| |
| |||||||
Log-Analyse und Auswertung: Windows 10 - Rechner verhält sich merkwürdigWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
09.07.2024, 14:59
| #1 |
 |  Windows 10 - Rechner verhält sich merkwürdig Hallo, ich würde mich über Hilfe freuen. Mein Rechner "spinnt" manchmal etwas, ich kann teilweise keine Explorer Fenster öffnen, der vollständige Windows Defender Scan lässt sich nicht starten und beim Neustart bleibt er hängen. Und jetzt befürchte ich einen Befall. Es ist kein gewerblicher Rechner, aber ich helfe meiner Frau ein wenig bei Ihrer Selbstständigkeit. Hier die FRST.txt, die addition.txt, liefere ich nach, weil es sonst zu viel ist: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 01.07.2024
durchgeführt von danie (Administrator) auf DANIEL-G-ASUS (ASUS System Product Name) (09-07-2024 15:35:49)
Gestartet von C:\Users\danie\Desktop\FRST64.exe
Geladene Profile: danie & UIFlowService
Plattform: Microsoft Windows 10 Pro for Workstations Version 22H2 19045.4598 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: Edge
Start-Modus: Normal
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12132.3.2017.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(Brother Industries, Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Brother\Brother Help\BrotherHelp.exe
(Brother Industries, Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(Brother Industries, Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
(C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe ->) (ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\SwAgent\ArmourySwAgent.exe
(C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe ->) (Brother Industries, Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
(C:\Program Files (x86)\Jabra\Direct6\jabra-direct.exe ->) (GN Audio A/S -> GN Audio A/S) C:\Program Files (x86)\Jabra\Direct6\SoftphoneIntegrations.exe
(C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe <2>
(C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.UserSessionHelper.exe
(C:\Program Files\Google\Drive File Stream\92.0.1.0\GoogleDriveFS.exe ->) (Google LLC -> ) C:\Program Files\Google\Drive File Stream\92.0.1.0\crashpad_handler.exe
(C:\Program Files\Logitech\LogiOptions\LogiOptions.exe ->) (Logitech Inc -> Logitech) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOverlay.exe
(C:\Program Files\Logitech\LogiOptions\LogiOptions.exe ->) (Logitech Inc -> Logitech, Inc.) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOptionsMgr.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(C:\Users\danie\AppData\Roaming\Zoom\bin\Zoom.exe ->) (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) C:\Users\danie\AppData\Roaming\Zoom\bin\zWebview2Agent.exe
(C:\Users\danie\AppData\Roaming\Zoom\bin\zWebview2Agent.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\126.0.2592.87\msedgewebview2.exe <28>
(Canva -> Canva Pty Ltd) C:\Users\danie\AppData\Local\Programs\Canva\Canva.exe <2>
(cmd.exe ->) (Agilebits -> AgileBits, Inc.) C:\Users\danie\AppData\Local\1Password\app\8\1Password-BrowserSupport.exe
(cmd.exe ->) (Microsoft Corporation -> Microsoft) C:\Program Files (x86)\Power Automate Desktop\PAD.BrowserNativeMessageHost.exe
(explorer.exe ->) (Agilebits -> 1Password) C:\Users\danie\AppData\Local\1Password\app\8\1Password.exe <4>
(explorer.exe ->) (GN Audio A/S -> GN Audio A/S) C:\Program Files (x86)\Jabra\Direct6\jabra-direct.exe <4>
(explorer.exe ->) (Google LLC -> Google, Inc.) C:\Program Files\Google\Drive File Stream\92.0.1.0\GoogleDriveFS.exe <7>
(explorer.exe ->) (Learnpulse -> Learnpulse) C:\Users\danie\AppData\Local\Learnpulse\Screenpresso\Screenpresso.exe
(explorer.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech\LogiOptions\LogiOptions.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <37>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\24.116.0609.0005\Microsoft.SharePoint.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe <2>
(explorer.exe ->) (Microsoft Corporation -> Microsoft) C:\Program Files (x86)\Power Automate Desktop\PAD.Console.Host.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft) C:\Users\danie\AppData\Local\Microsoft\On-premises data gateway (personal mode)\Microsoft.PowerBI.DataMovement.PersonalGateway.exe
(explorer.exe ->) (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) C:\Users\danie\AppData\Roaming\Zoom\bin\Zoom.exe <3>
(Haufe-Lexware GmbH & Co. KG -> Haufe-Lexware GmbH & Co. KG) C:\Program Files (x86)\Lexware\Update Manager\LxUpdateManager.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\MSTeams_24152.415.2975.367_x64__8wekyb3d8bbwe\ms-teams.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte Ltd) C:\Program Files\2BrightSparks\SyncBackPro\SchedulesMonitor.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (AnyDesk Software GmbH -> AnyDesk Software GmbH) C:\Program Files (x86)\AnyDesk\AnyDesk.exe <2>
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTek COMPUTER INC.) C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\2.03.20\AsusFanControlService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\4.02.32\atkexComSvc.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Program Files (x86)\LightingService\LightingService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe
(services.exe ->) (AVM Computersysteme Vertriebs GmbH -> AVM Berlin) C:\Program Files\FRITZ!Fernzugang\avmike.exe
(services.exe ->) (AVM Computersysteme Vertriebs GmbH -> AVM Berlin) C:\Program Files\FRITZ!Fernzugang\certsrv.exe
(services.exe ->) (AVM Computersysteme Vertriebs GmbH -> AVM Berlin) C:\Program Files\FRITZ!Fernzugang\nwtsrv.exe
(services.exe ->) (Brother Industries, Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Browny02\BrYNSvc.exe
(services.exe ->) (devolo AG -> devolo AG) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
(services.exe ->) (Geek Software GmbH -> geek software GmbH) C:\Program Files\PDF24\pdf24.exe <2>
(services.exe ->) (Haufe-Lexware GmbH & Co. KG -> Haufe Group) C:\Program Files (x86)\Lexware\internal API Service\Lexware.Faktura.Api.InternalApi.exe
(services.exe ->) (Haufe-Lexware GmbH & Co. KG -> Haufe-Lexware GmbH & Co. KG) C:\Program Files (x86)\Lexware\API Service\Lexware.Faktura.Api.HotChocolateHost.exe
(services.exe ->) (Haufe-Lexware GmbH & Co. KG -> Haufe-Lexware GmbH & Co. KG) C:\Program Files (x86)\Lexware\Update Service\Hmg.InstallationService.Service.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (MailStore Software GmbH -> MailStore Software GmbH) C:\Program Files (x86)\MailStore\MailStore Server\MailStoreServer_x64.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Power Automate Desktop\Microsoft.Flow.RPA.LauncherService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Power Automate Desktop\Microsoft.Flow.RPA.LogShipper.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Power Automate Desktop\Microsoft.Flow.RPA.UpdateService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Power Automate Desktop\UIFlowService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\vds.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\NisSrv.exe
(services.exe ->) (NAVIMATICS LLC -> Navimatics LLC) C:\Program Files (x86)\WinFsp\SxS\sxs.20240621T172454Z\bin\launcher-x64.exe
(services.exe ->) (nordvpn s.a. -> nordvpn S.A.) C:\Program Files\NordUpdater\NordUpdateService.exe
(services.exe ->) (nordvpn s.a. -> nordvpn S.A.) C:\Program Files\NordVPN\nordvpn-service.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_7e5fd280efaa5445\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(services.exe ->) (Shrew Soft Inc -> ) C:\Program Files\ShrewSoft\VPN Client\iked.exe
(services.exe ->) (Shrew Soft Inc -> ) C:\Program Files\ShrewSoft\VPN Client\ipsecd.exe
(services.exe ->) (Sony Imaging Products & Solutions Inc. -> Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(services.exe ->) (WireGuard LLC -> WireGuard LLC) C:\Program Files\WireGuard\wireguard.exe <2>
(Sony Imaging Products & Solutions Inc. -> Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2424.6.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe <2>
(svchost.exe ->) (Haufe-Lexware GmbH & Co. KG -> Haufe-Lexware GmbH & Co. KG) C:\Program Files (x86)\Lexware\professional\2024\Lexware.Faktura.Datensynchronisation.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\24.116.0609.0005\FileCoAuth.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\MSTeams_24152.415.2975.367_x64__8wekyb3d8bbwe\ms-teamsupdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft) C:\Program Files\WindowsApps\Microsoft.Todos_2.114.7122.0_x64__8wekyb3d8bbwe\Todo.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WWAHost.exe
konnte nicht auf den Prozess zugreifen -> ArmourySocketServer.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [LogiOptions] => C:\Program Files\Logitech\LogiOptions\LogiOptions.exe [1690368 2022-07-22] (Logitech Inc -> Logitech, Inc.)
