| |
| |||||||
Log-Analyse und Auswertung: Windows 10 22H2 64bit: Windows meldet PUADlManager:Win32/_______Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
03.01.2024, 01:05
| #1 |
| |  Windows 10 22H2 64bit: Windows meldet PUADlManager:Win32/_______ Hallo zusammen, Windows meldet in letzter Zeit Fehler wie: PUADlManager:Win32/Snackarcin PUADlManager:Win32/OfferCore PUADlManager:Win32/InstallCore Ich weiß nicht ob das Ganze zusammen hängt. Diese Meldungen konnte ich in die Quarantäne schieben oder Entfernen. Nun weiß ich nicht ob noch eine Gefahr besteht. Malwarebytes hat nichts gemeldet. Die txt Datein konnte ich nicht hochladen da irgendeine Fehlermeldung kommt, siehe Code: Code:
ATTFilter PHP User Warning: is_dir(): open_basedir restriction in effect. File(/) is not within the allowed path(s): (/var/www/vhosts/trojaner-board.de/:/tmp/) in ..../includes/functions_file.php on line 60
Vielen Dank für die Bemühungen LG Ali Logfile: FRST.txt Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 01.01.2024
durchgeführt von Ali (Administrator) auf DESKTOP-KQ3G1R2 (ASUS System Product Name) (03-01-2024 00:13:11)
Gestartet von C:\Users\Ali\Desktop\FRST64.exe
Geladene Profile: Ali
Plattform: Microsoft Windows 10 Pro Version 22H2 19045.3803 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: Chrome
Start-Modus: Normal
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
() [Datei ist nicht signiert] C:\Users\Ali\AppData\Local\VortxEngine\app-2.3.43\SignalRgbLauncher.exe
(5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12131.3.2010.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe <2>
(C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe ->) (ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\AI Suite III\AsPowerBar\AsPowerBar.exe
(C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe ->) (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe ->) (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\EpicWebHelper.exe <2>
(C:\Program Files (x86)\Overwolf\Overwolf.exe ->) (Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.240.0.6\OverwolfHelper.exe
(C:\Program Files (x86)\Overwolf\Overwolf.exe ->) (Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.240.0.6\OverwolfHelper64.exe
(C:\Program Files (x86)\Overwolf\Overwolf.exe ->) (Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Overwolf\0.240.0.6\OverwolfBrowser.exe <4>
(C:\Program Files (x86)\Overwolf\Overwolf.exe ->) (Overwolf Ltd -> Overwolf LTD) C:\Users\Ali\AppData\Local\Overwolf\ProcessCache\0.240.0.6\cchhcaiapeikjbdbpfplgmpobbcdkdaphclbmkbj\curseforge.exe
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <6>
(C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe ->) (OpenJS Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe ->) (Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe
(C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe ->) (NVIDIA Corporation -> NVIDIA) C:\Program Files\NVIDIA Corporation\FrameViewSDK\bin\nvrla.exe
(C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe ->) (NVIDIA Corporation -> NVIDIA) C:\Program Files\NVIDIA Corporation\FrameViewSDK\bin\PresentMon_x64.exe <2>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(C:\Users\Ali\AppData\Local\VortxEngine\app-2.3.43\SignalRgbLauncher.exe ->) (WhirlwindFX) [Datei ist nicht signiert] C:\Users\Ali\AppData\Local\VortxEngine\app-2.3.43\Signal-x64\SignalRgb.exe
(C:\Users\Ali\AppData\Local\VortxEngine\app-2.3.43\Signal-x64\SignalRgb.exe ->) () [Datei ist nicht signiert] C:\Users\Ali\AppData\Local\VortxEngine\app-2.3.43\Signal-x64\crashpad_handler.exe
(Discord Inc. -> Discord Inc.) C:\Users\Ali\AppData\Local\Discord\app-1.0.9028\Discord.exe <6>
(explorer.exe ->) (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(explorer.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(explorer.exe ->) (Skutta, Kristjan -> ) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe
(explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Overwolf\Overwolf.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTek COMPUTER INC.) C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\2.01.12\AsusFanControlService.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\4.02.12\atkexComSvc.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_866484083fc526af\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (NVIDIA Corporation -> NVIDIA) C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(sihost.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <12>
(svchost.exe ->) (ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe
(svchost.exe ->) (ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe
(svchost.exe ->) (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\SDXHelper.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" (Keine Datei)
HKLM-x32\...\Run: [Discord] => C:\ProgramData\SquirrelMachineInstalls\Discord.exe [82973864 2021-12-08] (Discord Inc. -> Discord Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [711288 2022-09-15] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-08-04] (Adobe Inc. -> )
HKU\S-1-5-21-3123848720-252869317-3007311881-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4386664 2023-12-08] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-3123848720-252869317-3007311881-1001\...\Run: [Battle.net] => C:\Program Files (x86)\Battle.net\Battle.net.exe [981640 2023-12-07] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
HKU\S-1-5-21-3123848720-252869317-3007311881-1001\...\Run: [SignalRgb] => C:\Users\Ali\AppData\Local\VortxEngine\SignalRgbLauncher.exe [498688 2023-12-14] () [Datei ist nicht signiert]
HKU\S-1-5-21-3123848720-252869317-3007311881-1001\...\Run: [WallpaperEngine] => C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe [3223136 2023-10-16] (Skutta, Kristjan -> )
HKU\S-1-5-21-3123848720-252869317-3007311881-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe [45968128 2023-12-13] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-3123848720-252869317-3007311881-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37180368 2023-12-21] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-3123848720-252869317-3007311881-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1785864 2023-12-19] (Overwolf Ltd -> Overwolf Ltd.)
