktop\Cindy 2022-05-31 08:22 - 2020-12-27 01:02 - 000000000 ____D C:\Users\Paddy\AppData\Local\Ubisoft Game Launcher 2022-05-28 08:49 - 2020-12-22 20:19 - 000000000 ____D C:\Users\Paddy\AppData\Local\D3DSCache 2022-05-26 11:31 - 2021-08-26 18:11 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2022-05-21 05:18 - 2020-12-21 20:25 - 007618584 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll 2022-05-12 10:31 - 2020-09-27 07:33 - 000378992 _____ C:\Windows\system32\FNTCACHE.DAT 2022-05-12 10:30 - 2019-12-07 16:54 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2022-05-12 10:30 - 2019-12-07 11:14 - 000000000 ___SD C:\Windows\system32\UNP 2022-05-12 10:30 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel 2022-05-12 10:30 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources 2022-05-12 10:30 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\migwiz 2022-05-12 10:30 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr 2022-05-12 10:30 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System 2022-05-10 20:29 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp 2022-05-10 20:17 - 2020-12-22 11:06 - 000000000 ____D C:\Windows\system32\MRT 2022-05-10 20:16 - 2020-12-22 11:05 - 145501456 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe ==================== SigCheck ============================ (Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.) ==================== Ende von FRST.txt ======================== Untersuchungsergebnis der Verknüpfungen des Benutzers (x64) Version: 08-06-2022 durchgeführt von Paddy (08-06-2022 17:58:55) Gestartet von H:\ Start-Modus: Normal ==================== Verknüpfungen ============================= (Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk -> C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win32\EpicGamesLauncher.exe (Epic Games, Inc.) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk -> C:\Windows\Installer\{90160000-0011-0000-1000-0000000FF1CE}\xlicons.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Immersive Control Panel.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk -> C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe (Malwarebytes) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MusicBrainz Picard.lnk -> C:\Program Files\MusicBrainz Picard\picard.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++.lnk -> C:\Program Files\Notepad++\notepad++.exe (Don HO don.h@free.fr) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk -> C:\Program Files\PCHealthCheck\PCHealthCheck.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk -> C:\Windows\Installer\{90160000-0011-0000-1000-0000000FF1CE}\pptico.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PS Remote Play.lnk -> C:\Program Files (x86)\Sony\PS Remote Play\RemotePlay.exe (Sony Interactive Entertainment Inc.) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk -> C:\Windows\Installer\{90160000-0011-0000-1000-0000000FF1CE}\wordicon.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare\Wondershare MobileTransPro Update\Wondershare MobileTransPro Update.lnk -> C:\Program Files (x86)\Wondershare\MobileTrans (Deutsch)(CPC)\update\Wondershare MobileTransPro Update.exe (Keine Datei) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\Benutzerhandbuch für die Konsolenversion von RAR.lnk -> C:\Program Files\WinRAR\Rar.txt () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\Hilfe zu WinRAR.lnk -> C:\Program Files\WinRAR\WinRAR.chm () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\Was ist neu in dieser Version.lnk -> C:\Program Files\WinRAR\WhatsNew.txt () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\WinRAR.lnk -> C:\Program Files\WinRAR\WinRAR.exe (Alexander Roshal) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell ISE (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell ISE.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\Documentation.lnk -> C:\Program Files\VideoLAN\VLC\Documentation.url () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\Release Notes.lnk -> C:\Program Files\VideoLAN\VLC\NEWS.txt () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VideoLAN Website.lnk -> C:\Program Files\VideoLAN\VLC\VideoLAN Website.url () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VLC media player.lnk -> C:\Program Files\VideoLAN\VLC\vlc.exe (VideoLAN) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unified Remote 3\Unified Remote.lnk -> C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe (Unified Intents AB) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unified Remote 3\Uninstall Unified Remote.lnk -> C:\Program Files (x86)\Unified Remote 3\unins000.exe (Unified Intents AB ) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TruckersMP Launcher\TruckersMP.lnk -> C:\Program Files\TruckersMP Launcher\Launcher.exe (Truckersmp.com) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam\Steam.lnk -> C:\Program Files (x86)\Steam\steam.exe (Valve Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SoundWire Server\SoundWire Server.lnk -> C:\Program Files (x86)\SoundWire Server\SoundWireServer.exe (GeorgieLabs) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SleepTimer Ultimate\license.rtf.lnk -> C:\Program Files (x86)\SleepTimer Ultimate\license.rtf () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SleepTimer Ultimate\SleepTimer Ultimate entfernen.lnk -> C:\Program Files (x86)\SleepTimer Ultimate\unins000.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SleepTimer Ultimate\SleepTimer Ultimate.lnk -> C:\Program Files (x86)\SleepTimer Ultimate\SleepTimerUltimate.exe (Christian Handorf) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.9\OpenOffice Base.lnk -> C:\Program Files (x86)\OpenOffice 4\program\sbase.exe (Apache Software Foundation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.9\OpenOffice Calc.lnk -> C:\Program Files (x86)\OpenOffice 4\program\scalc.exe (Apache Software Foundation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.9\OpenOffice Draw.lnk -> C:\Program Files (x86)\OpenOffice 4\program\sdraw.exe (Apache Software Foundation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.9\OpenOffice Impress.lnk -> C:\Program Files (x86)\OpenOffice 4\program\simpress.exe (Apache Software Foundation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.9\OpenOffice Math.lnk -> C:\Program Files (x86)\OpenOffice 4\program\smath.exe (Apache Software Foundation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.9\OpenOffice Writer.lnk -> C:\Program Files (x86)\OpenOffice 4\program\swriter.exe (Apache Software Foundation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.9\OpenOffice.lnk -> C:\Program Files (x86)\OpenOffice 4\program\soffice.exe (Apache Software Foundation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio\OBS Studio (64bit).lnk -> C:\Program Files\obs-studio\bin\64bit\obs64.exe (OBS) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio\Uninstall.lnk -> C:\Program Files\obs-studio\uninstall.exe (obsproject.com) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\O&O Software\O&O PartitionManager\O&O PartitionManager - Hilfe.lnk -> C:\Program Files\OO Software\PartitionManager\oopm.chm () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\O&O Software\O&O PartitionManager\O&O PartitionManager.lnk -> C:\Windows\Installer\{1934BCF7-A63A-4C1F-809D-2B33C8F03B8F}\oo_sme_exe_E3DD0A8F8033485B944F06679748B423.exe (Acresso Software Inc.) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation\GeForce Experience.lnk -> C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe (NVIDIA Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Need for Speed Underground 2\Need for Speed Underground 2 entfernen.lnk -> G:\Need for Speed Underground 2\unins000.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Need for Speed Underground 2\Need for Speed Underground 2.lnk -> G:\Need for Speed Underground 2\SPEED2.EXE () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Need for Speed Most Wanted 2005\Need for Speed Most Wanted 2005 entfernen.lnk -> G:\Need for Speed Most Wanted 2005\unins000.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Need for Speed Most Wanted 2005\Need for Speed Most Wanted 2005.lnk -> G:\Need for Speed Most Wanted 2005\speed.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Motorola Device Manager\Motorola Device Manager.lnk -> C:\Windows\Installer\{894AB83D-A9AF-4E54-BFF3-A7262A0A6C13}\_EED70B3E82A514A7A6E8F1.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiniTool Partition Wizard 12\MiniTool Partition Wizard entfernen.lnk -> C:\Program Files\MiniTool Partition Wizard 12\unins000.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiniTool Partition Wizard 12\MiniTool Partition Wizard.lnk -> C:\Program Files\MiniTool Partition Wizard 12\partitionwizard.exe (MiniTool Software Limited) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minimal ADB and Fastboot\Minimal ADB and Fastboot.lnk -> C:\Program Files (x86)\Minimal ADB and Fastboot\py_cmd.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minimal ADB and Fastboot\Uninstall Minimal ADB and Fastboot.lnk -> C:\Program Files (x86)\Minimal ADB and Fastboot\unins000.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight\Microsoft Silverlight.lnk -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\Silverlight.Configuration.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2016-Tools\Database Compare 2016.lnk -> C:\Windows\Installer\{90160000-0011-0000-1000-0000000FF1CE}\dbcicons.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2016-Tools\Office 2016 Upload Center.lnk -> C:\Windows\Installer\{90160000-0011-0000-1000-0000000FF1CE}\msouc.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2016-Tools\Spreadsheet Compare 2016.lnk -> C:\Windows\Installer\{90160000-0011-0000-1000-0000000FF1CE}\sscicons.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\It Takes Two\== ElAmigos Releases and Updates @ official site ==.lnk -> S:\It Takes Two\_ElAmigos Releases and Updates.url () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\It Takes Two\It Takes Two entfernen.lnk -> S:\It Takes Two\unins000.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\It Takes Two\It Takes Two.lnk -> S:\It Takes Two\Nuts\Binaries\Win64\ItTakesTwo.exe (Hazelight Studios) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID\HWMonitor\HWMonitor.lnk -> C:\Program Files\CPUID\HWMonitor\HWMonitor.exe (CPUID) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID\HWMonitor\Uninstall HWMonitor.lnk -> C:\Program Files\CPUID\HWMonitor\unins000.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID\CPU-Z\CPU-Z.lnk -> C:\Program Files\CPUID\CPU-Z\cpuz.exe (CPUID) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID\CPU-Z\Edit CPU-Z Config File.lnk -> C:\Program Files\CPUID\CPU-Z\cpuz.ini () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID\CPU-Z\Uninstall CPU-Z.lnk -> C:\Program Files\CPUID\CPU-Z\unins000.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner\CCleaner.lnk -> C:\Program Files\CCleaner\CCleaner64.exe (Piriform Software Ltd) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\MP Navigator EX 3.1\MP Navigator EX 3.1.lnk -> C:\Program Files (x86)\Canon\MP Navigator EX 3.1\mpnex31.exe (CANON INC.) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\MP Navigator EX 3.1\MP Navigator EX Liesmich.lnk -> C:\Program Files (x86)\Canon\MP Navigator EX 3.1\Readme.txt () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MX350 series\Liesmich.lnk -> C:\Program Files\CanonBJ\IJPrinter\Canon MX350 series\readme_German.txt () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Android Studio\Android Studio.lnk -> D:\Nexus\Android studio\bin\studio64.exe (Keine Datei) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Android Commander\Android Commander.lnk -> C:\Program Files (x86)\Android Commander\AndroidCommander.exe (PanPiotr from XDA) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Android Commander\Debuging Mode.lnk -> C:\Program Files (x86)\Android Commander\Android Commander (debugging mode).bat () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Android Commander\Uninstall Android Commander.lnk -> C:\Program Files (x86)\Android Commander\unins000.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Component Services.lnk -> C:\Windows\System32\comexp.msc () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\dfrgui.lnk -> C:\Windows\System32\dfrgui.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Disk Cleanup.lnk -> C:\Windows\System32\cleanmgr.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\iSCSI Initiator.lnk -> C:\Windows\System32\iscsicpl.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Memory Diagnostics Tool.lnk -> C:\Windows\System32\MdSched.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\ODBC Data Sources (32-bit).lnk -> C:\Windows\SysWOW64\odbcad32.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\ODBC Data Sources (64-bit).lnk -> C:\Windows\System32\odbcad32.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Print Management.lnk -> C:\Windows\System32\printmanagement.msc () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\RecoveryDrive.lnk -> C:\Windows\System32\RecoveryDrive.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Registry Editor.lnk -> C:\Windows\regedit.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk -> C:\Windows\System32\services.msc () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\System Configuration.lnk -> C:\Windows\System32\msconfig.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\System Information.lnk -> C:\Windows\System32\msinfo32.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows Defender Firewall with Advanced Security.lnk -> C:\Windows\System32\WF.msc () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Math Input Panel.lnk -> C:\Program Files\Common Files\Microsoft Shared\ink\mip.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Paint.lnk -> C:\Windows\System32\mspaint.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Quick Assist.lnk -> C:\Windows\System32\quickassist.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Remote Desktop Connection.lnk -> C:\Windows\System32\mstsc.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Snipping Tool.lnk -> C:\Windows\System32\SnippingTool.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Steps Recorder.lnk -> C:\Windows\System32\psr.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Fax and Scan.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Wordpad.lnk -> C:\Program Files\Windows NT\Accessories\wordpad.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Character Map.lnk -> C:\Windows\System32\charmap.