Zurück   Trojaner-Board > Archiv - Kein Posten möglich > Mülltonne
GData Phishing erkannt beim Öffnen eines Browsers

GData Phishing erkannt beim Öffnen eines Browsers


Mülltonne: GData Phishing erkannt beim Öffnen eines Browsers

Windows 7 Beiträge, die gegen unsere Regeln verstoßen haben, solche, die die Welt nicht braucht oder sonstiger Müll landet hier in der Mülltonne...

 
Alt 29.08.2024, 20:12   #1
emres.
 
GData Phishing erkannt beim Öffnen eines Browsers - Standard

GData Phishing erkannt beim Öffnen eines Browsers


Sobald ich unter Windows 11 irgendeinen Browser öffne, erhalte ich folgende Meldung:

Phishing beim Öffnen von Web-Seiten gefunden.

Adresse: https://edisciplinas.usp.br/pluginfile.php/5944413/mod_folder/content/0/Textos/Goertz%20and%20Mahoney%2C%20A%20Tale%20of%20Two%20Cultures%20-%20Qualitative%20and%20Quantitative%20Research%20in%20the%20Social%20Sciences.pdf?forcedownload=1
Status: Der Zugriff wurde verweigert.

Alt 29.08.2024, 20:26   #2
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
GData Phishing erkannt beim Öffnen eines Browsers - Standard

GData Phishing erkannt beim Öffnen eines Browsers


Hinweise für Hilfesuchende gelesen?
-> FRST-Logs erstellen und in CODE-Tags posten
__________________

__________________
Alt 03.09.2024, 00:09   #3
emres.
 
GData Phishing erkannt beim Öffnen eines Browsers - Standard

GData Phishing erkannt beim Öffnen eines Browsers


Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 22-08.2024
durchgeführt von emres (Administrator) auf EMRE-LEGION-7 (LENOVO 82N6) (03-09-2024 00:58:53)
Gestartet von C:\Users\emres\Downloads\FRST0824\FRST64 (3).exe
Geladene Profile: emres
Plattform: Microsoft Windows 11 Home Version 23H2 22631.4037 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: Chrome
Start-Modus: Normal

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(0A0B0503-04C2-4CCF-9BC2-4F164DC80FEE -> Advanced Micro Devices, Inc.) C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.22.20073.0_x64__0a9344xs7nr4m\radeonsoftware\AMDRSServ.exe
(A-Volute SAS -> A-Volute) C:\Users\emres\AppData\Local\NhNotifSys\nahimic\nahimicNotifSys.exe
(Brother Industries, Ltd. -> Brother Industries, Ltd.) C:\Program Files (x86)\Brother\ES Status Monitor\ptnmwnd.exe
(Brother Industries, Ltd. -> Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
(Brother Industries, Ltd. -> Brother Industries, Ltd.) C:\Users\emres\Downloads\bsq16a\x64\ptsweep_x64.exe
(C:\Program Files (x86)\Acronis\Agent\aakore.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Acronis\Agent\bin\bckp_amgr.exe
(C:\Program Files (x86)\Acronis\Agent\aakore.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Acronis\Agent\bin\monitoring-mini.exe
(C:\Program Files (x86)\Acronis\Agent\aakore.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Acronis\Agent\bin\task-manager.exe
(C:\Program Files (x86)\Acronis\Agent\aakore.exe ->) (Acronis International GmbH -> Acronis International GmbH.) C:\Program Files (x86)\Acronis\Agent\bin\adp-agent.exe
(C:\Program Files (x86)\Acronis\Agent\aakore.exe ->) (Acronis International GmbH -> Acronis International GmbH.) C:\Program Files (x86)\Acronis\Agent\bin\updater.exe
(C:\Program Files (x86)\Brother\ES Status Monitor\ptnmwnd.exe ->) (Brother Industries, Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Brother\ES Status Monitor\esnetmon.exe
(C:\Program Files (x86)\Common Files\G Data\AVKProxy\GDKBFltExe32.exe ->) (G DATA Software AG -> G DATA CyberDefense AG) C:\Program Files (x86)\Common Files\G Data\AVKProxy\GDKBFltSur64.exe
(C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe ->) (Brother Industries, Ltd. -> Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
(C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe
(C:\Program Files (x86)\G DATA\InternetSecurity\AVK\AVKWCtlx64.exe ->) (G DATA CyberDefense AG -> G DATA CyberDefense AG) C:\Program Files (x86)\G DATA\InternetSecurity\AVKTray\AVKTray.exe
(C:\Program Files (x86)\G DATA\InternetSecurity\AVKTray\AVKTray.exe ->) (G DATA Software AG -> G DATA CyberDefense AG) C:\Program Files (x86)\Common Files\G Data\AVKProxy\GDKBFltExe32.exe
(C:\Program Files (x86)\G DATA\InternetSecurity\Firewall\GDFwSvcx64.exe ->) (G DATA CyberDefense AG -> G DATA Software AG) C:\Program Files (x86)\G DATA\InternetSecurity\Firewall\GDFirewallTray.exe
(C:\Program Files\Google\Chrome\Application\chrome.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe <2>
(C:\Program Files\NVIDIA Corporation\NvBroadcast.NvContainer\NvBroadcast.Container.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Broadcast\NvVirtualCamera\NVIDIA Broadcast.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe <2>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(C:\Program Files\Synaptics\SynFP\SynaFPService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated.) C:\Program Files\Synaptics\SynFP\SynaU2F.exe
(C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.22.20073.0_x64__0a9344xs7nr4m\radeonsoftware\AMDRSServ.exe ->) (0A0B0503-04C2-4CCF-9BC2-4F164DC80FEE -> Advanced Micro Devices, Inc.) C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.22.20073.0_x64__0a9344xs7nr4m\radeonsoftware\AMDRSSrcExt.exe
(C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.Device.exe <3>
(C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe
(cmd.exe ->) (G DATA CyberDefense AG -> G DATA CyberDefense AG) C:\Program Files (x86)\Common Files\G Data\WebProtection\NativeMessagingWP.exe
(cmd.exe ->) (Lenovo (Beijing) Limited -> Lenovo Group Limited) C:\Users\emres\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSB.exe
(DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_1446a24b89ad2808\LenovoUtilityService.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_1446a24b89ad2808\FnHotkeyCapsLKNumLK.exe
(DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_1446a24b89ad2808\LenovoUtilityService.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_1446a24b89ad2808\FnHotkeyUtility.exe
(DriverStore\FileRepository\u0390527.inf_amd64_ce5415626acd59b0\B389830\atiesrxx.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0390527.inf_amd64_ce5415626acd59b0\B389830\atieclxx.exe
(explorer.exe ->) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2>
(explorer.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(explorer.exe ->) (Mega Limited -> Mega Limited) C:\Users\emres\AppData\Local\MEGAsync\MEGAsync.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe
(explorer.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <28>
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) () [Datei ist nicht signiert] C:\Program Files (x86)\Brother\iPrint&Scan\USBAppControl.exe
(services.exe ->) () [Datei ist nicht signiert] C:\Program Files (x86)\Brother\iPrint&Scan\WorkflowAppControl.exe
(services.exe ->) (Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe
(services.exe ->) (Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(services.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Acronis\Agent\aakore.exe
(services.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe
(services.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0390527.inf_amd64_ce5415626acd59b0\B389830\atiesrxx.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(services.exe ->) (A-Volute SAS -> Nahimic) C:\Windows\System32\NahimicService.exe
(services.exe ->) (Cisco Systems, Inc. -> Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
(services.exe ->) (Digital Wave Ltd -> Digital Wave Ltd.) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
(services.exe ->) (G DATA CyberDefense AG -> G DATA CyberDefense AG) C:\Program Files (x86)\G DATA\InternetSecurity\AVK\AVKWCtlx64.exe
(services.exe ->) (G DATA CyberDefense AG -> G DATA Software AG) C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe
(services.exe ->) (G DATA CyberDefense AG -> G DATA Software AG) C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe
(services.exe ->) (G DATA CyberDefense AG -> G Data Software AG) C:\Program Files (x86)\G DATA\InternetSecurity\Firewall\GDFwSvcx64.exe
(services.exe ->) (Geek Software GmbH -> geek software GmbH) C:\Program Files\PDF24\pdf24.exe
(services.exe ->) (GuinpinSoft inc) [Datei ist nicht signiert] C:\Program Files\Common Files\cdarbsvc\cdarbsvc_v1.0.0_x64.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\System32\drivers\lenovo\UDC\Service\UDClientService.exe
(services.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_1446a24b89ad2808\LenovoUtilityService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\24.166.0818.0002\FileSyncHelper.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Poly) C:\Windows\System32\drivers\PolyP5WindowsUpdateService.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvBroadcast.NvContainer\NvBroadcast.Container.exe <2>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvlti.inf_amd64_47fd36f5fdab8d71\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Plex, Inc. -> Plex, Inc.) C:\Program Files\Plex\Plex Media Server\Plex Update Service.exe
(services.exe ->) (Privax Limited -> Privax Limited) C:\Program Files\Privax\HMA VPN\VpnSvc.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_0e38956337e3fd2b\RtkAudUService64.exe <2>
(services.exe ->) (SEIKO EPSON Corporation -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(services.exe ->) (Star Finanz-Software Entwicklung und Vertriebs GmbH -> Star Finanz-Software Entwicklung und Vertriebs GmbH) C:\Program Files (x86)\StarMoney 14 Basic\ouservice\StarMoneyOnlineUpdate.exe
(services.exe ->) (Surfshark B.V. -> Surfshark) C:\Program Files (x86)\Surfshark\Surfshark.Service.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated.) C:\Program Files\Synaptics\SynFP\SynaFPService.exe
(services.exe ->) (Tobii AB -> ) C:\Windows\System32\DriverStore\FileRepository\lenovoy760.inf_amd64_970f330c477937eb\platform_runtime_AONEY760_service.exe
(services.exe ->) (Western Digital Technologies, Inc.) [Datei ist nicht signiert] C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
(services.exe ->) (Windscribe Limited -> Windscribe Limited) C:\Program Files\Windscribe\WindscribeService.exe
(services.exe ->) (Wondershare Technology Group Co.,Ltd -> Wondershare) C:\ProgramData\Wondershare\Service\InstallAssistService.exe
(svchost.exe ->) () [Datei ist nicht signiert] C:\Program Files (x86)\Western Digital\SSD Dashboard\DashboardNotificationManager\DashboardNotificationManager.exe
(svchost.exe ->) (Adobe Systems Incorporated -> ) C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe
(svchost.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(svchost.exe ->) (Lenovo Legion Toolkit) [Datei ist nicht signiert] C:\Users\emres\AppData\Local\Programs\LenovoLegionToolkit\Lenovo Legion Toolkit.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\24.166.0818.0002\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.18500.10.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe
(svchost.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Broadcast\NVIDIA Broadcast UI.exe