HKU\S-1-5-21-3123848720-252869317-3007311881-1001\...\Run: [MicrosoftEdgeAutoLaunch_5849BF807E016217A11F1D6C1C6FB425] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3854280 2023-12-21] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3123848720-252869317-3007311881-1001\...\Run: [utweb] => "C:\Users\Ali\AppData\Roaming\uTorrent Web\utweb.exe" /MINIMIZED (Keine Datei)
HKU\S-1-5-21-3123848720-252869317-3007311881-1001\...\Run: [Adobe Acrobat Synchronizer] => "C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe" (Keine Datei)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\120.0.6099.130\Installer\chrmstp.exe [2023-12-26] (Google LLC -> Google LLC)
Startup: C:\Users\Ali\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma.lnk [2023-12-20]
ShortcutTarget: Adobe Gamma.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Keine Datei)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {97ED4423-114A-4991-8C69-03F9E94E3602} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1566200 2023-09-21] (Adobe Inc. -> Adobe Inc.)
Task: {9761F17E-7B06-4144-8C67-E43025C13124} - System32\Tasks\ASUS\AcPowerNotification => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe (Keine Datei)
Task: {8F9328B1-9764-483F-995C-431467C47704} - System32\Tasks\ASUS\ArmouryAIOFanServer => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AIOFanSDK\ArmouryAIOFanServer.exe (Keine Datei)
Task: {9DAC5137-C078-42AA-9F3E-41D301E9D3D2} - System32\Tasks\ASUS\ArmourySocketServer => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe (Keine Datei)
Task: {F82C421B-4ACD-4DB2-8B33-E1F235E72226} - System32\Tasks\ASUS\ASUS AISuiteIII => C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe [2159944 2021-10-18] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {C4F59F46-4AC9-44B3-9538-B92546F199D3} - System32\Tasks\ASUS\ASUS DIPAwayMode => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe [1471104 2021-10-22] (ASUSTeK Computer Inc. -> )
Task: {03BA861C-041A-4D73-A2F6-A63C969767CC} - System32\Tasks\ASUS\Ez Update => C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe [1610808 2021-04-14] (ASUSTeK Computer Inc. -> )
Task: {4F86188B-F1A6-4FA4-8687-F59AC65DED27} - System32\Tasks\ASUS\GpuFanHelper => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\GpuFanHelper.exe [4329008 2021-10-13] (ASUSTeK Computer Inc. -> TODO: <Company name>)
Task: {0D0BFF9F-364A-4A01-80CB-E60D269C4D6C} - System32\Tasks\ASUS\NoiseCancelingEngine => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\MBLedSDK\NoiseCancelingEngine.exe (Keine Datei)
Task: {FC36A244-D5DA-417E-85B9-C7DA477DB26B} - System32\Tasks\ASUS\P508PowerAgent_sdk => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ShareFromArmouryIII\Mouse\ROG STRIX CARRY\P508PowerAgent.exe (Keine Datei)
Task: {E8528EFF-2F68-4487-90B1-20888B083705} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-12-08] (Google LLC -> Google LLC)
Task: {D75DE43E-2A6F-4B66-9B8C-C353C07D3538} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-12-08] (Google LLC -> Google LLC)
Task: {87C75D7B-8584-4BDC-9382-A531EC290AEA} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28175440 2024-01-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {F81D16D0-8773-411A-8192-C58E27960E00} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28175440 2024-01-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {47695C64-C5B3-4C05-B52D-599D3CD4F4A1} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [218048 2024-01-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {38416161-D150-4355-A48F-F85D607DD2E9} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [218048 2024-01-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {684EBB5C-B4B7-4A05-A5AE-FB911EEB49B5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A3EC3AEC-56E2-4110-9443-8253FEDE263C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E46C6900-F56E-4B14-8183-71D952FFD5B1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {40924549-EEDA-4C37-A0E2-2C524A21A809} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {BFD9B496-AB19-4B26-8AAB-9EBD90E1869C} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1005096 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {08A89866-FB62-4945-9D34-AE17B2D50923} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3345448 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D425F56A-66B2-429C-9E19-9490655EFF3D} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649256 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5DE045E1-1468-4368-94FD-16589B77893B} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {639A7E9F-FC33-4F89-B1FA-CAFACD28D382} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {19440B78-FA39-4D6E-90E0-B6C95D5E1787} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FAB06F9B-7F10-4E91-9586-03D0202E5DFF} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C2D0D8CC-6CC1-4A06-91E7-F5EAB6C2DC43} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D8A46081-F78A-4E3B-B793-364DD3938401} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {483C5656-3908-4606-BA20-90F2215E6E05} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2641928 2023-12-19] (Overwolf Ltd -> Overwolf LTD)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{3827e474-c0e2-443d-a951-661937c4cf88}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{3827e474-c0e2-443d-a951-661937c4cf88}: [DhcpDomain] fritz.box
