| |
| |||||||
Alles rund um Windows: Ständige BDOS mit Windows 10 - woran liegt's?Windows 7 Hilfe zu allen Windows-Betriebssystemen: Windows XP, Windows Vista, Windows 7, Windows 8(.1) und Windows 10 / Windows 11- als auch zu sämtlicher Windows-Software. Alles zu Windows 10 ist auch gerne willkommen. Bitte benenne etwaige Fehler oder Bluescreens unter Windows mit dem Wortlaut der Fehlermeldung und Fehlercode. Erste Schritte für Hilfe unter Windows. |
14.02.2023, 14:12
| #1 |
| |  Problem: Ständige BDOS mit Windows 10 - woran liegt's? Hallo, in der letzten Zeit bekomme ich immer häufiger BDODs, gestern gleich vier Stück mit den verschiedensten Meldungen: IRQL_NOT_LESS_OR_EQUAL SYSTEM_SERVICE_EXCEPTION MEMORY_MANAGEMENT Die Ereignisanzeige hat zu den Bluescreens folgendes gesagt:    Btw. konnte das Update 22H2 nicht installiert werden:  Und sämtliche meiner Links im Schnellzugriff im Explorer sind - warum auch immer - auch verschwunden. Ich habe dann mal Chkdsk auf Laufwerk C (SSD) ausgeführt und eine Reparatur durchgeführt. Noch während der Reparatur kam erneut ein BSOD mit MEMORY_MANAGEMENT als Stillstandscode. Beim Neustart wurde aber die Reparatur durchgeführt und beim erneuten Chkdsk-Scan wurden keine Fehler mehr gefunden. Laufwerk D war unauffällig, hier wurde nichts gefunden. Dann nochmal neu gestartet und sfc/scannow ausgeführt:  Mir wurde dann noch zu "den drei Befehlen mit DISM" geraten und zu einem Inplace-Upgrade, das sagt mir jedoch nichts. Woran liegt's? Nachfolgend noch die Logs. Danke im Voraus! LG Log sfc scannow:https://pastebin.com/xKSdZew4 Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 09-02-2023 01
durchgeführt von User (Administrator) auf DESKTOP-9MSI2AI (LENOVO 20HH001RGE) (14-02-2023 13:57:51)
Gestartet von D:\Benutzer\User\Downloads
Geladene Profile: User
Plattform: Microsoft Windows 10 Pro Version 22H2 19045.2486 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: Chrome
Start-Modus: Normal
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Acronis International GmbH -> ) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
(ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
(C:\Program Files (x86)\ExpressVPN\bootstrap\amd64\nssm.exe ->) (EXPRSVPN LLC -> ExpressVPN) C:\Program Files (x86)\ExpressVPN\expressvpnd\expressvpnd.exe
(C:\Program Files (x86)\Logitech\LogiSync\sync-agent\LogiSyncMiddleware.exe ->) (Logitech Inc -> Logitech Europe S.A.) C:\Program Files (x86)\Logitech\LogiSync\sync-agent\rightsight\RightSightService.exe
(C:\Program Files (x86)\Logitech\LogiSync\sync-agent\rightsight\RightSightService.exe ->) (Logitech Inc -> ) C:\Program Files (x86)\Logitech\LogiSync\sync-agent\rightsight\crashpad_handler.exe
(C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2>
(C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(C:\Program Files\WindowsApps\AppleInc.iCloud_14.1.108.0_x64__nzyj5cx40ttqa\iCloud\iCloudServices.exe ->) (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_14.1.108.0_x64__nzyj5cx40ttqa\iCloud\iCloudCKKS.exe
(C:\Program Files\WindowsApps\AppleInc.iCloud_14.1.108.0_x64__nzyj5cx40ttqa\iCloud\iCloudServices.exe ->) (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_14.1.108.0_x64__nzyj5cx40ttqa\iCloud\WebView2\msedgewebview2.exe <6>
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCopyAccelerator.exe
(C:\Users\User\AppData\Local\0install.net\implementations\sha256new_JCCQDCLOYQPYCEPZF325EEMUOXSHGMIFC42HMBHVLBFPWCTZ75KA\DeepL.exe ->) (The CefSharp Authors) [Datei ist nicht signiert] C:\Users\User\AppData\Local\0install.net\implementations\sha256new_WNVUT4A7COIHUPNX3HWQQZD5BU3GEPFRMM3BLVJW4ICRXIJEKBJQ\CefSharp.BrowserSubprocess.exe <5>
(Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\Quick Utility Toolbox\cnqtbapp.exe
(DeepL SE -> DeepL SE) C:\Users\User\AppData\Local\0install.net\implementations\sha256new_JCCQDCLOYQPYCEPZF325EEMUOXSHGMIFC42HMBHVLBFPWCTZ75KA\DeepL.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_d4faa0a55b66ffd8\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_d4faa0a55b66ffd8\igfxEM.exe
(DriverStore\FileRepository\fn.inf_amd64_9c4c29de89199c58\driver\tphkload.exe ->) (Lenovo -> Lenovo Group Limited) C:\Windows\System32\DriverStore\FileRepository\FNCC3C~1.INF\driver\shtctky.exe
(DriverStore\FileRepository\fn.inf_amd64_9c4c29de89199c58\driver\tphkload.exe ->) (Lenovo -> Lenovo Group Limited) C:\Windows\System32\DriverStore\FileRepository\FNCC3C~1.INF\driver\tposd.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <7>
(Elaborate Bytes AG -> Elaborate Bytes AG) C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
(explorer.exe ->) (Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
(explorer.exe ->) (Aleksey Cherkasskiy -> PANTERASoft) [Datei ist nicht signiert] C:\Program Files (x86)\HDD Health\hddhealth.exe
(explorer.exe ->) (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_14.1.108.0_x64__nzyj5cx40ttqa\iCloud\ApplePhotoStreams.exe
(explorer.exe ->) (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_14.1.108.0_x64__nzyj5cx40ttqa\iCloud\iCloudDrive.exe
(explorer.exe ->) (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_14.1.108.0_x64__nzyj5cx40ttqa\iCloud\iCloudServices.exe
(explorer.exe ->) (Bartels Media GmbH -> Bartels Media GmbH) C:\Program Files (x86)\PhraseExpress\phraseexpress.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <40>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\OUTLOOK.EXE
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(services.exe ->) (Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(services.exe ->) (Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(services.exe ->) (Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
(services.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe
(services.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Aleksey Cherkasskiy -> ) [Datei ist nicht signiert] C:\Program Files (x86)\HDD Health\HDDHealthService.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(services.exe ->) (Canon Inc. -> ) C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(services.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.) C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe
(services.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(services.exe ->) (EXPRSVPN LLC -> ExpressVPN) C:\Program Files (x86)\ExpressVPN\bootstrap\amd64\nssm.exe
(services.exe ->) (geek software GmbH -> geek software GmbH) C:\Program Files\PDF24\pdf24.exe <2>
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_d4faa0a55b66ffd8\igfxCUIService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_ea95fd84c6d75277\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_8829ad0eb26b3ef6\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_8829ad0eb26b3ef6\IntelCpHeciSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\sgx_psw.inf_amd64_46afe571f647787a\aesm_service.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(services.exe ->) (Lenovo -> Lenovo Group Limited) C:\Windows\System32\DriverStore\FileRepository\fn.inf_amd64_9c4c29de89199c58\driver\tphkload.exe
(services.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\ibmpmdrv.inf_amd64_02d728b29c6492d3\x64\ibmpmsvc.exe
(services.exe ->) (Logitech Inc -> ) C:\Program Files (x86)\Logitech\LogiSync\sync-agent\LogiSyncHandler.exe
(services.exe ->) (Logitech Inc -> ) C:\Program Files (x86)\Logitech\LogiSync\sync-agent\LogiSyncMiddleware.exe
(services.exe ->) (Logitech Inc -> ) C:\Program Files (x86)\Logitech\LogiSync\sync-agent\LogiSyncProxy.exe
(services.exe ->) (Logitech Inc -> ) C:\Program Files (x86)\Logitech\LogiSyncStub\LogiSyncStub.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\NisSrv.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\nvwmi64.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(services.exe ->) (Sierra Wireless, Inc -> Sierra Wireless, Inc.) C:\Windows\Sierra Wireless Inc\bin\SwiService.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(svchost.exe ->) (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_14.1.108.0_x64__nzyj5cx40ttqa\iCloud\APSDaemon.exe
(svchost.exe ->) (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_14.1.108.0_x64__nzyj5cx40ttqa\iCloud\secd.exe
(svchost.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(svchost.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_d4faa0a55b66ffd8\igfxext.exe
(svchost.exe ->) (Lenovo -> Lenovo) C:\Windows\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ScreenSketch_10.2008.2277.0_x64__8wekyb3d8bbwe\ScreenSketch.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2210.0.0_x64__8wekyb3d8bbwe\CalculatorApp.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22112.142.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [587352 2021-12-02] (Acronis International GmbH -> )
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [339000 2021-10-26] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [PDF24] => C:\Program Files\PDF24\pdf24.exe [613560 2022-11-30] (geek software GmbH -> geek software GmbH)
HKLM-x32\...\Run: [VirtualCloneDrive] => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [105280 2020-02-23] (Elaborate Bytes AG -> Elaborate Bytes AG)
HKLM-x32\...\Run: [TeamsMachineInstaller] => C:\Program Files (x86)\Teams Installer\Teams.exe [122427152 2021-07-14] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [11327200 2023-02-07] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [425864 2021-12-02] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [4871640 2021-12-02] (Acronis International GmbH -> )
HKLM-x32\...\Run: [ExpressVPNNotificationService] => C:\Program Files (x86)\ExpressVPN\expressvpn-ui\ExpressVPNNotificationServiceStarter.exe [378280 2022-02-21] (EXPRSVPN LLC -> ExpressVPN)
HKLM-x32\...\Run: [CanonQuickToolbox] => C:\Program Files (x86)\Canon\Quick Utility Toolbox\cnqtbapp.exe [2289616 2021-11-16] (Canon Inc. -> CANON INC.)
HKU\S-1-5-21-4107983409-3116636310-2003537043-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2627968 2023-02-01] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-4107983409-3116636310-2003537043-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\User\AppData\Local\Microsoft\Teams\Update.exe [2454240 2022-03-06] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-4107983409-3116636310-2003537043-1001\...\Run: [ExpressVPN4] => C:\Program Files (x86)\ExpressVPN\expressvpn-ui\ExpressVPN.exe [851880 2022-02-21] (EXPRSVPN LLC -> ExpressVPN)
HKU\S-1-5-21-4107983409-3116636310-2003537043-1001\...\Policies\Explorer: []
HKU\S-1-5-21-4107983409-3116636310-2003537043-1001\...\MountPoints2: {b235f659-9ca1-11ec-981f-9061ae873eb6} - "G:\Setup.exe"
HKLM\...\Windows x64\Print Processors\Canon TM-300 Print Processor: C:\Windows\System32\spool\prtprocs\x64\cnwfdpTP.dll [96768 2022-02-21] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows x64\Print Processors\hpcpp255: C:\Windows\System32\spool\prtprocs\x64\hpcpp255.dll [848384 2021-03-03] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor TM-300: C:\Windows\system32\CNMLMF0.DLL [940544 2022-02-21] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\HP Universal Print Monitor: C:\Windows\system32\HPMPW082.DLL [120320 2021-03-03] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc.)