==================== Registry (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_0e38956337e3fd2b\RtkAudUService64.exe [1625448 2022-11-24] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [644000 2021-08-10] (Acronis International GmbH -> Acronis International GmbH)
HKLM\...\Run: [EPPCCMON] => C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE [445800 2021-10-08] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKLM\...\Run: [SynaU2F] => C:\Program Files\Synaptics\SynFP\SynaU2F.exe [151992 2023-04-10] (Synaptics Incorporated -> Synaptics Incorporated.)
HKLM\...\Run: [PDF24] => C:\Program Files\PDF24\pdf24.exe [618328 2023-10-04] (Geek Software GmbH -> geek software GmbH)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [367456 2024-04-22] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [5553440 2021-08-10] (Acronis International GmbH -> )
HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Acronis\TibMounter\tib_mounter_monitor.exe [446392 2021-08-10] (Acronis International GmbH -> Acronis International GmbH)
HKLM-x32\...\Run: [I16A] => C:\WINDOWS\twain_32\Brimi16a\Common\TwDsUiLaunch.exe [94952 2019-03-20] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [146584 2017-11-07] (Brother Industries, Ltd. -> Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [2976256 2018-07-25] (Brother Industries, Ltd.) [Datei ist nicht signiert]
HKLM-x32\...\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] => C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe [2044576 2023-12-13] (Cisco Systems, Inc. -> Cisco Systems, Inc.)
HKLM-x32\...\Run: [WDDiscovery] => C:\Program Files (x86)\Western Digital\Discovery\Current\WD Discovery.exe [81380584 2024-07-12] (Western Digital Technologies, Inc. -> Western Digital Corporation)
HKLM-x32\...\Run: [DriveUtilitiesHelper] => C:\Program Files (x86)\Western Digital\WD Utilities\WDDriveUtilitiesHelper.exe [2262528 2024-01-03] (Western Digital Technologies, Inc.) [Datei ist nicht signiert]
HKLM-x32\...\Run: [PTNMWND] => C:\Program Files (x86)\Brother\ES Status Monitor\ptnmwnd.exe [752752 2021-10-28] (Brother Industries, Ltd. -> Brother Industries, Ltd.)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Beschränkung <==== ACHTUNG
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Beschränkung <==== ACHTUNG
HKU\S-1-5-21-4273318395-1383037713-1931220479-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4919200 2024-08-28] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-4273318395-1383037713-1931220479-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\emres\AppData\Local\Microsoft\Teams\Update.exe [2587368 2023-05-01] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-4273318395-1383037713-1931220479-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4374376 2023-07-28] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-4273318395-1383037713-1931220479-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37157328 2023-12-05] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-4273318395-1383037713-1931220479-1001\...\Run: [Surfshark] => C:\Program Files (x86)\Surfshark\Surfshark.exe [14151880 2023-05-30] (Surfshark B.V. -> Surfshark)
HKU\S-1-5-21-4273318395-1383037713-1931220479-1001\...\Run: [Opera GX Browser Assistant] => C:\Users\emres\AppData\Local\Programs\Opera GX\assistant\browser_assistant.exe [3291288 2021-02-01] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-4273318395-1383037713-1931220479-1001\...\Run: [electron.app.NVIDIA Omniverse Launcher] => C:\Users\emres\AppData\Local\Programs\omniverse-launcher\NVIDIA Omniverse Launcher.exe [132661784 2022-10-03] (NVIDIA Corporation -> NVIDIA Corporation)
HKU\S-1-5-21-4273318395-1383037713-1931220479-1001\...\Run: [MicrosoftEdgeAutoLaunch_B607E283948793785252B81A2BBFA871] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3741120 2024-08-29] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-4273318395-1383037713-1931220479-1001\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [11795872 2024-08-23] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-4273318395-1383037713-1931220479-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2020-09-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-4273318395-1383037713-1931220479-1001\...\Run: [AirParrot3] => [X]
HKU\S-1-5-21-4273318395-1383037713-1931220479-1001\...\Run: [Plex Media Server] => C:\Program Files\Plex\Plex Media Server\Plex Media Server.exe [28645664 2024-03-14] (Plex, Inc. -> Plex, Inc.)
HKU\S-1-5-21-4273318395-1383037713-1931220479-1001\...\Run: [EADM] => C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALauncher.exe [3381864 2024-08-29] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-4273318395-1383037713-1931220479-1001\...\MountPoints2: {4c0f2d18-d1d3-11ee-8ba3-c89402f52c4c} - "D:\Autorun.exe" 
HKLM\...\Print\Monitors\EPSON ET-M1120 Series 64MonitorBE: C:\Windows\system32\E_YLMBUVE.DLL [184832 2017-07-14] (Microsoft Windows Hardware Compatibility Publisher -> Seiko Epson Corporation)
HKLM\...\Print\Monitors\EPSON WF-3520 Series 64MonitorBE: C:\Windows\system32\E_YLMJJE.DLL [120320 2011-04-19] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\Windows\system32\enppmon.dll [558592 2012-11-12] (SEIKO EPSON CORPORATION) [Datei ist nicht signiert]
HKLM\...\Print\Monitors\PDF-XChange Lite Port Monitor: C:\Windows\system32\pxcpmL.dll [2575744 2021-11-23] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\128.0.6613.114\Installer\chrmstp.exe [2024-09-02] (Google LLC -> Google LLC)
Startup: C:\Users\emres\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Luminar AI.lnk [2023-01-03]
ShortcutTarget: Luminar AI.lnk -> C:\Program Files\Skylum\Luminar AI\Luminar AI.exe (Skylum Software USA, Inc. -> Skylum)
Startup: C:\Users\emres\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2024-07-23]
ShortcutTarget: MEGAsync.lnk -> C:\Users\emres\AppData\Local\MEGAsync\MEGAsync.exe (Mega Limited -> Mega Limited)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HMA VPN.lnk [2024-07-26]
ShortcutTarget: HMA VPN.lnk -> C:\Program Files\Privax\HMA VPN\Vpn.exe (Privax Limited -> Privax Limited)
GroupPolicy: Beschränkung ? <==== ACHTUNG
Policies: C:\ProgramData\NTUSER.pol: Beschränkung <==== ACHTUNG
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Beschränkung <==== ACHTUNG