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Ali\AppData\Local\Microsoft\Edge\User Data\Default [2023-12-31]
Edge Extension: (Google Docs Offline) - C:\Users\Ali\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-16]
Edge Extension: (Edge relevant text changes) - C:\Users\Ali\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-10-01]
FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.351.2 -> C:\Program Files\Java\jre1.8.0_351\bin\dtplugin\npDeployJava1.dll [2022-11-07] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.351.2 -> C:\Program Files\Java\jre1.8.0_351\bin\plugin2\npjp2.dll [2022-11-07] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2023-12-07] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-12-07] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2023-12-08] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Ali\AppData\Local\Google\Chrome\User Data\Default [2024-01-03]
CHR Notifications: Default -> hxxps://www.giga.de; hxxps://www.reddit.com
CHR HomePage: Default -> hxxp://www.google.de/
CHR StartupUrls: Default -> "hxxp://www.google.de/"
CHR Extension: (Dunkles Theme für Google Chrome) - C:\Users\Ali\AppData\Local\Google\Chrome\User Data\Default\Extensions\annfbnbieaamhaimclajlajpijgkdblo [2022-02-09]
CHR Extension: (Touch VPN – Kostenloses VPN und kostenloser Proxy) - C:\Users\Ali\AppData\Local\Google\Chrome\User Data\Default\Extensions\bihmplhobchoageeokmgbdihknkjbknd [2023-12-31]
CHR Extension: (uBlock Origin) - C:\Users\Ali\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2023-12-07]
CHR Extension: (Dunkler Modus Chrome) - C:\Users\Ali\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiomngfcbbapjpfnhniipcnhaenhohfg [2023-05-19]
CHR Extension: (Urban VPN Proxy) - C:\Users\Ali\AppData\Local\Google\Chrome\User Data\Default\Extensions\eppiocemhmnlbhjplcgkofciiegomcon [2023-12-27]
CHR Extension: (Google Docs Offline) - C:\Users\Ali\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-16]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Ali\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-12-08]
CHR Profile: C:\Users\Ali\AppData\Local\Google\Chrome\User Data\System Profile [2023-06-29]
CHR HKU\S-1-5-21-3123848720-252869317-3007311881-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
==================== Dienste (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2023-12-20] (Adobe Systems) [Datei ist nicht signiert]
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-09-21] (Adobe Inc. -> Adobe Inc.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.02.12\atkexComSvc.exe [457544 2021-10-21] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R2 AsusCertService; C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe [313008 2021-10-21] (ASUSTeK Computer Inc. -> ASUSTek COMPUTER INC.)
R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\2.01.12\AsusFanControlService.exe [2203464 2021-09-10] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S2 AsusUpdateCheck; C:\Windows\System32\AsusUpdateCheck.exe [1134480 2023-12-31] (ASUSTeK Computer Inc. -> )
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8885112 2023-04-16] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13233744 2023-11-14] (Microsoft Corporation -> Microsoft Corporation)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [811496 2022-06-30] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [943528 2023-10-27] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [16029456 2022-06-30] (Epic Games Inc. -> Epic Games, Inc.)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [10759936 2023-12-13] (Logitech Inc -> Logitech, Inc.)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_866484083fc526af\Display.NvContainer\NVDisplay.Container.exe [1274992 2023-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
S3 OverwolfUpdater; C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2641928 2023-12-19] (Overwolf Ltd -> Overwolf LTD)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [534472 2023-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12912936 2021-11-16] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\NisSrv.exe [3174840 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe [133592 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 AdobeUpdateService; "C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe" [X]
===================== Treiber (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [34112 2019-07-02] (ASUSTeK Computer Inc. -> )
R1 Asusgio2; C:\Windows\system32\drivers\AsIO2.sys [34384 2021-10-21] (ASUSTeK Computer Inc. -> )
R1 Asusgio3; C:\Windows\system32\drivers\AsIO3.sys [43160 2021-10-21] (ASUSTeK Computer Inc. -> )
S3 atvi-brynhildr; C:\ProgramData\Battle.net_components\brynhildr_odin\brynhildr.sys [2336008 2023-06-20] (Activision Publishing Inc -> Activision Blizzard, Inc.)