HKLM\...\Print\Monitors\HPMLM225: C:\Windows\system32\hpmlm225.dll [308224 2018-11-14] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\109.0.5414.121\Installer\chrmstp.exe [2023-02-09] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HDDHealth.lnk [2022-12-05]
ShortcutTarget: HDDHealth.lnk -> C:\Program Files (x86)\HDD Health\hddhealth.exe (Aleksey Cherkasskiy -> PANTERASoft) [Datei ist nicht signiert]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\PhraseExpress.lnk [2022-03-06]
ShortcutTarget: PhraseExpress.lnk -> C:\Program Files (x86)\PhraseExpress\phraseexpress.exe (Bartels Media GmbH -> Bartels Media GmbH)
Startup: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DeepL auto-start.lnk [2022-06-25]
ShortcutTarget: DeepL auto-start.lnk -> C:\Users\User\AppData\Roaming\0install.net\desktop-integration\stubs\1eae01f3cdb5ff0ecf683b15a60a1489573c1188cb34abc205fcf7a924b4e54d\auto-start.exe () [Datei ist nicht signiert]
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {0234F1BE-3759-4D94-9BDD-45D1B2BD565B} - System32\Tasks\Intel\Intel® Management and Security Status => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [235208 2022-01-27] (Intel Corporation -> Intel Corporation) -> "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe" 60
Task: {1E859B1E-0E79-4889-8224-F71E37DDD830} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {21B73500-DCA3-4C7B-9A4A-55CCD7F00DE1} - System32\Tasks\nWizard_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [1554112 2022-06-06] (Nvidia Corporation -> NVIDIA Corporation)
Task: {21FF0C5D-1624-4ACA-B2BA-B4362C1CA470} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [710560 2023-02-01] (Mozilla Corporation -> Mozilla Foundation)
Task: {24622FCA-4338-438D-B804-6D30B8E47C99} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [7056328 2022-10-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {2BE2D562-CEE4-4527-8F6D-4F125F7681CF} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1900320 2023-01-19] (Lenovo -> )
Task: {36674DB4-7297-45D6-9ABF-D5A70F3BE5B8} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3618912 2022-05-17] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {51CFD86C-4533-4D86-99CA-72AE4125BDC1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {5665AD87-6983-42CE-9EFF-00E2071EE50E} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt application when hardware is detected => C:\Program Files (x86)\Intel\Thunderbolt Software\\ConditionalAppStarter.exe [227888 ] (Key for TBT Legacy Driver -> Intel Corporation)
Task: {575C72E7-5F25-4E3C-A4CB-2C769060F357} - System32\Tasks\Lenovo\Power Manager\Background monitor => C:\Windows\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe [129016 2022-12-04] (Lenovo -> Lenovo)
Task: {5C71D31F-75BD-487A-BE06-2C542AABAF4D} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141216 2023-01-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {749ED160-2B63-4F11-967D-F4BB32DD5C8C} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [661408 2023-02-01] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {7553E9D8-EA99-49F4-8F80-0C8784CD6AED} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [7056328 2022-10-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {78C39A37-30CE-49AA-B2D7-611F2CFA6916} - System32\Tasks\GoogleUpdateTaskMachineUA{74A7DA71-C72A-471D-90C3-0A13219B167F} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-03-05] (Google LLC -> Google LLC)
Task: {7FA38893-BBA0-47E1-BF06-B97BB79AAB50} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1900320 2023-01-19] (Lenovo -> )
Task: {803286E8-EBA4-4369-9219-BE3D6F788898} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2022-03-06] (Dropbox, Inc -> Dropbox, Inc.)
Task: {87CB7B76-19D6-4706-B147-E17082BE9DB1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8C83BB63-46F8-4CC2-A31B-A4CB607A9A4A} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt application on switch user if service is up => C:\Program Files (x86)\Intel\Thunderbolt Software\\ConditionalAppStarter.exe [227888 ] (Key for TBT Legacy Driver -> Intel Corporation)
Task: {8CD9D618-3932-4D5C-917E-3180550ED4AE} - System32\Tasks\GoogleUpdateTaskMachineCore{773C622A-3C8A-4901-9040-C4110FF8D840} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-03-05] (Google LLC -> Google LLC)
Task: {96D9721A-DB60-4591-93F4-1E941BFD1D91} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.)
Task: {A2CCC6DA-046D-4BFA-965D-8E67DA825B08} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt service on boot if driver is up => C:\Program Files (x86)\Intel\Thunderbolt Software\\tbtsvc.exe [2311216 ] (Key for TBT Legacy Driver -> Intel Corporation)
Task: {A9E132FE-3E31-47AC-BB4D-04B0B9760B14} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt service when hardware is detected => sc.exe start ThunderboltService
Task: {C01EF648-3C16-4602-9806-5CFBEB902960} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4184976 2023-02-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {C192CFC8-DF07-4199-9390-9B2208334CBB} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4107983409-3116636310-2003537043-1001Core => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe /c (Keine Datei)
Task: {C6FC314A-74F7-49B6-8F0B-BB5B03EFDC2D} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2022-03-06] (Dropbox, Inc -> Dropbox, Inc.)
Task: {C87A80F3-41FF-464B-854B-201BAB39EBFE} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1552376 2022-09-26] (Adobe Inc. -> Adobe Inc.)
Task: {CF9D768C-B210-48D8-850A-9945BFA110EC} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-4107983409-3116636310-2003537043-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4184976 2023-02-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {D4992751-B113-43DF-A28F-6FEDC455517A} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21864416 2022-12-27] (Microsoft Corporation -> Microsoft Corporation)
Task: {D9802E25-4621-4529-AD47-49D2E3DBB99E} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141216 2023-01-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {DA5A9918-7522-4B60-AD63-4F086CC0E81D} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt application on login if service is up => C:\Program Files (x86)\Intel\Thunderbolt Software\\ConditionalAppStarter.exe [227888 ] (Key for TBT Legacy Driver -> Intel Corporation)
Task: {E56B8C95-B6C2-46A7-B895-703752E27D73} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4107983409-3116636310-2003537043-1001UA => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler (Keine Datei)
Task: {ED023F37-5865-41DF-B5FA-37F83AA08B35} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21864416 2022-12-27] (Microsoft Corporation -> Microsoft Corporation)
Task: {EEA69B6B-29E4-484C-8633-59133912DD74} - System32\Tasks\Lenovo\Power Manager\Uninstall task => C:\Windows\SysWOW64\PowerMgrInst.exe [65016 2022-12-04] (Lenovo -> )
Task: {EF59C6A5-95D3-431C-A203-3F4C5CE293C7} - System32\Tasks\RtHDVBg_Dolby => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3618912 2022-05-17] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {F346B9DA-E6FA-4555-84B9-959E689C5F7C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{36d012e4-3388-4c93-92ab-6707874b2d8a}: [NameServer] 10.185.0.1
Tcpip\..\Interfaces\{5b8bf1c3-ba57-46a7-a555-c315bcfaf33a}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{959517cd-13ff-4c49-8b8b-62297087336a}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{c052072d-c7a1-402f-a7eb-49d54a1471c6}: [DhcpNameServer] 172.20.10.1
Edge:
=======
Edge Profile: C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default [2023-02-01]
FireFox:
========
FF DefaultProfile: 5lj9tg8g.default
FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\5lj9tg8g.default [2022-03-06]
FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\sefkl2j0.default-release [2023-02-07]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-03-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-01-21] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-03-05] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR DefaultProfile: Profile 1
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default [2022-08-04]
CHR Notifications: Default -> hxxps://meet.google.com
CHR Extension: (Google Docs Offline) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-08-04]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-03-05]
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-02-14]
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1 [2023-02-14]
CHR Notifications: Profile 1 -> hxxps://meet.google.com; hxxps://zoom.us
CHR Session Restore: Profile 1 -> ist aktiviert.
CHR Extension: (ColorZilla) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bhlhnicpbhignbdhedgjhgdocnmhomnp [2022-03-05]
CHR Extension: (uBlock Origin) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2023-01-05]
CHR Extension: (Session Buddy) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\edacconmaakjimmfgnblocblbcdcpbko [2022-03-05]
CHR Extension: (Video Downloader Professional) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2023-02-06]
CHR Extension: (Emmet Re:view) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\epejoicbhllgiimigokgjdoijnpaphdp [2022-03-05]
CHR Extension: (Link Klipper - Extract all links) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fahollcgofmpnehocdgofnhkkchiekoo [2023-02-06]
CHR Extension: (I don't care about cookies) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fihnjjcciajhdojfnbdddfaoknhalnja [2022-12-18]
CHR Extension: (iCloud-Lesezeichen) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fkepacicchenbjecpbpbclokcabebhah [2022-11-18]
CHR Extension: (UI.Vision RPA) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gcbalfbdmfieckjlnblleoemohcganoc [2023-02-06]
CHR Extension: (Return YouTube Dislike) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gebbhagfogifgggkldgodflihgfeippi [2022-12-01]
CHR Extension: (Google Docs Offline) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-02-14]
CHR Extension: (Pinterest Tag Helper) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gmlcbajhgoaaegmlbaclmmmhpmfdajmp [2022-08-12]
CHR Extension: (Wappalyzer - Technology profiler) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gppongmhjkpfnbhagpmjfkannfbllamg [2023-02-10]
CHR Extension: (Shoop Cashback & Gutscheine) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\hacngjmphfcjdfpmfmlngemhddjdncpe [2023-01-18]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2023-02-06]
CHR Extension: (Chromium browser automation) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\jmbmjnojfkcohdpkpjmeeijckfbebbon [2022-03-05]
CHR Extension: (Nehmen Sie vollständige Webseiten auf - FireShot) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\mcbpblocgmgfnpjjppndjkmgjaogfceg [2023-01-25]
CHR Extension: (Ghostery – Datenschutzorientierter Werbeblocker) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2022-12-28]
CHR Extension: (Selenium IDE) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\mooikfkahbdckldjjndioackbalphokd [2022-03-05]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-03-05]
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\System Profile [2023-02-14]
CHR HKU\S-1-5-21-4107983409-3116636310-2003537043-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
==================== Dienste (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 AcronisActiveProtectionService; C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe [2728304 2021-12-02] (Acronis International GmbH -> Acronis International GmbH)
R2 AcrSch2Svc; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [1212736 2021-12-02] (Acronis International GmbH -> )
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2022-09-26] (Adobe Inc. -> Adobe Inc.)
R2 afcdpsrv; C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [6096688 2022-03-06] (Acronis International GmbH -> )
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [99104 2021-08-20] (Apple Inc. -> Apple Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9198496 2022-11-30] (Microsoft Corporation -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2022-03-06] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2022-03-06] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [46824 2023-02-07] (Dropbox, Inc -> Dropbox, Inc.)