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {74F7B49F-8880-46D5-B520-FF1EE157D673} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1563080 2024-07-31] (Adobe Inc. -> Adobe Inc.)
Task: {26269E45-399B-4D39-A2EC-9DDA4C2CFC59} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [617096 2022-02-25] (Apple Inc. -> Apple Inc.)
Task: {F874C688-43B8-4CCA-A258-DE13B6A89853} - System32\Tasks\DashboardNotificationManager Task => C:\Program Files (x86)\Western Digital\SSD Dashboard\DashboardNotificationManager\DashboardNotificationManager.exe [323584 2024-05-21] () [Datei ist nicht signiert]
Task: {9BAE40A8-71E6-46CF-8B18-04E7C2A8A4BA} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem130.0.6679.0{309C72C6-27F9-4504-A309-5AC7A2C5CD99} => C:\Program Files (x86)\Google\GoogleUpdater\130.0.6679.0\updater.exe [4884584 2024-08-26] (Google LLC -> Google LLC)
Task: {EF2443E0-AE5B-42B8-A189-78B6D0CA8CF5} - System32\Tasks\IcarusPrivaxVpnUpgrade => C:\Program Files\Privax\HMA VPN\setup\privax_vpn_online_setup.exe  -> /silent /ShowVpnGui=0 /RestartUpdaterTaskName=IcarusPrivaxVpnUpgrade /RestartUpdaterAppExe="C:\Program Files\Privax\HMA VPN\setup\privax_vpn_online_setup.exe"
Task: {B54A1476-A3FA-4B27-8DBD-D2E11E8941F5} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [94496 2024-06-26] (Lenovo -> Lenovo Group Ltd.)
Task: {D92D5CA9-946A-4154-82F3-9CCE84701AA8} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => C:\WINDOWS\system32\sc.exe [98304 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> START ImControllerService
Task: {D050246C-98DD-4A88-B62F-58B86D81735F} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => C:\WINDOWS\System32\reg.exe [102400 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {70FC93A1-7F74-45C5-B9F4-990E1BF417C8} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\0cd4a2cd-c19a-485d-8def-3aef808c0280 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [113224 2024-06-26] (Lenovo -> Lenovo Group Ltd.)
Task: {4D9CA804-FA32-4B96-AF62-3D09126EE166} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\0fafc076-514d-4e00-afd1-4c8149ae048f => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [113224 2024-06-26] (Lenovo -> Lenovo Group Ltd.)
Task: {7EDBE6F6-B247-475E-A710-2FF3E67FCD24} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\24d2c53e-5279-4554-ae6d-95f2a50b3ce7 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [113224 2024-06-26] (Lenovo -> Lenovo Group Ltd.)
Task: {7074CB90-F51E-4B86-B275-E2BB98EF0FE2} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\2f27830f-af63-48b2-a680-47f2e5961f0a => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [113224 2024-06-26] (Lenovo -> Lenovo Group Ltd.)
Task: {B25BCFD5-03CA-4D0D-AEF4-134BF6BD3A73} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\8befc848-9a84-4d58-bdd6-197404fc3fa3 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [113224 2024-06-26] (Lenovo -> Lenovo Group Ltd.)
Task: {AFAACB1F-1646-4AFD-8FA6-7341C3FFB305} - System32\Tasks\Lenovo\Lenovo MigrationAssistant start event task => C:\Program Files\Lenovo\Lenovo Migration Assistant\Lenovo Migration Assistant Srv.exe [291216 2020-11-11] (Lenovo -> )
Task: {23B3E957-6DEB-4431-BAFE-CDE0EFDC8FA2} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-4273318395-1383037713-1931220479-1001 => C:\Users\emres\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe [88584 2024-05-17] (Lenovo (Beijing) Limited -> Lenovo Group Limited)
Task: {C512C13B-8E5C-491A-B6DF-E310E4DC8458} - System32\Tasks\Lenovo\UDC\Lenovo UDC Diagnostic Scan => C:\Windows\system32\sc.exe [98304 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> control udcservice 210
Task: {35459214-264F-44B7-B86C-487ACCAB7F08} - System32\Tasks\Lenovo\UDC\Lenovo UDC Idle Monitor => C:\windows\system32\drivers\Lenovo\udc\Service\UDCUserAgent.exe [90976 2024-04-07] (Lenovo -> Lenovo Group Ltd.) -> C:\windows\system32\drivers\Lenovo\udc\Service\/onidle
Task: {822143DE-3416-4185-BF12-30A0FDB2E628} - System32\Tasks\Lenovo\UDC\Lenovo UDC Monitor => C:\WINDOWS\system32\drivers\lenovo\udc\data\InfBackup\UdcInfInstaller.exe [188656 2024-04-07] (Lenovo -> Lenovo Group Ltd.)
Task: {0AE2C807-E8E1-41D7-AF99-346A79C0BE33} - System32\Tasks\LenovoLegionToolkit_Autorun_6efcc882-924c-4cbc-8fec-f45c25696f98 => C:\Users\emres\AppData\Local\Programs\LenovoLegionToolkit\Lenovo Legion Toolkit.exe [183808 2024-08-26] (Lenovo Legion Toolkit) [Datei ist nicht signiert]
Task: {3441A8E0-EB65-4653-BBA6-108CBE8E5E54} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-4273318395-1383037713-1931220479-1001 => C:\Users\emres\AppData\Local\MEGAsync\MEGAupdater.exe [1815816 2024-06-21] (Mega Limited -> )
Task: {667DC9B9-F55A-49DD-B53D-A9648F2EB838} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28605656 2024-08-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {49B7F18D-8218-48A6-A1D9-0F62608AAF12} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28605656 2024-08-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {3329616A-9F6F-43E0-A878-C8ED55F44A94} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [312520 2024-08-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {FA91BC28-680B-42CC-8DC6-D71B9AA11930} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [312520 2024-08-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {C66724FD-25C2-4712-917A-F52AAFC273A3} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\operfmon.exe [187024 2024-08-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {EFF77285-D566-453D-A5CB-F511746EEDFE} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe  (Keine Datei)
Task: {4BA9D53F-3E00-4641-AB07-D6B9B1D8137F} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676936 2024-08-29] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (Der Dateneintrag hat 6 weitere Zeichen).
Task: {0CF7B06D-D901-4404-8AB5-784959009C1A} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-4273318395-1383037713-1931220479-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676936 2024-08-29] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (Der Dateneintrag hat 6 weitere Zeichen).
Task: {5E8F30A8-F481-412A-9292-18F08957B8C8} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34376 2024-08-29] (Mozilla Corporation -> Mozilla Foundation)
Task: {538CE780-ADD9-477E-B970-A49DFF6B69C0} - System32\Tasks\NahimicSvc32Run => C:\Windows\SysWOW64\NahimicSvc32.exe [844400 2022-03-29] (A-Volute SAS -> Nahimic)
Task: {7F0B9391-FC5D-4380-8AB9-6B8C26C0CC3D} - System32\Tasks\NahimicSvc64Run => C:\Windows\system32\NahimicSvc64.exe [1105520 2022-03-29] (A-Volute SAS -> Nahimic)
Task: {AAE289D6-5E0B-4D94-A51D-F3CF2DBF0FF6} - System32\Tasks\NahimicTask32 => C:\Windows\System32\..\SysWOW64\NahimicSvc32.exe [844400 ] (A-Volute SAS -> Nahimic)
Task: {27CA51F2-85AC-4ABB-A574-EEAFD268A7C8} - System32\Tasks\NahimicTask64 => C:\Windows\System32\.\NahimicSvc64.exe [1105520 ] (A-Volute SAS -> Nahimic)
Task: {DAAC0789-8485-4BA0-A34E-8388E370D8DD} - System32\Tasks\Nero\Nero Info => C:\Program Files (x86)\Nero\Nero Apps\NeroInfo\NeroInfo.exe [3914824 2023-12-07] (Nero AG -> Nero AG)
Task: {96696664-3EE5-4DCB-9EFD-FAF7AD58F609} - System32\Tasks\NvBroadcast_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA Broadcast\NVIDIA Broadcast UI.exe [11015736 2023-01-16] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NVIDIA Broadcast\-minimized
Task: {4BAC00E5-612C-44C5-AB60-B1A51A24E272} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1005096 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {B96242DE-8232-46A9-9A67-961CFF6848F0} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3345448 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {11273155-9F6A-40EE-8039-B1E8B8D37146} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649256 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler
Task: {67F99AC8-4461-4727-806B-821122999A23} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {ED4389C8-8AE2-47B8-84CF-B9EA0AB7A9FD} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {855F9444-EAA3-4667-9A20-C7B6A56925C5} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {06A58EA7-7631-4B20-A0E5-B0F4FE510E9C} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4DF0B20F-E319-46EA-9BC9-31F7116ECE0D} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {95521115-EA6C-42FD-879B-8DBC66436D22} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F4E67E24-556C-459C-8764-0335706AABE1} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4209056 2024-08-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {698312DD-A6FD-4B33-A3E7-028630A393EF} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-4273318395-1383037713-1931220479-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4209056 2024-08-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {9309FFE1-E238-40B3-A26E-76366302B7DF} - System32\Tasks\Opera GX scheduled assistant Autoupdate 1646251941 => C:\Users\emres\AppData\Local\Programs\Opera GX\launcher.exe [2273696 2024-06-18] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\emres\AppData\Local\Programs\Opera GX\assistant" $(Arg0)
Task: {AD90015B-A2F3-4500-954E-8B741EEBBA67} - System32\Tasks\Opera GX scheduled Autoupdate 1643938694 => C:\Users\emres\AppData\Local\Programs\Opera GX\launcher.exe [2273696 2024-06-18] (Opera Norway AS -> Opera Software)
Task: {6F3CDD12-1B9C-4297-BCDA-6AE1092A4296} - System32\Tasks\Opera scheduled Autoupdate 1647649909 => C:\Users\emres\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe [5770656 2024-08-06] (Opera Norway AS -> Opera Software)
Task: {9F306821-89B9-4AB9-88CE-F873CF530E58} - System32\Tasks\Optimize Push Notification Data File-S-1-5-21-4273318395-1383037713-1931220479-1001 => {201600D8-6EFF-48CE-B842-E14D37A0682D} C:\WINDOWS\System32\wpninprc.dll [65536 2024-05-16] (Microsoft Windows -> Microsoft Corporation)
Task: {08A500E3-7FF7-436B-81A1-700F31ADD055} - System32\Tasks\Privax\HMA VPN Bug Report => C:\Program Files\Privax\HMA VPN\AvBugReport.exe [4964232 2024-07-25] (Privax Limited -> Privax Limited) -> --filter "*.dmp;*.mdmp;icarus.log" --send "dumps|report" --silent --product 78 --programpath "C:\Program Files\Privax\HMA VPN" --configpath "C:\ProgramData\Privax\HMA VPN" --path "C:\ProgramData\Privax\HMA VPN\log" --path "C:\ProgramData\Privax\Icarus\Logs" --logpath "C:\ProgramData\Privax\HMA VPN\l (Der Dateneintrag hat 47 weitere Zeichen).
Task: {CA87CB04-B78A-46BC-8B09-4E3766F4A0FE} - System32\Tasks\Privax\HMA VPN Emergency Update => C:\Program Files\Privax\HMA VPN\VpnUpdate.exe [1516424 2024-07-25] (Privax Limited -> Privax Limited)
Task: {A7C811A1-C00B-433B-92E3-EB2D9286EBB3} - System32\Tasks\Privax\HMA VPN Update => C:\Program Files\Common Files\Privax\Icarus\privax-vpn\icarus.exe [8006536 2024-07-19] (Privax Limited -> Gen Digital Inc.)
Task: {BA985BD1-1879-4FD7-BC4C-607D344ECEBF} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1904536 2024-07-15] (Lenovo -> )
Task: {5CA1B130-FF62-41B1-99CC-01126192CE7E} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1904536 2024-07-15] (Lenovo -> )
Task: {55E7D9E1-4269-48B7-BEC6-1DF8B1AE1236} - System32\Tasks\WD Device Agent Task emres => C:\Program Files (x86)\Western Digital\Discovery\Current\WD Device Agent.exe [724712 2024-07-12] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
Task: {298B1784-1A8C-4A0E-AD4C-2C3277CD7CD0} - System32\Tasks\WD Discovery Service Task emres => C:\Program Files (x86)\Western Digital\Discovery\Current\Service\WDDiscoveryService.exe [79592 2024-07-12] (Western Digital Technologies, Inc. -> )

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)


==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{510962f9-94eb-4d1c-b162-38d91cc2a74c}: [NameServer] 100.120.144.1
Tcpip\..\Interfaces\{7f14f4b3-0ae0-42d0-b905-9aff9d51f69e}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{7f14f4b3-0ae0-42d0-b905-9aff9d51f69e}: [DhcpDomain] fritz.box
Tcpip\..\Interfaces\{7f14f4b3-0ae0-42d0-b905-9aff9d51f69e}\430313: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{7f14f4b3-0ae0-42d0-b905-9aff9d51f69e}\56465727F616D6: [DhcpNameServer] 139.11.6.60 139.11.6.61
Tcpip\..\Interfaces\{7f14f4b3-0ae0-42d0-b905-9aff9d51f69e}\65F6461666F6E656D293932334: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{7f14f4b3-0ae0-42d0-b905-9aff9d51f69e}\7594C48454C4D4E24554C4D24484941345149323A494: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{7f14f4b3-0ae0-42d0-b905-9aff9d51f69e}\7594C48454C4D4E24554C4D24484941345149323A494: [DhcpDomain] fritz.box
Tcpip\..\Interfaces\{7f14f4b3-0ae0-42d0-b905-9aff9d51f69e}\76966796E67602779666960266F6270266F6F646: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{7f14f4b3-0ae0-42d0-b905-9aff9d51f69e}\76966796E67602779666960266F6270266F6F646: [DhcpDomain] fritz.box
Tcpip\..\Interfaces\{7f14f4b3-0ae0-42d0-b905-9aff9d51f69e}\B44585D275966496D264275656: [DhcpNameServer] 210.220.163.82 219.250.36.130
Tcpip\..\Interfaces\{93b7daae-4f33-4208-bd21-a7b35b802e1c}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{93b7daae-4f33-4208-bd21-a7b35b802e1c}: [DhcpDomain] fritz.box
Tcpip\..\Interfaces\{a9f89e39-a114-424d-b48e-d768aa25a324}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{a9f89e39-a114-424d-b48e-d768aa25a324}: [DhcpDomain] fritz.box

Edge: 
=======
Edge DefaultProfile: Profile 1
Edge Profile: C:\Users\emres\AppData\Local\Microsoft\Edge\User Data\Default [2024-04-21]
Edge Extension: (Google Docs Offline) - C:\Users\emres\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-25]
Edge Extension: (Grammatik- und Rechtschreibprüfung - LanguageTool) - C:\Users\emres\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hfjadhjooeceemgojogkhlppanjkbobc [2024-04-20]
Edge Extension: (Edge relevant text changes) - C:\Users\emres\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]
Edge Extension: (Citavi Picker) - C:\Users\emres\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\mielbhbkcliienpdicphhecpodcaeefg [2024-03-18]
Edge Profile: C:\Users\emres\AppData\Local\Microsoft\Edge\User Data\Profile 1 [2024-08-30]
Edge Extension: (Google Docs Offline) - C:\Users\emres\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-07-16]
Edge Extension: (Edge relevant text changes) - C:\Users\emres\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-06-01]
Edge Extension: (Citavi Picker) - C:\Users\emres\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\mielbhbkcliienpdicphhecpodcaeefg [2023-05-22]
Edge HKLM-x32\...\Edge\Extension: [mielbhbkcliienpdicphhecpodcaeefg]