S3 atvi-geirdriful; C:\ProgramData\Battle.net_components\geirdrifulfore\geirdriful.sys [1965320 2022-05-18] (Activision Publishing Inc -> Activision Blizzard, Inc.)
S3 atvi-randgrid; C:\ProgramData\Battle.net_components\randgridauks\randgrid.sys [2786712 2023-10-06] (Activision Publishing Inc -> Activision Blizzard, Inc.)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Datei ist nicht signiert]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Datei ist nicht signiert]
S3 CorsairGamingAudioService; C:\Windows\System32\drivers\CorsairGamingAudio64.sys [60312 2021-10-22] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R3 e2fexpress; C:\Windows\System32\DriverStore\FileRepository\e2f.inf_amd64_bf51b653ec31b8ab\e2f.sys [531568 2023-07-02] (Intel Corporation -> Intel Corporation)
S3 ElgatoVirtualCamera; C:\Windows\System32\drivers\ElgatoVirtualCamera.sys [14380560 2022-08-16] (WDKTestCert Elgato,132863164269755022 -> Windows (R) Win 7 DDK provider)
S1 gvm; C:\Windows\system32\DRIVERS\gvm.sys [394408 2022-05-03] (Google LLC -> Google LLC)
R4 IOMap; C:\Windows\system32\drivers\IOMap64.sys [34064 2021-10-13] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S3 iriuna0; C:\Windows\system32\drivers\iriuna0.sys [46976 2021-04-06] (Iriun Oy -> Windows (R) Win 7 DDK provider)
S3 iriunvid; C:\Windows\System32\DriverStore\FileRepository\iriunvid.inf_amd64_031604b3a1860b9d\iriunvid.sys [164992 2022-05-05] (Iriun Oy -> Windows (R) Win 7 DDK provider)
R3 logi_audio_surround; C:\Windows\system32\drivers\logi_audio_surround.sys [52672 2023-12-13] (Logitech Inc -> Logitech)
R3 logi_joy_bus_enum; C:\Windows\system32\drivers\logi_joy_bus_enum.sys [44880 2022-10-03] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\Windows\system32\drivers\logi_joy_vir_hid.sys [32080 2022-10-03] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\Windows\system32\drivers\logi_joy_xlcore.sys [73040 2022-10-03] (Logitech Inc -> Logitech)
R1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [17424 2020-01-19] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
S3 Netaapl; C:\Windows\System32\drivers\netaapl64.sys [23040 2022-01-06] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R3 NvModuleTracker; C:\Windows\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
S3 Revoflt; C:\Windows\System32\DRIVERS\revoflt.sys [38400 2021-11-17] (Microsoft Windows Hardware Compatibility Publisher -> VS Revo Group)
R2 SignalRgbDriver; C:\Windows\System32\Drivers\SignalRgbDriver.sys [19984 2023-08-30] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2022-01-07] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [55856 2023-12-07] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [594304 2023-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105856 2023-12-07] (Microsoft Windows -> Microsoft Corporation)
S1 EneTechIo; \??\C:\Windows\system32\drivers\ene.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat (erstellte) (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2024-01-03 00:13 - 2024-01-03 00:13 - 000030231 _____ C:\Users\Ali\Desktop\FRST.txt
2024-01-03 00:12 - 2024-01-03 00:13 - 000000000 ____D C:\FRST
2024-01-03 00:12 - 2024-01-03 00:12 - 002387456 _____ (Farbar) C:\Users\Ali\Desktop\FRST64.exe
2024-01-03 00:11 - 2024-01-03 00:12 - 002387456 _____ (Farbar) C:\Users\Ali\Downloads\FRST64.exe
2024-01-02 03:00 - 2024-01-02 03:00 - 002585031 _____ C:\Users\Ali\Desktop\Golf2.psd
2023-12-31 16:19 - 2023-12-31 16:20 - 000000000 ____D C:\AdwCleaner
2023-12-31 15:45 - 2023-12-31 15:45 - 000001122 _____ C:\Users\Public\Desktop\Revo Uninstaller Pro.lnk
2023-12-31 15:45 - 2023-12-31 15:45 - 000000000 ____D C:\Users\Ali\AppData\Local\VS Revo Group
2023-12-31 15:45 - 2023-12-31 15:45 - 000000000 ____D C:\ProgramData\VS Revo Group
2023-12-31 15:45 - 2023-12-31 15:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro
2023-12-31 15:45 - 2023-12-31 15:45 - 000000000 ____D C:\Program Files\VS Revo Group
2023-12-31 01:18 - 2023-12-31 01:18 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2023-12-31 01:18 - 2023-12-31 01:18 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader.lnk
2023-12-31 01:12 - 2023-12-31 01:12 - 000000000 ____D C:\Users\Ali\AppData\Local\SolidDocuments