HKLM\...\Run: [PDF24] => C:\Program Files\PDF24\pdf24.exe [645976 2024-06-06] (Geek Software GmbH -> geek software GmbH)
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [139264 2013-04-05] (Brother Industries, Ltd.) [Datei ist nicht signiert]
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [4522496 2012-12-27] (Brother Industries, Ltd.) [Datei ist nicht signiert]
HKLM-x32\...\Run: [BrHelp] => C:\Program Files (x86)\Brother\Brother Help\BrotherHelp.exe [2009088 2013-01-18] (Brother Industries, Ltd.) [Datei ist nicht signiert]
HKLM-x32\...\Run: [PMBVolumeWatcher] => C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe [868328 2018-12-21] (Sony Imaging Products & Solutions Inc. -> Sony Corporation)
HKLM-x32\...\Run: [LexwareInfoService] => C:\Program Files (x86)\Lexware\Update Manager\LxUpdateManager.exe [413416 2023-10-10] (Haufe-Lexware GmbH & Co. KG -> Haufe-Lexware GmbH & Co. KG)
HKLM-x32\...\Run: [Haufe.Loge.AutostartLauncher.exe] => C:\Program Files (x86)\Common Files\Lexware\Dll\Haufe.Loge.AutostartLauncher.exe [23272 2024-06-26] (Haufe-Lexware GmbH & Co. KG -> Haufe-Lexware GmbH & Co. KG)
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\92.0.1.0\GoogleDriveFS.exe [61245728 2024-06-21] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\92.0.1.0\GoogleDriveFS.exe [61245728 2024-06-21] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2782327805-1913230689-3329431176-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4905504 2024-06-29] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2782327805-1913230689-3329431176-1001\...\Run: [Screenpresso] => C:\Users\danie\AppData\Local\Learnpulse\Screenpresso\Screenpresso.exe [20345088 2024-06-11] (Learnpulse -> Learnpulse)
HKU\S-1-5-21-2782327805-1913230689-3329431176-1001\...\Run: [1Password] => C:\Users\danie\AppData\Local\1Password\app\8\1Password.exe [177074016 2024-06-21] (Agilebits -> 1Password)
HKU\S-1-5-21-2782327805-1913230689-3329431176-1001\...\Run: [Zoom] => C:\Users\danie\AppData\Roaming\Zoom\bin\Zoom.exe [415048 2024-06-26] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
HKU\S-1-5-21-2782327805-1913230689-3329431176-1001\...\Run: [MicrosoftEdgeAutoLaunch_E0359248083FDB44B7852C7D3585D0D2] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3883472 2024-07-01] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2782327805-1913230689-3329431176-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\danie\AppData\Local\Microsoft\Teams\Update.exe [2589552 2023-09-30] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-2782327805-1913230689-3329431176-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\92.0.1.0\GoogleDriveFS.exe [61245728 2024-06-21] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2782327805-1913230689-3329431176-1001\...\Run: [Microsoft.Lists] => C:\Program Files\Microsoft OneDrive\24.116.0609.0005\Microsoft.SharePoint.exe [1025552 2024-06-29] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2782327805-1913230689-3329431176-1001\...\Run: [PowerAutomate] => C:\Program Files (x86)\Power Automate Desktop\PAD.Console.Host.exe [485824 2023-12-20] (Microsoft Corporation -> Microsoft)
HKU\S-1-5-21-2782327805-1913230689-3329431176-1001\...\Run: [CanvaAutoLaunchAvailabilityCheckAgent] => C:\Users\danie\AppData\Local\Programs\Canva\Canva.exe [166402704 2024-03-04] (Canva -> Canva Pty Ltd)
HKU\S-1-5-21-2782327805-1913230689-3329431176-1001\...\Run: [Jabra Direct] => C:\Program Files (x86)\Jabra\Direct6\jabra-direct.exe [136268544 2024-06-07] (GN Audio A/S -> GN Audio A/S)
HKU\S-1-5-21-2782327805-1913230689-3329431176-1001\...\MountPoints2: {4b7d3868-7437-11eb-9df9-f02f74300e86} - "F:\WD Drive Unlock.exe" autoplay=true
HKU\S-1-5-21-2782327805-1913230689-3329431176-1001\...\MountPoints2: {80bf366c-0b59-11ed-9e5a-00e04cb4db03} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-80-3017052307-2994996872-1615411526-3164924635-3391446484\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\92.0.1.0\GoogleDriveFS.exe [61245728 2024-06-21] (Google LLC -> Google, Inc.)
HKU\S-1-5-80-3017052307-2994996872-1615411526-3164924635-3391446484\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4905504 2024-06-29] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\92.0.1.0\GoogleDriveFS.exe [61245728 2024-06-21] (Google LLC -> Google, Inc.)
HKLM\...\Windows x64\Print Processors\hpcpp120: C:\Windows\System32\spool\prtprocs\x64\hpcpp120.DLL [342016 2012-01-27] (Hewlett-Packard Corporation) [Datei ist nicht signiert]
HKLM\...\Print\Monitors\HP Standard TCP/IP Port: C:\Windows\system32\HpTcpMon.dll [331264 2009-09-16] (Hewlett Packard) [Datei ist nicht signiert]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\126.0.6478.127\Installer\chrmstp.exe [2024-06-26] (Google LLC -> Google LLC)
Startup: C:\Users\danie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\An OneNote senden.lnk [2024-06-30]
ShortcutTarget: An OneNote senden.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
Startup: C:\Users\danie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\On-premises data gateway (personal mode).lnk [2024-02-15]
ShortcutTarget: On-premises data gateway (personal mode).lnk -> C:\Users\danie\AppData\Roaming\Microsoft\Installer\{B96BE8F1-D620-45B9-8735-5D79F17BBEEA}\gatewayicon.exe (Microsoft Corporation -> Microsoft)
Startup: C:\Users\danie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SyncBackPro.exe - Verknüpfung.lnk [2021-02-21]
ShortcutTarget: SyncBackPro.exe - Verknüpfung.lnk -> C:\Program Files\2BrightSparks\SyncBackPro\SyncBackPro.exe (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte Ltd)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2021-02-20]
ShortcutTarget: AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe (AnyDesk Software GmbH -> AnyDesk Software GmbH)
BootExecute: autocheck autochk /m /P \Device\HarddiskVolume14autocheck autochk /m /P \Device\HarddiskVolume17autocheck autochk /m /P \Device\HarddiskVolume19autocheck autochk *
GroupPolicy-Firefox: Beschränkung <==== ACHTUNG
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {A9057CDE-23B4-4597-B9C7-DE67C4BF16F3} - System32\Tasks\2BrightSparks\SyncBackProx64\DANIEL-G-ASUS-danie\Daniel Cloud Backup => C:\Program Files\2BrightSparks\SyncBackPro\SyncBackPro.exe [210523448 2024-05-30] (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte Ltd) -> C:\Program Files\2BrightSparks\SyncBackPro\-m "Daniel Cloud Backup"
Task: {CF786753-359E-42B3-B673-0FF2CAA8A485} - System32\Tasks\2BrightSparks\SyncBackProx64\DANIEL-G-ASUS-danie\Gewerbe Cloud Backup => C:\Program Files\2BrightSparks\SyncBackPro\SyncBackPro.exe [210523448 2024-05-30] (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte Ltd) -> C:\Program Files\2BrightSparks\SyncBackPro\-m "Gewerbe Cloud Backup"
Task: {8738DE28-7DC1-4245-89C0-1C6FF0319E80} - System32\Tasks\2BrightSparks\SyncBackProx64\DANIEL-G-ASUS-danie\Lexware Ordner auf NAS => C:\Program Files\2BrightSparks\SyncBackPro\SyncBackPro.exe [210523448 2024-05-30] (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte Ltd) -> C:\Program Files\2BrightSparks\SyncBackPro\-m "Lexware Ordner auf NAS"
Task: {5175B474-173C-48C2-AEDB-9049F23AC91C} - System32\Tasks\2BrightSparks\SyncBackProx64\DANIEL-G-ASUS-danie\SyncBackPro Ausgangsrechnungen auf lokal => C:\Program Files\2BrightSparks\SyncBackPro\SyncBackPro.exe [210523448 2024-05-30] (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte Ltd) -> C:\Program Files\2BrightSparks\SyncBackPro\-m "Ausgangsrechnungen auf lokal"
Task: {51B00875-2096-4127-8427-AB8B6A4704B3} - System32\Tasks\2BrightSparks\SyncBackProx64\DANIEL-G-ASUS-danie\SyncBackPro Daniel auf OneDrive => C:\Program Files\2BrightSparks\SyncBackPro\SyncBackPro.exe [210523448 2024-05-30] (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte Ltd) -> C:\Program Files\2BrightSparks\SyncBackPro\-m "Daniel auf OneDrive"