FireFox:
========
FF DefaultProfile: 2svcwisz.default
FF ProfilePath: C:\Users\emres\AppData\Roaming\Mozilla\Firefox\Profiles\2svcwisz.default [2022-03-15]
FF ProfilePath: C:\Users\emres\AppData\Roaming\Mozilla\Firefox\Profiles\jsrxqsiu.default-release [2024-08-30]
FF Extension: (Keepa - Amazon Price Tracker) - C:\Users\emres\AppData\Roaming\Mozilla\Firefox\Profiles\jsrxqsiu.default-release\Extensions\amptra@keepa.com.xpi [2024-08-29]
FF Extension: (Grammatik- und Rechtschreibprüfung - LanguageTool) - C:\Users\emres\AppData\Roaming\Mozilla\Firefox\Profiles\jsrxqsiu.default-release\Extensions\languagetool-webextension@languagetool.org.xpi [2024-08-29]
FF Extension: (MetaMask) - C:\Users\emres\AppData\Roaming\Mozilla\Firefox\Profiles\jsrxqsiu.default-release\Extensions\webextension@metamask.io.xpi [2024-08-29]
FF Extension: (Citavi Picker) - C:\Users\emres\AppData\Roaming\Mozilla\Firefox\Profiles\jsrxqsiu.default-release\Extensions\{8AA36F4F-6DC7-4c06-77AF-5035170634FE}.xpi [2023-03-08]
FF Extension: (Citavi Picker) - C:\Program Files\Mozilla Firefox\distribution\extensions\{8AA36F4F-6DC7-4c06-77AF-5035170634FE}.xpi [2022-07-26]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2021-11-23] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2021-11-23] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2021-11-23] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @videolan.org/vlc,version=3.0.21 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-09] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-08-23] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-04-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2021-11-23] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2021-11-23] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2021-11-23] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-4273318395-1383037713-1931220479-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2021-11-23] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-4273318395-1383037713-1931220479-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2021-11-23] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-4273318395-1383037713-1931220479-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2021-11-23] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\emres\AppData\Local\Google\Chrome\User Data\Default [2024-09-03]
CHR Extension: (mydealz | Spare beim Shoppen) - C:\Users\emres\AppData\Local\Google\Chrome\User Data\Default\Extensions\edbeilbochcodlnloilmefnmgjnmimfm [2024-07-12]
CHR Extension: (Google Search Maps Button) - C:\Users\emres\AppData\Local\Google\Chrome\User Data\Default\Extensions\edllcgchknhokighleffpipdedmpgiln [2024-05-10]
CHR Extension: (Trusted Shops-Erweiterung für Google Chrome) - C:\Users\emres\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcpnemckonbbmnoakbjgjkgokkbaeo [2024-07-02]
CHR Extension: (Picture-in-Picture Extension (by Google)) - C:\Users\emres\AppData\Local\Google\Chrome\User Data\Default\Extensions\hkgfoiooedgoejojocmhlaklaeopbecg [2022-09-15]
CHR Extension: (G DATA WebProtection) - C:\Users\emres\AppData\Local\Google\Chrome\User Data\Default\Extensions\iokapgenfjiafbmphhhcgmgkobiiomcp [2024-08-05]
CHR Extension: (Shazam: Find song names from your browser) - C:\Users\emres\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmioliijnhnoblpgimnlajmefafdfilb [2024-06-06]
CHR Extension: (Keepa - Amazon Price Tracker) - C:\Users\emres\AppData\Local\Google\Chrome\User Data\Default\Extensions\neebplgakaahbhdphmkckjjcegoiijjo [2024-08-28]
CHR Extension: (MetaMask) - C:\Users\emres\AppData\Local\Google\Chrome\User Data\Default\Extensions\nkbihfbeogaeaoehlefnkodbefgpgknn [2024-08-27]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\emres\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-02-03]
CHR Extension: (Grammatik- und Rechtschreibprüfung - LanguageTool) - C:\Users\emres\AppData\Local\Google\Chrome\User Data\Default\Extensions\oldceeleldhonbafppcapldpdifcinji [2024-08-26]
CHR Extension: (PAYBACK Internet Assistent) - C:\Users\emres\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbfjbhoglggakhkngkbfehgghkaadeba [2023-06-11]
CHR Profile: C:\Users\emres\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-09-20]
CHR Profile: C:\Users\emres\AppData\Local\Google\Chrome\User Data\System Profile [2022-03-24]
CHR HKU\S-1-5-21-4273318395-1383037713-1931220479-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [ohgndokldibnndfnjnagojmheejlengn]

Opera: 
=======
OPR Profile: C:\Users\emres\AppData\Roaming\Opera Software\Opera Stable [2023-09-19]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\emres\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2023-07-05]
OPR Extension: (Opera Wallet) - C:\Users\emres\AppData\Roaming\Opera Software\Opera Stable\Extensions\gojhcdgcpbpfigcaejpfhfegekdgiblk [2023-07-05]
OPR Extension: (Amazon Assistant Promotion) - C:\Users\emres\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2022-03-19]
OPR Extension: (Opera AI Prompts) - C:\Users\emres\AppData\Roaming\Opera Software\Opera Stable\Extensions\mljbnbeedpkgakdchcmfapkjhfcogaoc [2023-07-05]
StartMenuInternet: (HKU\S-1-5-21-4273318395-1383037713-1931220479-1001) Opera GXStable - "C:\Users\emres\AppData\Local\Programs\Opera GX\Launcher.exe"

==================== Dienste (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 aakore; C:\Program Files (x86)\Acronis\Agent\aakore.exe [9022120 2021-08-10] (Acronis International GmbH -> Acronis International GmbH)
R2 AcronisActiveProtectionService; C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe [12905888 2021-08-10] (Acronis International GmbH -> )
S4 AcronisCyberProtectionService; C:\Program Files\Acronis\CyberProtect\cyber-protect-service.exe [1421352 2021-08-10] (Acronis International GmbH -> Acronis International GmbH)
R2 AcrSch2Svc; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [1052280 2021-08-10] (Acronis International GmbH -> Acronis International GmbH)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-07-31] (Adobe Inc. -> Adobe Inc.)
R2 afcdpsrv; C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [6391536 2022-02-02] (Acronis International GmbH -> )
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [103776 2024-03-30] (Apple Inc. -> Apple Inc.)
R2 AVKProxy; C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe [7710496 2024-01-11] (G DATA CyberDefense AG -> G DATA Software AG)
R2 AVKWCtl; C:\Program Files (x86)\G DATA\InternetSecurity\AVK\AVKWCtlx64.exe [3871016 2024-01-11] (G DATA CyberDefense AG -> G DATA CyberDefense AG)
S3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [314368 2018-07-25] (Brother Industries, Ltd.) [Datei ist nicht signiert]
R2 CdRomArbiterService; C:\Program Files\Common Files\cdarbsvc\cdarbsvc_v1.0.0_x64.exe [8704 2024-06-24] (GuinpinSoft inc) [Datei ist nicht signiert]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14042624 2024-08-25] (Microsoft Corporation -> Microsoft Corporation)
R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [391656 2016-08-24] (Digital Wave Ltd -> Digital Wave Ltd.)
S3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [13914728 2024-08-29] (Electronic Arts, Inc. -> Electronic Arts)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934368 2021-10-01] (Epic Games Inc. -> Epic Games, Inc.)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [135824 2011-12-12] (SEIKO EPSON Corporation -> Seiko Epson Corporation)
R3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\24.166.0818.0002\FileSyncHelper.exe [3522976 2024-08-28] (Microsoft Corporation -> Microsoft Corporation)
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [342456 2022-01-25] (FUTUREMARK INC -> Futuremark)
R3 GDFwSvc; C:\Program Files (x86)\G DATA\InternetSecurity\Firewall\GDFwSvcx64.exe [7083816 2024-01-11] (G DATA CyberDefense AG -> G Data Software AG)
R3 GDScan; C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe [2650392 2024-01-11] (G DATA CyberDefense AG -> G DATA Software AG)
R2 HmaProVpn; C:\Program Files\Privax\HMA VPN\VpnSvc.exe [12456840 2024-07-25] (Privax Limited -> Privax Limited)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [113224 2024-06-26] (Lenovo -> Lenovo Group Ltd.)
R2 LenovoFnAndFunctionKeys; C:\WINDOWS\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_1446a24b89ad2808\LenovoUtilityService.exe [178536 2024-05-24] (Lenovo -> Lenovo)
S3 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpDefenderCoreService.exe [1427024 2024-08-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 mmsminisrv; C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe [4878840 2021-08-10] (Acronis International GmbH -> Acronis International GmbH)
R2 NahimicService; C:\WINDOWS\system32\NahimicService.exe [1930888 2022-03-29] (A-Volute SAS -> Nahimic)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvlti.inf_amd64_47fd36f5fdab8d71\Display.NvContainer\NVDisplay.Container.exe [1274888 2023-11-10] (NVIDIA Corporation -> NVIDIA Corporation)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\24.166.0818.0002\OneDriveUpdaterService.exe [3863456 2024-08-28] (Microsoft Corporation -> Microsoft Corporation)
R2 PDF24; C:\Program Files\PDF24\pdf24.exe [618328 2023-10-04] (Geek Software GmbH -> geek software GmbH)
R2 PlexUpdateService; C:\Program Files\Plex\Plex Media Server\Plex Update Service.exe [907264 2024-03-14] (Plex, Inc. -> Plex, Inc.)
R2 PolyP5WindowsUpdateService; C:\WINDOWS\system32\DRIVERS\PolyP5WindowsUpdateService.exe [263880 2023-09-14] (Microsoft Windows Hardware Compatibility Publisher -> Poly)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1201648 2023-12-06] (Rockstar Games, Inc. -> Rockstar Games)
R2 StarMoney 14 Basic OnlineUpdate; C:\Program Files (x86)\StarMoney 14 Basic\ouservice\StarMoneyOnlineUpdate.exe [767392 2024-04-11] (Star Finanz-Software Entwicklung und Vertriebs GmbH -> Star Finanz-Software Entwicklung und Vertriebs GmbH)
R2 Surfshark Service; C:\Program Files (x86)\Surfshark\Surfshark.Service.exe [5635272 2023-05-30] (Surfshark B.V. -> Surfshark)
R2 SynFPService; C:\Program Files\Synaptics\SynFP\SynaFPService.exe [197008 2023-04-10] (Synaptics Incorporated -> Synaptics Incorporated.)
R2 TobiiAONEY760; C:\WINDOWS\System32\DriverStore\FileRepository\lenovoy760.inf_amd64_970f330c477937eb\platform_runtime_AONEY760_service.exe [19007232 2022-06-09] (Tobii AB -> )
R2 UDCService; C:\WINDOWS\system32\DRIVERS\Lenovo\udc\Service\UDClientService.exe [72432 2024-04-07] (Lenovo -> Lenovo Group Ltd.)
R2 USBAppControl; C:\Program Files (x86)\Brother\iPrint&Scan\USBAppControl.exe [11776 2024-03-29] () [Datei ist nicht signiert]
R2 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [372736 2024-01-03] (Western Digital Technologies, Inc.) [Datei ist nicht signiert]
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\NisSrv.exe [3199648 2024-08-05] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MsMpEng.exe [133704 2024-08-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WindscribeService; C:\Program Files\Windscribe\WindscribeService.exe [1052512 2023-01-29] (Windscribe Limited -> Windscribe Limited)
R2 Wondershare InstallAssist; C:\ProgramData\Wondershare\Service\InstallAssistService.exe [277240 2022-09-15] (Wondershare Technology Group Co.,Ltd -> Wondershare)
R2 WorkflowAppControl; C:\Program Files (x86)\Brother\iPrint&Scan\WorkflowAppControl.exe [18944 2024-03-29] () [Datei ist nicht signiert]