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\DAEMON Tools Lite\DAEMON Tools Lite.lnk -> C:\Program Files\DAEMON Tools Lite\DTLite.exe (Disc Soft Ltd) Shortcut: C:\Users\cdolc\Links\Desktop.lnk -> C:\Users\cdolc\Desktop (Keine Datei) Shortcut: C:\Users\cdolc\Links\Downloads.lnk -> C:\Users\cdolc\Downloads () Shortcut: C:\Users\cdolc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk -> C:\Users\cdolc\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation) Shortcut: C:\Users\cdolc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation) Shortcut: C:\Users\cdolc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation) Shortcut: C:\Users\cdolc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) Shortcut: C:\Users\cdolc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\computer.lnk -> C:\Windows\explorer.exe,-30 Shortcut: C:\Users\cdolc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Control Panel.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation) Shortcut: C:\Users\cdolc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\File Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) Shortcut: C:\Users\cdolc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Run.lnk -> C:\Windows\System32\shell32.dll (Microsoft Corporation) Shortcut: C:\Users\cdolc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) Shortcut: C:\Users\cdolc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation) Shortcut: C:\Users\cdolc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation) Shortcut: C:\Users\cdolc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation) Shortcut: C:\Users\cdolc\AppData\Roaming\Microsoft\Windows\SendTo\Bluetooth-Dateiübertragung.LNK -> C:\Windows\System32\fsquirt.exe (Microsoft Corporation) Shortcut: C:\Users\cdolc\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) Shortcut: C:\Users\cdolc\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation) Shortcut: C:\Users\cdolc\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation) Shortcut: C:\Users\cdolc\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) Shortcut: C:\Users\cdolc\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\File Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) Shortcut: C:\Users\cdolc\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation) Shortcut: C:\Users\cdolc\AppData\Local\Microsoft\Windows\WinX\Group3\01 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) Shortcut: C:\Users\cdolc\AppData\Local\Microsoft\Windows\WinX\Group3\01a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation) Shortcut: C:\Users\cdolc\AppData\Local\Microsoft\Windows\WinX\Group3\02 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) Shortcut: C:\Users\cdolc\AppData\Local\Microsoft\Windows\WinX\Group3\02a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation) Shortcut: C:\Users\cdolc\AppData\Local\Microsoft\Windows\WinX\Group3\03 - Computer Management.lnk -> C:\Windows\System32\compmgmt.msc () Shortcut: C:\Users\cdolc\AppData\Local\Microsoft\Windows\WinX\Group3\04 - Disk Management.lnk -> C:\Windows\System32\diskmgmt.msc () Shortcut: C:\Users\cdolc\AppData\Local\Microsoft\Windows\WinX\Group3\07 - Event Viewer.lnk -> C:\Windows\System32\eventvwr.exe (Microsoft Corporation) Shortcut: C:\Users\cdolc\AppData\Local\Microsoft\Windows\WinX\Group3\09 - Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation) Shortcut: C:\Users\cdolc\AppData\Local\Microsoft\Windows\WinX\Group2\4 - Control Panel.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk -> C:\Users\Paddy\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\computer.lnk -> C:\Windows\explorer.exe,-30 Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Control Panel.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\File Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Run.lnk -> C:\Windows\System32\shell32.dll (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\01 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\01a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\02 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\02a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\03 - Computer Management.lnk -> C:\Windows\System32\compmgmt.msc () Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\04 - Disk Management.lnk -> C:\Windows\System32\diskmgmt.msc () Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\07 - Event Viewer.lnk -> C:\Windows\System32\eventvwr.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\09 - Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\4 - Control Panel.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) Shortcut: C:\Users\Paddy\Links\Desktop.lnk -> C:\Users\Paddy\Desktop () Shortcut: C:\Users\Paddy\Links\Downloads.lnk -> C:\Users\Paddy\Downloads () Shortcut: C:\Users\Paddy\Documents\Euro Truck Simulator 2\readme.rtf.lnk -> G:\Images\SteamLibrary\steamapps\common\Euro Truck Simulator 2\readme.rtf (Keine Datei) Shortcut: C:\Users\Paddy\AppData\Roaming\Microsoft\Windows\Start Menu\OpenIV.lnk -> C:\Users\Paddy\AppData\Local\New Technology Studio\Apps\OpenIV\OpenIV.exe (New Technology Studio) Shortcut: C:\Users\Paddy\AppData\Roaming\Microsoft\Windows\Start Menu\Uninstall PureVPN.lnk -> C:\Program Files (x86)\GZ Systems\PureVPN\Uninstaller\Uninstaller.exe (Keine Datei) Shortcut: C:\Users\Paddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk -> C:\Users\Paddy\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation) Shortcut: C:\Users\Paddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PureVPN.lnk -> C:\Program Files (x86)\GZ Systems\PureVPN\PureVPN.exe (Keine Datei) Shortcut: C:\Users\Paddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\yuzu Maintenance Tool.lnk -> C:\Users\Paddy\AppData\Local\yuzu\maintenancetool.exe () Shortcut: C:\Users\Paddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom\Zoom.lnk -> C:\Users\Paddy\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc.) Shortcut: C:\Users\Paddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WugFresh Development\Nexus Root Toolkit\Nexus Root Toolkit.lnk -> C:\Program Files (x86)\WugFresh Development\Nexus Root Toolkit\NexusRootToolkit.exe () Shortcut: C:\Users\Paddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WugFresh Development\Nexus Root Toolkit\NRT Updater.lnk -> C:\Program Files (x86)\WugFresh Development\Nexus Root Toolkit\Wug_Updater_Nexus.exe () Shortcut: C:\Users\Paddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WugFresh Development\Nexus Root Toolkit\Uninstall.lnk -> C:\Program Files (x86)\WugFresh Development\Nexus Root Toolkit\Uninstall_NRT.exe () Shortcut: C:\Users\Paddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\Benutzerhandbuch für die Konsolenversion von RAR.lnk -> C:\Program Files\WinRAR\Rar.txt () Shortcut: C:\Users\Paddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\Hilfe zu WinRAR.lnk -> C:\Program Files\WinRAR\WinRAR.chm () Shortcut: C:\Users\Paddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\Was ist neu in dieser Version.lnk -> C:\Program Files\WinRAR\WhatsNew.txt () Shortcut: C:\Users\Paddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\WinRAR.lnk -> C:\Program Files\WinRAR\WinRAR.exe (Alexander Roshal) Shortcut: C:\Users\Paddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation) Shortcut: C:\Users\Paddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation) Shortcut: C:\Users\Paddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft\Uplay\Uninstall.lnk -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\Uninstall.exe (Ubisoft) Shortcut: C:\Users\Paddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft\Uplay\Uplay.lnk -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\Uplay.exe (Ubisoft) Shortcut: C:\Users\Paddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft\UbisoftConnect\Ubisoft Connect.lnk -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftConnect.exe (Ubisoft) Shortcut: C:\Users\Paddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft\UbisoftConnect\Uninstall.lnk -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\Uninstall.exe (Ubisoft) Shortcut: C:\Users\Paddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) Shortcut: C:\Users\Paddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\computer.lnk -> C:\Windows\explorer.exe,-30 Shortcut: C:\Users\Paddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Control Panel.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation) Shortcut: C:\Users\Paddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\File Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) Shortcut: C:\Users\Paddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Run.lnk -> C:\Windows\System32\shell32.dll (Microsoft Corporation) Shortcut: C:\Users\Paddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rockstar Games\Rockstar Games Launcher.lnk -> C:\Program Files\Rockstar Games\Launcher\LauncherPatcher.exe (Rockstar Games) Shortcut: C:\Users\Paddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader\JDownloader 2 Deinstallationsprogramm.lnk -> C:\Users\Paddy\AppData\Local\JDownloader 2.0\Uninstall JDownloader.exe (AppWork GmbH) Shortcut: C:\Users\Paddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader\JDownloader 2 Update & Rescue.lnk -> C:\Users\Paddy\AppData\Local\JDownloader 2.0\JDownloader2Update.exe (AppWork GmbH) Shortcut: C:\Users\Paddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader\JDownloader 2.lnk -> C:\Users\Paddy\AppData\Local\JDownloader 2.0\JDownloader2.exe (AppWork GmbH) Shortcut: C:\Users\Paddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\InfinityBox\Drivers\box\Drivers installation guide En.lnk -> C:\InfinityBox\Drivers\box\Infinity-Box_Installation_manual_En.pdf (Keine Datei) Shortcut: C:\Users\Paddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\InfinityBox\Drivers\box\Drivers installation guide Ru.lnk -> C:\InfinityBox\Drivers\box\Infinity-Box_Installation_manual_Ru.pdf (Keine Datei) Shortcut: C:\Users\Paddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\InfinityBox\Drivers\box\Drivers.lnk -> C:\InfinityBox\Drivers\box (Keine Datei) Shortcut: C:\Users\Paddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) Shortcut: C:\Users\Paddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation) Shortcut: C:\Users\Paddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation) Shortcut: C:\Users\Paddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation) Shortcut: C:\Users\Paddy\AppData\Roaming\Microsoft\Windows\SendTo\Bluetooth-Dateiübertragung.LNK -> C:\Windows\System32\fsquirt.exe (Microsoft Corporation) Shortcut: C:\Users\Paddy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) Shortcut: C:\Users\Paddy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation) Shortcut: C:\Users\Paddy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation) Shortcut: C:\Users\Paddy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) Shortcut: C:\Users\Paddy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\DS4Windows.lnk -> C:\Users\Paddy\Downloads\DS4Windows\DS4Windows.exe () Shortcut: C:\Users\Paddy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\File Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) Shortcut: C:\Users\Paddy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) Shortcut: C:\Users\Paddy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation) Shortcut: C:\Users\Paddy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation) Shortcut: C:\Users\Paddy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\SleepTimer Ultimate.lnk -> C:\Program Files (x86)\SleepTimer Ultimate\SleepTimerUltimate.exe (Christian Handorf) Shortcut: C:\Users\Paddy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Steam.lnk -> C:\Program Files (x86)\Steam\steam.exe (Valve Corporation) Shortcut: C:\Users\Paddy\AppData\Local\Microsoft\Windows\WinX\Group3\01 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) Shortcut: C:\Users\Paddy\AppData\Local\Microsoft\Windows\WinX\Group3\01a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation) Shortcut: C:\Users\Paddy\AppData\Local\Microsoft\Windows\WinX\Group3\02 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) Shortcut: C:\Users\Paddy\AppData\Local\Microsoft\Windows\WinX\Group3\02a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation) Shortcut: C:\Users\Paddy\AppData\Local\Microsoft\Windows\WinX\Group3\03 - Computer Management.lnk -> C:\Windows\System32\compmgmt.msc () Shortcut: C:\Users\Paddy\AppData\Local\Microsoft\Windows\WinX\Group3\04 - Disk Management.lnk -> C:\Windows\System32\diskmgmt.msc () Shortcut: C:\Users\Paddy\AppData\Local\Microsoft\Windows\WinX\Group3\07 - Event Viewer.lnk -> C:\Windows\System32\eventvwr.exe (Microsoft Corporation) Shortcut: C:\Users\Paddy\AppData\Local\Microsoft\Windows\WinX\Group3\09 - Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation) Shortcut: C:\Users\Paddy\AppData\Local\Microsoft\Windows\WinX\Group2\4 - Control Panel.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) Shortcut: C:\Users\Paddy\3D Objects\Dokumente - Verknüpfung.lnk -> C:\Users\Paddy\Documents () Shortcut: C:\Users\Public\Desktop\SoundWire Server.lnk -> C:\Program Files (x86)\SoundWire Server\SoundWireServer.exe (GeorgieLabs) ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VLC media player - reset preferences and cache files.lnk -> C:\Program Files\VideoLAN\VLC\vlc.exe (VideoLAN) -> --reset-config --reset-plugins-cache vlc://quit ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VLC media player skinned.lnk -> C:\Program Files\VideoLAN\VLC\vlc.exe (VideoLAN) -> -Iskins ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools\Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /7 ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\MP Navigator EX 3.1\MP Navigator EX - Deinstallation.lnk -> C:\Program Files (x86)\Canon\MP Navigator EX 3.1\Maint.exe (CANON INC.) -> /UninstallRemove C:\Program Files (x86)\Canon\MP Navigator EX 3.1\uninst.ini ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Computer Management.lnk -> C:\Windows\System32\compmgmt.msc () -> /s ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Event Viewer.lnk -> C:\Windows\System32\eventvwr.msc () -> /s ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Performance Monitor.lnk -> C:\Windows\System32\perfmon.msc () -> /s ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Resource Monitor.lnk -> C:\Windows\System32\perfmon.exe (Microsoft Corporation) -> /res ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Security Configuration Management.lnk -> C:\Windows\System32\secpol.msc () -> /s ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Task Scheduler.lnk -> C:\Windows\System32\taskschd.msc () -> /s ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Media Player.lnk -> C:\Program Files (x86)\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1 ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility\Speech Recognition.lnk -> C:\Windows\Speech\Common\sapisvr.exe (Microsoft Corporation) -> -SpeechUX ShortcutWithArgument: C:\Users\cdolc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Administrative Tools.