S3 DevicesUserwUserSvc; C:\Windows\System32\DevicesUserwBroker.dll [597504 2022-08-09] (Microsoft Corporation) [Datei ist nicht signiert]
R2 Dolby DAX2 API Service; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [189464 2020-06-02] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.)
R2 ExpressVPNService; C:\Program Files (x86)\ExpressVPN\bootstrap\amd64\nssm.exe [437160 2022-02-21] (EXPRSVPN LLC -> ExpressVPN)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.007.0109.0004\FileSyncHelper.exe [3484544 2023-02-01] (Microsoft Corporation -> Microsoft Corporation)
R2 HDDHealth; C:\Program Files (x86)\HDD Health\HDDHealthService.exe [17760 2013-03-08] (Aleksey Cherkasskiy -> ) [Datei ist nicht signiert]
R2 IBMPMSVC; C:\Windows\System32\DriverStore\FileRepository\ibmpmdrv.inf_amd64_02d728b29c6492d3\x64\ibmpmsvc.exe [850936 2022-11-24] (Lenovo -> Lenovo)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [445432 2021-04-19] (Canon Inc. -> )
R2 LogiSyncHandler; C:\Program Files (x86)\Logitech\LogiSync\sync-agent\LogiSyncHandler.exe [5959512 2022-10-07] (Logitech Inc -> )
R2 LogiSyncMiddleware; C:\Program Files (x86)\Logitech\LogiSync\sync-agent\LogiSyncMiddleware.exe [7054168 2022-09-29] (Logitech Inc -> )
R2 LogiSyncProxy; C:\Program Files (x86)\Logitech\LogiSync\sync-agent\LogiSyncProxy.exe [6615896 2022-10-05] (Logitech Inc -> )
R2 LogiSyncStub; C:\Program Files (x86)\Logitech\LogiSyncStub\LogiSyncStub.exe [2257984 2022-02-08] (Logitech Inc -> )
S2 LPlatSvc; C:\Windows\System32\DriverStore\FileRepository\ibmpmdrv.inf_amd64_02d728b29c6492d3\x64\LPlatSvc.exe [906232 2022-11-24] (Lenovo -> Lenovo)
R2 mmsminisrv; C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe [4882992 2021-12-02] (Acronis International GmbH -> Acronis International GmbH)
S3 mobile_backup_server; C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe [3004128 2021-12-02] (Acronis International GmbH -> Acronis International GmbH)
S3 mobile_backup_status_server; C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe [1753528 2021-12-02] (Acronis International GmbH -> )
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [50688 2019-02-01] (HP Inc.) [Datei ist nicht signiert]
R2 NVWMI; C:\Windows\System32\nvwmi64.exe [4450960 2021-11-16] (Nvidia Corporation -> NVIDIA Corporation)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.007.0109.0004\OneDriveUpdaterService.exe [3854208 2023-02-01] (Microsoft Corporation -> Microsoft Corporation)
R2 PDF24; C:\Program Files\PDF24\pdf24.exe [613560 2022-11-30] (geek software GmbH -> geek software GmbH)
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [66048 2019-02-01] (HP Inc.) [Datei ist nicht signiert]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [224184 2022-12-18] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 SwiService; C:\Windows\Sierra Wireless Inc\bin\SwiService.exe [1801720 2020-08-18] (Sierra Wireless, Inc -> Sierra Wireless, Inc.)
R2 syncagentsrv; C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [7157960 2021-12-02] (Acronis International GmbH -> )
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [14614960 2022-02-15] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 TPHKLOAD; C:\Windows\System32\DriverStore\FileRepository\fn.inf_amd64_9c4c29de89199c58\driver\TPHKLOAD.exe [473760 2021-10-22] (Lenovo -> Lenovo Group Limited)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\NisSrv.exe [3191264 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe [133592 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R3 AKCCID; C:\Windows\System32\drivers\AKCCID.sys [104992 2019-12-04] (Alcorlink Corp. -> Generic)
S3 AppleKmdfFilter; C:\Windows\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R1 ElbyCDIO; C:\Windows\System32\Drivers\ElbyCDIO.sys [42616 2017-05-14] (Microsoft Windows Hardware Compatibility Publisher -> Elaborate Bytes AG)
R1 EterlogicVirtualSerialDriver; C:\Windows\system32\drivers\VSPE.sys [45072 2022-07-09] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 expressvpnsplittunnel; C:\Program Files (x86)\ExpressVPN\splittunnel\expressvpnsplittunnel.sys [45640 2022-02-21] (ExprsVPN LLC -> ExpressVPN)
R3 expressvpntun; C:\Windows\System32\drivers\expressvpn-tun.sys [46896 2022-01-26] (Express VPN International Ltd. -> ExpressVPN)
R2 file_protector; C:\Windows\System32\DRIVERS\file_protector.sys [569392 2022-03-06] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R0 file_tracker; C:\Windows\System32\DRIVERS\file_tracker.sys [379664 2022-03-06] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R0 fltsrv; C:\Windows\System32\DRIVERS\fltsrv.sys [182832 2022-03-06] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R3 IBMPMDRV; C:\Windows\System32\DriverStore\FileRepository\ibmpmdrv.inf_amd64_02d728b29c6492d3\x64\ibmpmdrv.sys [53240 2022-11-24] (Lenovo -> Lenovo)
R3 MpKslee67fb3a; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{218A09F5-1673-411E-85A9-40169E72828C}\MpKslDrv.sys [214280 2023-02-14] (Microsoft Windows -> Microsoft Corporation)
S3 Netaapl; C:\Windows\System32\drivers\netaapl64.sys [32352 2017-11-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R1 PMDRVS; C:\Windows\System32\DriverStore\FileRepository\ibmpmdrv.inf_amd64_02d728b29c6492d3\x64\pmdrvs.sys [38904 2022-11-24] (Lenovo -> Lenovo)
R3 swmbbser01; C:\Windows\system32\DRIVERS\swmbbser01.sys [297176 2020-08-18] (Sierra Wireless, Inc -> Sierra Wireless Incorporated)
S3 tapexpressvpn; C:\Windows\System32\drivers\tapexpressvpn.sys [61496 2022-01-26] (ExprsVPN LLC -> The OpenVPN Project)
R0 tib; C:\Windows\System32\DRIVERS\tib.sys [1310552 2022-03-06] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R2 tib_mounter; C:\Windows\system32\DRIVERS\tib_mounter.sys [213336 2022-03-06] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
S3 tnd; C:\Windows\system32\DRIVERS\tnd.sys [690520 2022-03-06] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R3 VClone; C:\Windows\System32\drivers\VClone.sys [44544 2020-02-22] (Microsoft Windows Hardware Compatibility Publisher -> Elaborate Bytes AG)
R2 virtual_file; C:\Windows\System32\DRIVERS\virtual_file.sys [331976 2022-03-06] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R0 volume_tracker; C:\Windows\System32\DRIVERS\volume_tracker.sys [243472 2022-03-06] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49568 2022-12-09] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [473376 2022-12-09] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [99616 2022-12-09] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessKeyboardFilter; C:\Windows\System32\drivers\WirelessKeyboardFilter.sys [49336 2018-03-11] (Microsoft Corporation -> Microsoft Corporation)
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat (erstellte) (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2023-02-14 13:57 - 2023-02-14 13:58 - 000000000 ____D C:\FRST
2023-02-14 13:24 - 2023-02-14 13:24 - 002066468 _____ C:\Windows\Minidump\021423-13328-01.dmp
2023-02-13 23:12 - 2023-02-13 23:14 - 000000000 ___HD C:\$WinREAgent
2023-02-13 22:26 - 2023-02-13 22:27 - 000966412 _____ C:\Windows\Minidump\021323-11687-01.dmp
2023-02-13 22:15 - 2023-02-13 22:15 - 000000000 ____D C:\Users\User\AppData\Local\Tvsukernel
2023-02-13 22:09 - 2023-02-13 22:09 - 002138580 _____ C:\Windows\Minidump\021323-11921-01.dmp
2023-02-13 22:04 - 2023-02-13 22:04 - 002594300 _____ C:\Windows\Minidump\021323-15437-01.dmp
2023-02-13 12:31 - 2023-02-13 12:31 - 001659876 _____ C:\Windows\Minidump\021323-11437-01.dmp
2023-02-10 09:44 - 2023-02-10 09:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2023-02-07 13:11 - 2023-02-07 13:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\lenovo
2023-02-07 13:11 - 2023-02-07 13:11 - 000000000 ____D C:\Program Files (x86)\Lenovo
2023-02-07 13:03 - 2023-02-07 13:03 - 000046824 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2023-02-01 13:33 - 2023-02-09 17:14 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-01-26 16:43 - 2023-01-26 16:43 - 000000000 ____D C:\Users\User\AppData\Local\ms-playwright
2023-01-24 16:11 - 2023-01-24 16:11 - 000000000 ____D C:\Users\Public\Desktop\QGIS 3.28.2
2023-01-24 16:11 - 2023-01-24 16:11 - 000000000 ____D C:\Users\User\AppData\Local\crssync
2023-01-24 16:11 - 2023-01-24 16:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QGIS 3.28.2
2023-01-24 16:09 - 2023-01-24 16:11 - 000000000 ____D C:\Program Files\QGIS 3.28.2
2023-01-22 23:17 - 2023-01-22 23:17 - 000000000 ____D C:\Users\User\AppData\Local\pip
2023-01-22 23:14 - 2023-01-26 12:41 - 000000000 ____D C:\Users\User\PycharmProjects
2023-01-22 23:14 - 2023-01-22 23:14 - 000000000 ____D C:\Users\User\AppData\Local\pypa
2023-01-22 23:13 - 2023-01-22 23:13 - 000000000 ____D C:\Users\User\AppData\Roaming\JetBrains
2023-01-22 23:13 - 2023-01-22 23:13 - 000000000 ____D C:\Users\User\AppData\Local\JetBrains
2023-01-22 23:10 - 2023-01-22 23:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JetBrains
2023-01-22 23:09 - 2023-01-22 23:09 - 000000000 ____D C:\Program Files\JetBrains
2023-01-22 23:07 - 2023-01-22 23:07 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Python 3.11
2023-01-22 23:06 - 2023-01-22 23:07 - 000000000 ____D C:\Users\User\AppData\Local\Package Cache
2023-01-17 15:29 - 2023-02-11 20:20 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
==================== Ein Monat (geänderte) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2023-02-14 13:58 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-02-14 13:56 - 2022-03-05 18:40 - 000000000 ____D C:\Users\User\Special Olympics Arbeitsordner
2023-02-14 13:43 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness
2023-02-14 13:36 - 2022-03-05 17:39 - 000000000 ____D C:\Program Files (x86)\Google