Task: {D913F9B0-8661-459A-B823-EB672C955457} - System32\Tasks\2BrightSparks\SyncBackProx64\DANIEL-G-ASUS-danie\SyncBackPro DMS Gewerbe auf One Drive encrypted => C:\Program Files\2BrightSparks\SyncBackPro\SyncBackPro.exe [210523448 2024-05-30] (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte Ltd) -> C:\Program Files\2BrightSparks\SyncBackPro\-m "DMS Gewerbe auf One Drive encrypted"
Task: {7F528239-15E1-4D0B-A9A5-E81C795A2E40} - System32\Tasks\2BrightSparks\SyncBackProx64\DANIEL-G-ASUS-danie\SyncBackPro DMS privat auf One Drive encrypted => C:\Program Files\2BrightSparks\SyncBackPro\SyncBackPro.exe [210523448 2024-05-30] (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte Ltd) -> C:\Program Files\2BrightSparks\SyncBackPro\-m "DMS privat auf One Drive encrypted"
Task: {57866004-BCF6-4900-9479-998497975EED} - System32\Tasks\2BrightSparks\SyncBackProx64\DANIEL-G-ASUS-danie\SyncBackPro DMS Server Backup => C:\Program Files\2BrightSparks\SyncBackPro\SyncBackPro.exe [210523448 2024-05-30] (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte Ltd) -> C:\Program Files\2BrightSparks\SyncBackPro\-m "DMS Server Backup"
Task: {B0494485-691C-46FC-8BEA-47CCA1F1881C} - System32\Tasks\2BrightSparks\SyncBackProx64\DANIEL-G-ASUS-danie\SyncBackPro facebook Bilder auf One Drive => C:\Program Files\2BrightSparks\SyncBackPro\SyncBackPro.exe [210523448 2024-05-30] (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte Ltd) -> C:\Program Files\2BrightSparks\SyncBackPro\-m "facebook Bilder auf One Drive"
Task: {02C4AC23-2691-4EBE-8193-48E79613E157} - System32\Tasks\2BrightSparks\SyncBackProx64\DANIEL-G-ASUS-danie\SyncBackPro Fotos auf One Drive => C:\Program Files\2BrightSparks\SyncBackPro\SyncBackPro.exe [210523448 2024-05-30] (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte Ltd) -> C:\Program Files\2BrightSparks\SyncBackPro\-m "Fotos auf One Drive"
Task: {0321FCF5-1C14-4313-B5FD-945FBC5BAA8E} - System32\Tasks\2BrightSparks\SyncBackProx64\DANIEL-G-ASUS-danie\SyncBackPro Logo auf One Drive => C:\Program Files\2BrightSparks\SyncBackPro\SyncBackPro.exe [210523448 2024-05-30] (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte Ltd) -> C:\Program Files\2BrightSparks\SyncBackPro\-m "Logo auf One Drive"
Task: {704188F4-C0D3-45EF-B4CA-EA16B7FA549A} - System32\Tasks\2BrightSparks\SyncBackProx64\DANIEL-G-ASUS-danie\SyncBackPro Shop Datenbank auf NAS => C:\Program Files\2BrightSparks\SyncBackPro\SyncBackPro.exe [210523448 2024-05-30] (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte Ltd) -> C:\Program Files\2BrightSparks\SyncBackPro\-m "Datenbanken Site und Shop auf NAS"
Task: {40BFB1EF-9AFB-4151-AD7B-DFB1810EE543} - System32\Tasks\2BrightSparks\SyncBackProx64\DANIEL-G-ASUS-danie\SyncBackPro Shop Web auf NAS => C:\Program Files\2BrightSparks\SyncBackPro\SyncBackPro.exe [210523448 2024-05-30] (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte Ltd) -> C:\Program Files\2BrightSparks\SyncBackPro\-m "Shop Web auf NAS"
Task: {24685410-0BF0-4725-BE06-86BD9D3B8160} - System32\Tasks\2BrightSparks\SyncBackProx64\DANIEL-G-ASUS-danie\SyncBackPro Sony Kamera auf One Drive => C:\Program Files\2BrightSparks\SyncBackPro\SyncBackPro.exe [210523448 2024-05-30] (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte Ltd) -> C:\Program Files\2BrightSparks\SyncBackPro\-m "Sony Kamera auf One Drive"
Task: {71F46DFC-F0EF-47EA-8514-5E9C2B2B950C} - System32\Tasks\2BrightSparks\SyncBackProx64\DANIEL-G-ASUS-danie\SyncBackPro Spiegelung Gewerbe auf Business OneDrive => C:\Program Files\2BrightSparks\SyncBackPro\SyncBackPro.exe [210523448 2024-05-30] (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte Ltd) -> C:\Program Files\2BrightSparks\SyncBackPro\-m "Spiegelung Gewerbe auf Business OneDrive"
Task: {AF34ED4B-CDDA-47B5-9E5F-0AE3456A7323} - System32\Tasks\2BrightSparks\SyncBackProx64\DANIEL-G-ASUS-danie\SyncBackPro Website Backup auf NAS => C:\Program Files\2BrightSparks\SyncBackPro\SyncBackPro.exe [210523448 2024-05-30] (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte Ltd) -> C:\Program Files\2BrightSparks\SyncBackPro\-m "Website Backup auf NAS"
Task: {973F0BA7-2057-4827-8B63-B145F51F4A77} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Keine Datei)
Task: {941E7B7D-C54B-4FC3-B503-A542FE5A19AC} - System32\Tasks\ASUS\AcPowerNotification => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe (Keine Datei)
Task: {30DE7B58-7F6B-42D6-AC96-D9257DCD9B26} - System32\Tasks\ASUS\ArmourySocketServer => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe [2025488 2021-01-22] (ASUSTeK Computer Inc. -> ASUS)
Task: {FA3C23A9-2B0D-4BD6-B315-458D3C753C96} - System32\Tasks\ASUS\ASUSUpdateTaskMachineCore1d70752ec7682d0 => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [168520 2021-02-20] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {ABDB82B2-0BC1-4653-9217-E8FB8CD8712D} - System32\Tasks\ASUS\ASUSUpdateTaskMachineUA => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [168520 2021-02-20] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {2CA4A9B2-83AF-4B6D-8BEB-9F880BCF5113} - System32\Tasks\ASUS\Framework Service => C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe [45540760 2021-01-13] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {230411DA-B163-4CFA-9DE1-7914B60F28DD} - System32\Tasks\ASUS\P508PowerAgent_sdk => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ShareFromArmouryIII\Mouse\ROG STRIX CARRY\P508PowerAgent.exe (Keine Datei)
Task: {337BFD61-94F9-4D6B-AC33-24803C0DA728} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem128.0.6537.0{29DE92B8-A7B5-429D-A5B5-690D110898C2} => C:\Program Files (x86)\Google\GoogleUpdater\128.0.6537.0\updater.exe [4623976 2024-06-13] (Google LLC -> Google LLC)
Task: {5C2D41AD-A0F6-41A2-B963-102779D7BBF7} - System32\Tasks\Lexware Datensynchronisation_DANIEL-G-ASUS_danie => C:\Program Files (x86)\Lexware\professional\2024\Lexware.Faktura.Datensynchronisation.exe [161000 2024-05-28] (Haufe-Lexware GmbH & Co. KG -> Haufe-Lexware GmbH & Co. KG)
Task: {75279E9D-5C64-435F-A157-7996DE0A1073} - System32\Tasks\LexwareAppSysOpt => C:\Program Files (x86)\Lexware\professional\2024\Haufe.Components.LxAppSysOpt.exe [39656 2024-05-26] (Haufe-Lexware GmbH & Co. KG -> Haufe-Lexware GmbH & Co. KG)
Task: {60A67B5C-3856-44B0-B717-7CC236654AD1} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28512448 2024-07-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {C0A1FC3F-D70A-4A22-A344-4A541F1EA397} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28512448 2024-07-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {19640C17-D0AE-4EAC-861F-062E7E9C1B73} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309696 2024-07-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {2FC906F0-AABA-4D9B-8C72-ACF3C6183781} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309696 2024-07-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {13343DF6-B1A8-444D-B354-6C62D9F6E709} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\operfmon.exe [169408 2024-06-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {5E1F0EC0-E75D-4467-9BBB-A3A73BB28640} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpCmdRun.exe [1678960 2024-06-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {843C9A80-75DF-4B15-873E-6CAA79E6E5B8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpCmdRun.exe [1678960 2024-06-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {33CC4759-DDA0-4F9D-8CB1-AA5DFA8F6615} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpCmdRun.exe [1678960 2024-06-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {09B5C003-9FDA-461D-ABF4-1A05BF1A2356} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpCmdRun.exe [1678960 2024-06-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {224CC6A8-156C-4F37-9B47-4F94BEE12DBD} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [673184 2024-07-06] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (Der Dateneintrag hat 6 weitere Zeichen).