===================== Treiber (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R3 acsock; C:\WINDOWS\system32\DRIVERS\acsock64.sys [310216 2023-12-13] (Microsoft Windows Hardware Compatibility Publisher -> Cisco Systems, Inc.)
R3 amdfendrmgr; C:\WINDOWS\System32\drivers\amdfendrmgr.sys [54744 2023-04-07] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 amdwddmg; C:\WINDOWS\System32\DriverStore\FileRepository\u0390527.inf_amd64_ce5415626acd59b0\B389830\amdkmdag.sys [94633864 2023-04-07] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R2 BdDci; C:\WINDOWS\system32\DRIVERS\bddci.sys [367096 2021-08-10] (Bitdefender SRL -> Bitdefender)
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [Datei ist nicht signiert]
S3 CorsairGamingAudioService; C:\Windows\System32\drivers\CorsairGamingAudio64.sys [63032 2022-05-27] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R3 csaudio; C:\WINDOWS\System32\DriverStore\FileRepository\csaudio.inf_amd64_3abbd251e5a04b6f\csaudio.sys [322984 2022-04-25] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
S3 FBNetFilter; C:\WINDOWS\System32\drivers\FBNetFlt.sys [60784 2023-12-06] (Lenovo -> Lenovo)
R2 file_protector; C:\WINDOWS\System32\DRIVERS\file_protector.sys [721536 2022-02-02] (Acronis International GmbH -> Acronis International GmbH)
R0 file_tracker; C:\WINDOWS\System32\DRIVERS\file_tracker.sys [392840 2022-02-02] (Acronis International GmbH -> Acronis International GmbH)
R0 fltsrv; C:\WINDOWS\System32\DRIVERS\fltsrv.sys [183944 2022-02-02] (Acronis International GmbH -> Acronis International GmbH)
R0 fse; C:\WINDOWS\System32\drivers\fse.sys [218608 2024-06-15] (Microsoft Windows -> Microsoft Corporation)
S0 GDElam; C:\WINDOWS\System32\DRIVERS\GDElam.sys [278504 2024-01-11] (Microsoft Windows Early Launch Anti-Malware Publisher -> G DATA CyberDefense AG)
R3 GDKBB; C:\WINDOWS\system32\drivers\GDKBB64.sys [36264 2024-08-05] (Microsoft Windows Hardware Compatibility Publisher -> G DATA CyberDefense AG)
R3 GDKBFlt; C:\WINDOWS\system32\drivers\GDKBFlt64.sys [38984 2024-08-05] (G DATA Software AG -> G DATA Software AG)
R1 GDMnIcpt; C:\WINDOWS\system32\drivers\MiniIcpt.sys [939976 2024-08-05] (Microsoft Windows Hardware Compatibility Publisher -> G DATA CyberDefense AG)
S3 GDNetflt; C:\WINDOWS\System32\DRIVERS\gdnetflt.sys [127928 2024-01-09] (Microsoft Windows Hardware Compatibility Publisher -> G DATA Software AG)
R3 GDPkIcpt; C:\WINDOWS\system32\drivers\PktIcpt.sys [314312 2024-08-05] (Microsoft Windows Hardware Compatibility Publisher -> G DATA CyberDefense AG)
R1 gdwfpcd; C:\WINDOWS\System32\drivers\gdwfpcd64.sys [78760 2024-08-05] (Microsoft Windows Hardware Compatibility Publisher -> G DATA Software AG)
S3 GRD; C:\WINDOWS\system32\drivers\GRD.sys [125640 2024-08-29] (G DATA Software AG -> G Data Software)
R1 HookCentre; C:\WINDOWS\system32\drivers\HookCentre.sys [361928 2024-08-05] (Microsoft Windows Hardware Compatibility Publisher -> G DATA CyberDefense AG)
R3 MTKBTFilterX64; C:\WINDOWS\system32\DRIVERS\mtkbtfilterx.sys [286424 2022-05-14] (MEDIATEK INC. -> MediaTek Inc.)
R3 mtkwlex; C:\WINDOWS\System32\drivers\mtkwl6ex.sys [1439976 2022-05-15] (MEDIATEK INC. -> MediaTek Inc.)
R3 NahimicBTLink; C:\WINDOWS\System32\drivers\NahimicBTLink.sys [85144 2021-09-13] (A-Volute SAS -> Windows (R) Win 7 DDK provider)
R3 Nahimic_Mirroring; C:\WINDOWS\System32\drivers\Nahimic_Mirroring.sys [85144 2021-09-13] (A-Volute SAS -> Windows (R) Win 7 DDK provider)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [32352 2017-11-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R1 ngscan; C:\WINDOWS\System32\DRIVERS\ngscan.sys [179104 2021-08-10] (Acronis International GmbH -> Acronis International GmbH)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
R3 nvpcf; C:\WINDOWS\System32\drivers\nvpcf.sys [239256 2023-11-10] (NVIDIA Corporation -> NVIDIA Corporation)
S3 pvxVpnRdr; C:\WINDOWS\System32\drivers\pvxVpnRdr.sys [79232 2024-06-26] (Microsoft Windows Hardware Compatibility Publisher -> Privax Limited)
R3 pvxWintun; C:\WINDOWS\System32\drivers\pvxWintun.sys [40816 2024-02-06] (Microsoft Windows Hardware Compatibility Publisher -> Privax Limited)
R3 rtucx22x64; C:\WINDOWS\System32\DriverStore\FileRepository\rtucx22x64.inf_amd64_a6eb3abe5befec7d\rtucx22x64.sys [1876424 2024-04-24] (Realtek Semiconductor Corp. -> Realtek Corporation)
S3 SurfsharkSplitTunnelDriver; C:\Program Files (x86)\Surfshark\Resources\x64\SurfsharkSplitTunnelCalloutDriver.sys [39648 2022-08-31] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 tapsurfshark; C:\WINDOWS\System32\drivers\tapsurfshark.sys [38728 2021-12-14] (WDKTestCert Lenovo,131775874531219913 -> The OpenVPN Project)
R3 tapwindscribe0901; C:\WINDOWS\System32\drivers\tapwindscribe0901.sys [57768 2023-01-29] (Windscribe Limited -> The OpenVPN Project)
R2 tib_mounter; C:\WINDOWS\system32\DRIVERS\tib_mounter.sys [175648 2022-02-02] (Acronis International GmbH -> Acronis International GmbH)
R2 virtual_file; C:\WINDOWS\System32\DRIVERS\virtual_file.sys [334984 2022-02-02] (Acronis International GmbH -> Acronis International GmbH)
S3 vmbusproxy; C:\WINDOWS\system32\drivers\vmbusproxy.sys [94208 2023-11-17] (Microsoft Windows -> )
R0 volume_tracker; C:\WINDOWS\System32\DRIVERS\volume_tracker.sys [251016 2022-02-02] (Acronis International GmbH -> Acronis International GmbH)
S3 vpnva; C:\WINDOWS\System32\drivers\vpnva64-6.sys [74064 2023-12-13] (Cisco Systems, Inc. -> Cisco Systems, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [22080 2024-08-05] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [25704 2022-10-03] (WDKTestCert user,132375440089837053 -> Western Digital Technologies, Inc.)
U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [602504 2024-08-05] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105864 2024-08-05] (Microsoft Windows -> Microsoft Corporation)
S3 WindscribeSplitTunnel; C:\WINDOWS\system32\DRIVERS\WindscribeSplitTunnel.sys [35752 2023-01-29] (Windscribe Limited -> )
R3 windtun420; C:\WINDOWS\System32\drivers\windtun420.sys [47544 2023-01-29] (Windscribe Limited -> WireGuard LLC)
S3 WireGuard; C:\WINDOWS\System32\drivers\wireguard.sys [489368 2022-02-06] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S1 npcap; \SystemRoot\system32\DRIVERS\npcap.sys [X]
U4 npcap_wifi; kein ImagePath
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat (erstellte) (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2024-09-03 00:58 - 2024-09-03 00:59 - 000000000 ____D C:\FRST
2024-09-03 00:58 - 2024-09-03 00:58 - 003517166 _____ C:\Users\emres\Downloads\FRST0824.zip
2024-09-03 00:58 - 2024-09-03 00:58 - 000000000 ____D C:\Users\emres\Downloads\FRST0824
2024-09-03 00:57 - 2024-09-03 00:57 - 002397184 _____ C:\Users\emres\Downloads\FRST64.exe
2024-09-03 00:56 - 2024-09-03 00:56 - 000760092 _____ C:\WINDOWS\system32\perfh007.dat
2024-09-03 00:56 - 2024-09-03 00:56 - 000157276 _____ C:\WINDOWS\system32\perfc007.dat
2024-09-03 00:50 - 2024-09-03 00:50 - 000000000 ____D C:\Users\emres\Downloads\bsq16a
2024-09-03 00:49 - 2024-09-03 00:49 - 001296464 _____ C:\Users\emres\Downloads\bsq16a.exe
2024-09-03 00:49 - 2024-09-03 00:49 - 000000306 __RSH C:\ProgramData\ntuser.pol
2024-09-01 22:01 - 2024-09-01 22:01 - 004315936 _____ (Brother Industries, Ltd. ) C:\Users\emres\Downloads\puw10023.exe
2024-09-01 21:02 - 2024-09-01 21:02 - 034340048 _____ (Brother Industries, Ltd. ) C:\Users\emres\Downloads\bsq16aw190cger.exe
2024-09-01 20:59 - 2024-09-01 20:59 - 064559360 _____ (Brother Industries, Ltd. ) C:\Users\emres\Downloads\stw16013.exe
2024-09-01 20:56 - 2024-09-01 20:56 - 000057231 _____ C:\Users\emres\Downloads\Briefmarken.1Stk.01.09.2024_2056.pdf
2024-09-01 20:43 - 2024-09-01 20:43 - 000001366 _____ C:\Users\emres\Desktop\Zoo Tycoon Ultimate Animal Collection.lnk
2024-09-01 19:42 - 2024-09-01 19:42 - 000000000 ____D C:\Users\emres\AppData\Local\EAConnect_microsoft
2024-08-30 16:28 - 2024-08-30 16:28 - 000331703 _____ C:\Users\emres\Downloads\Paketmarke_91229998866d1d3f7aa84c.pdf
2024-08-29 21:52 - 2024-09-01 21:52 - 000000000 ____D C:\Program Files\Mozilla Firefox
2024-08-29 21:16 - 2024-08-29 21:16 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2024-08-29 03:29 - 2024-08-29 03:29 - 000327823 _____ C:\Users\emres\Downloads\Paketmarke_115963736666cfcf0112e78.pdf
2024-08-29 03:10 - 2024-08-29 03:10 - 000000208 _____ C:\Users\Public\Desktop\Brother support website.url
2024-08-29 03:09 - 2024-08-29 03:09 - 000002074 _____ C:\Users\Public\Desktop\P-touch Update Software.lnk
2024-08-29 03:09 - 2024-08-29 03:09 - 000001967 _____ C:\Users\Public\Desktop\P-touch Address Book 1.4.lnk
2024-08-29 03:08 - 2024-08-29 03:08 - 000001955 _____ C:\Users\Public\Desktop\P-touch Editor 5.4.lnk
2024-08-29 02:35 - 2024-08-29 02:37 - 000000000 ____D C:\Users\emres\Desktop\Brother Common Installer
2024-08-29 02:35 - 2024-08-29 02:35 - 001849216 _____ C:\Users\emres\Downloads\brcinst10005.exe
2024-08-27 23:13 - 2024-08-27 23:14 - 000000000 ____D C:\Users\emres\Downloads\Rothenburgsort