2023-02-14 13:35 - 2022-03-05 16:24 - 001723792 _____ C:\Windows\system32\PerfStringBackup.INI
2023-02-14 13:35 - 2019-12-07 15:51 - 000745206 _____ C:\Windows\system32\perfh007.dat
2023-02-14 13:35 - 2019-12-07 15:51 - 000150592 _____ C:\Windows\system32\perfc007.dat
2023-02-14 13:35 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF
2023-02-14 13:29 - 2022-05-26 10:18 - 000000000 ____D C:\Users\User\AppData\Roaming\DropboxElectron
2023-02-14 13:29 - 2022-03-06 03:35 - 000000000 ___RD C:\Users\User\iCloudDrive
2023-02-14 13:29 - 2022-03-06 02:44 - 000000000 ____D C:\Users\User\AppData\Local\Dropbox
2023-02-14 13:28 - 2022-03-06 03:16 - 000000000 ____D C:\Program Files\TeamViewer
2023-02-14 13:28 - 2022-03-05 16:34 - 000000000 ____D C:\ProgramData\NVIDIA
2023-02-14 13:28 - 2022-03-05 16:26 - 000000000 __SHD C:\Users\User\IntelGraphicsProfiles
2023-02-14 13:28 - 2022-03-05 16:26 - 000000000 ____D C:\Intel
2023-02-14 13:28 - 2022-03-05 16:18 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2023-02-14 13:28 - 2022-03-05 16:17 - 000008192 ___SH C:\DumpStack.log.tmp
2023-02-14 13:28 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ServiceState
2023-02-14 13:28 - 2019-12-07 10:03 - 000786432 _____ C:\Windows\system32\config\BBI
2023-02-14 13:24 - 2022-03-07 15:27 - 2325674699 _____ C:\Windows\MEMORY.DMP
2023-02-14 13:24 - 2022-03-07 15:27 - 000000000 ____D C:\Windows\Minidump
2023-02-14 13:24 - 2022-03-05 16:17 - 000000000 ____D C:\Windows\system32\SleepStudy
2023-02-14 13:21 - 2022-03-06 01:38 - 000000000 ____D C:\Users\User\AppData\Local\CrashDumps
2023-02-14 12:04 - 2022-03-05 21:34 - 000000000 ____D C:\ProgramData\boost_interprocess
2023-02-14 10:38 - 2022-03-06 02:38 - 000000000 ____D C:\Users\User\AppData\LocalLow\Mozilla
2023-02-13 23:21 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp
2023-02-13 22:55 - 2022-03-05 16:22 - 000000000 ____D C:\Users\User
2023-02-13 22:54 - 2022-05-31 08:36 - 000043632 _____ (Intel Corporation) C:\Windows\system32\Drivers\pmxdrv.sys
2023-02-13 22:50 - 2022-03-05 17:05 - 000000000 ____D C:\Windows\TempInst
2023-02-13 13:22 - 2022-03-06 03:18 - 000000000 ____D C:\Users\User\AppData\Roaming\WhatsApp
2023-02-13 12:26 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\LiveKernelReports
2023-02-13 10:59 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-02-11 20:20 - 2022-03-05 16:18 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-02-10 09:44 - 2022-03-06 02:44 - 000000000 ____D C:\Program Files (x86)\Dropbox
2023-02-09 17:16 - 2022-03-05 16:31 - 000000000 ____D C:\ProgramData\Lenovo
2023-02-09 17:14 - 2022-03-07 19:32 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2023-02-09 17:14 - 2022-03-06 02:44 - 000001240 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2023-02-09 17:14 - 2022-03-06 02:44 - 000001236 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2023-02-09 17:14 - 2022-03-06 02:38 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-02-09 15:40 - 2022-03-06 02:44 - 000004300 _____ C:\Windows\system32\Tasks\DropboxUpdateTaskMachineUA
2023-02-09 15:40 - 2022-03-06 02:44 - 000004068 _____ C:\Windows\system32\Tasks\DropboxUpdateTaskMachineCore
2023-02-09 15:20 - 2022-03-05 17:39 - 000002239 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-02-07 13:11 - 2022-04-04 17:05 - 000001761 _____ C:\Windows\SysWOW64\InstallUtil.InstallLog
2023-02-07 13:11 - 2022-03-05 17:06 - 000000000 ____D C:\Windows\system32\Tasks\TVT
2023-02-07 12:49 - 2022-03-05 16:23 - 000000000 ____D C:\Users\User\AppData\Local\D3DSCache
2023-02-07 12:47 - 2022-03-06 02:38 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-02-06 20:15 - 2022-03-05 16:18 - 000003756 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-02-06 20:15 - 2022-03-05 16:18 - 000003632 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-02-06 10:10 - 2022-03-06 03:18 - 000000000 ____D C:\Users\User\AppData\Local\WhatsApp
2023-02-03 14:05 - 2022-03-05 16:23 - 000000000 ____D C:\Users\User\AppData\Local\Packages
2023-02-01 21:58 - 2022-03-06 16:25 - 000003596 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-4107983409-3116636310-2003537043-1001
2023-02-01 21:58 - 2022-03-05 17:59 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2023-02-01 21:58 - 2022-03-05 17:59 - 000002148 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-02-01 14:38 - 2022-03-06 02:38 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-02-01 14:38 - 2022-03-06 02:38 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2023-01-30 13:23 - 2022-03-06 01:38 - 000000000 ____D C:\Users\User\AppData\Local\SquirrelTemp
2023-01-27 16:34 - 2022-03-06 03:18 - 000000000 ____D C:\Users\User\AppData\Roaming\vlc
2023-01-24 19:29 - 2022-10-14 15:19 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2023-01-24 19:29 - 2022-10-14 15:19 - 000002061 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2023-01-24 19:29 - 2022-03-05 18:05 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2023-01-24 12:11 - 2022-03-05 16:31 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2023-01-24 12:02 - 2022-08-22 21:46 - 000000000 ____D C:\Users\User\AppData\Local\DeepL_SE
2023-01-22 23:25 - 2022-07-16 14:34 - 000000000 ____D C:\Users\User\.cache
2023-01-22 23:07 - 2022-03-05 21:27 - 000000000 ____D C:\ProgramData\Package Cache
2023-01-22 17:34 - 2022-07-27 15:56 - 000000000 ____D C:\Users\User\AppData\Local\ElevatedDiagnostics
2023-01-19 11:21 - 2022-03-05 17:56 - 000000000 ____D C:\Program Files\Microsoft Office
2023-01-16 11:08 - 2023-01-04 20:45 - 000000000 ____D C:\Users\User\AppData\Local\Deployment
2023-01-15 01:07 - 2022-03-05 16:17 - 000551832 _____ C:\Windows\system32\FNTCACHE.DAT
2023-01-15 01:07 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources
2023-01-15 01:07 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\oobe
2023-01-15 01:07 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\migwiz
2023-01-15 01:07 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========
2022-09-06 12:15 - 2022-12-24 16:25 - 000000128 _____ () C:\Users\User\AppData\Local\PUTTY.RND
2022-08-31 13:05 - 2022-08-31 13:05 - 000004111 _____ () C:\Users\User\AppData\Local\recently-used.xbel
==================== FCheck ================================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
FCheck: C:\Windows\SysWOW64\PlayToManager.dll [2022-10-14] <==== ACHTUNG (Null Byte Datei/Ordner)
==================== SigCheck ============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
==================== Ende von FRST.txt ========================
Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 09-02-2023 01
durchgeführt von User (14-02-2023 13:59:39)
Gestartet von D:\Benutzer\iceing\Downloads
Microsoft Windows 10 Pro Version 22H2 19045.2486 (X64) (2022-03-05 15:19:37)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
Administrator (S-1-5-21-4107983409-3116636310-2003537043-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-4107983409-3116636310-2003537043-503 - Limited - Disabled)
User (S-1-5-21-4107983409-3116636310-2003537043-1001 - Administrator - Enabled) => C:\Users\User
Gast (S-1-5-21-4107983409-3116636310-2003537043-501 - Limited - Disabled)
iphone (S-1-5-21-4107983409-3116636310-2003537043-1002 - Limited - Enabled)
WDAGUtilityAccount (S-1-5-21-4107983409-3116636310-2003537043-504 - Limited - Disabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
64 Bit HP CIO Components Installer (HKLM\...\{50229C72-539F-4E65-BEB5-F0491C5074B7}) (Version: 22.2.1 - HP Inc.) Hidden
7-Zip 21.07 (x64) (HKLM\...\7-Zip) (Version: 21.07 - Igor Pavlov)
Acronis True Image (HKLM-x32\...\{E8C3CECC-4A39-489A-AE2A-28160E194BD9}) (Version: 22.7.15560 - Acronis) Hidden
Acronis True Image (HKLM-x32\...\{E8C3CECC-4A39-489A-AE2A-28160E194BD9}Visible) (Version: 22.7.15560 - Acronis)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1031-1033-7760-BC15014EA700}) (Version: 22.003.20314 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601032}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Apple Mobile Device Support (HKLM\...\{527DD209-8A66-482F-8779-C7B3BACCA8F1}) (Version: 15.0.0.16 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A3985C05-7386-411F-A4BF-32A73F37EB44}) (Version: 2.6.3.1 - Apple Inc.)
Audacity 3.1.3 (HKLM\...\Audacity_is1) (Version: 3.1.3 - Audacity Team)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Canon Calibration Tool (HKLM-x32\...\CanonCalibrationTool) (Version: 1.5.0 - Canon Inc.)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 6.4.0 - Canon Inc.)
Canon Quick Utility Toolbox (HKLM-x32\...\Quick Toolbox) (Version: 2.4.5 - Canon Inc.)
Canon TM-300 Printer Driver (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_TM-300) (Version: - Canon Inc.)
darktable (HKLM\...\darktable) (Version: 4.0.0 - the darktable project)
DeepL (HKU\S-1-5-21-4107983409-3116636310-2003537043-1001\...\https%3a##appdownload.deepl.com#windows#0install#deepl.xml) (Version: - )
Dolby Audio X2 Windows API SDK (HKLM\...\{FA0735B6-9E18-437A-A1CD-9152650FC52B}) (Version: 0.8.8.90 - Dolby Laboratories, Inc.) Hidden
Dolby Audio X2 Windows APP (HKLM\...\{D0D32569-4680-490A-905C-5117CEAAB3EF}) (Version: 0.8.8.76 - Dolby Laboratories, Inc.) Hidden
Dropbox (HKLM-x32\...\Dropbox) (Version: 167.4.4719 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.709.1 - Dropbox, Inc.) Hidden
ExpressVPN (HKLM-x32\...\{E5B9C3E5-889C-4F22-A959-F4B877FD7838}) (Version: 10.19.0.7 - ExpressVPN) Hidden
ExpressVPN (HKLM-x32\...\{f1eeb6f2-375e-4ae3-8f24-343cc672c746}) (Version: 10.19.0.7 - ExpressVPN)
FileZilla Client 3.58.0 (HKLM-x32\...\FileZilla Client) (Version: 3.58.0 - Tim Kosse)
Folder Size 4.9.5.0 (HKLM-x32\...\{2DFA85ED-588F-4CE3-A175-29E52C3804A8}_is1) (Version: 4.9.5.0 - MindGems, Inc.)