Task: {CD769156-A117-4483-98C4-C0B21BC751E5} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-2782327805-1913230689-3329431176-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [673184 2024-07-06] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (Der Dateneintrag hat 6 weitere Zeichen).
Task: {97A8D805-1047-40B0-8A70-941BDA2F9920} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [33696 2024-07-06] (Mozilla Corporation -> Mozilla Foundation)
Task: {3CDD1788-2B58-4297-85EC-427C8A86875E} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1277480 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {17D44A42-52F8-4B83-B938-2597E8BF4877} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3347496 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {50AC65C2-D4CB-471D-BD09-8A6CF281C52A} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646696 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler
Task: {F0872436-BCC0-4268-A9AD-E9DAD87B05E8} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {381EBDB8-D2DA-409B-A097-51B48A567226} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {EF70EC72-95B6-43C6-B716-6089CBE16106} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {50A93B24-1DD4-4637-8479-71A54B945E70} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {532F2B14-6F80-4B6C-9B4E-0AFF4E8AEA0A} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FB27FAFF-688E-44BB-921C-07BBC225EC2C} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {648138DB-9B32-4B2C-AEE9-B3F66DBEC32F} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4209168 2024-06-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {F33E1033-CCF4-4805-BE15-8AAE344061F9} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2782327805-1913230689-3329431176-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4209168 2024-06-29] (Microsoft Corporation -> Microsoft Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Hosts: 127.0.0.1 cryptomator-vault
Tcpip\..\Interfaces\{2bf19533-b5bf-4791-95db-88d8f7e8724d}: [NameServer] 192.168.178.1
Tcpip\..\Interfaces\{309d5d73-737b-4ccf-a8bb-28bbe2c6d3f1}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{309d5d73-737b-4ccf-a8bb-28bbe2c6d3f1}: [DhcpDomain] fritz.box
Tcpip\..\Interfaces\{f608156c-5946-4206-a989-ce12309293ae}\14E64627F696461405: [DhcpNameServer] 192.168.36.63
Tcpip\..\Interfaces\{f608156c-5946-4206-a989-ce12309293ae}\64259445A51224F687026353931302341626C656023444: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{f608156c-5946-4206-a989-ce12309293ae}\64259445A51224F687026353931302341626C656023444: [DhcpDomain] fritz.box
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\danie\AppData\Local\Microsoft\Edge\User Data\Default [2024-07-09]
Edge Notifications: Default -> hxxps://business.facebook.com; hxxps://crm.zoho.com; hxxps://dashboard.tawk.to; hxxps://meet.google.com; hxxps://teams.microsoft.com; hxxps://web.prod.ndident.com; hxxps://www.adac.de; hxxps://www.facebook.com; hxxps://www.instagram.com
Edge Extension: (ColorZilla) - C:\Users\danie\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bhlhnicpbhignbdhedgjhgdocnmhomnp [2024-06-11]
Edge Extension: (DuckDuckGo) - C:\Users\danie\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\caoacbimdbbljakfhgikoodekdnlcgpk [2024-06-15]
Edge Extension: (lock) - C:\Users\danie\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\dppgmdbiimibapkepcbdbmkaabgiofem [2024-06-21]
Edge Extension: (MyJDownloader Browser Erweiterung) - C:\Users\danie\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fbcohnmimjicjdomonkcbcpbpnhggkip [2023-01-15]
Edge Extension: (Ghostery Tracker- & Werbeblocker | Datenschutz AdBlocker) - C:\Users\danie\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fclbdkbhjlgkbpfldjodgjncejkkjcme [2024-06-29]
Edge Extension: (NordVPN - the Fastest VPN proxy for privacy) - C:\Users\danie\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fphgeikpdcdcheaochkhldmnfblfogla [2024-06-21]
Edge Extension: (Google Docs Offline) - C:\Users\danie\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-11]
Edge Extension: (ScriptBlock) - C:\Users\danie\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hcdjknjpbnhdoabbngpmfekaecnpajba [2021-02-21]
Edge Extension: (MyJDownloader Browser Erweiterung) - C:\Users\danie\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ieapabanbplofifeaapjocpaogdhncdd [2021-07-04]
Edge Extension: (Edge relevant text changes) - C:\Users\danie\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-28]
Edge Extension: (Microsoft Power Automate) - C:\Users\danie\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\kagpabjoboikccfdghpdlaaopmgpgfdc [2024-03-13]
Edge Extension: ([DEPRECATED] Tag Assistant Legacy) - C:\Users\danie\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\kejbdjndbnbjgmefkgdddjlbokphdefk [2023-10-18]
Edge Extension: (Chrome-Erweiterung für Google Notizen) - C:\Users\danie\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\lpcaedmchfhocbbapmcbpinfpgnhiddi [2024-07-08]
Edge Extension: (Total Script Blocker) - C:\Users\danie\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\oakdjiehbhihbklollmmmkhfilbklgkf [2023-01-15]
Edge Extension: (uBlock Origin) - C:\Users\danie\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\odfafepnkmbhccpbejgmiehpchacaeak [2024-04-11]
Edge Extension: (OneNote Web Clipper) - C:\Users\danie\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\oogbnpmeihfgnccdnmmlgicknopghhma [2023-06-27]
Edge Extension: (Live color picker) - C:\Users\danie\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\pkdpnbbbflbafkdifkgpifolofjhdeca [2024-03-28]
Edge HKU\S-1-5-21-2782327805-1913230689-3329431176-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [kagpabjoboikccfdghpdlaaopmgpgfdc]
FireFox:
========
FF DefaultProfile: ks8urf0i.default
FF ProfilePath: C:\Users\danie\AppData\Roaming\Mozilla\Firefox\Profiles\ks8urf0i.default [2021-04-06]
FF ProfilePath: C:\Users\danie\AppData\Roaming\Mozilla\Firefox\Profiles\7lqen0pg.default-release [2024-03-07]
FF Extension: (True Key™ by McAfee) - C:\Users\danie\AppData\Roaming\Mozilla\Firefox\Profiles\7lqen0pg.default-release\Extensions\@true-key.xpi [2023-01-21] [UpdateUrl:hxxps://downloads.truekey.com/firefox/update.json]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.14 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.19 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-12-23] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.cpdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Editor\plugins\npFoxitPDFEditorPlugin.dll [Keine Datei]
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PDF Editor\plugins\npFoxitPDFEditorPlugin.dll [Keine Datei]
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Editor\plugins\npFoxitPDFEditorPlugin.dll [Keine Datei]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2024-05-23] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2024-05-23] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2024-05-23] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2024-05-23] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2024-05-23] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-04-05] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\danie\AppData\Local\Google\Chrome\User Data\Default [2024-07-09]
CHR Extension: (lock) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Default\Extensions\aeblfdkhhhdcdjpifhhbdiojplfjncoa [2024-06-22]