2024-08-27 01:54 - 2024-08-27 01:54 - 017360962 _____ C:\Users\emres\Downloads\SFP700EU_Series_ALL_IB_MP_240301_Mv1_MD_WEB.pdf
2024-08-26 21:44 - 2024-08-26 21:44 - 000000964 _____ C:\Users\Public\Desktop\Brother iPrint&Scan.lnk
2024-08-26 21:21 - 2024-08-26 21:21 - 000042429 _____ C:\Users\emres\Downloads\BahnCard_Rechnung.pdf
2024-08-26 01:19 - 2024-08-26 01:19 - 000000000 ____D C:\Users\emres\AppData\Local\pip
2024-08-26 01:15 - 2024-08-26 01:15 - 000000000 ____D C:\Users\emres\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Python 3.12
2024-08-26 01:15 - 2024-08-26 01:15 - 000000000 ____D C:\Users\emres\AppData\Local\Package Cache
2024-08-26 01:14 - 2024-08-26 01:14 - 026508648 _____ (Python Software Foundation) C:\Users\emres\Downloads\python-3.12.5-amd64.exe
2024-08-25 22:14 - 2024-08-25 22:15 - 000000000 ____D C:\Users\emres\Downloads\KF6
2024-08-25 20:25 - 2024-08-25 20:25 - 000162989 _____ C:\Users\emres\Downloads\Zusammenfassung.pdf
2024-08-25 20:21 - 2024-08-25 20:22 - 000223837 _____ C:\Users\emres\Downloads\Gliederung.pdf
2024-08-25 17:22 - 2024-08-25 17:22 - 000000000 ____D C:\Users\emres\Downloads\Billhornr Röhrendamm
2024-08-25 16:24 - 2024-08-25 16:24 - 001164298 _____ C:\Users\emres\Downloads\20240822 White List GGL.pdf
2024-08-24 03:31 - 2024-08-24 03:31 - 000058057 _____ C:\Users\emres\Downloads\Briefmarken.1Stk.24.08.2024_0331.pdf
2024-08-24 03:24 - 2024-08-24 03:24 - 000572589 _____ C:\Users\emres\Downloads\antrag_3-3 (1).pdf
2024-08-23 13:41 - 2024-08-23 13:41 - 000050965 _____ C:\Users\emres\Downloads\RCB202411388.pdf
2024-08-23 13:25 - 2024-08-24 03:19 - 000590438 _____ C:\Users\emres\Downloads\antrag_3-3.pdf
2024-08-22 20:15 - 2024-08-22 20:15 - 000144317 _____ C:\Users\emres\Downloads\Eröffnungsbestätigung_05.08.2024.pdf
2024-08-21 02:29 - 2024-08-21 02:29 - 000039402 _____ C:\Users\emres\Downloads\2024_06_BAUSTELLENVORSCHAU Aug-Okt_S2.pdf
2024-08-21 02:03 - 2024-08-21 02:03 - 000000303 _____ C:\Users\emres\Desktop\Hi,.txt
2024-08-19 22:57 - 2024-08-19 22:57 - 001084889 _____ C:\Users\emres\Downloads\NC300EU_QSG_MP_220404_DE_Mv1_ONLINE_LR.pdf
2024-08-19 22:46 - 2024-08-19 22:47 - 000000000 ____D C:\Users\emres\AppData\Roaming\Navigation Updater
2024-08-19 22:46 - 2024-08-19 22:46 - 000001337 _____ C:\Users\emres\Desktop\Navigation Updater.lnk
2024-08-19 22:46 - 2024-08-19 22:46 - 000000000 ____D C:\Users\emres\Downloads\NaU
2024-08-19 22:46 - 2024-08-19 22:46 - 000000000 ____D C:\Users\emres\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigation Updater
2024-08-19 22:46 - 2024-08-19 22:46 - 000000000 ____D C:\Users\emres\AppData\Local\AutoEver
2024-08-19 22:46 - 2024-08-19 22:46 - 000000000 ____D C:\Program Files (x86)\Navigation Updater
2024-08-19 22:45 - 2024-08-19 22:45 - 215490600 _____ (AutoEver) C:\Users\emres\Downloads\NavigationUpdaterInstaller.exe
2024-08-17 15:22 - 2024-08-17 15:22 - 000026169 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-08-17 15:21 - 2024-08-17 15:21 - 000026169 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-08-14 17:04 - 2024-08-14 17:04 - 000241303 _____ C:\Users\emres\Downloads\aycf-terms-all.pdf
2024-08-14 02:59 - 2024-08-14 02:59 - 000076540 _____ C:\Users\emres\Downloads\Entgeltinformation_HaspaJoker_start.PDF
2024-08-13 22:05 - 2024-08-13 22:05 - 000058412 _____ C:\Users\emres\Downloads\Briefmarken.1Stk.13.08.2024_2205.pdf
2024-08-13 22:00 - 2024-08-13 22:00 - 000057349 _____ C:\Users\emres\Downloads\Briefmarken.1Stk.13.08.2024_2200.pdf
2024-08-13 18:28 - 2024-08-13 18:28 - 000000003 _____ C:\Users\emres\Downloads\57120-0078-3ogmili-130.txt
2024-08-13 16:41 - 2024-08-13 16:41 - 000062976 _____ C:\Users\emres\Downloads\57120-0078-3ogmili-130.pdf
2024-08-13 00:04 - 2024-08-13 00:05 - 000000000 ____D C:\Users\emres\Downloads\Diners
2024-08-07 22:02 - 2024-08-07 22:02 - 000464461 _____ C:\Users\emres\Downloads\Merkblatt_Wasserversorgung_und_Abwasser_Stand_Januar_2018_.pdf
2024-08-07 22:02 - 2024-08-07 22:02 - 000170885 _____ C:\Users\emres\Downloads\Merkblatt_zur_Nutzung_von_Kleingärten_in_Hamburg.pdf
2024-08-07 22:01 - 2024-08-07 22:01 - 000065164 _____ C:\Users\emres\Downloads\Antrag_Garten.pdf
2024-08-07 01:02 - 2024-08-07 01:02 - 000044922 _____ C:\Users\emres\Downloads\TVT-MB_173_Heimtiere_Wellensittiche__2013_.pdf
2024-08-06 22:31 - 2024-08-06 22:31 - 000191102 _____ C:\Users\emres\Downloads\Allgemeine_Versicherungsbedingungen_fuer_den_S-Mobilgeraeteschutz.pdf
2024-08-06 22:26 - 2024-08-06 22:26 - 000350567 _____ C:\Users\emres\Downloads\Mehr_erfahren.PDF
2024-08-06 22:21 - 2024-08-06 22:21 - 003091698 _____ C:\Users\emres\Downloads\Scan 06.08.2024, 22.19.pdf
2024-08-06 21:03 - 2024-08-06 21:03 - 000050968 _____ (Python Software Foundation) C:\WINDOWS\pyshellext.amd64.dll
2024-08-06 21:02 - 2024-08-06 21:02 - 000766232 _____ (Python Software Foundation) C:\WINDOWS\py.exe
2024-08-06 21:02 - 2024-08-06 21:02 - 000764696 _____ (Python Software Foundation) C:\WINDOWS\pyw.exe
2024-08-06 15:42 - 2024-08-06 15:42 - 000088425 _____ C:\Users\emres\Downloads\auftragsbestaetigung___1722951751.pdf
2024-08-06 15:39 - 2024-08-06 15:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\lenovo
2024-08-06 15:36 - 2024-08-06 15:36 - 000707847 _____ C:\Users\emres\Downloads\Gewinnermitlung für das Jahr 2022 von Steuerberater.pdf
2024-08-06 15:36 - 2024-08-06 15:36 - 000353673 _____ C:\Users\emres\Downloads\Bestätigung Freiberufliche Tätigkeit.pdf
2024-08-06 15:35 - 2024-08-06 15:35 - 000356063 _____ C:\Users\emres\Downloads\Personalausweis Kopie.pdf
2024-08-06 01:09 - 2024-08-06 01:09 - 000033070 _____ C:\Users\emres\Downloads\DEBITKARTENVERTRAG_20240806_010858_18F578940FDCFAFEA2ABA609463F9799.pdf
2024-08-05 20:13 - 2024-08-05 20:13 - 001640150 _____ C:\Users\emres\Downloads\DC_DE_Auftrag_Classic_052024_online.pdf
2024-08-05 00:58 - 2024-08-05 00:58 - 000000000 ____D C:\Users\emres\AppData\Local\G DATA
2024-08-05 00:54 - 2024-08-29 01:58 - 000125640 _____ (G Data Software) C:\WINDOWS\system32\Drivers\GRD.sys
2024-08-05 00:54 - 2024-08-05 00:54 - 000037544 _____ (G DATA Software) C:\WINDOWS\system32\Drivers\GdPhyMem.sys
2024-08-05 00:48 - 2024-08-05 00:48 - 000038984 _____ (G DATA Software AG) C:\WINDOWS\system32\Drivers\GDKBFlt64.sys
2024-08-05 00:48 - 2024-08-05 00:48 - 000002142 _____ C:\Users\Public\Desktop\G DATA INTERNET SECURITY.lnk
2024-08-05 00:48 - 2024-08-05 00:48 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_GDKBFlt64_01007.Wdf
2024-08-05 00:48 - 2024-08-05 00:48 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_GDKBB64_01009.Wdf
2024-08-05 00:48 - 2024-08-05 00:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\G DATA INTERNET SECURITY
2024-08-05 00:48 - 2024-08-05 00:48 - 000000000 ____D C:\Program Files\Common Files\AV
2024-08-05 00:48 - 2024-08-05 00:48 - 000000000 ____D C:\Program Files (x86)\G DATA
2024-08-05 00:46 - 2024-08-05 00:51 - 000000000 ____D C:\ProgramData\G Data
2024-08-05 00:46 - 2024-08-05 00:46 - 000000000 ____D C:\Users\emres\AppData\Local\EALaunchHelper
2024-08-05 00:37 - 2024-08-05 00:37 - 004118014 _____ C:\Users\emres\Downloads\video_2024-08-04_23-01-49 (1).mp4
2024-08-05 00:34 - 2024-08-05 00:34 - 015696776 _____ (G DATA Software AG) C:\Users\emres\Downloads\GDATA_INTERNETSECURITY_WEB_WEU.exe
2024-08-04 23:42 - 2024-08-04 23:43 - 000321561 _____ C:\Users\emres\Downloads\versicherungsbedingungen-fuer-die-santander-kreditkarten.pdf
2024-08-04 23:07 - 2024-08-05 00:38 - 000000461 ____H C:\Users\emres\MJKJRegInfo_IWKD4JFUGPYMCI7YA7YOJQB3YRSICTIO
2024-08-04 23:07 - 2024-08-04 23:07 - 000000036 _____ C:\Users\emres\MJKJDeviceGUID
2024-08-04 23:07 - 2024-08-04 23:07 - 000000000 ____D C:\Users\emres\Documents\AVCLabs Video Blur AI
2024-08-04 23:06 - 2024-08-05 00:38 - 000000000 ____D C:\Program Files (x86)\AVCLabs
2024-08-04 23:06 - 2024-08-04 23:06 - 000000000 ____D C:\Users\emres\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AVCLabs
2024-08-04 23:05 - 2024-08-04 23:05 - 157334544 _____ (AVCLabs) C:\Users\emres\Downloads\video_blur_ai_setup.exe
2024-08-04 23:01 - 2024-08-04 23:01 - 006181341 _____ C:\Users\emres\Downloads\video_2024-08-04_23-01-49.mp4
2024-08-04 00:40 - 2024-08-29 01:02 - 000000000 ____D C:\ProgramData\EA Desktop
2024-08-04 00:40 - 2024-08-28 00:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA
2024-08-04 00:40 - 2024-08-04 00:42 - 000000000 ____D C:\Users\emres\AppData\Local\Origin
2024-08-04 00:40 - 2024-08-04 00:40 - 000002149 _____ C:\Users\Public\Desktop\EA.lnk
2024-08-04 00:40 - 2024-08-04 00:40 - 000000000 ____D C:\Users\emres\AppData\Local\EADesktop
2024-08-04 00:40 - 2024-08-04 00:40 - 000000000 ____D C:\Program Files\EA Games
2024-08-04 00:39 - 2024-08-04 00:39 - 002498104 _____ (Electronic Arts) C:\Users\emres\Downloads\EAappInstaller.exe
2024-08-04 00:39 - 2024-08-04 00:39 - 000000000 ____D C:\Users\emres\AppData\Local\Electronic Arts
2024-08-04 00:39 - 2024-08-04 00:39 - 000000000 ____D C:\Program Files\Electronic Arts