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.AdministrativeTools ShortcutWithArgument: C:\Users\cdolc\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo ShortcutWithArgument: C:\Users\cdolc\AppData\Local\Microsoft\Windows\WinX\Group3\04-1 - NetworkStatus.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageNetworkStatus ShortcutWithArgument: C:\Users\cdolc\AppData\Local\Microsoft\Windows\WinX\Group3\05 - Device Manager.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DeviceManager ShortcutWithArgument: C:\Users\cdolc\AppData\Local\Microsoft\Windows\WinX\Group3\06 - SystemAbout.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPagePCSystemInfo ShortcutWithArgument: C:\Users\cdolc\AppData\Local\Microsoft\Windows\WinX\Group3\08 - PowerAndSleep.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageScreenPowerAndSleep ShortcutWithArgument: C:\Users\cdolc\AppData\Local\Microsoft\Windows\WinX\Group3\10 - AppsAndFeatures.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageAppsSizes ShortcutWithArgument: C:\Users\cdolc\AppData\Local\Microsoft\Windows\WinX\Group2\1 - Run.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f3-21d7-11d4-bdaf-00c04f60b9f0} ShortcutWithArgument: C:\Users\cdolc\AppData\Local\Microsoft\Windows\WinX\Group2\2 - Search.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f8-21d7-11d4-bdaf-00c04f60b9f0} ShortcutWithArgument: C:\Users\cdolc\AppData\Local\Microsoft\Windows\WinX\Group2\3 - Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{52205fd8-5dfb-447d-801a-d0b52f2e83e1} ShortcutWithArgument: C:\Users\cdolc\AppData\Local\Microsoft\Windows\WinX\Group2\5 - Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /0 ShortcutWithArgument: C:\Users\cdolc\AppData\Local\Microsoft\Windows\WinX\Group1\1 - Desktop.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{3080F90D-D7AD-11D9-BD98-0000947B0257} ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Administrative Tools.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.AdministrativeTools ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\04-1 - NetworkStatus.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageNetworkStatus ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\05 - Device Manager.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DeviceManager ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\06 - SystemAbout.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPagePCSystemInfo ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\08 - PowerAndSleep.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageScreenPowerAndSleep ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\10 - AppsAndFeatures.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageAppsSizes ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\1 - Run.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f3-21d7-11d4-bdaf-00c04f60b9f0} ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\2 - Search.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f8-21d7-11d4-bdaf-00c04f60b9f0} ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\3 - Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{52205fd8-5dfb-447d-801a-d0b52f2e83e1} ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\5 - Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /0 ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group1\1 - Desktop.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{3080F90D-D7AD-11D9-BD98-0000947B0257} ShortcutWithArgument: C:\Users\Paddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\yuzu.lnk -> C:\Users\Paddy\AppData\Local\yuzu\maintenancetool.exe () -> --launcher "C:\Users\Paddy\AppData\Local\yuzu\yuzu-windows-msvc/yuzu.exe" ShortcutWithArgument: C:\Users\Paddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom\Uninstall Zoom.lnk -> C:\Users\Paddy\AppData\Roaming\Zoom\uninstall\Installer.exe (Zoom Video Communications, Inc.) -> /uninstall ShortcutWithArgument: C:\Users\Paddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Administrative Tools.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.AdministrativeTools ShortcutWithArgument: C:\Users\Paddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc\Discord.lnk -> C:\Users\Paddy\AppData\Local\Discord\Update.exe (GitHub) -> --processStart Discord.exe ShortcutWithArgument: C:\Users\Paddy\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo ShortcutWithArgument: C:\Users\Paddy\AppData\Local\Microsoft\Windows\WinX\Group3\04-1 - NetworkStatus.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageNetworkStatus ShortcutWithArgument: C:\Users\Paddy\AppData\Local\Microsoft\Windows\WinX\Group3\05 - Device Manager.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DeviceManager ShortcutWithArgument: C:\Users\Paddy\AppData\Local\Microsoft\Windows\WinX\Group3\06 - SystemAbout.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPagePCSystemInfo ShortcutWithArgument: C:\Users\Paddy\AppData\Local\Microsoft\Windows\WinX\Group3\08 - PowerAndSleep.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageScreenPowerAndSleep ShortcutWithArgument: C:\Users\Paddy\AppData\Local\Microsoft\Windows\WinX\Group3\10 - AppsAndFeatures.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageAppsSizes ShortcutWithArgument: C:\Users\Paddy\AppData\Local\Microsoft\Windows\WinX\Group2\1 - Run.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f3-21d7-11d4-bdaf-00c04f60b9f0} ShortcutWithArgument: C:\Users\Paddy\AppData\Local\Microsoft\Windows\WinX\Group2\2 - Search.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f8-21d7-11d4-bdaf-00c04f60b9f0} ShortcutWithArgument: C:\Users\Paddy\AppData\Local\Microsoft\Windows\WinX\Group2\3 - Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{52205fd8-5dfb-447d-801a-d0b52f2e83e1} ShortcutWithArgument: C:\Users\Paddy\AppData\Local\Microsoft\Windows\WinX\Group2\5 - Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /0 ShortcutWithArgument: C:\Users\Paddy\AppData\Local\Microsoft\Windows\WinX\Group1\1 - Desktop.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{3080F90D-D7AD-11D9-BD98-0000947B0257} InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unified Remote 3\Unified Remote Client.url -> URL: hxxp://localhost:9510/client InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unified Remote 3\Unified Remote Manager.url -> URL: hxxp://localhost:9510/web InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unified Remote 3\Unified Remote on the Web.url -> URL: hxxps://www.unifiedremote.com/ InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam\Steam Support Center.url -> URL: hxxp://support.steampowered.com/ InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SleepTimer Ultimate\SleepTimer Ultimate im Internet.url -> URL: hxxp://www.sleeptimer.net InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiniTool Partition Wizard 12\MiniTool Partition Wizard im Internet.url -> URL: hxxp://www.partitionwizard.com InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner\CCleaner Homepage.url -> URL: hxxp://www.ccleaner.com/ccleaner InternetURL: C:\Users\cdolc\Favorites\Bing.url -> URL: hxxp://go.microsoft.com/fwlink/p/?LinkId=255142 InternetURL: C:\Users\Paddy\Favorites\Bing.url -> URL: hxxp://go.microsoft.com/fwlink/p/?LinkId=255142 InternetURL: C:\Users\Paddy\Downloads\Odin3-v3.14.1\Odin3-v3.14.1\Odin Official Website.url -> URL: hxxps://odin-samsung.com/ InternetURL: C:\Users\Paddy\Downloads\Odin3-v3.14.1\Odin3-v3.14.1\Samsung Firmware download.url -> URL: hxxps://firmwarehome.com/ InternetURL: C:\Users\Paddy\Downloads\Odin3-v3.14.1\Odin3-v3.14.1\Samsung USB driver for mobile phones.url -> URL: hxxps://firmwareupdatefile.com/samsung-usb-driver-for-mobile-phones-download.html InternetURL: C:\Users\Paddy\Downloads\Odin3-v3.14.1\Odin3-v3.14.1\Odin3_v3.14.1\Official Website.url -> URL: hxxps://odin-samsung.com/ InternetURL: C:\Users\Paddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WATCH_DOGS® 2.url -> URL: uplay://launch/2688/0 ==================== Ende vom Shortcut.txt ============================= Code:
ATTFilter Malwarebytes www.malwarebytes.com -Protokolldetails- Scan-Datum: 08.06.22 Scan-Zeit: 17:37 Protokolldatei: df9125d0-e740-11ec-8914-a8a15941d292.json -Softwaredaten- Version: 4.5.9.198 Komponentenversion: 1.0.1689 Version des Aktualisierungspakets: 1.0.55924 Lizenz: Testversion -Systemdaten- Betriebssystem: Windows 10 (Build 19044.1706) CPU: x64 Dateisystem: NTFS Benutzer: System -Scan-Übersicht- Scan-Typ: Bedrohungs-Scan Scan gestartet von: Zeitplaner Ergebnis: Abgeschlossen Gescannte Objekte: 320649 Erkannte Bedrohungen: 21 In die Quarantäne verschobene Bedrohungen: 21 Abgelaufene Zeit: 3 Min., 0 Sek. -Scan-Optionen- Speicher: Aktiviert Start: Aktiviert Dateisystem: Aktiviert Archive: Aktiviert Rootkits: Deaktiviert Heuristik: Aktiviert PUP: Erkennung PUM: Erkennung -Scan-Details- Prozess: 0 (keine bösartigen Elemente erkannt) Modul: 0 (keine bösartigen Elemente erkannt) Registrierungsschlüssel: 0 (keine bösartigen Elemente erkannt) Registrierungswert: 0 (keine bösartigen Elemente erkannt) Registrierungsdaten: 0 (keine bösartigen Elemente erkannt) Daten-Stream: 0 (keine bösartigen Elemente erkannt) Ordner: 2 Adware.Elex.ShrtCln, C:\USERS\CDOLC\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Sync Data\LevelDB, In Quarantäne, 278, 454717, , , , , , Adware.Elex.ShrtCln, C:\USERS\PADDY\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Sync Data\LevelDB, In Quarantäne, 278, 454717, , , , , , Datei: 19 Adware.Elex.ShrtCln, C:\Users\cdolc\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000004.log, In Quarantäne, 278, 454717, , , , , F96F1D7FDB4D573903096604A468EE15, 6FB26D37F59F2F3580012F456EF1C5E442CD98530F590949BA6B5E79F6FACEF6 Adware.Elex.ShrtCln, C:\Users\cdolc\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000005.ldb, In Quarantäne, 278, 454717, , , , , 2BEC82978364DECD184757EF905EF54D, 45CE96B706671CD8EACD5D361CF62F549E54169DD8FBFC10F765FBFE16A7CC54 Adware.Elex.ShrtCln, C:\Users\cdolc\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\CURRENT, In Quarantäne, 278, 454717, , , , , 46295CAC801E5D4857D09837238A6394, 0F1BAD70C7BD1E0A69562853EC529355462FCD0423263A3D39D6D0D70B780443 Adware.Elex.ShrtCln, C:\Users\cdolc\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOCK, In Quarantäne, 278, 454717, , , , , , Adware.Elex.ShrtCln, C:\Users\cdolc\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG, In Quarantäne, 278, 454717, , , , , 37ECAA94785880D753DA7370E967785A, AE6FED9A2B33DB31759976EFF4C9B2549D8570028FF5E9CD91F635B5E2DB3F82 Adware.Elex.ShrtCln, C:\Users\cdolc\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG.old, In Quarantäne, 278, 454717, , , , , C721C8863B4E75354AE9363F5B606938, A8ECE4206F01294F983CBB0B30C7613665E66182C2B515DED3E05B69FDD4600C Adware.Elex.ShrtCln, C:\Users\cdolc\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\MANIFEST-000001, In Quarantäne, 278, 454717, , , , , 18B22FCE02215818EA8F9041D0BC750E, 8DB3444846277563B3F9B6DFDD13862B30F1FB1227741C7DA01D93D8B2999B3F Adware.Elex.ShrtCln, C:\Users\Paddy\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000005.ldb, In Quarantäne, 278, 454717, , , , , 90286F74808E498AB69619170B30E628, 740EDAED6D5D14436BD090870E89BC636C4F21D2D78D7FE3DC32E81DF3B48A26 Adware.Elex.ShrtCln, C:\Users\Paddy\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000007.ldb, In Quarantäne, 278, 454717, , , , , 468AB7A47D08CAD1230755AF764A990C, 8660F4493F7F13BA4BD1836D903BA9C4CAFA1633106783D168A43330914C09FC Adware.Elex.ShrtCln, C:\Users\Paddy\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000010.ldb, In Quarantäne, 278, 454717, , , , , F769B84C3673873A3F70D335F61B9FB2, A7C895E3267E071D80C995900BC6724704CED6A3F321DF293DBB606C5FF4EC2C Adware.Elex.ShrtCln, C:\Users\Paddy\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000013.ldb, In Quarantäne, 278, 454717, , , , , 73580B8FA283953657B835ABC4E38920, 6A0CDB1B843DD781AF1504FDECFD2C3825DAE091DEB6DA6A3DB0135A63377412 Adware.Elex.ShrtCln, C:\Users\Paddy\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000015.log, In Quarantäne, 278, 454717, , , , , 5F179F52B4368A2F07F2425A5F8EE7B7, 397E455456DFCF63E48CB335FD4D47A8B89AE4B8CCA9A03ECA6ED55663481D62 Adware.Elex.ShrtCln, C:\Users\Paddy\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000016.ldb, In Quarantäne, 278, 454717, , , , , FBBFC61B2E44EA2E6493299726314796, 163607D7A891EAD6C875DCE18A06969A135F3C6C7D3209C6092B74F61BF9E2F5 Adware.Elex.ShrtCln, C:\Users\Paddy\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\CURRENT, In Quarantäne, 278, 454717, , , , , 46295CAC801E5D4857D09837238A6394, 0F1BAD70C7BD1E0A69562853EC529355462FCD0423263A3D39D6D0D70B780443 Adware.Elex.ShrtCln, C:\Users\Paddy\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOCK, In Quarantäne, 278, 454717, , , , , , Adware.Elex.ShrtCln, C:\Users\Paddy\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG, In Quarantäne, 278, 454717, , , , , B900955987D8F81D45AAC50EBE8F4E0C, B4E5C6D21A367FBFC49FD137211575A1B88598B0AF04EBD89FEF5422512E402F Adware.Elex.ShrtCln, C:\Users\Paddy\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG.old, In Quarantäne, 278, 454717, , , , , 9A34622B89A43B2B29279F88594B7F23, DB53FC9B6C1EA7F9315BEFFA660070B29F157CC3CD965E8CABB385C96A904332 Adware.Elex.ShrtCln, C:\Users\Paddy\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\MANIFEST-000001, In Quarantäne, 278, 454717, , , , , C85C116D8E02C590129BB66CE6E1362A, 8BF153F5947A0740C3DB9423698C8E3AE2D1C4514D6EF2AD828632110BBD4C26 Adware.Elex.ShrtCln, C:\USERS\PADDY\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Secure Preferences, Ersetzt, 278, 454717, 1.0.55924, , ame, , D5FC43E0C127DBA44B682C32C111ED51, 2A7C124F6E273CE57BFCFCD5245F6838CA342D4EE3A8ABA656593ADE58607C4B Physischer Sektor: 0 (keine bösartigen Elemente erkannt) WMI: 0 (keine bösartigen Elemente erkannt) (end) Geändert von cosinus (09.06.2022 um 11:44 Uhr) Grund: code tags |
09.06.2022, 09:32 | #6 |
/// Winkelfunktion /// TB-Süch-Tiger™ | Win 10: Zugriff auf Amazonkonto. Trojaner eingefangen? Die CODE-Tags sind nicht 100%ig richtig und das Addition.txt fehlt.