CHR Extension: (ColorZilla) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhlhnicpbhignbdhedgjhgdocnmhomnp [2024-05-29]
CHR Extension: (DuckDuckGo) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkdgflcldnnnapblkhphbgpggdiikppg [2024-06-14]
CHR Extension: (uBlock Origin) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2024-05-24]
CHR Extension: (change-language) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cofdbpoegempjloogbagkncekinflcnj [2024-07-07]
CHR Extension: (True Key™ by McAfee) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cpaibbcbodhimfnjnakiidgbpiehfgci [2024-06-06]
CHR Extension: (MyJDownloader Browser Erweiterung) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbcohnmimjicjdomonkcbcpbpnhggkip [2021-06-28]
CHR Extension: (NordVPN - VPN proxy for privacy and security) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjoaledfpmneenckfbpdfhkmimnjocfa [2024-06-29]
CHR Extension: (Google Docs Offline) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-21]
CHR Extension: (OneNote Web Clipper) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gojbdfnpnhogfdgjbigejoaolejmgdhk [2023-06-06]
CHR Extension: (ScriptBlock) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Default\Extensions\hcdjknjpbnhdoabbngpmfekaecnpajba [2021-02-20]
CHR Extension: (Audio Verbinden) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihiafjkopgiakbmihgoieodihjcblfbk [2021-02-20]
CHR Extension: ([DEPRECATED] Tag Assistant Legacy) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Default\Extensions\kejbdjndbnbjgmefkgdddjlbokphdefk [2023-10-13]
CHR Extension: (Microsoft Power Automate) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ljglajjnnkapghbckkcmodicjhacbfhk [2024-02-24]
CHR Extension: (Anwendungs-Launcher für Drive (von Google)) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2023-08-23]
CHR Extension: (Chrome-Erweiterung für Google Notizen) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lpcaedmchfhocbbapmcbpinfpgnhiddi [2024-07-08]
CHR Extension: (Ghostery Tracker- & Werbeblocker | Datenschutz AdBlocker) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2024-07-07]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-20]
CHR Extension: (Video Cutter) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nodkcjollmmjidmcnhloaoahmciabnai [2021-02-20]
CHR Extension: (Audio Cutter) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Default\Extensions\plimnkafgoiilijmlbnfoafihjjijbfp [2021-02-20]
CHR Profile: C:\Users\danie\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-09-14]
CHR Profile: C:\Users\danie\AppData\Local\Google\Chrome\User Data\Profile 1 [2024-06-19]
CHR Notifications: Profile 1 -> hxxps://business.facebook.com; hxxps://www.facebook.com; hxxps://www.youtube.com
CHR Extension: (lock) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aeblfdkhhhdcdjpifhhbdiojplfjncoa [2024-06-19]
CHR Extension: (Google Docs Offline) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-06-19]
CHR Extension: (Microsoft Power Automate) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ljglajjnnkapghbckkcmodicjhacbfhk [2024-02-23]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\danie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-07-12]
CHR Profile: C:\Users\danie\AppData\Local\Google\Chrome\User Data\System Profile [2024-06-29]
CHR HKU\S-1-5-21-2782327805-1913230689-3329431176-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [ljglajjnnkapghbckkcmodicjhacbfhk]
CHR HKU\S-1-5-21-2782327805-1913230689-3329431176-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
==================== Dienste (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-09-20] (Adobe Inc. -> Adobe Inc.)
R2 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [3910472 2024-02-07] (AnyDesk Software GmbH -> AnyDesk Software GmbH)
R2 ArmouryCrateService; C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe [382112 2022-08-18] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.02.32\atkexComSvc.exe [907112 2023-12-29] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
S2 asus; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [168520 2021-02-20] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R2 AsusCertService; C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe [181576 2022-08-18] (ASUSTeK Computer Inc. -> ASUSTek COMPUTER INC.)
R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\2.03.20\AsusFanControlService.exe [1722216 2023-12-29] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
S3 asusm; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [168520 2021-02-20] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S2 AsusUpdateCheck; C:\Windows\System32\AsusUpdateCheck.exe [838760 2024-07-09] (ASUSTeK Computer Inc. -> )
R2 avmike; C:\Program Files\FRITZ!Fernzugang\avmike.exe [337824 2012-11-28] (AVM Computersysteme Vertriebs GmbH -> AVM Berlin)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [282112 2012-10-26] (Brother Industries, Ltd.) [Datei ist nicht signiert]
R2 certsrv; C:\Program Files\FRITZ!Fernzugang\certsrv.exe [143776 2012-11-28] (AVM Computersysteme Vertriebs GmbH -> AVM Berlin)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14023752 2024-07-01] (Microsoft Corporation -> Microsoft Corporation)
R2 DevoloNetworkService; C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe [5751024 2022-03-30] (devolo AG -> devolo AG)
S3 ElfoService; C:\Program Files (x86)\ElsterFormular Update Service\bin\elfoService.exe [1113864 2020-06-03] (Bayerisches Landesamt fuer Steuern -> )
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\24.116.0609.0005\FileSyncHelper.exe [3518992 2024-06-29] (Microsoft Corporation -> Microsoft Corporation)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [230352 2023-09-08] (HP Inc. -> HP Inc.)
R2 iked; C:\Program Files\ShrewSoft\VPN Client\iked.exe [1127736 2013-07-01] (Shrew Soft Inc -> )
R2 ipsecd; C:\Program Files\ShrewSoft\VPN Client\ipsecd.exe [810808 2013-07-01] (Shrew Soft Inc -> )
R2 Lexware API Service; C:\Program Files (x86)\Lexware\API Service\Lexware.Faktura.Api.HotChocolateHost.exe [115713208 2024-05-26] (Haufe-Lexware GmbH & Co. KG -> Haufe-Lexware GmbH & Co. KG)
R2 Lexware internal API Service; C:\Program Files (x86)\Lexware\internal API Service\Lexware.Faktura.Api.InternalApi.exe [121576 2024-05-26] (Haufe-Lexware GmbH & Co. KG -> Haufe Group)
R2 Lexware_Update_Service; C:\Program Files (x86)\Lexware\Update Service\Hmg.InstallationService.Service.exe [78568 2023-10-11] (Haufe-Lexware GmbH & Co. KG -> Haufe-Lexware GmbH & Co. KG)
R2 LightingService; C:\Program Files (x86)\LightingService\LightingService.exe [4799336 2023-09-13] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
R2 MailStoreServer; C:\Program Files (x86)\MailStore\MailStore Server\MailStoreServer_x64.exe [481264 2024-06-10] (MailStore Software GmbH -> MailStore Software GmbH)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpDefenderCoreService.exe [1505416 2024-06-05] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 nordsec-threatprotection-service; C:\Program Files\NordVPN\NordSec ThreatProtection\nordsec-threatprotection-service.exe [320088 2023-09-25] (nordvpn s.a. -> nordvpn S.A.)
R2 NordUpdaterService; C:\Program Files\NordUpdater\NordUpdateService.exe [297848 2022-12-21] (nordvpn s.a. -> nordvpn S.A.)
R2 nordvpn-service; C:\Program Files\NordVPN\nordvpn-service.exe [263256 2023-09-25] (nordvpn s.a. -> nordvpn S.A.)