==================== Ein Monat (geänderte) ==================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2024-09-03 00:56 - 2023-02-09 12:06 - 001754660 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-09-03 00:56 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF
2024-09-03 00:52 - 2022-02-01 16:44 - 000000000 ___RD C:\Users\emres\OneDrive
2024-09-03 00:51 - 2024-07-23 18:25 - 000000000 ___RD C:\Users\emres\Documents\MEGA
2024-09-03 00:50 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-09-03 00:49 - 2024-02-06 20:03 - 000000000 ____D C:\WINDOWS\system32\Tasks\Privax
2024-09-03 00:49 - 2023-05-25 19:09 - 000000000 ____D C:\WINDOWS\Minidump
2024-09-03 00:49 - 2023-02-09 04:30 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-09-03 00:49 - 2023-02-09 04:26 - 000000000 ____D C:\Users\emres
2024-09-03 00:49 - 2023-02-09 04:25 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-09-03 00:49 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-09-03 00:49 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-09-03 00:49 - 2021-11-10 16:22 - 000000000 ____D C:\ProgramData\NVIDIA
2024-09-03 00:48 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ServiceState
2024-09-03 00:48 - 2021-11-10 16:14 - 002625121 _____ C:\WINDOWS\Minidump\090324-22031-01.dmp
2024-09-03 00:48 - 2021-06-23 20:44 - 000012288 ___SH C:\DumpStack.log.tmp
2024-09-03 00:36 - 2022-05-07 07:17 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2024-09-02 23:34 - 2022-02-01 20:19 - 000002250 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-09-02 22:09 - 2022-02-07 03:55 - 000000000 ____D C:\Users\emres\AppData\Roaming\Telegram Desktop
2024-09-02 03:48 - 2021-11-10 16:14 - 002309651 _____ C:\WINDOWS\Minidump\090224-19062-01.dmp
2024-09-01 22:59 - 2022-02-03 23:05 - 000000000 ____D C:\Users\emres\AppData\Local\Ubisoft Game Launcher
2024-09-01 22:58 - 2022-03-30 04:39 - 000000000 ____D C:\Users\emres\Documents\Outlook-Dateien
2024-09-01 22:47 - 2022-02-07 22:57 - 000000000 ____D C:\Users\emres\AppData\Roaming\Microsoft\Excel
2024-09-01 21:59 - 2024-02-12 22:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother
2024-09-01 21:59 - 2022-02-23 23:33 - 000000000 ____D C:\Program Files (x86)\Brother
2024-09-01 21:55 - 2022-02-24 14:33 - 000000000 ____D C:\Users\emres\AppData\Roaming\Brother
2024-09-01 21:53 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps
2024-09-01 21:52 - 2021-11-10 16:14 - 002578254 _____ C:\WINDOWS\Minidump\090124-19484-01.dmp
2024-09-01 21:48 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\NDF
2024-09-01 21:35 - 2024-07-03 05:56 - 000000000 ____D C:\Program Files\Mozilla Thunderbird
2024-09-01 21:35 - 2022-03-15 00:48 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-09-01 20:43 - 2022-02-01 16:42 - 000000000 ____D C:\Users\emres\AppData\Local\Packages
2024-09-01 20:29 - 2022-02-01 16:44 - 000000000 ____D C:\Users\emres\AppData\Local\PlaceholderTileLogoFolder
2024-09-01 20:29 - 2022-02-01 16:42 - 000000000 ____D C:\Users\emres\AppData\Local\D3DSCache
2024-08-30 16:14 - 2023-10-26 02:37 - 000007352 _____ C:\Users\emres\Downloads\Retourenlabel.pdf
2024-08-30 15:14 - 2021-06-23 20:45 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-08-29 21:53 - 2023-02-09 04:30 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2024-08-29 21:53 - 2022-03-15 00:48 - 000001016 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-08-29 21:16 - 2021-11-10 16:18 - 000000000 ____D C:\Program Files\Microsoft Office
2024-08-29 21:07 - 2024-02-06 20:03 - 000000000 ____D C:\ProgramData\Privax
2024-08-29 21:06 - 2022-05-07 07:17 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2024-08-29 03:23 - 2024-02-16 15:48 - 000284224 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy_4.dll
2024-08-29 03:23 - 2023-08-06 20:31 - 002799144 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2024-08-29 03:23 - 2023-08-06 20:31 - 000783912 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2024-08-29 03:23 - 2023-08-06 20:31 - 000243240 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2024-08-29 03:23 - 2023-08-06 20:31 - 000210360 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2024-08-29 03:23 - 2023-08-06 20:31 - 000149032 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2024-08-29 03:23 - 2023-08-06 20:31 - 000124344 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe
2024-08-29 03:23 - 2023-08-06 20:31 - 000075192 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe
2024-08-29 03:12 - 2023-02-09 04:25 - 000758680 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-08-29 03:09 - 2022-04-13 22:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother P-touch
2024-08-29 01:48 - 2022-02-03 00:30 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2024-08-29 01:48 - 2021-11-10 16:14 - 002642312 _____ C:\WINDOWS\Minidump\082924-21750-01.dmp
2024-08-28 03:26 - 2024-07-12 00:07 - 000000000 ____D C:\Users\emres\AppData\Roaming\WD Discovery
2024-08-28 01:59 - 2023-02-09 04:30 - 000003596 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-4273318395-1383037713-1931220479-1001
2024-08-28 01:59 - 2023-02-09 04:30 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2024-08-28 01:59 - 2022-02-03 00:30 - 000002159 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-08-28 00:34 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate
2024-08-28 00:33 - 2023-07-08 20:05 - 000002084 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-08-28 00:33 - 2023-02-09 04:30 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2024-08-28 00:21 - 2024-07-12 00:07 - 000000000 ____D C:\Users\emres\.wdc
2024-08-28 00:21 - 2024-06-24 02:01 - 000000000 ____D C:\Users\emres\AppData\Local\Plex Media Server
2024-08-28 00:19 - 2023-02-09 04:25 - 000001607 _____ C:\WINDOWS\system32\config\VSMIDK
2024-08-28 00:17 - 2021-11-10 16:18 - 000000000 ____D C:\WINDOWS\TempInst
2024-08-28 00:16 - 2023-10-13 06:11 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2024-08-28 00:16 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-08-28 00:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\WUModels
2024-08-28 00:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\UUS
2024-08-28 00:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2024-08-28 00:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2024-08-28 00:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources
2024-08-28 00:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemApps
2024-08-28 00:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2024-08-28 00:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2024-08-28 00:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2024-08-28 00:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-08-28 00:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Dism
2024-08-28 00:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-08-28 00:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-08-28 00:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2024-08-28 00:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\schemas
2024-08-28 00:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\Provisioning
2024-08-28 00:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-08-28 00:15 - 2023-06-23 02:50 - 000003564 _____ C:\WINDOWS\system32\Tasks\LenovoLegionToolkit_Autorun_6efcc882-924c-4cbc-8fec-f45c25696f98
2024-08-28 00:15 - 2022-08-27 01:07 - 000001465 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo Legion Toolkit.lnk
2024-08-26 21:44 - 2021-11-10 16:24 - 000000000 ____D C:\ProgramData\Package Cache
2024-08-26 01:10 - 2022-02-07 18:36 - 000000000 ____D C:\Users\emres\Downloads\Telegram Desktop
2024-08-23 03:21 - 2022-02-03 23:09 - 000000000 ____D C:\Program Files (x86)\Steam
2024-08-22 19:49 - 2022-02-03 23:10 - 000000000 ____D C:\Users\emres\AppData\Local\Steam
2024-08-20 12:13 - 2024-01-30 00:04 - 002520622 _____ C:\Users\emres\Downloads\1.pdf
2024-08-19 22:46 - 2022-02-01 16:45 - 000000000 ____D C:\Users\emres\AppData\Local\cache
2024-08-17 15:30 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-08-17 15:28 - 2022-02-09 23:57 - 000000000 ____D C:\Program Files\dotnet
2024-08-17 15:28 - 2022-02-03 00:51 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-08-17 15:25 - 2022-05-07 07:25 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2024-08-17 15:25 - 2022-05-07 07:24 - 000249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2024-08-17 15:25 - 2022-02-03 00:51 - 197093640 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-08-17 14:59 - 2024-06-19 20:43 - 000000000 ____D C:\Program Files (x86)\StarMoney 14 Basic
2024-08-14 03:22 - 2022-02-03 00:46 - 000000000 ____D C:\Users\emres\AppData\Roaming\Microsoft\Word
2024-08-13 22:06 - 2022-10-10 13:38 - 000000000 ____D C:\Users\emres\Documents\Citavi 6
2024-08-12 18:43 - 2023-02-09 04:30 - 000004276 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1647649909
2024-08-12 18:43 - 2022-03-19 02:31 - 000001401 _____ C:\Users\emres\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Opera-Browser.lnk
2024-08-11 00:48 - 2023-07-31 00:48 - 000001406 _____ C:\Users\emres\Desktop\Roblox Player.lnk
2024-08-11 00:48 - 2023-07-31 00:48 - 000001234 _____ C:\Users\emres\Desktop\Roblox Studio.lnk
2024-08-11 00:48 - 2023-07-31 00:48 - 000000000 ____D C:\Users\emres\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2024-08-10 23:44 - 2023-04-08 17:59 - 000000000 ____D C:\Users\emres\AppData\Roaming\Mailbird
2024-08-10 23:44 - 2022-02-03 22:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mailbird
2024-08-10 23:44 - 2022-02-03 22:12 - 000000000 ____D C:\Program Files\Mailbird
2024-08-09 16:08 - 2022-09-26 23:32 - 000000443 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
2024-08-07 21:43 - 2024-02-28 00:51 - 000000000 ____D C:\Users\emres\Documents\MyMicroscope Files
2024-08-07 16:52 - 2021-11-10 16:17 - 000000000 ____D C:\ProgramData\Lenovo
2024-08-06 17:01 - 2022-02-03 23:01 - 000000000 ____D C:\Users\emres\AppData\Local\ElevatedDiagnostics
2024-08-06 15:39 - 2023-05-02 13:51 - 000000882 _____ C:\WINDOWS\SysWOW64\InstallUtil.InstallLog
2024-08-06 15:39 - 2023-05-02 00:42 - 000000000 ____D C:\WINDOWS\system32\Tasks\TVT
2024-08-06 15:39 - 2021-11-10 16:25 - 000000000 ____D C:\Program Files (x86)\Lenovo
2024-08-05 22:07 - 2021-06-23 20:44 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2024-08-05 01:05 - 2023-10-09 19:16 - 000000000 ____D C:\Program Files\AtlasVPN
2024-08-05 01:05 - 2022-02-01 16:43 - 000000000 ____D C:\Users\emres\AppData\Local\CrashDumps
2024-08-05 01:05 - 2022-02-01 16:42 - 000000000 ____D C:\ProgramData\Packages
2024-08-05 00:48 - 2022-05-07 07:24 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-08-05 00:44 - 2023-03-23 02:14 - 000000000 ____D C:\Users\emres\AppData\Local\Avast Software
2024-08-05 00:44 - 2023-03-23 02:12 - 000000000 ____D C:\ProgramData\Avast Software
2024-08-05 00:41 - 2022-02-21 02:57 - 000918944 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2024-08-04 23:34 - 2024-07-12 00:08 - 000002888 _____ C:\WINDOWS\system32\Tasks\DashboardNotificationManager Task
2024-08-04 23:34 - 2024-07-12 00:07 - 000002418 _____ C:\WINDOWS\system32\Tasks\WD Discovery Service Task emres
2024-08-04 23:34 - 2024-07-12 00:07 - 000002356 _____ C:\WINDOWS\system32\Tasks\WD Device Agent Task emres
2024-08-04 23:34 - 2024-02-07 14:02 - 000002712 _____ C:\WINDOWS\system32\Tasks\IcarusPrivaxVpnUpgrade
2024-08-04 23:34 - 2023-02-09 04:30 - 000003778 _____ C:\WINDOWS\system32\Tasks\Opera GX scheduled assistant Autoupdate 1646251941
2024-08-04 23:34 - 2023-02-09 04:30 - 000003684 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-08-04 23:34 - 2023-02-09 04:30 - 000003540 _____ C:\WINDOWS\system32\Tasks\Opera GX scheduled Autoupdate 1643938694
2024-08-04 23:34 - 2023-02-09 04:30 - 000003460 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-08-04 23:34 - 2023-02-09 04:30 - 000003398 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-08-04 23:34 - 2023-02-09 04:30 - 000003152 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-08-04 23:34 - 2023-02-09 04:30 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-08-04 23:34 - 2023-02-09 04:30 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-08-04 23:34 - 2023-02-09 04:30 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-08-04 23:34 - 2023-02-09 04:30 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-08-04 23:34 - 2023-02-09 04:30 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-08-04 23:34 - 2023-02-09 04:30 - 000002914 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-08-04 23:34 - 2023-02-09 04:30 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-08-04 23:34 - 2023-02-09 04:30 - 000002720 _____ C:\WINDOWS\system32\Tasks\NvBroadcast_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-08-04 23:34 - 2023-02-09 04:30 - 000002342 _____ C:\WINDOWS\system32\Tasks\NahimicSvc64Run
2024-08-04 23:34 - 2023-02-09 04:30 - 000002342 _____ C:\WINDOWS\system32\Tasks\NahimicSvc32Run
2024-08-04 23:34 - 2023-02-09 04:30 - 000002302 _____ C:\WINDOWS\system32\Tasks\NahimicTask32
2024-08-04 23:34 - 2023-02-09 04:30 - 000002282 _____ C:\WINDOWS\system32\Tasks\NahimicTask64
2024-08-04 00:40 - 2022-02-03 23:05 - 000000000 ____D C:\ProgramData\Origin