2023-12-31 01:06 - 2023-12-31 01:06 - 000000000 ____D C:\Users\Ali\.ms-ad
2023-12-30 22:48 - 2023-12-31 15:27 - 000000000 ____D C:\Users\Ali\Desktop\Vector
2023-12-29 23:33 - 2023-12-29 23:33 - 000001064 _____ C:\Users\Ali\Desktop\Adobe Photoshop 2024.lnk
2023-12-29 23:31 - 2023-12-29 23:31 - 000002493 _____ C:\Users\Ali\Desktop\Adobe Illustrator 2024.lnk
2023-12-29 23:10 - 2023-12-29 23:10 - 000002493 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Illustrator 2024.lnk
2023-12-29 23:01 - 2023-12-29 23:01 - 000000000 ____D C:\Program Files (x86)\AwesomeWALKyeiTool
2023-12-29 23:01 - 2023-12-29 23:01 - 000000000 ____D C:\Program Files (x86)\AwesomeWALKjdmTool
2023-12-29 22:58 - 2023-12-29 22:58 - 000000000 ____D C:\Program Files (x86)\AwesomeWALKurfTool
2023-12-29 22:58 - 2023-12-29 22:58 - 000000000 ____D C:\Program Files (x86)\AwesomeWALKkcmTool
2023-12-29 22:58 - 2023-12-29 22:58 - 000000000 ____D C:\Program Files (x86)\AwesomeWALKcyaTool
2023-12-29 22:57 - 2023-12-29 22:57 - 000000000 ____D C:\Program Files (x86)\AwesomeWALKtkbTool
2023-12-27 02:00 - 2023-12-31 01:06 - 000000000 ____D C:\ProgramData\Adobe
2023-12-22 00:04 - 2023-12-22 00:04 - 000000000 ____D C:\Windows\InboxApps
2023-12-20 21:38 - 2023-12-20 21:38 - 000000000 ____D C:\Users\Ali\Documents\AdobeStockPhotos
2023-12-20 21:30 - 2023-12-20 21:30 - 000000000 ____D C:\Users\Ali\Documents\Updater
2023-12-20 21:28 - 2023-12-20 21:28 - 000002158 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Help Center.lnk
2023-12-20 21:28 - 2023-12-20 21:28 - 000002140 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge.lnk
2023-12-20 21:28 - 2023-12-20 21:28 - 000000000 ____D C:\Windows\SysWOW64\Adobe
2023-12-20 21:28 - 2023-12-20 21:28 - 000000000 ____D C:\Users\Public\Documents\Adobe PDF
2023-12-20 21:28 - 2023-12-20 21:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe
2023-12-20 21:28 - 2004-08-17 02:40 - 000016384 _____ C:\Windows\SysWOW64\FileOps.exe
2023-12-20 21:17 - 2023-12-20 21:18 - 000000000 ____D C:\AI_CS2_GR_NonRet
2023-12-16 21:10 - 2023-12-16 21:10 - 000016707 _____ C:\Windows\system32\IntegratedServicesRegionPolicySet.json
2023-12-16 21:07 - 2023-12-16 21:07 - 000000000 ___HD C:\$WinREAgent
2023-12-14 20:29 - 2023-12-31 16:05 - 000000000 ____D C:\Users\Ali\AppData\Roaming\Adobe
2023-12-13 21:31 - 2023-12-08 02:23 - 001487368 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2023-12-13 21:31 - 2023-12-08 02:23 - 001424064 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2023-12-13 21:31 - 2023-12-08 02:23 - 001424064 _____ C:\Windows\system32\vulkan-1.dll
2023-12-13 21:31 - 2023-12-08 02:23 - 001246400 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2023-12-13 21:31 - 2023-12-08 02:23 - 001246400 _____ C:\Windows\SysWOW64\vulkan-1.dll
2023-12-13 21:31 - 2023-12-08 02:23 - 001227288 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2023-12-13 21:31 - 2023-12-08 02:23 - 000850616 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2023-12-13 21:31 - 2023-12-08 02:23 - 000850616 _____ C:\Windows\system32\vulkaninfo.exe
2023-12-13 21:31 - 2023-12-08 02:23 - 000731320 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2023-12-13 21:31 - 2023-12-08 02:23 - 000731320 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2023-12-13 21:31 - 2023-12-08 02:19 - 000957960 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll
2023-12-13 21:31 - 2023-12-08 02:19 - 000670232 _____ (NVIDIA Corporation) C:\Windows\system32\nvofapi64.dll
2023-12-13 21:31 - 2023-12-08 02:19 - 000505480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvofapi.dll
2023-12-13 21:31 - 2023-12-08 02:18 - 012375688 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2023-12-13 21:31 - 2023-12-08 02:18 - 002170992 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2023-12-13 21:31 - 2023-12-08 02:18 - 001624712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2023-12-13 21:31 - 2023-12-08 02:18 - 001541256 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2023-12-13 21:31 - 2023-12-08 02:18 - 001198728 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2023-12-13 21:31 - 2023-12-08 02:18 - 000997512 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2023-12-13 21:31 - 2023-12-08 02:18 - 000810096 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe
2023-12-13 21:31 - 2023-12-08 02:18 - 000773744 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2023-12-13 21:31 - 2023-12-08 02:18 - 000459912 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe
2023-12-13 21:31 - 2023-12-08 02:17 - 015095408 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2023-12-13 21:31 - 2023-12-08 02:17 - 006462600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2023-12-13 21:31 - 2023-12-08 02:17 - 005862512 _____ (NVIDIA Corporation) C:\Windows\system32\nvcudadebugger.dll
2023-12-13 21:31 - 2023-12-08 02:17 - 005861000 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2023-12-13 21:31 - 2023-12-08 02:17 - 000853640 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe
2023-12-13 21:31 - 2023-12-07 00:05 - 000113947 _____ C:\Windows\system32\nvinfo.pb
2023-12-13 21:07 - 2023-12-13 21:07 - 000000856 _____ C:\Users\Public\Desktop\Logitech G HUB.lnk
2023-12-13 21:07 - 2023-12-13 21:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2023-12-13 21:07 - 2023-12-13 21:07 - 000000000 ____D C:\Program Files\LGHUB
2023-12-13 21:06 - 2023-12-13 21:06 - 002082048 _____ (Logitech) C:\Windows\system32\logi_audio_hx2e_render_apo.dll
2023-12-13 21:06 - 2023-12-13 21:06 - 001893952 _____ (Logitech) C:\Windows\system32\logi_audio_headset_capture_apo.dll
2023-12-13 21:06 - 2023-12-13 21:06 - 000052672 _____ (Logitech) C:\Windows\system32\Drivers\logi_audio_surround.sys
==================== Ein Monat (geänderte) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2024-01-03 00:13 - 2021-12-08 18:17 - 000000000 ____D C:\Users\Ali\AppData\Roaming\NetSpeedMonitor
2024-01-03 00:02 - 2021-12-08 17:36 - 000000000 ____D C:\Program Files (x86)\Steam
2024-01-03 00:01 - 2021-12-08 17:36 - 000000000 ____D C:\Users\Ali\AppData\Local\Discord
2024-01-02 23:54 - 2021-12-08 17:19 - 000000000 ____D C:\Windows\system32\SleepStudy
2024-01-02 23:54 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-01-02 23:47 - 2022-01-11 20:41 - 000000000 ____D C:\Windows\SystemTemp
2024-01-02 23:47 - 2021-12-08 17:36 - 000000000 ____D C:\Program Files (x86)\Google
2024-01-02 22:01 - 2021-12-08 17:36 - 000000000 ____D C:\Users\Ali\AppData\Roaming\discord
2024-01-02 21:28 - 2021-12-08 17:42 - 000000000 ____D C:\Users\Ali\AppData\Local\D3DSCache
2024-01-02 21:23 - 2021-12-08 19:52 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2024-01-02 21:18 - 2022-08-07 22:44 - 000002313 _____ C:\Users\Ali\Desktop\CurseForge.lnk
2024-01-02 21:18 - 2022-08-07 22:42 - 000000000 ____D C:\Users\Ali\AppData\Local\Overwolf
2024-01-02 21:18 - 2022-01-23 22:15 - 000000000 ____D C:\Users\Ali\AppData\Local\LGHUB
2024-01-02 21:17 - 2021-12-08 17:46 - 000000000 ____D C:\ProgramData\NVIDIA
2024-01-02 21:17 - 2021-12-08 17:19 - 000000000 ____D C:\ProgramData\ASUS
2024-01-02 14:59 - 2021-12-08 17:24 - 000000000 ____D C:\Users\Ali\AppData\Local\Packages
2024-01-02 03:53 - 2021-12-08 20:57 - 000000000 ____D C:\Users\Ali\AppData\Local\Battle.net
2024-01-02 03:53 - 2021-12-08 17:23 - 000000000 ____D C:\Users\Ali
2024-01-02 02:17 - 2022-02-17 16:26 - 000000000 ____D C:\Users\Ali\AppData\Roaming\Microsoft\Word
2024-01-01 22:55 - 2021-12-08 17:56 - 000000000 ____D C:\Users\Ali\AppData\Local\CrashDumps
2024-01-01 19:40 - 2021-12-18 16:00 - 000000000 ____D C:\Users\Ali\AppData\Roaming\Microsoft\Excel
2024-01-01 19:35 - 2021-12-18 16:00 - 000000000 ____D C:\Users\Ali\AppData\Roaming\Microsoft\UProof
2023-12-31 16:33 - 2023-06-29 23:55 - 000000000 ____D C:\Users\Ali\AppData\Local\Adobe
2023-12-31 16:28 - 2021-12-08 17:25 - 001632020 _____ C:\Windows\system32\PerfStringBackup.INI
2023-12-31 16:28 - 2019-12-07 15:51 - 000705894 _____ C:\Windows\system32\perfh007.dat
2023-12-31 16:28 - 2019-12-07 15:51 - 000142188 _____ C:\Windows\system32\perfc007.dat
2023-12-31 16:28 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF
2023-12-31 16:21 - 2021-12-08 17:37 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2023-12-31 16:21 - 2021-12-08 17:19 - 001173024 _____ C:\Windows\system32\wpbbin.exe
2023-12-31 16:21 - 2021-12-08 17:19 - 001134480 _____ C:\Windows\system32\AsusUpdateCheck.exe
2023-12-31 16:21 - 2021-12-08 17:19 - 000439880 _____ C:\Windows\system32\FNTCACHE.DAT
2023-12-31 16:21 - 2021-12-08 17:19 - 000008192 ___SH C:\DumpStack.log.tmp