GIMP 2.10.32-1 (HKLM\...\GIMP-2_is1) (Version: 2.10.32 - The GIMP Team)
Google Chat (HKU\S-1-5-21-4107983409-3116636310-2003537043-1001\...\4667d243931cceac6da16b0b7cd51ce5) (Version: 1.0 - Google\Chrome)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 109.0.5414.121 - Google LLC)
Google Earth Pro (HKLM\...\{F27DBA46-80E1-4858-9285-19198FFFBF3D}) (Version: 7.3.6.9345 - Google)
HDD Health v4.2 (HKLM-x32\...\HDD Health_is1) (Version: - )
iCloud Outlook (HKLM\...\{F054257C-600A-4918-B730-F6829E491781}) (Version: 13.0.0.201 - Apple Inc.)
Intel(R) Management Engine Components (HKLM\...\{1A9FE6B4-801A-4AF0-AEDB-EA49BD80C9F2}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 2205.15.0.2623 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{B52CA235-45C5-46FE-A183-B7D2FD4966AA}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{B7F27296-F1AE-46BB-8BD7-5E0EED0EA1AC}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Driver (HKLM\...\{9EB5F95A-335A-414D-BECE-BA2CE114A856}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Service Client x64 (HKLM\...\{C9552825-7BF2-4344-BA91-D3CD46F4C442}) (Version: 1.63.1155.2 - Intel Corporation) Hidden
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.63.1155.2 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{5f9b06c7-aa5d-482b-a7e6-5355a325f465}) (Version: 1.63.1155.2 - Intel Corporation) Hidden
iTunes (HKLM\...\{988EF0F3-EF07-4B1E-9050-DAD6F0BE392A}) (Version: 12.12.2.2 - Apple Inc.)
Lenovo System Update (HKLM-x32\...\TVSU_is1) (Version: 5.08.01.0009 - Lenovo)
Logitech SyncAgent (HKLM-x32\...\LogiSyncAgent) (Version: 2.5.293.0 - Logitech Europe S.A.)
Microsoft .NET Core Host - 3.1.10 (x64) (HKLM\...\{52B42932-15C1-45D4-8904-FC3117EEE69B}) (Version: 24.104.29419 - Microsoft Corporation) Hidden
Microsoft .NET Core Host FX Resolver - 3.1.10 (x64) (HKLM\...\{752B4412-A129-4CB2-AD96-B6D97EAD3090}) (Version: 24.104.29419 - Microsoft Corporation) Hidden
Microsoft .NET Core Runtime - 3.1.10 (x64) (HKLM\...\{396D7BC8-E3C8-4B3E-8C60-D50D94FDF09D}) (Version: 24.104.29419 - Microsoft Corporation) Hidden
Microsoft .NET Core Runtime - 3.1.10 (x64) (HKLM-x32\...\{4714dd0a-ebab-4f59-a708-f8d7a793b3f5}) (Version: 3.1.10.29419 - Microsoft Corporation)
Microsoft ASP.NET Core 3.1.10 - Shared Framework (HKLM-x32\...\{6efe3294-03d8-4977-9c67-9f57ab075130}) (Version: 3.1.10.20520 - Microsoft Corporation)
Microsoft ASP.NET Core 3.1.10 Shared Framework (x64) (HKLM\...\{7BEAA207-E3EB-3948-BBB3-336B04D8A2F1}) (Version: 3.1.10.20520 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 110.0.1587.41 - Microsoft Corporation)
Microsoft Edge WebView2-Laufzeit (HKLM-x32\...\Microsoft EdgeWebView) (Version: 109.0.1518.78 - Microsoft Corporation)
Microsoft Office LTSC Standard 2021 - de-de (HKLM\...\Standard2021Volume - de-de) (Version: 16.0.14332.20447 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 23.007.0109.0004 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-4107983409-3116636310-2003537043-1001\...\Teams) (Version: 1.4.00.19572 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{89581302-705F-42C5-99B0-E368A845DAD5}) (Version: 3.70.0.0 - Microsoft Corporation)
Microsoft VC++ redistributables repacked. (HKLM\...\{6ACED991-1E65-4D16-8F6A-1AA1A0B97596}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft VC++ redistributables repacked. (HKLM-x32\...\{7465FCB9-1918-4438-9337-47BAF1902684}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.27.29112 (HKLM-x32\...\{0f770e99-3916-4b0c-8f9b-83822826bcbf}) (Version: 14.27.29112.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.27.29112 (HKLM-x32\...\{be826f5f-eda5-45a2-a3fe-c2cb5c1b9842}) (Version: 14.27.29112.0 - Microsoft Corporation)
Microsoft Visual C++ 2019 X64 Additional Runtime - 14.27.29112 (HKLM\...\{1B4EDD59-90CE-4BDE-8520-630981088165}) (Version: 14.27.29112 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.27.29112 (HKLM\...\{37BB1766-C587-49AE-B2DB-618FBDEAB88C}) (Version: 14.27.29112 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Additional Runtime - 14.27.29112 (HKLM-x32\...\{526B224D-6B70-4A2A-9D03-CE304B5125D6}) (Version: 14.27.29112 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.27.29112 (HKLM-x32\...\{42163859-095F-469B-A0B0-7748500570D1}) (Version: 14.27.29112 - Microsoft Corporation) Hidden
MOBackup - Datensicherung für Outlook (Vollversion) (HKLM-x32\...\MOBackup-DatensicherungfürOutlook) (Version: 10.60 - Heiko Schröder)
Mozilla Firefox (x64 de) (HKLM\...\Mozilla Firefox 109.0.1 (x64 de)) (Version: 109.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 97.0.2 - Mozilla)
NVIDIA Grafiktreiber 513.29 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 513.29 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.39.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.39.3 - NVIDIA Corporation)
NVIDIA RTX Desktop Manager 202.85 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView) (Version: 202.85 - NVIDIA Corporation)
NVIDIA WMI 2.36.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVWMI) (Version: 2.36.0 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.14332.20447 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.14332.20447 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0407-1000-0000000FF1CE}) (Version: 16.0.14332.20375 - Microsoft Corporation) Hidden
PANTONE Color Calibrator 1.3.1 (HKLM-x32\...\PANTONE Color Calibrator_is1) (Version: 1.3.1.0 - X-Rite)
PDF24 Creator 11.8.0 (HKLM\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version: 11.8.0 - PDF24.org)
PhonerLite 3.05 (HKLM-x32\...\PhonerLite_is1) (Version: 3.05 - Heiko Sommerfeldt)
PhraseExpress v15.0.94 (HKLM-x32\...\PhraseExpress_is1) (Version: 15.0.94 - Bartels Media GmbH)
PuTTY release 0.76 (64-bit) (HKLM\...\{1E0D5689-40F1-4E46-ABBB-EAAC68B5CD89}) (Version: 0.76.0.0 - Simon Tatham)
PyCharm Community Edition 2022.3.1 (HKLM-x32\...\PyCharm Community Edition 2022.3.1) (Version: 223.8214.51 - JetBrains s.r.o.)
Python 3.11.1 (64-bit) (HKU\S-1-5-21-4107983409-3116636310-2003537043-1001\...\{fca95908-8c70-405d-9e72-cd746e2f7786}) (Version: 3.11.1150.0 - Python Software Foundation)
Python 3.11.1 Add to Path (64-bit) (HKLM\...\{592A8BDA-2DD1-4C98-86D1-72B14B0464FD}) (Version: 3.11.1150.0 - Python Software Foundation) Hidden
Python 3.11.1 Core Interpreter (64-bit) (HKLM\...\{5D1EFF51-4740-4E62-8E49-11C13DEC34C3}) (Version: 3.11.1150.0 - Python Software Foundation) Hidden
Python 3.11.1 Development Libraries (64-bit) (HKLM\...\{988799D6-A7CE-4F51-89AF-1E4A64FA7ECA}) (Version: 3.11.1150.0 - Python Software Foundation) Hidden
Python 3.11.1 Documentation (64-bit) (HKLM\...\{5EB7FFE8-5B05-4DD3-9DE0-D0F20D93FA6C}) (Version: 3.11.1150.0 - Python Software Foundation) Hidden
Python 3.11.1 Executables (64-bit) (HKLM\...\{A7DE96A8-2F75-44B2-B46E-5D50DE5B1B80}) (Version: 3.11.1150.0 - Python Software Foundation) Hidden
Python 3.11.1 pip Bootstrap (64-bit) (HKLM\...\{C5FAF3D9-A03D-4F6A-AAC9-87735DDA5DCF}) (Version: 3.11.1150.0 - Python Software Foundation) Hidden
Python 3.11.1 Standard Library (64-bit) (HKLM\...\{21EEFB31-6A96-4CAE-9A3B-B7FD6374C155}) (Version: 3.11.1150.0 - Python Software Foundation) Hidden
Python 3.11.1 Tcl/Tk Support (64-bit) (HKLM\...\{66CA643F-68B2-4063-8F87-34D48A2C49ED}) (Version: 3.11.1150.0 - Python Software Foundation) Hidden
Python 3.11.1 Test Suite (64-bit) (HKLM\...\{EFFC2C23-AEE2-4867-998C-5F5A902496C0}) (Version: 3.11.1150.0 - Python Software Foundation) Hidden
Python 3.11.1 Utility Scripts (64-bit) (HKLM\...\{E63D4F21-1B1F-43DC-9347-4FB51A71704C}) (Version: 3.11.1150.0 - Python Software Foundation) Hidden
Python Launcher (HKLM-x32\...\{8A19B72D-62A8-4198-BEBD-CAEF117194C8}) (Version: 3.11.8009.0 - Python Software Foundation)
QGIS 3.24.3 'Tisler' (HKLM\...\{50BF2C71-85DD-1014-9BAC-049A8B569609}) (Version: 3.24.3 - QGIS.org)
QGIS 3.28.2 'Firenze' (HKLM\...\{73A6F57A-7B18-1014-9FA0-26968B569609}) (Version: 3.28.2 - QGIS.org)
Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9239.1 - Realtek Semiconductor Corp.) Hidden
Revo Uninstaller 2.3.8 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.3.8 - VS Revo Group, Ltd.)
Schletter Configurator (HKU\S-1-5-21-4107983409-3116636310-2003537043-1001\...\e90473b4d54ea473) (Version: 5.198.0.0 - Schletter international B.V.)
Sierra Wireless Mobile Broadband Driver Package (HKLM\...\SWILenovoDrvInstaller) (Version: 7.77.5094.0103 - Sierra Wireless, Inc.)