R2 nwtsrv; C:\Program Files\FRITZ!Fernzugang\nwtsrv.exe [191328 2013-06-10] (AVM Computersysteme Vertriebs GmbH -> AVM Berlin)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\24.116.0609.0005\OneDriveUpdaterService.exe [3858464 2024-06-29] (Microsoft Corporation -> Microsoft Corporation)
R2 PDF24; C:\Program Files\PDF24\pdf24.exe [645976 2024-06-06] (Geek Software GmbH -> geek software GmbH)
R2 PMBDeviceInfoProvider; C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [493544 2018-12-21] (Sony Imaging Products & Solutions Inc. -> Sony Corporation)
R2 ROG Live Service; C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe [1665648 2023-07-25] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [522200 2024-04-24] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 SonosLibraryService; C:\Program Files (x86)\SonosV2\SonosLibraryService.exe [27648 2023-09-12] () [Datei ist nicht signiert]
R2 SyncBackProSchedulesMonitor; C:\Program Files\2BrightSparks\SyncBackPro\SchedulesMonitor.exe [5512944 2024-05-30] (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte Ltd)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [16463160 2022-11-23] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 UIFlowAgentLauncherService; C:\Program Files (x86)\Power Automate Desktop\Microsoft.Flow.RPA.LauncherService.exe [30240 2024-01-12] (Microsoft Corporation -> Microsoft Corporation)
R2 UIFlowLogShipper; C:\Program Files (x86)\Power Automate Desktop\Microsoft.Flow.RPA.LogShipper.exe [26656 2024-01-12] (Microsoft Corporation -> Microsoft Corporation)
R2 UIFlowService; C:\Program Files (x86)\Power Automate Desktop\UIFlowService.exe [46624 2024-01-12] (Microsoft Corporation -> Microsoft Corporation)
R2 UIFlowUpdateService; C:\Program Files (x86)\Power Automate Desktop\Microsoft.Flow.RPA.UpdateService.exe [43040 2024-01-12] (Microsoft Corporation -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\NisSrv.exe [3236728 2024-06-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MsMpEng.exe [133704 2024-06-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinFsp.Launcher; C:\Program Files (x86)\WinFsp\SxS\sxs.20240621T172454Z\bin\launcher-x64.exe [34592 2023-03-16] (NAVIMATICS LLC -> Navimatics LLC)
R2 WireGuardManager; C:\Program Files\WireGuard\wireguard.exe [8185648 2021-12-22] (WireGuard LLC -> WireGuard LLC)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_7e5fd280efaa5445\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_7e5fd280efaa5445\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Treiber (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R1 Asusgio2; C:\Windows\system32\drivers\AsIO2.sys [33832 2019-04-09] (ASUSTeK Computer Inc. -> )
R1 Asusgio3; C:\Windows\system32\drivers\AsIO3.sys [43168 2022-08-18] (ASUSTeK Computer Inc. -> )
R1 avm_nwim; C:\Windows\system32\DRIVERS\avmnwim.sys [396088 2017-03-17] (WDKTestCert shuebner,130916460956458304 -> AVM)
S3 BrSerIb; C:\Windows\system32\DRIVERS\BrSerIb.sys [95344 2014-06-06] (Brother Industries, Ltd. -> Brother Industries Ltd.)
S3 BrUsbSIb; C:\Windows\system32\DRIVERS\BrUsbSIb.sys [21872 2014-06-06] (Brother Industries, Ltd. -> Brother Industries Ltd.)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R1 dokan1; C:\Windows\System32\DRIVERS\dokan1.sys [385528 2021-05-31] (Microsoft Windows Hardware Compatibility Publisher -> Dokan Project)
R1 EneTechIo; C:\Windows\system32\drivers\ene.sys [20992 2020-05-12] (Microsoft Windows Hardware Compatibility Publisher -> )
R1 GLCKIO2; C:\Windows\system32\drivers\GLCKIO2.sys [29368 2019-04-24] (ASUSTeK Computer Inc. -> )
R1 googledrivefs31357; C:\Windows\System32\DriverStore\FileRepository\googledrivefs31357.inf_amd64_a8bf31a168cf7d00\googledrivefs31357.sys [384712 2023-11-01] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [17424 2020-01-19] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
R2 NDivert; C:\Program Files\NordVPN\7.25.5.0\Drivers\NDivert.sys [131472 2024-06-05] (nordvpn s.a. -> Nordvpn S.A.)
R1 nordlwf; C:\Windows\system32\DRIVERS\nordlwf.sys [44928 2024-05-29] (nordvpn s.a. -> TEFINCOM S.A.)
R2 NPF_devolo; C:\Windows\sysWOW64\drivers\npf_devolo.sys [36496 2022-03-30] (devolo AG -> Riverbed Technology, Inc.)
R3 NvModuleTracker; C:\Windows\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_ea6cec41fc5b2a8b\NvModuleTracker.sys [47240 2024-04-03] (NVIDIA Corporation -> NVIDIA Corporation)
R3 ovpn-dco; C:\Windows\System32\drivers\ovpn-dco.sys [91584 2024-06-05] (WDKTestCert lev,133391533294737317 -> OpenVPN, Inc)
R3 rtwlane_13; C:\Windows\System32\drivers\rtwlane_13.sys [3717120 2019-12-07] (Microsoft Windows -> Realtek Semiconductor Corporation)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\Windows\System32\Drivers\ss_conn_usb_driver2.sys [50720 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 tapnordvpn; C:\Windows\System32\drivers\tapnordvpn.sys [49744 2024-05-29] (nordvpn s.a. -> The OpenVPN Project)
S3 usbscan; C:\Windows\system32\DRIVERS\usbscan.sys [49152 2021-02-20] (Microsoft Corporation) [Datei ist nicht signiert]
R1 veracrypt; C:\Windows\System32\drivers\veracrypt.sys [831616 2021-02-20] (IDRIX SARL -> IDRIX)
R1 vflt; C:\Windows\system32\DRIVERS\vfilter.sys [24064 2013-07-01] (Microsoft Windows Hardware Compatibility Publisher -> Shrew Soft Inc)
S3 vnet; C:\Windows\System32\drivers\virtualnet.sys [17408 2013-07-01] (Microsoft Windows Hardware Compatibility Publisher -> Shrew Soft Inc)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [22080 2024-06-05] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
R3 WDC_SAM; C:\Windows\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [602520 2024-06-05] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105880 2024-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 WinFsp+20240621T172454Z; C:\Program Files (x86)\WinFsp\SxS\sxs.20240621T172454Z\bin\winfsp-x64.sys [168512 2023-03-16] (Microsoft Windows Hardware Compatibility Publisher -> Navimatics LLC)
S3 WireGuard; C:\Windows\System32\drivers\wireguard.sys [489368 2023-09-23] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat (erstellte) (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2024-07-09 15:35 - 2024-07-09 15:36 - 000059044 _____ C:\Users\danie\Desktop\FRST.txt
2024-07-09 15:34 - 2024-07-09 15:35 - 002395648 _____ (Farbar) C:\Users\danie\Desktop\FRST64.exe
2024-07-07 21:18 - 2024-07-09 14:47 - 000000000 ____D C:\Users\danie\AppData\Roaming\Jabra Direct
2024-07-07 21:09 - 2024-07-07 21:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Jabra
2024-07-07 19:14 - 2024-07-07 19:14 - 000001384 _____ C:\Users\Public\Desktop\MailStore Client.lnk
2024-07-07 19:14 - 2024-07-07 19:14 - 000001343 _____ C:\Users\Public\Desktop\Konfiguration des MailStore Server-Dienstes.lnk
2024-07-07 19:14 - 2024-07-07 19:14 - 000001071 _____ C:\Users\Public\Desktop\MailStore Client auf weiteren Rechnern installieren.lnk
2024-07-07 19:14 - 2024-07-07 19:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MailStore Server
2024-07-06 16:31 - 2024-07-08 08:26 - 000000000 ____D C:\Program Files\Mozilla Firefox