__________________ --> Win 10: Zugriff auf Amazonkonto. Trojaner eingefangen? |
09.06.2022, 11:09 | #7 |
| Win 10: Zugriff auf Amazonkonto. Trojaner eingefangen? Soll ich die TAG´s dann nochmal posten oder reicht nicht 100% richtig? Das Addition.txt reiche ich nach. Bin grad auf Arbeit und die Datei müsste noch zu Hause auf dem USB-Stick sein. Entschuldige die Umstände |
09.06.2022, 11:43 | #8 |
/// Winkelfunktion /// TB-Süch-Tiger™ | Win 10: Zugriff auf Amazonkonto. Trojaner eingefangen? Nur die Addition.txt posten. Das dann aber richtig in CODE-Tags.
__________________ Logfiles bitte immer in CODE-Tags posten |
09.06.2022, 18:51 | #9 |
| Win 10: Zugriff auf Amazonkonto. Trojaner eingefangen? So hier kommt dieAddition.txt Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 08-06-2022 durchgeführt von Paddy (08-06-2022 17:58:10) Gestartet von H:\ Microsoft Windows 10 Pro Version 21H2 19044.1706 (X64) (2020-12-21 16:45:05) Start-Modus: Normal ========================================================== ==================== Konten: ============================= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.) Administrator (S-1-5-21-2343168550-1689659002-1608603552-500 - Administrator - Disabled) cdolc (S-1-5-21-2343168550-1689659002-1608603552-1004 - Limited - Enabled) => C:\Users\cdolc datlu (S-1-5-21-2343168550-1689659002-1608603552-1003 - Limited - Disabled) DefaultAccount (S-1-5-21-2343168550-1689659002-1608603552-503 - Limited - Disabled) Gast (S-1-5-21-2343168550-1689659002-1608603552-501 - Limited - Disabled) kinda (S-1-5-21-2343168550-1689659002-1608603552-1002 - Limited - Disabled) Paddy (S-1-5-21-2343168550-1689659002-1608603552-1001 - Administrator - Enabled) => C:\Users\Paddy WDAGUtilityAccount (S-1-5-21-2343168550-1689659002-1608603552-504 - Limited - Disabled) ==================== Sicherheits-Center ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B} ==================== Installierte Programme ====================== (Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.) Android Commander version 0.7.9.11 (HKLM-x32\...\Android Commander_is1) (Version: 0.7.9.11 - ) Assassin's Creed Chronicles China (HKLM-x32\...\Uplay Install 1651) (Version: - Ubisoft) Assassin's Creed Valhalla (HKLM-x32\...\Uplay Install 13504) (Version: - Ubisoft) Canon MP Navigator EX 3.1 (HKLM-x32\...\MP Navigator EX 3.1) (Version: - ) Canon MX350 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MX350_series) (Version: - Canon Inc.) CCleaner (HKLM\...\CCleaner) (Version: 6.00 - Piriform) CPUID CPU-Z 1.95 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.95 - CPUID, Inc.) CPUID HWMonitor 1.46 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.46 - CPUID, Inc.) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.14.0.1567 - Disc Soft Ltd) Discord (HKU\S-1-5-21-2343168550-1689659002-1608603552-1001\...\Discord) (Version: 1.0.9003 - Discord Inc.) Epic Games Launcher (HKLM-x32\...\{07D9F8F3-EC99-4133-919D-DA341C62937C}) (Version: 1.1.298.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Epic Online Services (HKLM-x32\...\{32C68D93-D32F-4B01-8250-61642BFC22F8}) (Version: 2.0.28.0 - Epic Games, Inc.) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 102.0.5005.63 - Google LLC) It Takes Two MULTi12 - ElAmigos Version 1.0 (HKLM-x32\...\{28E9FE63-1CA3-498E-9129-452A6563BFA7}_is1) (Version: 1.0 - Electronic Arts) JDownloader 2 (HKLM-x32\...\jdownloader2) (Version: 2.0 - AppWork GmbH) Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Malwarebytes version 4.5.9.198 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.5.9.198 - Malwarebytes) Microsoft Access MUI (German) 2016 (HKLM\...\{90160000-0015-0407-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden Microsoft DCF MUI (German) 2016 (HKLM\...\{90160000-0090-0407-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 102.0.1245.33 - Microsoft Corporation) Microsoft Edge WebView2-Laufzeit (HKLM-x32\...\Microsoft EdgeWebView) (Version: 102.0.1245.33 - Microsoft Corporation) Microsoft Excel MUI (German) 2016 (HKLM\...\{90160000-0016-0407-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden Microsoft GameInput (HKLM-x32\...\{A9CFD6A1-C0D3-7F37-C220-8B104867EF15}) (Version: 10.1.22621.1011 - Microsoft Corporation) Microsoft Groove MUI (German) 2016 (HKLM\...\{90160000-00BA-0407-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden Microsoft InfoPath MUI (German) 2016 (HKLM\...\{90160000-0044-0407-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden Microsoft Office 32-bit Components 2016 (HKLM\...\{90160000-00C1-0000-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden Microsoft Office Korrekturhilfen 2016 – Deutsch (HKLM\...\{90160000-001F-0407-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden Microsoft Office OSM MUI (German) 2016 (HKLM\...\{90160000-00E1-0407-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden Microsoft Office OSM UX MUI (German) 2016 (HKLM\...\{90160000-00E2-0407-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden Microsoft Office Professional Plus 2016 (HKLM\...\{90160000-0011-0000-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden Microsoft Office Professional Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation) Microsoft Office Proofing (German) 2016 (HKLM\...\{90160000-002C-0407-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden Microsoft Office Proofing Tools 2016 - English (HKLM\...\{90160000-001F-0409-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden Microsoft Office Shared 32-bit MUI (German) 2016 (HKLM\...\{90160000-00C1-0407-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden Microsoft Office Shared MUI (German) 2016 (HKLM\...\{90160000-006E-0407-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden Microsoft OneDrive (HKU\S-1-5-21-2343168550-1689659002-1608603552-1001\...\OneDriveSetup.exe) (Version: 22.099.0508.0001 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-2343168550-1689659002-1608603552-1004\...\OneDriveSetup.exe) (Version: 21.196.0921.0007 - Microsoft Corporation) Microsoft OneNote MUI (German) 2016 (HKLM\...\{90160000-00A1-0407-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden Microsoft Outlook MUI (German) 2016 (HKLM\...\{90160000-001A-0407-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden Microsoft PowerPoint MUI (German) 2016 (HKLM\...\{90160000-0018-0407-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden Microsoft Publisher MUI (German) 2016 (HKLM\...\{90160000-0019-0407-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation) Microsoft Skype for Business MUI (German) 2016 (HKLM\...\{90160000-012B-0407-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden Microsoft Update Health Tools (HKLM\...\{7B1FCD52-8F6B-4F12-A143-361EA39F5E7C}) (Version: 3.67.0.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation) Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40660 (HKLM\...\{5740BD44-B58D-321A-AFC0-6D3D4556DD6C}) (Version: 12.0.40660 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40660 (HKLM\...\{CB0836EC-B072-368D-82B2-D3470BF95707}) (Version: 12.0.40660 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40660 (HKLM-x32\...\{7DAD0258-515C-3DD4-8964-BD714199E0F7}) (Version: 12.0.40660 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40660 (HKLM-x32\...\{E30D8B21-D82D-3211-82CC-0F0A5D1495E8}) (Version: 12.0.40660 - Microsoft Corporation) Hidden Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29914 (HKLM-x32\...\{43d1ce82-6f55-4860-a938-20e5deb28b98}) (Version: 14.28.29914.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.25.28508 (HKLM-x32\...\{65e650ff-30be-469d-b63a-418d71ea1765}) (Version: 14.25.28508.3 - Microsoft Corporation) Microsoft Visual C++ 2019 X64 Additional Runtime - 14.28.29914 (HKLM\...\{5A23DBE2-A05C-4A9C-9C17-EA88BF5D7B43}) (Version: 14.28.29914 - Microsoft Corporation) Hidden Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.28.29914 (HKLM\...\{455DF12C-7D43-4EFF-AE2F-43C8AF2817A3}) (Version: 14.28.29914 - Microsoft Corporation) Hidden Microsoft Visual C++ 2019 X86 Additional Runtime - 14.25.28508 (HKLM-x32\...\{0FA68574-690B-4B00-89AA-B28946231449}) (Version: 14.25.28508 - Microsoft Corporation) Hidden Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.25.28508 (HKLM-x32\...\{2BC3BD4D-FABA-4394-93C7-9AC82A263FE2}) (Version: 14.25.28508 - Microsoft Corporation) Hidden Microsoft Word MUI (German) 2016 (HKLM\...\{90160000-001B-0407-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation) Minimal ADB and Fastboot version 1.2 (HKLM-x32\...\{06C90FCC-4C95-4142-A0AF-D3A4C12882DE}_is1) (Version: 1.2 - Sam Rodberg) MiniTool Partition Wizard 12.6 DEMO (HKLM\...\{05D996FA-ADCB-4D23-BA3C-A7C184A8FAC6}_is1) (Version: 12.6 - MiniTool Software Limited) Motorola Device Manager (HKLM-x32\...\{28DB8373-C1BB-444F-A427-A55585A12ED7}) (Version: 2.5.4 - Motorola Mobility) Motorola Device Software Update (HKLM-x32\...\{894AB83D-A9AF-4E54-BFF3-A7262A0A6C13}) (Version: 13.09.3001 - Motorola Mobility) Hidden Motorola Mobile Drivers Installation 6.4.0 (HKLM\...\{27986EDD-C9EC-4B52-B92F-06D073F0AA52}) (Version: 6.4.0 - Motorola Mobility LLC) MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation) MusicBrainz Picard (HKLM-x32\...\MusicBrainz Picard) (Version: 2.5.6 - MusicBrainz) Need for Speed Most Wanted 2005 Version 1.3 (HKLM-x32\...\Need for Speed Most Wanted 2005_is1) (Version: 1.3 - EA Games) Need for Speed Underground 2 Version 1.2 (HKLM-x32\...\Need for Speed Underground 2_is1) (Version: 1.2 - EA Games) NETGEAR WNA3100M N300 Wireless USB Adapter (HKLM-x32\...\{D3580358-0F78-402A-BE53-2E9D06383E04}) (Version: 1.0.0.28 - NETGEAR) Nexus Root Toolkit (HKLM-x32\...\Nexus Root Toolkit) (Version: 2.1.9 - WugFresh) Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 8.4.1 - Notepad++ Team) NVIDIA FrameView SDK 1.2.7521.31103277 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.2.7521.31103277 - NVIDIA Corporation) NVIDIA GeForce Experience 3.25.1.27 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.25.1.27 - NVIDIA Corporation) NVIDIA Grafiktreiber 512.95 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 512.95 - NVIDIA Corporation) NVIDIA HD-Audiotreiber 1.3.39.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.39.3 - NVIDIA Corporation) NVIDIA PhysX-Systemsoftware 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation) O&O PartitionManager Professional (HKLM\...\{1934BCF7-A63A-4C1F-809D-2B33C8F03B8F}) (Version: 3.0.199 - O&O Software GmbH) OBS Studio (HKLM-x32\...\OBS Studio) (Version: 27.1.3 - OBS Project) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) OpenIV (HKU\S-1-5-21-2343168550-1689659002-1608603552-1001\...\OpenIV) (Version: 4.0.1.1452 - .black/OpenIV Team) OpenOffice 4.1.9 (HKLM-x32\...\{2847E8B7-AB29-48EE-ADAF-513EC769E8A9}) (Version: 4.19.9805 - Apache Software Foundation) Outils de vérification linguistique 2016 de Microsoft Office*- Français (HKLM\...\{90160000-001F-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden PS Remote Play (HKLM-x32\...\{E536EB8F-03EF-4EBA-B3FF-C5A544604841}) (Version: 4.0.0.09240 - Ihr Firmenname) PureVPN (HKLM-x32\...\{7552bf89-5cf2-485c-a87e-04825b596850}) (Version: 8.0.2.2 - ) Hidden Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.45.416 - Rockstar Games) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.9.3 - Rockstar Games) Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.7.43.0 - Samsung Electronics Co., Ltd.) SleepTimer Ultimate 2.3 (HKLM-x32\...\{0EE56463-49B2-45E1-B74F-3E0139DBC986}_is1) (Version: - Christian Handorf) SoundWire Server version 2.5 (HKLM-x32\...\{E15658BC-7742-4397-999F-98B1BD11B784}_is1) (Version: 2.5 - GeorgieLabs) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Strumenti di correzione di Microsoft Office 2016 - Italiano (HKLM\...