Sublime Text (HKLM\...\Sublime Text_is1) (Version: - Sublime HQ Pty Ltd)
Teams Machine-Wide Installer (HKLM-x32\...\{731F6BAA-A986-45A4-8936-7C3AAAAA760B}) (Version: 1.4.0.19572 - Microsoft Corporation)
TeamViewer (HKLM\...\TeamViewer) (Version: 15.27.3 - TeamViewer)
Thunderbolt™ Software (HKLM-x32\...\{1AA93FF8-C685-4E00-8682-7F2E5D8E8689}) (Version: 17.4.80.550 - Intel Corporation)
TreeSize Free V4.5.3 (HKLM-x32\...\TreeSize Free_is1) (Version: 4.5.3 - JAM Software)
u-center_v22.05 (HKLM-x32\...\u-center_v22.05) (Version: 22.05 - u-blox)
Virtual Serial Ports Emulator (HKLM-x32\...\{516A9226-2709-4374-9B78-062805F8630B}) (Version: 1.1.5.458 - Eterlogic.com)
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.5.2.0 - Elaborate Bytes)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.16 - VideoLAN)
WhatsApp (HKU\S-1-5-21-4107983409-3116636310-2003537043-1001\...\WhatsApp) (Version: 2.2305.7 - WhatsApp)
Windows-PC-Integritätsprüfung (HKLM\...\{B3956CF3-F6C5-4567-AC38-1FD4432B319C}) (Version: 3.6.2204.08001 - Microsoft Corporation)
XMind 11.1.2 (HKLM\...\fbd30ee5-8150-549e-9aed-fd9d444364fb) (Version: 11.1.2 - XMind Ltd.)
Zoom (HKU\S-1-5-21-4107983409-3116636310-2003537043-1001\...\ZoomUMX) (Version: 5.12.0 (8964) - Zoom Video Communications, Inc.)
Packages:
=========
Disney+ -> C:\Program Files\WindowsApps\Disney.37853FC22B2CE_1.45.5.0_x64__6rarf9sa4v8jt [2023-02-01] (Disney)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_142.3.139.0_x64__v10z8vjag6ke6 [2023-01-30] (HP Inc.)
iCloud -> C:\Program Files\WindowsApps\AppleInc.iCloud_13.4.101.0_x86__nzyj5cx40ttqa [2022-08-09] (Apple Inc.) [Startup Task]
iCloud -> C:\Program Files\WindowsApps\AppleInc.iCloud_14.1.108.0_x64__nzyj5cx40ttqa [2023-01-07] (Apple Inc.) [Startup Task]
Intel® Grafik-Kontrollraum -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.4478.0_x64__8j3eq9eme6ctt [2023-01-14] (INTEL CORP) [Startup Task]
Media Engine-Add-On für Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2022-07-25] (Microsoft Corporation)
Raw Image Extension -> C:\Program Files\WindowsApps\Microsoft.RawImageExtension_2.0.40041.0_x64__8wekyb3d8bbwe [2023-01-19] (Microsoft Corporation)
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.15.12020.0_x64__8wekyb3d8bbwe [2022-12-28] (Microsoft Studios) [MS Ad]
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.204.912.0_x86__zpdnekdrzrea0 [2023-02-03] (Spotify AB) [Startup Task]
WindowsAppRuntime.1.1 -> C:\Program Files\WindowsApps\Microsoft.WindowsAppRuntime.1.1_1005.616.1651.0_x64__8wekyb3d8bbwe [2023-01-05] (Microsoft Corporation)
WindowsAppRuntime.1.1 -> C:\Program Files\WindowsApps\Microsoft.WindowsAppRuntime.1.1_1005.616.1651.0_x86__8wekyb3d8bbwe [2023-01-05] (Microsoft Corporation)
WindowsAppRuntime.1.2 -> C:\Program Files\WindowsApps\Microsoft.WindowsAppRuntime.1.2_2000.747.1945.0_x64__8wekyb3d8bbwe [2023-02-03] (Microsoft Corporation)
WindowsAppRuntime.1.2 -> C:\Program Files\WindowsApps\Microsoft.WindowsAppRuntime.1.2_2000.747.1945.0_x86__8wekyb3d8bbwe [2023-02-03] (Microsoft Corporation)
XING -> C:\Program Files\WindowsApps\XINGAG.XING_4.0.9.0_x86__xpfg3f7e9an52 [2022-12-28] (New Work SE)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-4107983409-3116636310-2003537043-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\User\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.21105.1\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4107983409-3116636310-2003537043-1001_Classes\CLSID\{B3D04D41-426D-4D3F-B0D8-5487BFC2145A} -> [iCloud Drive] => C:\Users\User\iCloudDrive [2022-03-06 03:35]
CustomCLSID: HKU\S-1-5-21-4107983409-3116636310-2003537043-1001_Classes\CLSID\{b72e6f5e-f6e0-a9eb-461b-6118363bd15c}\localserver32 -> C:\Users\User\AppData\Local\0install.net\implementations\sha256new_JCCQDCLOYQPYCEPZF325EEMUOXSHGMIFC42HMBHVLBFPWCTZ75KA\DeepL.exe (DeepL SE -> DeepL SE)
CustomCLSID: HKU\S-1-5-21-4107983409-3116636310-2003537043-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => D:\Benutzer\iceing\Dropbox [2017-10-05 18:06]
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.007.0109.0004\FileSyncShell64.dll [2023-02-01] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.007.0109.0004\FileSyncShell64.dll [2023-02-01] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.007.0109.0004\FileSyncShell64.dll [2023-02-01] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.007.0109.0004\FileSyncShell64.dll [2023-02-01] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.007.0109.0004\FileSyncShell64.dll [2023-02-01] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.007.0109.0004\FileSyncShell64.dll [2023-02-01] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.007.0109.0004\FileSyncShell64.dll [2023-02-01] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ AcronisDrive] -> {5D74FD4B-4EFB-4586-8022-8637BBE40970} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2021-12-02] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2021-12-02] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2021-12-02] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2021-12-02] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.60.0.dll [2023-02-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.60.0.dll [2023-02-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.60.0.dll [2023-02-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.60.0.dll [2023-02-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.60.0.dll [2023-02-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.60.0.dll [2023-02-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.60.0.dll [2023-02-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.60.0.dll [2023-02-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.60.0.dll [2023-02-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.60.0.dll [2023-02-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.007.0109.0004\FileSyncShell64.dll [2023-02-01] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.007.0109.0004\FileSyncShell64.dll [2023-02-01] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.007.0109.0004\FileSyncShell64.dll [2023-02-01] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.007.0109.0004\FileSyncShell64.dll [2023-02-01] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.007.0109.0004\FileSyncShell64.dll [2023-02-01] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.007.0109.0004\FileSyncShell64.dll [2023-02-01] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.007.0109.0004\FileSyncShell64.dll [2023-02-01] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.60.0.dll [2023-02-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.60.0.dll [2023-02-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.60.0.dll [2023-02-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.60.0.dll [2023-02-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.60.0.dll [2023-02-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.60.0.dll [2023-02-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.60.0.dll [2023-02-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.60.0.dll [2023-02-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.60.0.dll [2023-02-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.60.0.dll [2023-02-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.007.0109.0004\FileSyncShell64.dll [2023-02-01] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2021-12-26] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.60.0.dll [2023-02-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [VirtualCloneDrive] -> {B7056B8E-4F99-44f8-8CBD-282390FE5428} => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\ElbyVCDShell.dll [2020-02-23] (Elaborate Bytes AG -> Elaborate Bytes AG)
ContextMenuHandlers2: [VirtualCloneDrive] -> {B7056B8E-4F99-44f8-8CBD-282390FE5428} => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\ElbyVCDShell.dll [2020-02-23] (Elaborate Bytes AG -> Elaborate Bytes AG)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.007.0109.0004\FileSyncShell64.dll [2023-02-01] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2021-12-26] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.60.0.dll [2023-02-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.007.0109.0004\FileSyncShell64.dll [2023-02-01] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.60.0.dll [2023-02-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2022-06-22] (Nvidia Corporation -> NVIDIA Corporation)
ContextMenuHandlers5: [NvQuadroView] -> {1E9B04FB-F9E5-4718-997B-B8DA88302A48} => C:\Program Files\NVIDIA Corporation\nview\nvshell.dll [2022-06-06] (Nvidia Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2021-12-26] (Igor Pavlov) [Datei ist nicht signiert]
==================== Codecs (Nicht auf der Ausnahmeliste) ====================
==================== Verknüpfungen & WMI ========================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
ShortcutWithArgument: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Google Chat.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 1" --app-id=mdpkiolbdkhdjpekfbkbmhigcaggjagi
ShortcutWithArgument: C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\User - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 1"
==================== Geladene Module (Nicht auf der Ausnahmeliste) =============
2022-11-21 17:20 - 2022-08-21 02:44 - 001160192 _____ () [Datei ist nicht signiert] [Datei wird verwendet] C:\Users\User\AppData\Local\0install.net\implementations\sha256new_WNVUT4A7COIHUPNX3HWQQZD5BU3GEPFRMM3BLVJW4ICRXIJEKBJQ\CefSharp.BrowserSubprocess.Core.dll
2022-11-21 17:20 - 2022-08-19 08:38 - 175591424 _____ () [Datei ist nicht signiert] C:\Users\User\AppData\Local\0install.net\implementations\sha256new_WNVUT4A7COIHUPNX3HWQQZD5BU3GEPFRMM3BLVJW4ICRXIJEKBJQ\libcef.dll
2022-11-21 17:20 - 2022-08-19 07:11 - 000442880 _____ () [Datei ist nicht signiert] C:\Users\User\AppData\Local\0install.net\implementations\sha256new_WNVUT4A7COIHUPNX3HWQQZD5BU3GEPFRMM3BLVJW4ICRXIJEKBJQ\libEGL.dll
2022-11-21 17:20 - 2022-08-19 07:10 - 006480384 _____ () [Datei ist nicht signiert] C:\Users\User\AppData\Local\0install.net\implementations\sha256new_WNVUT4A7COIHUPNX3HWQQZD5BU3GEPFRMM3BLVJW4ICRXIJEKBJQ\libGLESv2.dll
2022-11-21 17:20 - 2022-08-19 07:07 - 004077568 _____ () [Datei ist nicht signiert] C:\Users\User\AppData\Local\0install.net\implementations\sha256new_WNVUT4A7COIHUPNX3HWQQZD5BU3GEPFRMM3BLVJW4ICRXIJEKBJQ\vk_swiftshader.dll
2022-11-21 17:20 - 2022-08-19 07:10 - 000828928 _____ () [Datei ist nicht signiert] C:\Users\User\AppData\Local\0install.net\implementations\sha256new_WNVUT4A7COIHUPNX3HWQQZD5BU3GEPFRMM3BLVJW4ICRXIJEKBJQ\vulkan-1.dll
2022-07-25 19:29 - 2021-11-16 11:39 - 000131072 _____ (CANON INC.) [Datei ist nicht signiert] C:\Program Files (x86)\Canon\Quick Utility Toolbox\cnalmmod.dll
2022-07-25 19:29 - 2021-11-16 11:37 - 000016384 _____ (CANON INC.) [Datei ist nicht signiert] C:\Program Files (x86)\Canon\Quick Utility Toolbox\de\cnqtbres.dll
2019-02-01 23:42 - 2019-02-01 23:42 - 000050688 _____ (HP Inc.) [Datei ist nicht signiert] c:\windows\system32\hpzinw12.dll
2019-02-01 23:42 - 2019-02-01 23:42 - 000066048 _____ (HP Inc.) [Datei ist nicht signiert] c:\windows\system32\hpzipm12.dll