2024-06-26 23:35 - 2024-06-26 23:35 - 000001951 _____ C:\Users\danie\Desktop\Zoom Workplace.lnk
2024-06-26 23:35 - 2024-06-26 23:35 - 000000000 ____D C:\Users\danie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2024-06-26 22:53 - 2024-06-26 22:53 - 000000000 ____D C:\Windows\system32\compatrel
2024-06-26 10:53 - 2024-06-26 10:53 - 000021724 _____ C:\Windows\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-06-26 10:53 - 2024-06-26 10:53 - 000021724 _____ C:\Windows\system32\IntegratedServicesRegionPolicySet.json
2024-06-26 10:48 - 2024-06-26 10:48 - 000000000 ___HD C:\$WinREAgent
2024-06-23 11:51 - 2024-06-23 11:51 - 000000000 ____D C:\ProgramData\ICS-OpenSSL
2024-06-21 19:28 - 2024-06-21 19:28 - 000001881 _____ C:\Users\danie\Desktop\IrfanView 64 Thumbnails.lnk
2024-06-21 19:28 - 2024-06-21 19:28 - 000001007 _____ C:\Users\danie\Desktop\IrfanView 64.lnk
2024-06-21 19:28 - 2024-06-21 19:28 - 000000000 ____D C:\Users\danie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IrfanView
2024-06-21 19:27 - 2024-03-26 21:11 - 000059928 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2024-06-21 19:27 - 2024-03-26 19:21 - 000060240 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvhci.sys
2024-06-21 19:24 - 2024-06-21 19:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cryptomator
2024-06-21 19:24 - 2024-06-21 19:24 - 000000000 ____D C:\Program Files\Cryptomator
2024-06-21 19:24 - 2024-06-21 19:24 - 000000000 ____D C:\Program Files (x86)\WinFsp
2024-06-21 19:19 - 2024-06-22 02:10 - 000000000 ____D C:\Users\danie\AppData\Local\NordVPN
2024-06-21 19:19 - 2024-06-21 19:19 - 000000000 ____D C:\Users\danie\AppData\Local\ToastNotificationManagerCompat
2024-06-21 18:47 - 2024-06-21 18:47 - 000001736 _____ C:\Users\Public\Desktop\NordVPN.lnk
2024-06-21 18:47 - 2024-06-21 18:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NordSec
2024-06-21 18:47 - 2024-06-05 14:28 - 000091584 _____ (OpenVPN, Inc) C:\Windows\system32\Drivers\ovpn-dco.sys
2024-06-21 18:47 - 2024-05-29 15:08 - 000049744 _____ (The OpenVPN Project) C:\Windows\system32\Drivers\tapnordvpn.sys
2024-06-21 18:47 - 2024-05-29 14:03 - 000044928 _____ (TEFINCOM S.A.) C:\Windows\system32\Drivers\nordlwf.sys
2024-06-21 18:46 - 2024-06-21 20:14 - 000000000 ____D C:\ProgramData\NordVPN
2024-06-21 18:46 - 2024-06-21 18:47 - 000000000 ____D C:\Program Files\NordVPN
2024-06-21 18:44 - 2024-06-21 18:44 - 000000000 ____D C:\ProgramData\NordUpdater
2024-06-21 18:44 - 2024-06-21 18:44 - 000000000 ____D C:\Program Files\NordUpdater
2024-06-21 18:44 - 2024-03-19 13:12 - 000041024 _____ (TEFINCOM S.A.) C:\Windows\Nord.Setup.dll
2024-06-18 18:10 - 2024-06-29 18:56 - 000000000 ____D C:\Users\danie\AppData\Roaming\Kodi
2024-06-18 18:09 - 2024-06-18 18:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kodi
2024-06-18 18:09 - 2024-06-18 18:09 - 000000000 ____D C:\Program Files\Kodi
2024-06-11 16:12 - 2024-06-11 16:12 - 000001667 _____ C:\Users\Public\Desktop\PDF24 Toolbox.lnk
2024-06-11 16:12 - 2024-06-11 16:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF24
2024-06-11 16:12 - 2024-06-11 16:12 - 000000000 ____D C:\Program Files\PDF24
==================== Ein Monat (geänderte) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2024-07-09 15:36 - 2022-09-04 11:17 - 000000000 ____D C:\FRST
2024-07-09 15:32 - 2021-02-20 08:13 - 000000000 ____D C:\Windows\system32\SleepStudy
2024-07-09 15:04 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-07-09 15:01 - 2021-02-20 08:31 - 000000000 ___SD C:\Users\danie\AppData\Roaming\Microsoft\Credentials
2024-07-09 14:53 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2024-07-09 14:52 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-07-09 14:50 - 2021-02-20 08:19 - 001728072 _____ C:\Windows\system32\PerfStringBackup.INI
2024-07-09 14:50 - 2019-12-07 16:51 - 000745048 _____ C:\Windows\system32\perfh007.dat
2024-07-09 14:50 - 2019-12-07 16:51 - 000151036 _____ C:\Windows\system32\perfc007.dat
2024-07-09 14:50 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2024-07-09 14:46 - 2024-03-11 12:30 - 000000000 ____D C:\Users\danie\AppData\Roaming\Canva
2024-07-09 14:46 - 2023-10-05 20:51 - 000000000 ____D C:\Users\danie\AppData\Roaming\1Password
2024-07-09 14:46 - 2021-10-25 17:28 - 000000000 ____D C:\Users\danie\AppData\Roaming\Microsoft\Teams
2024-07-09 14:45 - 2022-09-05 10:06 - 000000228 _____ C:\SetMatrixLEDScript.xml
2024-07-09 14:45 - 2022-09-05 10:06 - 000000200 _____ C:\QueryAllDevice.xml
2024-07-09 14:45 - 2022-09-05 10:06 - 000000066 _____ C:\GetDeviceCap.xml
2024-07-09 14:45 - 2022-08-24 09:12 - 000004918 _____ C:\GetDeviceStatus.xml
2024-07-09 14:45 - 2021-02-21 15:48 - 000000000 ____D C:\Users\danie\AppData\Local\CrashDumps
2024-07-09 14:45 - 2021-02-20 08:13 - 000000000 ____D C:\ProgramData\NVIDIA
2024-07-09 14:43 - 2022-11-26 14:29 - 000000000 ____D C:\Program Files\TeamViewer
2024-07-09 14:43 - 2021-10-16 14:22 - 000000000 ____D C:\ProgramData\firebird
2024-07-09 14:43 - 2021-02-20 08:13 - 000877320 _____ C:\Windows\system32\wpbbin.exe
2024-07-09 14:43 - 2021-02-20 08:13 - 000838760 _____ C:\Windows\system32\AsusUpdateCheck.exe
2024-07-09 14:43 - 2021-02-20 08:13 - 000008192 ___SH C:\DumpStack.log.tmp
2024-07-09 14:43 - 2021-02-20 08:13 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2024-07-09 14:43 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ServiceState
2024-07-09 14:33 - 2021-02-20 12:31 - 000000000 ____D C:\Users\danie\AppData\Roaming\Microsoft\Excel
2024-07-09 13:12 - 2021-02-20 13:24 - 000000000 ____D C:\Users\danie\AppData\Roaming\vlc
2024-07-09 11:46 - 2021-02-20 10:36 - 000015911 _____ C:\Windows\BRRBCOM.INI
2024-07-09 10:36 - 2023-06-06 22:13 - 000004090 _____ C:\Windows\system32\Tasks\LexwareAppSysOpt
2024-07-09 10:36 - 2021-02-20 11:50 - 000000000 ____D C:\ProgramData\Lexware
2024-07-09 09:38 - 2021-02-20 12:30 - 000000000 ____D C:\Users\danie\AppData\Roaming\Microsoft\Word
2024-07-09 09:21 - 2024-05-22 19:52 - 000002311 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SteuerSparErklärung 2024.lnk
2024-07-09 09:21 - 2024-05-22 19:52 - 000002254 _____ C:\Users\Public\Desktop\SteuerSparErklärung 2024.lnk
2024-07-09 09:21 - 2024-05-22 19:52 - 000002226 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steuerwissen 2023-2024.lnk
2024-07-09 09:21 - 2024-05-22 19:52 - 000002214 _____ C:\Users\Public\Desktop\Steuerwissen 2023-2024.lnk
2024-07-09 09:21 - 2024-05-22 19:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SteuerSparErklärung 2024
2024-07-09 07:16 - 2021-02-20 08:39 - 000000000 ____D C:\Program Files\ASUS
2024-07-08 10:38 - 2021-02-23 22:37 - 000000000 ____D C:\Users\danie\AppData\Local\D3DSCache
2024-07-08 08:30 - 2021-04-06 21:26 - 000000000 ____D C:\Users\danie\AppData\Local\1Password
2024-07-08 08:30 - 2021-02-20 08:31 - 000000000 ____D C:\Users\danie
2024-07-08 08:26 - 2021-09-08 15:59 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2024-07-08 08:26 - 2021-04-06 19:36 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-07-08 08:26 - 2019-12-07 11:03 - 001572864 _____ C:\Windows\system32\config\BBI