\{90160000-001F-0410-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden TruckersMP Launcher 1.0.0.4 (HKLM\...\{A227B892-C548-4490-9C5D-DB341F8194A6}_is1) (Version: 1.0.0.4 - TruckersMP Team) Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 87.0 - Ubisoft) Unified Remote (HKLM-x32\...\{415B4714-4F8C-49C6-B310-881EAF892CFB}_is1) (Version: 3.11.0 - Unified Intents AB) Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{82BD0A1C-815F-487F-9AE7-CE73DA413CFF}) (Version: 4.91.0.0 - Microsoft Corporation) VLC media player (HKLM\...\VLC media player) (Version: 3.0.12 - VideoLAN) WATCH_DOGS2 (HKLM-x32\...\Uplay Install 2688) (Version: - Ubisoft) Windows-PC-Integritätsprüfung (HKLM\...\{B3956CF3-F6C5-4567-AC38-1FD4432B319C}) (Version: 3.6.2204.08001 - Microsoft Corporation) Windows-Treiberpaket - Google, Inc. (WinUSB) AndroidUsbDeviceClass (08/28/2014 11.0.0000.00000) (HKLM\...\092555911492C6959D2596D612F52DCA71881CA2) (Version: 08/28/2014 11.0.0000.00000 - Google, Inc.) WinRAR 6.00 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 6.00.0 - win.rar GmbH) Zoom (HKU\S-1-5-21-2343168550-1689659002-1608603552-1001\...\ZoomUMX) (Version: 5.8.0 (1324) - Zoom Video Communications, Inc.) Packages: ========= Canon Inkjet Print Utility -> C:\Program Files\WindowsApps\34791E63.CanonInkjetPrintUtility_3.1.0.0_neutral__6e5tt8cgb93ep [2021-03-24] (Canon Inc.) Descenders -> C:\Program Files\WindowsApps\NoMoreRobots.GamePreviewDescenders_0.1.125.0_x64__671zbmwb2bw9p [2021-12-14] (No More Robots) Forza Horizon 4 -> C:\Program Files\WindowsApps\Microsoft.SunriseBaseGame_1.476.404.2_x64__8wekyb3d8bbwe [2022-06-07] (Microsoft Studios) Forza Horizon 4 Formula Drift Car Pack -> C:\Program Files\WindowsApps\Microsoft.FormulaDriftCarPack_1.0.3.2_neutral__8wekyb3d8bbwe [2021-01-17] (Microsoft Studios) LearningView -> C:\Program Files\WindowsApps\21270MichaelHielscher.LearningView_1.3.0.0_x86__dxtjzrf263v0p [2021-03-26] (Michael Hielscher) Media Engine-Add-On für Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-10-04] (Microsoft Corporation) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2021-03-24] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2021-03-24] (Microsoft Corporation) [MS Ad] Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_52.10427.388.0_x64__8wekyb3d8bbwe [2022-06-03] (Microsoft Corporation) NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.962.0_x64__56jybvy8sckqj [2022-06-02] (NVIDIA Corp.) Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.186.857.0_x86__zpdnekdrzrea0 [2022-05-27] (Spotify AB) [Startup Task] Telegram Desktop -> C:\Program Files\WindowsApps\TelegramMessengerLLP.TelegramDesktop_3.7.3.0_x64__t4vj0pshhgkwm [2022-04-27] (Telegram Messenger LLP) [Startup Task] XING -> C:\Program Files\WindowsApps\XINGAG.XING_4.0.9.0_x86__xpfg3f7e9an52 [2022-06-03] (New Work SE) ==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) CustomCLSID: HKU\S-1-5-21-2343168550-1689659002-1608603552-1001_Classes\CLSID\{227C9E8F-71A1-4B23-9076-682A1A8EAAED}\localserver32 -> "c:\program files\macrium\common\reflectmonitor.exe" -ToastActivated => Keine Datei ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files\Notepad++\NppShell_06.dll [2022-05-09] (Notepad++ -> ) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2020-12-25] (AVB Disc Soft, SIA -> Disc Soft Ltd) ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2020-12-25] (AVB Disc Soft, SIA -> Disc Soft Ltd) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2022-06-07] (Malwarebytes Inc. -> Malwarebytes) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_7ad37590e62d4afc\nvshext.dll [2022-05-21] (Nvidia Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2022-06-07] (Malwarebytes Inc. -> Malwarebytes) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (Nicht auf der Ausnahmeliste) ==================== ==================== Verknüpfungen & WMI ======================== ==================== Geladene Module (Nicht auf der Ausnahmeliste) ============= 2014-04-07 16:31 - 2014-04-07 16:31 - 000172032 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\css_core.dll 2021-08-26 18:11 - 2015-07-15 17:26 - 000450560 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\NETGEAR\WNA3100M\WifiLib.dll 2022-05-26 11:32 - 2022-05-26 11:32 - 001101824 _____ (Microsoft Corporation) [Datei ist nicht signiert] C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\MFC80.DLL 2022-05-26 11:32 - 2022-05-26 11:32 - 000065536 _____ (Microsoft Corporation) [Datei ist nicht signiert] C:\Windows\WinSxS\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\MFC80DEU.DLL 2021-08-26 18:11 - 2013-08-09 17:32 - 000524288 _____ (Realtek Semiconductor Corp.) [Datei ist nicht signiert] C:\Program Files (x86)\NETGEAR\WNA3100M\RtlLib.dll 2021-08-26 18:11 - 2012-09-13 09:25 - 000200704 _____ (Realtek) [Datei ist nicht signiert] C:\Program Files (x86)\NETGEAR\WNA3100M\IpLib.dll 2021-08-26 18:11 - 2013-07-19 22:11 - 000278528 _____ (Realtek) [Datei ist nicht signiert] C:\Program Files (x86)\NETGEAR\WNA3100M\RtlIhvOid.dll 2022-03-28 20:42 - 2016-10-10 06:27 - 000556544 _____ (Soft Service Company) [Datei ist nicht signiert] C:\Program Files (x86)\Unified Remote 3\wcl.dll 2021-08-26 18:11 - 2009-07-23 02:32 - 001122304 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Datei ist nicht signiert] C:\Program Files (x86)\NETGEAR\WNA3100M\LIBEAY32.dll 2022-03-28 20:42 - 2017-05-29 04:55 - 001846272 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Datei ist nicht signiert] C:\Program Files (x86)\Unified Remote 3\libcryptoMD.dll 2022-03-28 20:42 - 2017-05-29 04:55 - 000382976 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Datei ist nicht signiert] C:\Program Files (x86)\Unified Remote 3\libsslMD.dll ==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ======== ==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ================= ==================== Internet Explorer (Nicht auf der Ausnahmeliste) ========== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/p/?LinkId=255141 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/p/?LinkId=255141 HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896 HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://go.microsoft.com/fwlink/p/?LinkId=255141 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://go.microsoft.com/fwlink/p/?LinkId=255141 HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://go.microsoft.com/fwlink/?LinkId=54896 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://go.microsoft.com/fwlink/?LinkId=54896 HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\System32\blank.htm HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896 HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896 HKU\S-1-5-21-2343168550-1689659002-1608603552-1001\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm HKU\S-1-5-21-2343168550-1689659002-1608603552-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896 HKU\S-1-5-21-2343168550-1689659002-1608603552-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/p/?LinkId=255141 HKU\S-1-5-21-2343168550-1689659002-1608603552-1004\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm HKU\S-1-5-21-2343168550-1689659002-1608603552-1004\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896 HKU\S-1-5-21-2343168550-1689659002-1608603552-1004\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/p/?LinkId=255141 URLSearchHook: HKU\S-1-5-21-2343168550-1689659002-1608603552-1001 - Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\System32\ieframe.dll (Microsoft Windows -> Microsoft Corporation) URLSearchHook: HKU\S-1-5-21-2343168550-1689659002-1608603552-1001 - Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll (Microsoft Windows -> Microsoft Corporation) URLSearchHook: HKU\S-1-5-21-2343168550-1689659002-1608603552-1004 - Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\System32\ieframe.dll (Microsoft Windows -> Microsoft Corporation) URLSearchHook: HKU\S-1-5-21-2343168550-1689659002-1608603552-1004 - Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll (Microsoft Windows -> Microsoft Corporation) SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC SearchScopes: HKU\S-1-5-21-2343168550-1689659002-1608603552-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02 SearchScopes: HKU\S-1-5-21-2343168550-1689659002-1608603552-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02 BHO: IEToEdge BHO -> {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} -> C:\Program Files (x86)\Microsoft\Edge\Application\102.0.1245.33\BHO\ie_to_edge_bho_64.dll [2022-06-03] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: IEToEdge BHO -> {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} -> C:\Program Files (x86)\Microsoft\Edge\Application\102.0.1245.33\BHO\ie_to_edge_bho.dll [2022-06-03] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation) Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll [2022-05-10] (Microsoft Windows -> Microsoft Corporation) Handler-x32: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll [2022-05-10] (Microsoft Windows -> Microsoft Corporation) Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\System32\urlmon.dll [2022-05-10] (Microsoft Windows -> Microsoft Corporation) Handler-x32: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\SysWOW64\urlmon.dll [2022-05-10] (Microsoft Windows -> Microsoft Corporation) Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\System32\msvidctl.dll [2021-01-14] (Microsoft Windows -> Microsoft Corporation) Handler-x32: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\SysWOW64\msvidctl.dll [2021-01-14] (Microsoft Windows -> Microsoft Corporation) Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll [2022-05-10] (Microsoft Windows -> Microsoft Corporation) Handler-x32: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll [2022-05-10] (Microsoft Windows -> Microsoft Corporation) Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll [2022-05-10] (Microsoft Windows -> Microsoft Corporation) Handler-x32: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll [2022-05-10] (Microsoft Windows -> Microsoft Corporation) Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll [2022-05-10] (Microsoft Windows -> Microsoft Corporation) Handler-x32: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll [2022-05-10] (Microsoft Windows -> Microsoft Corporation) Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll [2022-05-10] (Microsoft Windows -> Microsoft Corporation) Handler-x32: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll [2022-05-10] (Microsoft Windows -> Microsoft Corporation) Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation) Handler-x32: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysWOW64\itss.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation) Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll [2022-05-10] (Microsoft Windows -> Microsoft Corporation) Handler-x32: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll [2022-05-10] (Microsoft Windows -> Microsoft Corporation) Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll [2022-05-10] (Microsoft Windows -> Microsoft Corporation) Handler-x32: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll [2022-05-10] (Microsoft Windows -> Microsoft Corporation) Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll [2022-05-10] (Microsoft Windows -> Microsoft Corporation) Handler-x32: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll [2022-05-10] (Microsoft Windows -> Microsoft Corporation) Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\System32\inetcomm.dll [2021-10-23] (Microsoft Windows -> Microsoft Corporation) Handler-x32: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\SysWOW64\inetcomm.dll [2021-10-23] (Microsoft Windows -> Microsoft Corporation) Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll [2022-05-10] (Microsoft Windows -> Microsoft Corporation) Handler-x32: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll [2022-05-10] (Microsoft Windows -> Microsoft Corporation) Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll [2015-07-31] (Microsoft Corporation -> Microsoft Corporation) Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation) Handler-x32: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysWOW64\itss.