2022-03-05 17:47 - 2021-12-26 15:00 - 000093696 _____ (Igor Pavlov) [Datei ist nicht signiert] C:\Program Files\7-Zip\7-zip.dll
2022-03-05 17:57 - 2022-03-05 17:57 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems64.dll] C:\Program Files\Microsoft Office\root\Office16\AppVIsvSubsystems64.dll
2022-03-05 17:57 - 2022-03-05 17:57 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R64.dll] C:\Program Files\Microsoft Office\root\Office16\c2r64.dll
2022-11-21 17:20 - 2022-08-19 07:16 - 001231872 _____ (The Chromium Authors) [Datei ist nicht signiert] C:\Users\User\AppData\Local\0install.net\implementations\sha256new_WNVUT4A7COIHUPNX3HWQQZD5BU3GEPFRMM3BLVJW4ICRXIJEKBJQ\chrome_elf.dll
2021-12-02 09:12 - 2021-12-02 09:12 - 025338368 _____ (The ICU Project) [Datei ist nicht signiert] C:\Program Files (x86)\Acronis\TrueImageHome\icudt54.dll
2021-12-02 09:12 - 2021-12-02 09:12 - 002056704 _____ (The ICU Project) [Datei ist nicht signiert] C:\Program Files (x86)\Acronis\TrueImageHome\icuin54.dll
2021-12-02 09:12 - 2021-12-02 09:12 - 001425408 _____ (The ICU Project) [Datei ist nicht signiert] C:\Program Files (x86)\Acronis\TrueImageHome\icuuc54.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================
==================== Internet Explorer (Nicht auf der Ausnahmeliste) ==========
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2022-03-05] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-03-05] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-03-05] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-03-05] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-03-05] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-03-05] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-03-05] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-03-05] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-03-05] (Microsoft Corporation -> Microsoft Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE trusted site: HKU\S-1-5-21-4107983409-3116636310-2003537043-1001\...\sharepoint.com -> hxxps://specialolympicsdeutschland-files.sharepoint.com
==================== Hosts Inhalt: =========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2019-12-07 10:14 - 2019-12-07 10:12 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
==================== Andere Bereiche ===========================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-4107983409-3116636310-2003537043-1001\Control Panel\Desktop\\Wallpaper -> D:\Benutzer\iceing\Pictures\XL8_FOH_Dark_1800.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "ExpressVPNNotificationService"
HKU\S-1-5-21-4107983409-3116636310-2003537043-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-4107983409-3116636310-2003537043-1001\...\StartupApproved\Run: => "com.squirrel.Teams.Teams"
HKU\S-1-5-21-4107983409-3116636310-2003537043-1001\...\StartupApproved\Run: => "ExpressVPN4"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [TCP Query User{436C9F6E-B32D-44B8-8D83-1B2A29D83400}C:\program files\google\chrome\application\chrome.exe] => (Allow) C:\program files\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [UDP Query User{9AC11073-18F5-40F0-95B5-A5157FCD6C8A}C:\program files\google\chrome\application\chrome.exe] => (Allow) C:\program files\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{F5C55C14-8B5D-4EE7-88F3-F619EA9A63B7}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{E0209FFB-E14F-4C24-8114-CDB241EB0238}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{248CA021-3A51-4682-9FD9-48B6C0FDEF1F}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{9C545C4A-1806-4CC4-A970-A81FD0CD91F9}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [TCP Query User{5BD365F6-A1D8-4C2E-BC0E-BDFCEA607CB5}C:\program files\windowsapps\spotifyab.spotifymusic_1.180.699.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) C:\program files\windowsapps\spotifyab.spotifymusic_1.180.699.0_x86__zpdnekdrzrea0\spotify.exe => Keine Datei
FirewallRules: [UDP Query User{1B28E01E-FE42-46A6-8EB9-886010C89DE9}C:\program files\windowsapps\spotifyab.spotifymusic_1.180.699.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) C:\program files\windowsapps\spotifyab.spotifymusic_1.180.699.0_x86__zpdnekdrzrea0\spotify.exe => Keine Datei
FirewallRules: [{54CB5973-7A07-45A6-A75C-CAA52AADE039}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe (Acronis International GmbH -> )
FirewallRules: [{67C6F189-B869-4F98-B84C-01B233BF6FA7}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{16C21F1E-41A0-4F51-B9B8-901A71E976DA}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImage.exe (Acronis International GmbH -> )
FirewallRules: [{3BE31877-400A-4817-9E4C-023DA374EC6E}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe (Acronis International GmbH -> )
FirewallRules: [{2911C3D1-CF9A-4DF9-B8D5-5FA22E4D379F}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageTools.exe (Acronis International GmbH -> )
FirewallRules: [{4A5AE58B-631E-40ED-9A3C-F4A6C7F29916}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\TrueImageHome\TrueImageHomeService.exe (Acronis International GmbH -> )
FirewallRules: [{8EAA2186-18F7-4425-8256-86EE064BD762}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\MediaBuilder.exe (Acronis International GmbH -> )
FirewallRules: [{80E8BA6F-3F30-4CB7-998E-047922D2C18F}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\SystemReport.exe (Acronis International GmbH -> )
FirewallRules: [{5925B8E5-CAAE-4701-8CE5-A78087173741}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\acronis_drive.exe (Acronis International GmbH -> )
FirewallRules: [{ECB63847-D32B-4403-A888-5E142AA7244B}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{131E51A0-8962-4BB7-88E8-F92A6DC4DBF6}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe (Acronis International GmbH -> )
FirewallRules: [{424A36F4-D50C-41D3-8B7B-21575ECEE6E2}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\ga_service.exe (Acronis International GmbH -> )
FirewallRules: [{5490999A-0CAD-4879-B8F4-37C94C72CF9F}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\LicenseActivator.exe (Acronis International GmbH -> )
FirewallRules: [{2EFE6ADA-4F14-4D63-9770-EC60BA90E680}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{58460B58-AC1B-4E67-9A51-FC7288354C5A}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{C2747600-B9B9-44B8-B50C-DEF056208AA6}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{F1C77D34-63BA-4BBC-BB17-60245506262E}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{0D91CD87-9857-445D-9BBB-01DB5A078099}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{9547939E-F7C9-4F8F-BE93-223C88F34708}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [TCP Query User{6A69571B-C795-451E-8258-007F1963A418}C:\program files\google\chrome\application\chrome.exe] => (Allow) C:\program files\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [UDP Query User{35C862B0-5A5E-4F77-8AFF-83243DA05011}C:\program files\google\chrome\application\chrome.exe] => (Allow) C:\program files\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{AEFC5ED7-D21E-493D-A153-6750894C8E8C}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{6AFF2EDA-C6D9-4150-93BC-90DD444BF216}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{9E829107-23D2-4FB8-9363-5FBB4DB0477A}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{99248FB5-5837-43E9-B39C-35F294A6EA17}C:\users\User\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\User\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{97B7DAE0-CEBB-4359-BA14-B7C4BDCEB628}C:\users\User\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\User\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{5A89024C-629A-4DB7-BC18-6D6BAF79098B}D:\benutzer\iceing\downloads\agent_windows64_3_9_1_0\agent.exe] => (Allow) D:\benutzer\iceing\downloads\agent_windows64_3_9_1_0\agent.exe (Developer In A Box -> Developerinabox)
FirewallRules: [UDP Query User{E6CF84D7-0017-4661-B862-EB9591431C72}D:\benutzer\iceing\downloads\agent_windows64_3_9_1_0\agent.exe] => (Allow) D:\benutzer\iceing\downloads\agent_windows64_3_9_1_0\agent.exe (Developer In A Box -> Developerinabox)
FirewallRules: [TCP Query User{F48C921C-1AE6-4DF5-A37E-39DCAC2230F8}C:\program files (x86)\phonerlite\phonerlite.exe] => (Allow) C:\program files (x86)\phonerlite\phonerlite.exe (Heiko Sommerfeldt -> Heiko Sommerfeldt) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{220508C6-4837-43D4-8F5F-D307247724A1}C:\program files (x86)\phonerlite\phonerlite.exe] => (Allow) C:\program files (x86)\phonerlite\phonerlite.exe (Heiko Sommerfeldt -> Heiko Sommerfeldt) [Datei ist nicht signiert]
FirewallRules: [{206B6C38-D4DF-41DB-9EFE-EE5DC24D32D3}] => (Allow) C:\Program Files (x86)\Canon\Quick Utility Toolbox\cnqtbapp.exe (Canon Inc. -> CANON INC.)
FirewallRules: [TCP Query User{468E7961-216B-4FE7-84BC-0CF67A2C3A40}C:\users\User\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\User\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{0B0DC3DF-86D1-400B-8C70-0A029F1798E1}C:\users\User\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\User\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{EE4E265A-E394-4D89-AEBF-1BB7FDB891D2}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{B5FD7D9B-105B-4ABF-8E72-F1761ED03AE7}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{C309E1A2-CE53-4FC4-B136-D8B1627C0CF3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.194.874.0_x86__zpdnekdrzrea0\Spotify.exe => Keine Datei
FirewallRules: [{39E6C828-05A5-40D5-BD20-ACF4AD2AF5CE}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.194.874.0_x86__zpdnekdrzrea0\Spotify.exe => Keine Datei
FirewallRules: [{1BB69FC8-729C-4D36-A0AD-D3B46675B7E2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.194.874.0_x86__zpdnekdrzrea0\Spotify.exe => Keine Datei
FirewallRules: [{807EE22D-BBEE-4B25-B807-B1E438482E16}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.194.874.0_x86__zpdnekdrzrea0\Spotify.exe => Keine Datei
FirewallRules: [{0294DA41-D5F4-4261-9DF3-E3E43A5B85EA}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.194.874.0_x86__zpdnekdrzrea0\Spotify.exe => Keine Datei
FirewallRules: [{3BDA0BA2-D627-4FBB-AFC0-033FD95B648A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.194.874.0_x86__zpdnekdrzrea0\Spotify.exe => Keine Datei
FirewallRules: [{591EFC33-490E-4B07-B763-43763D2A60C1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.194.874.0_x86__zpdnekdrzrea0\Spotify.exe => Keine Datei
FirewallRules: [{88FD3D69-73AF-4E50-A95C-F010DD927624}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.194.874.0_x86__zpdnekdrzrea0\Spotify.exe => Keine Datei
FirewallRules: [{80D9FC1B-EF6C-4540-99B2-AB0DE566AFC2}] => (Allow) C:\Users\User\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{6E3A38FB-CA7F-4738-9644-E2A741740211}] => (Allow) C:\Users\User\AppData\Roaming\Zoom\bin\airhost.exe => Keine Datei
FirewallRules: [{2EF8D8A1-7D83-4E0B-AB32-0EC91713D040}] => (Allow) C:\Users\User\AppData\Roaming\Zoom\bin\airhost.exe => Keine Datei
FirewallRules: [TCP Query User{CF68E009-28AB-4F57-8F71-B5E9373805BE}C:\program files\jetbrains\pycharm community edition 2022.3.1\bin\pycharm64.exe] => (Allow) C:\program files\jetbrains\pycharm community edition 2022.3.1\bin\pycharm64.exe (JetBrains s.r.o. -> JetBrains s.r.o.)