2023-12-31 16:21 - 2021-12-08 17:19 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2023-12-31 16:21 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ServiceState
2023-12-31 16:21 - 2019-12-07 10:03 - 000524288 _____ C:\Windows\system32\config\BBI
2023-12-31 16:08 - 2021-12-08 20:20 - 000000000 ____D C:\ProgramData\Battle.net
2023-12-31 16:05 - 2023-06-29 23:56 - 000000000 ____D C:\Program Files\Adobe
2023-12-31 15:27 - 2023-11-23 20:35 - 000000000 ____D C:\Users\Ali\Desktop\logo
2023-12-31 01:17 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-12-31 01:17 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness
2023-12-31 01:13 - 2021-12-08 17:24 - 000000000 ____D C:\ProgramData\Packages
2023-12-31 01:08 - 2023-06-29 23:56 - 000000000 ____D C:\Program Files\Common Files\Adobe
2023-12-31 01:06 - 2023-07-11 20:14 - 000000000 ____D C:\Users\Ali\AppData\LocalLow\Adobe
2023-12-31 01:06 - 2023-06-29 23:55 - 000000000 ____D C:\Users\Ali\AppData\Roaming\com.adobe.dunamis
2023-12-31 01:05 - 2023-06-29 23:56 - 000000000 ____D C:\Program Files (x86)\Adobe
2023-12-26 23:48 - 2021-12-08 17:36 - 000002239 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-12-22 21:47 - 2021-12-08 17:19 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-12-22 00:04 - 2019-12-07 15:54 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2023-12-22 00:04 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2023-12-22 00:04 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2023-12-22 00:04 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\lv-LV
2023-12-22 00:04 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\lt-LT
2023-12-22 00:04 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\et-EE
2023-12-22 00:04 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\es-MX
2023-12-22 00:04 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2023-12-22 00:04 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources
2023-12-22 00:04 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\WinMetadata
2023-12-22 00:04 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\oobe
2023-12-22 00:04 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\lv-LV
2023-12-22 00:04 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\lt-LT
2023-12-22 00:04 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\et-EE
2023-12-22 00:04 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\es-MX
2023-12-22 00:04 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Dism
2023-12-22 00:04 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ShellExperiences
2023-12-22 00:04 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Provisioning
2023-12-22 00:04 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2023-12-22 00:04 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr
2023-12-22 00:04 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\servicing
2023-12-20 14:14 - 2022-08-07 22:44 - 000000000 ____D C:\Program Files (x86)\Overwolf
2023-12-19 23:49 - 2022-09-24 22:56 - 000000000 ____D C:\Program Files (x86)\Call of Duty
2023-12-19 20:29 - 2021-12-08 17:36 - 000002217 _____ C:\Users\Ali\Desktop\Discord.lnk
2023-12-16 21:12 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp
2023-12-16 21:11 - 2019-12-07 15:54 - 000023040 _____ (Microsoft Corporation) C:\Windows\system32\OEMDefaultAssociations.dll
2023-12-16 21:11 - 2019-12-07 15:54 - 000020827 _____ C:\Windows\system32\OEMDefaultAssociations.xml
2023-12-16 21:10 - 2021-12-08 17:22 - 003016192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2023-12-15 19:24 - 2023-10-16 21:49 - 000002389 _____ C:\Users\Ali\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-12-15 19:24 - 2021-12-12 20:23 - 000003588 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3123848720-252869317-3007311881-1001
2023-12-15 19:24 - 2021-12-08 17:26 - 000003374 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3123848720-252869317-3007311881-1001
2023-12-14 20:30 - 2022-04-19 14:54 - 000000000 ____D C:\Users\Ali\AppData\Local\VortxEngine
2023-12-14 20:30 - 2021-12-13 16:44 - 000002363 _____ C:\Users\Ali\Desktop\SignalRgb.lnk
2023-12-14 20:30 - 2021-12-09 16:49 - 000000000 ____D C:\Users\Ali\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhirlwindFX
2023-12-14 20:30 - 2021-12-08 17:36 - 000000000 ____D C:\Users\Ali\AppData\Local\SquirrelTemp
2023-12-13 23:25 - 2019-12-07 15:54 - 000000000 ___SD C:\Windows\system32\AppV
2023-12-13 23:25 - 2019-12-07 15:54 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2023-12-13 23:25 - 2019-12-07 15:54 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2023-12-13 23:25 - 2019-12-07 15:51 - 000000000 ____D C:\Windows\SysWOW64\de
2023-12-13 23:25 - 2019-12-07 15:51 - 000000000 ____D C:\Windows\system32\de
2023-12-13 23:25 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\SysWOW64\F12
2023-12-13 23:25 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\SysWOW64\DiagSvcs
2023-12-13 23:25 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\UNP
2023-12-13 23:25 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\F12
2023-12-13 23:25 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\DiagSvcs
2023-12-13 23:25 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\PrintDialog
2023-12-13 23:25 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\setup
2023-12-13 23:25 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\PerceptionSimulation
2023-12-13 23:25 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\oobe
2023-12-13 23:25 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\migwiz
2023-12-13 23:25 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Com
2023-12-13 23:25 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\AdvancedInstallers
2023-12-13 23:25 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2023-12-13 23:25 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\SystemResetPlatform
2023-12-13 23:25 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Sysprep
2023-12-13 23:25 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\ShellExperiences
2023-12-13 23:25 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\setup
2023-12-13 23:25 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\PerceptionSimulation
2023-12-13 23:25 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\migwiz
2023-12-13 23:25 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Com
2023-12-13 23:25 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\appraiser
2023-12-13 23:25 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\AdvancedInstallers
2023-12-13 23:25 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ShellComponents
2023-12-13 23:25 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\IME
2023-12-13 23:25 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender
2023-12-13 23:25 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System
2023-12-13 23:25 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2023-12-13 21:33 - 2021-12-08 17:46 - 000000000 ____D C:\Users\Ali\AppData\Local\NVIDIA
2023-12-13 21:15 - 2023-09-20 19:33 - 000000000 ____D C:\Users\Ali\AppData\Roaming\G HUB
2023-12-13 21:07 - 2022-01-23 22:15 - 000000000 ____D C:\Users\Ali\AppData\Roaming\LGHUB
2023-12-10 21:59 - 2021-12-08 17:24 - 000000000 ___SD C:\Users\Ali\AppData\Roaming\Microsoft\Protect
2023-12-08 02:17 - 2022-12-01 17:13 - 003620488 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2023-12-08 02:16 - 2021-12-08 17:44 - 007869576 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2023-12-08 02:16 - 2021-12-08 17:44 - 006745768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2023-12-07 21:36 - 2021-12-08 20:56 - 000000000 ____D C:\Program Files (x86)\Battle.net
2023-12-07 21:05 - 2021-12-08 17:19 - 000000000 ____D C:\Windows\system32\Drivers\wd
2023-12-07 00:42 - 2021-12-08 17:36 - 000003926 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2023-12-07 00:42 - 2021-12-08 17:36 - 000003802 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========
2021-12-17 16:10 - 2023-09-24 19:46 - 000007626 _____ () C:\Users\Ali\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
==================== Ende von FRST.txt ========================
|
| Themen zu Windows 10 22H2 64bit: Windows meldet PUADlManager:Win32/_______ |
| administrator, adobe, bonjour, computer, defender, fehler, fehlermeldung, google, homepage, internet, monitor, mozilla, nvidia, photoshop, proxy, prozesse, registry, rundll, scan, server, services.exe, software, svchost.exe, system, windows |
Baum-Darstellung