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation) Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation) Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll [2022-05-10] (Microsoft Windows -> Microsoft Corporation) Handler-x32: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll [2022-05-10] (Microsoft Windows -> Microsoft Corporation) Handler: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll [2022-02-09] (Microsoft Windows -> Microsoft Corporation) Handler-x32: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll [2022-02-09] (Microsoft Windows -> Microsoft Corporation) Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\System32\msvidctl.dll [2021-01-14] (Microsoft Windows -> Microsoft Corporation) Handler-x32: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\SysWOW64\msvidctl.dll [2021-01-14] (Microsoft Windows -> Microsoft Corporation) Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll [2022-05-10] (Microsoft Windows -> Microsoft Corporation) Handler-x32: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll [2022-05-10] (Microsoft Windows -> Microsoft Corporation) Handler: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll [2022-02-09] (Microsoft Windows -> Microsoft Corporation) Handler-x32: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll [2022-02-09] (Microsoft Windows -> Microsoft Corporation) Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation) Filter-x32: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWOW64\mscoree.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation) Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation) Filter-x32: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWOW64\mscoree.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation) Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation) Filter-x32: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWOW64\mscoree.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation) Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE16\MSOXMLMF.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation) Filter-x32: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE16\MSOXMLMF.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation) StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe ==================== Hosts Inhalt: ========================= (Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.) 2019-12-07 11:14 - 2022-02-09 15:12 - 000000980 _____ C:\Windows\system32\drivers\etc\hosts 127.0.0.1 www.easeus.com 127.0.0.1 track.easeus.com 127.0.0.1 66.39.112.91 127.0.0.1 216.92.151.227 127.0.0.1 216.92.61.7 127.0.0.1 update.easeus.com ==================== Andere Bereiche =========================== (Aktuell gibt es keinen automatisierten Fix für diesen Bereich.) HKU\S-1-5-21-2343168550-1689659002-1608603552-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Paddy\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\1887147.jpg HKU\S-1-5-21-2343168550-1689659002-1608603552-1004\Control Panel\Desktop\\Wallpaper -> C:\Users\cdolc\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\c48b81f0bfc53621a249aead22a53b44.jpg DNS Servers: Datenträger ist nicht mit dem Internet verbunden. HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: ) ist aktiviert. ==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge == (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.) HKU\S-1-5-21-2343168550-1689659002-1608603552-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning" HKU\S-1-5-21-2343168550-1689659002-1608603552-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-2343168550-1689659002-1608603552-1001\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-2343168550-1689659002-1608603552-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount" HKU\S-1-5-21-2343168550-1689659002-1608603552-1001\...\StartupApproved\Run: => "EpicGamesLauncher" ==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================ (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) FirewallRules: [{3C2E261D-DCF4-4CFB-9282-3DCFABA65F87}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{5E4E4DF8-47CC-4F07-B795-784E632014C2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{D77CC402-A565-4CDA-A3B7-395E84B7491C}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{6640F2E4-F26A-4248-85A8-CD57B4AA95B1}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{5AFEC933-526C-42B8-B593-F70BB11DA5A1}] => (Allow) H:\SteamLibrary\steamapps\common\Domino Simulator 2020\DominoSimulator20.exe => Keine Datei FirewallRules: [{C45B6FD9-3A3A-49A3-B5A7-9E770618A106}] => (Allow) H:\SteamLibrary\steamapps\common\Domino Simulator 2020\DominoSimulator20.exe => Keine Datei FirewallRules: [{7644D504-8379-47A3-B54A-4F5710FECECB}] => (Allow) H:\SteamLibrary\steamapps\common\Domino Simulator 2020\DevBranch\DominoSimulator20.exe => Keine Datei FirewallRules: [{11531CE8-C8E0-4EF3-A4EA-C3BEAB9DC166}] => (Allow) H:\SteamLibrary\steamapps\common\Domino Simulator 2020\DevBranch\DominoSimulator20.exe => Keine Datei FirewallRules: [{F9AC81A7-48F7-487E-9353-142DFF722C16}] => (Allow) H:\SteamLibrary\steamapps\common\Stardew Valley\Stardew Valley.exe => Keine Datei FirewallRules: [{90607A20-1ADB-46A4-95DB-22A13920F3C3}] => (Allow) H:\SteamLibrary\steamapps\common\Stardew Valley\Stardew Valley.exe => Keine Datei FirewallRules: [{6A3D41BE-F6B4-4F3B-9594-A2521A3DBD50}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd) FirewallRules: [{5A4F8571-F4AC-42BB-862F-EEC08B9566FE}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd) FirewallRules: [TCP Query User{B0C053F6-E8F2-40B6-8936-0055202F5875}H:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) H:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe => Keine Datei FirewallRules: [UDP Query User{545160F5-4A18-4448-90DA-FAF82DE648BD}H:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) H:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe => Keine Datei FirewallRules: [TCP Query User{AB12BD57-2119-44D8-8F17-DED4D922A0A3}C:\program files (x86)\gz systems\purevpn\purevpn.exe] => (Allow) C:\program files (x86)\gz systems\purevpn\purevpn.exe => Keine Datei FirewallRules: [UDP Query User{C69A0FB6-075A-4C89-AB70-DC93B53AF659}C:\program files (x86)\gz systems\purevpn\purevpn.exe] => (Allow) C:\program files (x86)\gz systems\purevpn\purevpn.exe => Keine Datei FirewallRules: [{49722796-25D9-4286-9FBA-95482E0C457B}] => (Allow) S:\Epic\AssassinsCreedValhalla\ACValhalla_Plus.exe (UBISOFT ENTERTAINMENT INC. -> ) FirewallRules: [{8D00FD17-4EFE-4A90-BAFC-A4E3FE7E6ADE}] => (Allow) C:\Program Files (x86)\Sony\PS Remote Play\RemotePlay.exe (Sony Interactive Entertainment Inc. -> Sony Interactive Entertainment Inc.) FirewallRules: [TCP Query User{DC9F5B3D-7528-4DE2-9C94-9BBF5C43D047}H:\epic\tonyhawksproskater\base\binaries\win64\thps12.exe] => (Allow) H:\epic\tonyhawksproskater\base\binaries\win64\thps12.exe => Keine Datei FirewallRules: [UDP Query User{447FE184-A180-4FD6-9E83-759287969378}H:\epic\tonyhawksproskater\base\binaries\win64\thps12.exe] => (Allow) H:\epic\tonyhawksproskater\base\binaries\win64\thps12.exe => Keine Datei FirewallRules: [{BFB6D0F5-F340-4339-A479-0E9FF37A20F1}] => (Allow) H:\SteamLibrary\steamapps\common\DrugDealerSimulator\DrugDealerSimulator.exe => Keine Datei FirewallRules: [{C1DC1805-772A-42C3-8C6C-AC8D027D97AE}] => (Allow) H:\SteamLibrary\steamapps\common\DrugDealerSimulator\DrugDealerSimulator.exe => Keine Datei FirewallRules: [{F9059890-36F7-427E-B833-B3B534C3DB89}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{57E66B54-3F1E-48E0-A661-878CD0DB5E65}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [TCP Query User{E1DE634D-E028-4A34-B090-34AD713673B9}D:\jdownloader\igg-demolitiocompangoldfixed\game.exe] => (Block) D:\jdownloader\igg-demolitiocompangoldfixed\game.exe (GIANTS Software GmbH -> GIANTS Software GmbH) FirewallRules: [UDP Query User{E9EFCBF8-8875-4B1D-BE18-971542EE936B}D:\jdownloader\igg-demolitiocompangoldfixed\game.exe] => (Block) D:\jdownloader\igg-demolitiocompangoldfixed\game.exe (GIANTS Software GmbH -> GIANTS Software GmbH) FirewallRules: [{34019547-ACD5-4626-BE04-2245F7E5AF33}] => (Allow) H:\SteamLibrary\steamapps\common\Demolition Company Gold\game.exe => Keine Datei FirewallRules: [{56AFD98D-6CE8-417B-9EE5-9B506A332D24}] => (Allow) H:\SteamLibrary\steamapps\common\Demolition Company Gold\game.exe => Keine Datei FirewallRules: [{898C09D8-7B33-43C3-B4A9-5F610533F77F}] => (Allow) H:\SteamLibrary\steamapps\common\Among Us\Among Us.exe => Keine Datei FirewallRules: [{A0693D31-32BB-4956-960C-D65E1B9C1AEE}] => (Allow) H:\SteamLibrary\steamapps\common\Among Us\Among Us.exe => Keine Datei FirewallRules: [{53233445-2489-4FAB-B0DB-8A62C4755E6D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Phasmophobia\Phasmophobia.exe () [Datei ist nicht signiert] FirewallRules: [{972B7B3B-471F-41FF-B75A-9639338E08FC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Phasmophobia\Phasmophobia.exe () [Datei ist nicht signiert] FirewallRules: [{86A4A99D-6B52-4FC1-B8A7-07B7BB25A59B}] => (Allow) S:\Epic\TheCrew2\TheCrew2.exe (UBISOFT ENTERTAINMENT INC. -> UBISoft) FirewallRules: [TCP Query User{6CB1D32F-81C5-47B5-ADF6-38BC167B484B}C:\program files (x86)\soundwire server\soundwireserver.exe] => (Allow) C:\program files (x86)\soundwire server\soundwireserver.exe (GeorgieLabs) [Datei ist nicht signiert] FirewallRules: [UDP Query User{6107FE71-A20B-4028-BB62-A8AB992BD65A}C:\program files (x86)\soundwire server\soundwireserver.exe] => (Allow) C:\program files (x86)\soundwire server\soundwireserver.exe (GeorgieLabs) [Datei ist nicht signiert] FirewallRules: [TCP Query User{EE501FD9-75A8-46A8-81B2-6F3067354718}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN) FirewallRules: [UDP Query User{FEB5EEF0-9B48-41A9-BFEF-37E671E9527D}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN) FirewallRules: [TCP Query User{F620BF7F-3F79-4E55-92CB-1D3968FBDCC1}H:\scum\scum\binaries\win64\scum.exe] => (Block) H:\scum\scum\binaries\win64\scum.exe => Keine Datei FirewallRules: [UDP Query User{DF36D124-DCB1-482D-8846-0CCB098F1DE7}H:\scum\scum\binaries\win64\scum.exe] => (Block) H:\scum\scum\binaries\win64\scum.exe => Keine Datei FirewallRules: [TCP Query User{DC0D76B0-3404-4BCA-9117-E57FEC05D076}H:\epic\tonyhawksproskater\base\binaries\win64\thps12.exe] => (Allow) H:\epic\tonyhawksproskater\base\binaries\win64\thps12.exe => Keine Datei FirewallRules: [UDP Query User{53A76F97-0DD5-4BB2-8E18-2AD47C4E745A}H:\epic\tonyhawksproskater\base\binaries\win64\thps12.exe] => (Allow) H:\epic\tonyhawksproskater\base\binaries\win64\thps12.exe => Keine Datei FirewallRules: [TCP Query User{1D706729-3B64-4A08-AA55-085C191A7229}C:\program files (x86)\soundwire server\soundwireserver.exe] => (Allow) C:\program files (x86)\soundwire server\soundwireserver.exe (GeorgieLabs) [Datei ist nicht signiert] FirewallRules: [UDP Query User{99692433-4D47-47E9-A8A4-D91455AD3956}C:\program files (x86)\soundwire server\soundwireserver.exe] => (Allow) C:\program files (x86)\soundwire server\soundwireserver.exe (GeorgieLabs) [Datei ist nicht signiert] FirewallRules: [TCP Query User{5C0EC3A5-65D0-47E6-86B0-44172642BD1B}S:\it