FirewallRules: [UDP Query User{F005DBF4-6DAE-4B54-9652-43E9C5C6B995}C:\program files\jetbrains\pycharm community edition 2022.3.1\bin\pycharm64.exe] => (Allow) C:\program files\jetbrains\pycharm community edition 2022.3.1\bin\pycharm64.exe (JetBrains s.r.o. -> JetBrains s.r.o.)
FirewallRules: [{8AF62E67-478A-4B99-8213-2DA1C25BA853}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.204.912.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{F837930C-DAF1-4E72-A921-FC93104873BB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.204.912.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{152CCBE1-8209-4DA9-A537-9F17BC3C6FB3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.204.912.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{8E57BB5F-69E2-4E72-B418-CDBD89495C42}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.204.912.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{BBC94226-A9AE-4F72-9964-10D9613844A5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.204.912.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{1164DF25-AEB0-4C76-83AB-0C9B075C9B06}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.204.912.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{BDDD0066-ED3E-4345-B26E-916B77F52F9C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.204.912.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{2D932683-1CE9-4BE7-81BD-77282084C5A1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.204.912.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{68270E24-3898-48C9-B8FE-BFE6BDC8B372}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\109.0.1518.78\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{3D87ADE7-BB18-4338-B00B-648FE457D741}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe (Lenovo -> )
FirewallRules: [{A9B4302A-37C3-4A3C-A70B-619A5A9D25E9}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe (Lenovo -> )
FirewallRules: [{2B3543EB-6D0A-46D7-AE36-4895A4E7FA28}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{2A24B876-3488-414E-9B69-B94FA6C6AB9A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.93.3406.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D8C4EFB5-0200-499D-AE13-8CF3DFD1CC2B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.93.3406.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{2F7FBE88-1C44-4B41-A87B-738DB4859F95}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.93.3406.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{142E9AEF-4FEF-4502-A21E-6D5C696AA22E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.93.3406.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{462079DE-C4A0-4BFB-A989-52131A21199E}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
==================== Wiederherstellungspunkte =========================
==================== Fehlerhafte Geräte im Gerätemanager ============
Name: ThinkPad P51 System Firmware 1.60
Description: ThinkPad P51 System Firmware 1.60
Class Guid: {f2e7dd72-6468-4e36-b6f1-6488f42c1b52}
Manufacturer: Lenovo Ltd.
Service:
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Name: ExpressVPN TAP Adapter
Description: ExpressVPN TAP Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: ExpressVPN
Service: tapexpressvpn
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Fehlereinträge in der Ereignisanzeige: ========================
Applikationsfehler:
==================
Error: (02/14/2023 01:49:48 PM) (Source: ESENT) (EventID: 474) (User: )
Description: DllHost (13800,D,5) Microsoft.Windows.Search_cw5n1h2txyewy_NOEDP_LEGACY_IDB: Bei der Überprüfung der aus Datei "C:\Users\User\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\AppData\Indexed DB\IndexedDB.edb" bei Offset 3670016 (0x0000000000380000) (Datenbankseite 111 (0x6F)) für 32768 (0x00008000) Bytes gelesenen Datenbankseite ist durch eine Inkonsistenz der Seitenprüfsumme ein Fehler aufgetreten. Die gespeicherte Prüfsumme war [00170017001a5aae:000000000000006f:000000000000006f:001bffe40000007f], die berechnete Prüfsumme [00170017001a5aae:000000000000006f:8f1670e97a130658:001bffe40000007f]. Der Lesevorgang wird mit dem Fehler -1018 (0xfffffc06) beendet. Wenn dieser Zustand andauert, stellen Sie die Datenbank aus einer vorherigen Sicherung wieder her. Dieses Problem ist vermutlich durch fehlerhafte Hardware bedingt. Wenden Sie sich für weitere Unterstützung bei der Diagnose des Problems an Ihren Hardwarehersteller.
Error: (02/14/2023 01:28:53 PM) (Source: CertEnroll) (EventID: 87) (User: NT-AUTORITÄT)
Description: Fehler bei der SCEP-Zertifikatregistrierung für WORKGROUP\DESKTOP-9MSI2AI$ über https://IFX-KeyId-32c6e576663fee80d64cdd7b18e5603863b3bc8a.microsoftaik.azure.net/templates/Aik/scep:
SubmitDone
Submit(Request): Bad Request
{"Message":"Attestation statement cannot be verified, rejecting request. TPM firmware needs update."}
HTTP/1.1 400 Bad Request
Date: Tue, 14 Feb 2023 12:28:51 GMT
Content-Length: 101
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: e97898ba-e8ae-42f1-9512-89ffca445527
Methode: POST(2297ms)
Phase: SubmitDone
Ungültige Anforderung (400). 0x80190190 (-2145844848 HTTP_E_STATUS_BAD_REQUEST)
Error: (02/14/2023 01:28:03 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Aufrufen von Routine "CoCreateInstance" ist ein unerwarteter Fehler aufgetreten. hr = 0x8007045b, Der Computer wird heruntergefahren.
.
Error: (02/14/2023 01:28:03 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volumenschattenkopie-Dienst-Informationen: Der COM-Server mit CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} und dem Namen "CEventSystem" kann nicht gestartet werden. [0x8007045b, Der Computer wird heruntergefahren.
]
Error: (02/14/2023 01:28:03 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Aufrufen von Routine "CoCreateInstance" ist ein unerwarteter Fehler aufgetreten. hr = 0x8007045b, Der Computer wird heruntergefahren.
.
Error: (02/14/2023 01:28:03 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volumenschattenkopie-Dienst-Informationen: Der COM-Server mit CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} und dem Namen "CEventSystem" kann nicht gestartet werden. [0x8007045b, Der Computer wird heruntergefahren.
]
Error: (02/14/2023 01:28:03 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Aufrufen von Routine "CoCreateInstance" ist ein unerwarteter Fehler aufgetreten. hr = 0x8007045b, Der Computer wird heruntergefahren.
.
Error: (02/14/2023 01:28:03 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volumenschattenkopie-Dienst-Informationen: Der COM-Server mit CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} und dem Namen "CEventSystem" kann nicht gestartet werden. [0x8007045b, Der Computer wird heruntergefahren.
]
Systemfehler:
=============
Error: (02/14/2023 01:28:36 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "MessagingService_75b45" wurde mit folgendem Fehler beendet:
Das Gerät ist nicht bereit.
Error: (02/14/2023 01:28:04 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: Der Dienst "AdskLicensingService" konnte sich nicht als "NT AUTHORITY\LocalService" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden:
Die Anforderung wird nicht unterstützt.
Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).
Error: (02/14/2023 01:27:50 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-9MSI2AI)
Description: Der Server "{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (02/14/2023 01:24:30 PM) (Source: BugCheck) (EventID: 1001) (User: )
Description: Der Computer wurde nach einem schwerwiegenden Fehler neu gestartet. Der Fehlercode war: 0x0000001a (0x0000000000041792, 0xffff9c815009a018, 0x4000000000000000, 0x0000000000000000). Ein volles Abbild wurde gespeichert in: C:\Windows\MEMORY.DMP. Berichts-ID: 650641e0-0fd7-4eec-b385-94cd15cd963f.
Error: (02/14/2023 01:24:23 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "MessagingService_1033db" wurde mit folgendem Fehler beendet:
Das Gerät ist nicht bereit.
Error: (02/14/2023 01:24:00 PM) (Source: volsnap) (EventID: 29) (User: )
Description: Die Schattenkopien von Volume "C:" wurde während der Ermittlung abgebrochen.
Windows Defender:
================
Date: 2023-02-13 22:21:48
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {A69266AD-A933-45C3-998C-4438EF24A13E}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Date: 2023-02-13 11:47:43
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {7B1EB4AD-3C4C-4CE2-8995-9F9E71CD62B3}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Date: 2023-02-12 18:37:06
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {970BCA27-FC08-4759-ACBC-BCF347D395A5}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Date: 2023-02-09 16:30:08
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {981574C0-20C5-4CEB-B7B3-DAFA9AB5EE7D}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Date: 2023-02-07 16:15:29
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {E21C9A85-B16A-49C1-9D39-165FD190ED5E}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Event[0]:
Date: 2022-12-21 12:54:31
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.
Neue Version der Sicherheitsinformationen:
%Vorherige Version der Sicherheitsinformationen: 1.381.759.0
Update Source: Microsoft Update-Server
Sicherheitstyp: AntiVirus
Updatetyp: Voll
Benutzer: NT-AUTORITÄT\SYSTEM
Aktuelle Modulversion:
%Vorherige Modulversion: 1.1.19900.2
Fehlercode: 0x8024402c
Fehlerbeschreibung: Unerwartetes Problem bei der Überprüfung auf Updates. Informationen zum Installieren von Updates oder zur Problembehandlung finden Sie unter "Hilfe und Support".
CodeIntegrity:
===============
Date: 2023-02-14 14:00:41
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Program Files\Bonjour\mdnsNSP.dll that did not meet the Windows signing level requirements.
Date: 2023-02-14 13:58:56
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
==================== Speicherinformationen ===========================
BIOS: LENOVO N1UET85W (1.59 ) 07/18/2022
Hauptplatine: LENOVO 20HH001RGE
Prozessor: Intel(R) Core(TM) i7-7820HQ CPU @ 2.90GHz
Prozentuale Nutzung des RAM: 42%
Installierter physikalischer RAM: 24378.06 MB
Verfügbarer physikalischer RAM: 13919.75 MB
Summe virtueller Speicher: 33594.06 MB
Verfügbarer virtueller Speicher: 22775.88 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:475.6 GB) (Free:345.41 GB) (Model: LENSE20512GMSP34MEAT2TA) NTFS
Drive d: (Daten) (Fixed) (Total:931.51 GB) (Free:15.11 GB) (Model: WDC WD10SPCX-24HWST0) NTFS
\\?\Volume{579e2e17-0f38-474f-aba1-ced5767b953c}\ (Wiederherstellung) (Fixed) (Total:0.44 GB) (Free:0.42 GB) NTFS
\\?\Volume{7eb063dd-ffc3-412f-ba2b-d1782c113d32}\ () (Fixed) (Total:0.79 GB) (Free:0.24 GB) NTFS
\\?\Volume{6703aa82-207a-44a4-9eb3-4b334b5457d9}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partitionstabelle ====================
==========================================================
Disk: 0 (Size: 476.9 GB) (Disk ID: B07A0348)
Partition: GPT.
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 5B5A8D92)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
==================== Ende von Addition.txt =======================
|
| Themen zu Ständige BDOS mit Windows 10 - woran liegt's? |
| bluescreens, chkdsk, erneut, erneute, explorer, fehler, folge, folgendes, gen, gestartet, gestern, häufiger, installiert, laufwerk, links, meldungen, microsoft defender, neustart, nichts, not, reparatur, service, ständige, sämtliche, update, windows |
Ständige BDOS mit Windows 10 - woran liegt's?
Baum-Darstellung