2024-07-08 07:53 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2024-07-07 21:18 - 2021-10-25 17:33 - 000000000 ____D C:\Users\danie\AppData\Roaming\JabraSDK
2024-07-07 21:09 - 2021-10-25 17:23 - 000000000 ____D C:\Program Files (x86)\Jabra
2024-07-07 21:09 - 2021-02-20 08:37 - 000000000 ____D C:\ProgramData\Package Cache
2024-07-07 20:08 - 2021-02-20 10:59 - 000000000 ____D C:\Users\danie\AppData\Roaming\FileZilla
2024-07-07 19:41 - 2022-12-16 12:42 - 000000000 ____D C:\Program Files (x86)\SQL Anywhere 17
2024-07-07 19:41 - 2021-02-20 11:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lexware
2024-07-07 19:40 - 2021-08-14 23:10 - 000000000 ____D C:\Program Files (x86)\Lexware
2024-07-07 19:14 - 2021-02-20 12:41 - 000000000 ____D C:\Users\danie\AppData\Local\MailStore Client Launcher
2024-07-07 17:19 - 2021-02-28 18:40 - 000000128 _____ C:\Users\danie\AppData\Local\PUTTY.RND
2024-07-06 23:02 - 2021-04-06 19:36 - 000000965 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-07-04 05:00 - 2021-02-20 08:14 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-07-01 05:13 - 2021-02-20 12:02 - 000000000 ____D C:\Program Files\Microsoft Office
2024-06-29 04:59 - 2021-12-11 19:00 - 000003596 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2782327805-1913230689-3329431176-1001
2024-06-29 04:59 - 2021-06-20 11:00 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2024-06-29 04:59 - 2021-06-20 11:00 - 000002108 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-06-26 23:37 - 2019-12-07 16:52 - 000000000 ____D C:\Windows\system32\FxsTmp
2024-06-26 23:35 - 2021-02-20 13:26 - 000000000 ____D C:\Users\danie\AppData\Roaming\Zoom
2024-06-26 22:56 - 2021-02-20 08:13 - 000555424 _____ C:\Windows\system32\FNTCACHE.DAT
2024-06-26 22:53 - 2023-12-07 12:35 - 000000000 ____D C:\Windows\InboxApps
2024-06-26 22:53 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2024-06-26 22:53 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2024-06-26 22:53 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2024-06-26 22:53 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2024-06-26 22:53 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2024-06-26 22:53 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Dism
2024-06-26 22:53 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\appraiser
2024-06-26 22:53 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellExperiences
2024-06-26 22:53 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellComponents
2024-06-26 22:53 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2024-06-26 22:53 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2024-06-26 21:36 - 2021-12-15 02:27 - 000000000 ____D C:\Windows\SystemTemp
2024-06-26 21:36 - 2021-02-20 09:13 - 000002199 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-06-26 10:53 - 2021-02-20 08:17 - 003016192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2024-06-25 21:56 - 2022-10-19 15:00 - 000000000 ____D C:\Users\danie\AppData\Local\JDownloader 2.0
2024-06-24 12:23 - 2021-02-20 12:17 - 000000000 ____D C:\Users\danie\AppData\Roaming\Microsoft\Outlook
2024-06-23 11:49 - 2023-10-01 10:58 - 000001128 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SyncBackPro.lnk
2024-06-23 11:49 - 2023-10-01 10:58 - 000000906 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SyncBackPro (Not Elevated).lnk
2024-06-21 19:27 - 2022-10-04 09:34 - 000001407 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2024-06-21 19:27 - 2022-10-04 09:33 - 000004308 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-06-21 19:27 - 2022-10-04 09:33 - 000003976 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-06-21 19:27 - 2022-10-04 09:33 - 000003940 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-06-21 19:27 - 2022-10-04 09:33 - 000003894 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-06-21 19:27 - 2022-10-04 09:33 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-06-21 19:27 - 2022-10-04 09:33 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-06-21 19:27 - 2022-10-04 09:33 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-06-21 19:27 - 2022-10-04 09:33 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-06-21 19:27 - 2022-10-04 09:33 - 000003654 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-06-21 19:27 - 2021-02-20 08:13 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2024-06-21 19:27 - 2021-02-20 08:13 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2024-06-21 19:27 - 2021-02-20 08:13 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2024-06-21 19:22 - 2021-02-20 10:51 - 000000000 ____D C:\Users\danie\AppData\Roaming\Cryptomator
2024-06-21 19:15 - 2024-01-03 10:10 - 000001356 _____ C:\Users\danie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\1Password.lnk
2024-06-21 11:20 - 2021-02-20 08:33 - 000000000 ____D C:\Users\danie\AppData\Local\Packages
2024-06-21 01:36 - 2022-09-23 13:13 - 000002126 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2024-06-21 01:36 - 2022-09-23 13:13 - 000002008 _____ C:\Users\danie\Desktop\Google Drive.lnk
2024-06-20 16:12 - 2022-09-25 12:17 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-06-13 18:28 - 2022-10-18 12:40 - 000000000 ____D C:\Users\danie\AppData\Roaming\Bitwarden
2024-06-11 22:53 - 2022-10-04 09:33 - 002900520 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2024-06-11 22:52 - 2022-10-04 09:33 - 002231336 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2024-06-11 22:52 - 2022-10-04 09:33 - 001296936 _____ (NVIDIA Corporation) C:\Windows\system32\NvRtmpStreamer64.dll
2024-06-11 22:24 - 2022-10-04 09:33 - 000086568 _____ C:\Windows\system32\FvSDK_x64.dll
2024-06-11 22:24 - 2022-10-04 09:33 - 000075304 _____ C:\Windows\SysWOW64\FvSDK_x86.dll
2024-06-11 21:54 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\setup
2024-06-11 21:54 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\setup
2024-06-11 19:29 - 2021-02-20 08:42 - 000000000 ____D C:\Windows\system32\MRT
2024-06-11 19:25 - 2021-02-20 08:42 - 199048176 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2024-06-11 18:31 - 2022-10-04 09:33 - 000001951 _____ C:\Windows\NvContainerRecovery.bat
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========
2023-09-21 11:19 - 2023-09-21 17:20 - 000000099 _____ () C:\ProgramData\101280_mgr.dat
2022-10-05 09:50 - 2023-11-14 20:30 - 000000128 _____ () C:\Users\danie\AppData\Roaming\PUTTY.RND
2021-02-28 18:40 - 2024-07-07 17:19 - 000000128 _____ () C:\Users\danie\AppData\Local\PUTTY.RND
2022-01-31 12:33 - 2022-01-31 12:33 - 000001662 _____ () C:\Users\danie\AppData\Local\recently-used.xbel
==================== SigCheck ============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
==================== Ende von FRST.txt ========================
Vielen Dank vorab! Daniel |
| Themen zu Windows 10 - Rechner verhält sich merkwürdig |
| adobe, computer, defender, desktop, google, help, home, internet, mozilla, performance, proxy, prozesse, realtek, registry, rundll, scan, schutz, security, server, services.exe, software, starten, svchost.exe, system, windows |
Baum-Darstellung