takes two\nuts\binaries\win64\ittakestwo.exe] => (Block) S:\it takes two\nuts\binaries\win64\ittakestwo.exe (Hazelight Studios) [Datei ist nicht signiert] FirewallRules: [UDP Query User{F6B0A4DB-E117-4183-9520-17B6D37CFD60}S:\it takes two\nuts\binaries\win64\ittakestwo.exe] => (Block) S:\it takes two\nuts\binaries\win64\ittakestwo.exe (Hazelight Studios) [Datei ist nicht signiert] FirewallRules: [{012AD836-BFDA-4FF4-8568-1F8C12146EE3}] => (Allow) H:\SteamLibrary\steamapps\common\AtDeadOfNight\AtDeadOfNight.exe => Keine Datei FirewallRules: [{8E2CDC98-BB59-4BAE-8E7E-D942B64865EA}] => (Allow) H:\SteamLibrary\steamapps\common\AtDeadOfNight\AtDeadOfNight.exe => Keine Datei FirewallRules: [{C22EC9B9-85AB-4275-BF1D-4A85F1AFCA40}] => (Allow) C:\Users\Paddy\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FirewallRules: [{18A2071F-58DA-4C69-9F9F-450FE3B02EE5}] => (Allow) H:\SteamLibrary\steamapps\common\Grand Theft Auto V\PlayGTAV.exe => Keine Datei FirewallRules: [{B2C5ACA6-9AC3-45D6-8803-A2AC070A366F}] => (Allow) H:\SteamLibrary\steamapps\common\Grand Theft Auto V\PlayGTAV.exe => Keine Datei FirewallRules: [{8E6CCB9F-B217-4C7B-ABBF-8FBC63905922}] => (Allow) H:\SteamLibrary\steamapps\common\Controller Companion\ControllerCompanion.exe => Keine Datei FirewallRules: [{3170561D-638F-447D-AA7C-6D8838974CFD}] => (Allow) H:\SteamLibrary\steamapps\common\Controller Companion\ControllerCompanion.exe => Keine Datei FirewallRules: [{ABAC3CB6-320F-4170-A907-50C1F553637C}] => (Allow) H:\SteamLibrary\steamapps\common\Schlag den Star - Das 2. Spiel\Schlag den Star - Das 2. Spiel.exe => Keine Datei FirewallRules: [{3C128AE1-36BB-4278-9992-3AFDC08585A6}] => (Allow) H:\SteamLibrary\steamapps\common\Schlag den Star - Das 2. Spiel\Schlag den Star - Das 2. Spiel.exe => Keine Datei FirewallRules: [{B50A3FE6-B432-409E-8CDE-A841543B3217}] => (Allow) H:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe => Keine Datei FirewallRules: [{25D33BC1-D06A-4C9A-A713-037F49EA4924}] => (Allow) H:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe => Keine Datei FirewallRules: [{19F51D04-840A-4250-9EE0-5845D3C50F97}] => (Allow) H:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe => Keine Datei FirewallRules: [{99127EF4-1209-43E4-A4A2-7CF6C4F57CAF}] => (Allow) H:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe => Keine Datei FirewallRules: [{DB87DA40-A6FE-4A62-9ABD-0085C320179E}] => (Allow) G:\SteamLibrary\steamapps\common\DrugDealerSimulator\DrugDealerSimulator.exe (Epic Games, Inc.) [Datei ist nicht signiert] FirewallRules: [{9C41561D-6F6C-466C-8DD3-D20E773F5E16}] => (Allow) G:\SteamLibrary\steamapps\common\DrugDealerSimulator\DrugDealerSimulator.exe (Epic Games, Inc.) [Datei ist nicht signiert] FirewallRules: [{FCCA53EA-97F7-425D-B438-B1EF11BFACF7}] => (Allow) G:\SteamLibrary\steamapps\common\SleepingDogs\HKShip.exe (Valve Corp. -> ) [Datei ist nicht signiert] FirewallRules: [{BD0FC0FD-945F-46E4-A6AC-B10C662AC8C2}] => (Allow) G:\SteamLibrary\steamapps\common\SleepingDogs\HKShip.exe (Valve Corp. -> ) [Datei ist nicht signiert] FirewallRules: [{BB4416CA-CE0A-4C58-A4B8-A5D0BBCC62C6}] => (Allow) G:\SteamLibrary\steamapps\common\Domino Simulator 2020\DominoSimulator20.exe () [Datei ist nicht signiert] FirewallRules: [{7F98497A-98E9-4E2E-BF74-AEC71AFE0967}] => (Allow) G:\SteamLibrary\steamapps\common\Domino Simulator 2020\DominoSimulator20.exe () [Datei ist nicht signiert] FirewallRules: [{CBF66310-0CFF-4922-B564-D0F801D15AE1}] => (Allow) G:\SteamLibrary\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [{CB23568B-DDE9-4993-9E74-4FC068169FF3}] => (Allow) G:\SteamLibrary\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [{4C68C427-BAAA-4127-8FAA-1C573A64DC66}] => (Allow) G:\SteamLibrary\steamapps\common\AtDeadOfNight\AtDeadOfNight.exe (The NW.js Community) [Datei ist nicht signiert] FirewallRules: [{495FA82C-013A-463C-80B3-97ED7D8DBE6A}] => (Allow) G:\SteamLibrary\steamapps\common\AtDeadOfNight\AtDeadOfNight.exe (The NW.js Community) [Datei ist nicht signiert] FirewallRules: [{C699C155-4898-471E-B81C-80F7E55A31B0}] => (Allow) G:\SteamLibrary\steamapps\common\Schlag den Star - Das 2. Spiel\Schlag den Star - Das 2. Spiel.exe () [Datei ist nicht signiert] FirewallRules: [{44DAC3BD-0007-4C9D-9AF1-F1AC5016F0F4}] => (Allow) G:\SteamLibrary\steamapps\common\Schlag den Star - Das 2. Spiel\Schlag den Star - Das 2. Spiel.exe () [Datei ist nicht signiert] FirewallRules: [{C73065CC-6B5D-4F58-9216-DFC3E565A9F5}] => (Allow) G:\SteamLibrary\steamapps\common\Demolition Company Gold\game.exe (GIANTS Software GmbH -> GIANTS Software GmbH) FirewallRules: [{847B1D5C-07CC-41EC-A521-F59609E0D7C2}] => (Allow) G:\SteamLibrary\steamapps\common\Demolition Company Gold\game.exe (GIANTS Software GmbH -> GIANTS Software GmbH) FirewallRules: [{0F493E0F-8061-43E1-9565-EF82226B45FB}] => (Allow) G:\SteamLibrary\steamapps\common\Stardew Valley\Stardew Valley.exe (ConcernedApe) [Datei ist nicht signiert] FirewallRules: [{3112ADCF-AB50-40F1-AD03-1B42A1F01D23}] => (Allow) G:\SteamLibrary\steamapps\common\Stardew Valley\Stardew Valley.exe (ConcernedApe) [Datei ist nicht signiert] FirewallRules: [{29370B5A-BA46-47EB-AEA0-1AE1C6E3D42E}] => (Allow) G:\SteamLibrary\steamapps\common\Among Us\Among Us.exe () [Datei ist nicht signiert] FirewallRules: [{04D016B8-D3EF-4576-BFA4-1BFFD461F015}] => (Allow) G:\SteamLibrary\steamapps\common\Among Us\Among Us.exe () [Datei ist nicht signiert] FirewallRules: [{8B47280E-FE4E-48A1-9A35-D93E4B33846C}] => (Allow) G:\SteamLibrary\steamapps\common\Controller Companion\ControllerCompanion.exe (KOGA TECH LIMITED -> KogaTech ApS) FirewallRules: [{C6F9177C-3922-417F-AE4A-F5C0085084CE}] => (Allow) G:\SteamLibrary\steamapps\common\Controller Companion\ControllerCompanion.exe (KOGA TECH LIMITED -> KogaTech ApS) FirewallRules: [{E76CE26B-8567-44E9-AD79-21370860D18D}] => (Allow) G:\Epic\WATCH_DOGS2\bin\WatchDogs2.exe (Blue Byte GmbH -> Ubisoft Entertainment) FirewallRules: [{3A6F9842-9D91-4B07-8ECA-74E34F881D51}] => (Allow) G:\Epic\WATCH_DOGS2\bin\WatchDogs2.exe (Blue Byte GmbH -> Ubisoft Entertainment) FirewallRules: [{16719D37-29A5-4D7D-A4FF-BD45CBBDA96E}] => (Allow) G:\Epic\WATCH_DOGS2\bin_plus\WatchDogs2.exe (Blue Byte GmbH -> Ubisoft Entertainment) FirewallRules: [{43BE4830-F42A-43C3-BAFF-C603263538B8}] => (Allow) G:\Epic\WATCH_DOGS2\bin_plus\WatchDogs2.exe (Blue Byte GmbH -> Ubisoft Entertainment) FirewallRules: [{DF2F637E-DDBA-4716-9BBC-4565AB5304C0}] => (Allow) G:\Epic\WATCH_DOGS2\EAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd) FirewallRules: [{CB6C34B7-D4B4-4075-8DA0-3AFF2F53437E}] => (Allow) G:\Epic\WATCH_DOGS2\EAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd) FirewallRules: [TCP Query User{481AB798-AE96-42F2-AC0B-275931BDFF3C}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [UDP Query User{3ED0CCA9-84DA-4198-9F40-21C24331DFCF}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [{A4B93F22-212D-4B8F-A6FE-49C62EDE0842}] => (Allow) C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe (Unified Intents AB -> Unified Intents AB) FirewallRules: [{B816ED85-A885-4CE0-A250-79EC3B38F414}] => (Allow) C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe (Unified Intents AB -> Unified Intents AB) FirewallRules: [{0C2D5344-C77C-4D33-A4D0-9CDD1CB9A4E4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{0EDF6C80-AB53-4B82-B8C2-8CE7468B2D5C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{CAFF38CB-E2A9-41A2-A4C8-AC993D406EC9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{E8EC533C-8369-4A60-8477-B70B9B8B096D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{DC046D45-F133-40AB-A1C8-845B44DE6E06}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.83.3409.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{0536055D-1C27-4475-801C-89307F21A746}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.83.3409.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{76ECFB44-F2C0-47A5-9AEA-C4A2BE45BBE5}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.83.3409.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{E80E8EF7-0F9F-4492-BB9F-E787A5D58B5E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.83.3409.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{57384DB8-53B3-4C03-94A7-B5CBE28D41EE}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.186.857.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{4338EDBB-477C-4976-B590-021A00830607}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.186.857.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{8F1A63C6-C590-42B6-AA8A-B3A8207A1CB5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.186.857.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{B1D52523-2C4C-4DE5-8418-258D9696D2F6}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.186.857.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{135A27A6-ECB0-47AD-9C0F-353F0AA1405C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.186.857.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{54B53CFD-4C14-4B63-9522-DE47EA8A8BA7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.186.857.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{5FC93600-D368-498F-A205-1833981B4446}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.186.857.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{CCDDCB1F-1C62-4BDA-A19E-2B577EE23206}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.186.857.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{A17E4E8C-55A2-4896-8006-95ADF84E1957}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{50F48B3A-A466-4DC3-BC7E-DCC01CA7E398}] => (Allow) G:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software) FirewallRules: [{E4C7CCB3-EFF4-4B1C-A753-3663967DF503}] => (Allow) G:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software) FirewallRules: [{2CA974C4-2FDE-4422-A9FE-3893425A3E42}] => (Allow) G:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software) FirewallRules: [{0D8A68BD-6D98-4F65-B318-0C9BF3A3FF7D}] => (Allow) G:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software) FirewallRules: [{EE441576-2BC6-4732-A0F2-C29E6F7E0698}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\102.0.1245.33\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) ==================== Wiederherstellungspunkte ========================= 26-05-2022 11:31:34 Installiert Motorola Device Manager 04-06-2022 21:05:40 Removed 4K YouTube to MP3 3.8 04-06-2022 21:07:23 [IDS_MSI_ERROR_1717] 07-06-2022 17:31:43 AdwCleaner_BeforeCleaning_07/06/2022_17:31:42 ==================== Fehlerhafte Geräte im Gerätemanager ============ Name: Logitech Cordless Device Description: Logitech Cordless Device Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Logitech Cordless Device Description: Logitech Cordless Device Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Logitech Cordless Device Description: Logitech Cordless Device Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Fehlereinträge in der Ereignisanzeige: ======================== Applikationsfehler: ================== Error: (06/08/2022 05:44:49 PM) (Source: Software Protection Platform Service) (EventID: 8229) (User: ) Description: Fehler des Regelmoduls beim Ausführen einer oder mehrerer geplanter Aktionen. Fehlercode:0x80070002 Pfad:<none> Argumente:<none> Error: (06/08/2022 05:44:49 PM) (Source: Software Protection Platform Service) (EventID: 8229) (User: ) Description: Fehler des Regelmoduls beim Ausführen einer oder mehrerer geplanter Aktionen. Fehlercode:0x80070002 Pfad:<none> Argumente:<none> Error: (06/08/2022 05:32:20 PM) (Source: Software Protection Platform Service) (EventID: 8229) (User: ) Description: Fehler des Regelmoduls beim Ausführen einer oder mehrerer geplanter Aktionen. Fehlercode:0x80070002 Pfad:<none> Argumente:<none> Error: (06/08/2022 05:32:20 PM) (Source: Software Protection Platform Service) (EventID: 8229) (User: ) Description: Fehler des Regelmoduls beim Ausführen einer oder mehrerer geplanter Aktionen. Fehlercode:0x80070002 Pfad:<none> Argumente:<none> Error: (06/07/2022 09:08:10 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Name der fehlerhaften Anwendung: svchost.exe, Version: 10.0.19041.1566, Zeitstempel: 0x1f37eb46 Name des fehlerhaften Moduls: installservice.dll, Version: 10.0.19041.1682, Zeitstempel: 0x348469f4 Ausnahmecode: 0xc0000005 Fehleroffset: 0x000000000004d6f1 ID des fehlerhaften Prozesses: 0x1e64 Startzeit der fehlerhaften Anwendung: 0x01d87a894932af74 Pfad der fehlerhaften Anwendung: C:\Windows\System32\svchost.exe Pfad des fehlerhaften Moduls: c:\windows\system32\installservice.dll Berichtskennung: 3fafda59-3648-4657-97b6-49a69d519ad6 Vollständiger Name des fehlerhaften Pakets: Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Error: (06/07/2022 09:08:00 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Name der fehlerhaften Anwendung: svchost.exe, Version: 10.0.19041.1566, Zeitstempel: 0x1f37eb46 Name des fehlerhaften Moduls: installservice.dll, Version: 10.0.19041.1682, Zeitstempel: 0x348469f4 Ausnahmecode: 0xc0000005 Fehleroffset: 0x00000000000ca8fd ID des fehlerhaften Prozesses: 0x1e64 Startzeit der fehlerhaften Anwendung: 0x01d87a894932af74 Pfad der fehlerhaften Anwendung: C:\Windows\System32\svchost.exe Pfad des fehlerhaften Moduls: c:\windows\system32\installservice.dll Berichtskennung: 4cb35951-497a-4da0-bf7c-b2b0a0669850 Vollständiger Name des fehlerhaften Pakets: Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Error: (06/07/2022 06:16:45 PM) (Source: Software Protection Platform Service) (EventID: 8229) (User: ) Description: Fehler des Regelmoduls beim Ausführen einer oder mehrerer geplanter Aktionen. Fehlercode:0x80070002 Pfad:<none> Argumente:<none> Error: (06/07/2022 06:11:48 PM) (Source: Software Protection Platform Service) (EventID: 8229) (User: ) Description: Fehler des Regelmoduls beim Ausführen einer oder mehrerer geplanter Aktionen. Fehlercode:0x80070002 Pfad:<none> Argumente:<none> Systemfehler: ============= Error: (06/08/2022 05:44:49 PM) (Source: DCOM) (EventID: 10000) (User: NT-AUTORITÄT) Description: Ein DCOM-Server konnte nicht gestartet werden: {3C296D07-90AE-4FAC-86F9-65EAA8B82D22}. Fehler: "2147942402" Aufgetreten beim Start dieses Befehls: C:\Windows\system32\SppExtComObj.exe -Embedding Error: (06/08/2022 05:44:49 PM) (Source: DCOM) (EventID: 10000) (User: NT-AUTORITÄT) Description: Ein DCOM-Server konnte nicht gestartet werden: {3C296D07-90AE-4FAC-86F9-65EAA8B82D22}. Fehler: "2147942402" Aufgetreten beim Start dieses Befehls: C:\Windows\system32\SppExtComObj.exe -Embedding Error: (06/08/2022 05:32:20 PM) (Source: DCOM) (EventID: 10000) (User: NT-AUTORITÄT) Description: Ein DCOM-Server konnte nicht gestartet werden: {3C296D07-90AE-4FAC-86F9-65EAA8B82D22}. Fehler: "2147942402" Aufgetreten beim Start dieses Befehls: C:\Windows\system32\SppExtComObj.exe -Embedding Error: (06/08/2022 05:32:20 PM) (Source: DCOM) (EventID: 10000) (User: NT-AUTORITÄT) Description: Ein DCOM-Server konnte nicht gestartet werden: {3C296D07-90AE-4FAC-86F9-65EAA8B82D22}. Fehler: "2147942402" Aufgetreten beim Start dieses Befehls: C:\Windows\system32\SppExtComObj.exe -Embedding Error: (06/07/2022 09:07:57 PM) (Source: DCOM) (EventID: 10005) (User: HEFDITSCHPC) Description: Fehler "87" in DCOM, als der Dienst "GamingServices" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden: {3E8C9ABE-9226-4609-BF5B-60288A391DEE} Error: (06/07/2022 09:07:57 PM) (Source: DCOM) (EventID: 10005) (User: HEFDITSCHPC) Description: Fehler "87" in DCOM, als der Dienst "GamingServices" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden: {3E8C9ABE-9226-4609-BF5B-60288A391DEE} Error: (06/07/2022 09:07:52 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT) Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80073d02 fehlgeschlagen: 9MWPM2CQNLHN-Microsoft.GamingServices Error: (06/07/2022 06:16:45 PM) (Source: DCOM) (EventID: 10000) (User: NT-AUTORITÄT) Description: Ein DCOM-Server konnte nicht gestartet werden: {3C296D07-90AE-4FAC-86F9-65EAA8B82D22}. Fehler: "2147942402" Aufgetreten beim Start dieses Befehls: C:\Windows\system32\SppExtComObj.exe -Embedding Windows Defender: ================ Date: 2022-06-05 21:51:21 Description: Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet. Überprüfungs-ID: {439ED0F3-3FEC-472C-94A1-F270C51341D2} Überprüfungstyp: Antimalware Überprüfungsparameter: Schnellüberprüfung Benutzer: NT-AUTORITÄT\SYSTEM Date: 2022-06-05 00:53:54 Description: Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet. Überprüfungs-ID: {5DDB4658-CEE8-421E-8F42-7903F6538CED} Überprüfungstyp: Antimalware Überprüfungsparameter: Schnellüberprüfung Benutzer: NT-AUTORITÄT\SYSTEM Date: 2022-06-05 00:15:34 Description: Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet. Überprüfungs-ID: {02560149-BEB5-4B13-B091-944E0B74A1D1} Überprüfungstyp: Antimalware Überprüfungsparameter: Schnellüberprüfung Benutzer: NT-AUTORITÄT\SYSTEM Date: 2022-06-03 15:37:57 Description: Microsoft Defender Antivirus hat Schadsoftware oder andere potenziell unerwünschte Software erkannt. Weitere Informationen: https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/Keygen&threatid=2147593794&enterprise=0 Name: HackTool:Win32/Keygen Schweregrad: Hoch Kategorie: Tool Pfad: file:_G:\NFSU2\rld-nu2k.exe Erkennungsursprung: Lokaler Computer Erkennungstype: Konkret Erkennungsquelle: Echtzeitschutz Benutzer: HEFDITSCHPC\Paddy Prozessname: C:\Windows\explorer.exe Sicherheitsversion: AV: 1.367.942.0, AS: 1.367.942.0, NIS: 1.367.942.0 Modulversion: AM: 1.1.19200.6, NIS: 1.1.19200.6 Date: 2022-06-03 15:30:42 Description: Microsoft Defender Antivirus hat Schadsoftware oder andere potenziell unerwünschte Software erkannt. Weitere Informationen: https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/Keygen&threatid=2147593794&enterprise=0 Name: HackTool:Win32/Keygen Schweregrad: Hoch Kategorie: Tool Pfad: file:_J:\Crack\rld-nu2k.exe Erkennungsursprung: Lokaler Computer Erkennungstype: Konkret Erkennungsquelle: Echtzeitschutz Benutzer: HEFDITSCHPC\Paddy Prozessname: C:\Windows\explorer.exe Sicherheitsversion: AV: 1.367.942.0, AS: 1.367.942.0, NIS: 1.367.942.0 Modulversion: AM: 1.1.19200.6, NIS: 1.1.19200.6 Event[0]: Date: 2022-05-08 10:09:38 Description: Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten. Neue Version der Sicherheitsinformationen: %Vorherige Version der Sicherheitsinformationen: 1.363.1567.0 Update Source: Microsoft Update-Server Sicherheitstyp: AntiVirus Updatetyp: Voll Benutzer: NT-AUTORITÄT\SYSTEM Aktuelle Modulversion: %Vorherige Modulversion: 1.1.19200.5 Fehlercode: 0x8024402c Fehlerbeschreibung: Unerwartetes Problem bei der Überprüfung auf Updates. Informationen zum Installieren von Updates oder zur Problembehandlung finden Sie unter "Hilfe und Support". CodeIntegrity: =============== Date: 2022-06-08 17:40:15 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Speicherinformationen =========================== BIOS: American Megatrends Inc. P4.20 06/18/2020 Hauptplatine: ASRock B450 Pro4 Prozessor: AMD Ryzen 5 2600X Six-Core Processor Prozentuale Nutzung des RAM: 12% Installierter physikalischer RAM: 32698.19 MB Verfügbarer physikalischer RAM: 28490.29 MB Summe virtueller Speicher: 37562.19 MB Verfügbarer virtueller Speicher: 31986.82 MB ==================== Laufwerke ================================ Drive c: () (Fixed) (Total:232.27 GB) (Free:53.04 GB) (Model: SanDisk SDSSDH3 250G) NTFS Drive d: (GTA5modded) (Fixed) (Total:465.26 GB) (Free:116.89 GB) (Model: ST3500312CS) NTFS Drive e: (Videos & Bilder) (Fixed) (Total:540.89 GB) (Free:229.87 GB) (Model: WDC WD10EACS-65D6B0) NTFS Drive f: (Jedöns) (Fixed) (Total:390.62 GB) (Free:390.52 GB) (Model: WDC WD10EACS-65D6B0) NTFS Drive g: (Gamez) (Fixed) (Total:931.5 GB) (Free:609.45 GB) (Model: Samsung SSD 870 QVO 1TB) NTFS Drive h: (Verbatim) (Removable) (Total:117.16 GB) (Free:117.15 GB) FAT32 Drive s: (Spiele) (Fixed) (Total:465.75 GB) (Free:100.54 GB) (Model: Samsung SSD 970 EVO 500GB) NTFS \\?\Volume{b1cad45b-fd52-4b89-bc44-a83050197afc}\ () (Fixed) (Total:0.5 GB) (Free:0.08 GB) NTFS \\?\Volume{d1860546-bc6b-4638-04d6-edcf6c9d56ab}\ () (Fixed) (Total:12.66 GB) (Free:0 GB) NTFS \\?\Volume{fa97fa97-0000-0000-0060-f05074000000}\ () (Fixed) (Total:0.5 GB) (Free:0.06 GB) NTFS \\?\Volume{62244d51-a8ad-4c77-b9fd-fa438f244873}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Partitionstabelle ==================== ========================================================== Disk: 0 (Size: 232.9 GB) (Disk ID: 03CAD795) Partition: GPT. ========================================================== Disk: 1 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: FA97FA97) Partition 1: (Active) - (Size=465.3 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=507 MB) - (Type=27) ========================================================== Disk: 2 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: EBDEBA57) Partition 1: (Not Active) - (Size=540.9 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=390.6 GB) - (Type=07 NTFS) ========================================================== Disk: 3 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 08B20163) Partition: GPT. ========================================================== Disk: 4 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 08B26164) Partition: GPT. ========================================================== Disk: 5 (Protective MBR) (Size: 117.2 GB) (Disk ID: 00000000) Partition: GPT. Attempted reading MBR returned 0 bytes. Could not read MBR for disk 6. ==================== Ende von Addition.txt ======================= |
09.06.2022, 19:33 | #10 |
/// Winkelfunktion /// TB-Süch-Tiger™ | Win 10: Zugriff auf Amazonkonto. Trojaner eingefangen? Störende, veraltete oder unnötige Programme deinstallieren Bitte über Programme und Features (appwiz.cpl) deinstallieren:
__________________ Logfiles bitte immer in CODE-Tags posten |
09.06.2022, 20:29 | #11 |
| Win 10: Zugriff auf Amazonkonto. Trojaner eingefangen? Wunderbar. Werde ich machen wenn ich wieder zu Hause bin. Ist (appwiz.cpl) der Trojaner oder was habe ich mir da eingefangen? Vielen Dank für die schnelle Hilfe |
09.06.2022, 20:47 | #12 |
/// Winkelfunktion /// TB-Süch-Tiger™ | Win 10: Zugriff auf Amazonkonto. Trojaner eingefangen? Steht da irgendwas über Trojaner in meinem Beitrag? Wie kommst du auf so einen Unsinn? appwiz.cpl ist ein Shortcut für Programme und Features
__________________ Logfiles bitte immer in CODE-Tags posten |
10.06.2022, 12:01 | #13 |
| Win 10: Zugriff auf Amazonkonto. Trojaner eingefangen? Ok also habe ich mir nichts eingefangen? Ich lösche das was du geschrieben hast und dann ist alles gut? |
10.06.2022, 12:04 | #14 |
/// Winkelfunktion /// TB-Süch-Tiger™ | Win 10: Zugriff auf Amazonkonto. Trojaner eingefangen? Hör doch mal einfach auf immer irgendwas unsinniges da reinzudichten. Einfach nur das machen was da steht. Wir deinstallieren die Programme weil die veraltet oder unsinnig sind. Das hat so mit Schädlingen nichts zu tun. Gehört aber zur Rechnerpflege dazu.
__________________ Logfiles bitte immer in CODE-Tags posten |
10.06.2022, 19:00 | #15 |
| Win 10: Zugriff auf Amazonkonto. Trojaner eingefangen? So habe alles deinstalliert. |
Themen zu Win 10: Zugriff auf Amazonkonto. Trojaner eingefangen? |
account, amazon, anhang, aufsetzen, dateien, eingefangen, experte, experten, gefangen, gehackt, gen, gestern, glaube, hoffe, laufen, log, malwarebytes, neu, system, troja, trojaner, win, woche, würde, zugriff |