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========

2013-10-14 04:44 - 2013-10-14 04:44 - 002174976 _____ (Advanced Micro Devices Inc.) C:\Program Files (x86)\Common Files\atimpenc.dll
2024-08-05 00:48 - 2024-08-05 00:48 - 000000000 _____ () C:\Users\emres\AppData\Roaming\gdfw.log
2024-08-05 00:48 - 2024-08-05 00:48 - 000000779 _____ () C:\Users\emres\AppData\Roaming\gdscan.log
2022-06-05 03:00 - 2022-06-05 03:00 - 000024536 _____ () C:\Users\emres\AppData\Local\0BD5008DA9FC40a997495B996906448E.Layout2.lbx
2022-04-28 00:37 - 2022-04-28 00:37 - 000017254 _____ () C:\Users\emres\AppData\Local\2A1931294B364f6eB05DC4430196CE28.Layout2.lbx
2022-06-05 03:00 - 2022-06-05 03:00 - 000063713 _____ () C:\Users\emres\AppData\Local\C931E5C0870046789753CA7A41A9684E.Layout3.lbx
2022-09-30 16:37 - 2022-09-30 16:37 - 000001998 _____ () C:\Users\emres\AppData\Local\recently-used.xbel
2022-03-30 03:12 - 2022-03-30 03:29 - 000017408 _____ () C:\Users\emres\AppData\Local\WebpageIcons.db

==================== FLock ==============================

2023-06-13 17:56 C:\Users\emres\AppData\Roaming\Microsoft\Teams

==================== FCheck ================================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

FCheck: C:\WINDOWS\SysWOW64\clauth1.dll [2024-03-31] <==== ACHTUNG (Null Byte Datei/Ordner)
FCheck: C:\WINDOWS\SysWOW64\clauth2.dll [2024-03-31] <==== ACHTUNG (Null Byte Datei/Ordner)
FCheck: C:\WINDOWS\SysWOW64\nsprs.dll [2024-03-31] <==== ACHTUNG (Null Byte Datei/Ordner)
FCheck: C:\WINDOWS\SysWOW64\serauth1.dll [2024-03-31] <==== ACHTUNG (Null Byte Datei/Ordner)
FCheck: C:\WINDOWS\SysWOW64\serauth2.dll [2024-03-31] <==== ACHTUNG (Null Byte Datei/Ordner)
FCheck: C:\WINDOWS\SysWOW64\ssprs.dll [2024-03-31] <==== ACHTUNG (Null Byte Datei/Ordner)

==================== SigCheck ============================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

==================== Ende von FRST.txt ========================
__________________
Alt 03.09.2024, 00:27   #4
emres.
 
GData Phishing erkannt beim Öffnen eines Browsers - Standard

GData Phishing erkannt beim Öffnen eines Browsers


Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 22-08.2024
durchgeführt von emres (03-09-2024 01:02:38)
Gestartet von C:\Users\emres\Downloads\FRST0824
Microsoft Windows 11 Home Version 23H2 22631.4037 (X64) (2023-02-09 09:59:06)
Start-Modus: Normal
==========================================================


==================== Konten: =============================


(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

Administrator (S-1-5-21-4273318395-1383037713-1931220479-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-4273318395-1383037713-1931220479-503 - Limited - Disabled)
emres (S-1-5-21-4273318395-1383037713-1931220479-1001 - Administrator - Enabled) => C:\Users\emres
Gast (S-1-5-21-4273318395-1383037713-1931220479-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-4273318395-1383037713-1931220479-504 - Limited - Disabled)

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: G DATA INTERNET SECURITY (Enabled - Up to date) {47716156-1E17-3DD0-AE41-69218D4FDE27}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: G DATA INTERNET SECURITY (Enabled) {7F4AE073-5478-3C88-851E-C014739C995C}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

123RECHUNG (HKLM-x32\...\{70E972F1-4985-4804-9097-A98135FFB65D}) (Version: 1.00.0000 - bitArt.at, Mag. Herwig Huber)
3DMark (HKLM\...\{B8BB52DF-9F8A-4B36-986F-C9CBC896F34E}) (Version: 2.22.7336.0 - UL) Hidden
3DMark (HKLM-x32\...\{827d2aec-32b8-4307-9de0-2860c5242a94}) (Version: 2.22.7336.0 - UL)
3uTools (HKLM-x32\...\3uTools) (Version: 2.59.012 - ShangHai ZhangZheng Network Technology Co., Ltd.)
7-PDF Split & Merge Version 7.3.0 (Build 168) (HKLM-x32\...\7-PDF Split & Merge_is1) (Version: 7-PDF Split & Merge - Version 7.3.0 (Build 168) - 7-PDF, Germany - Thorsten Niebergall-Hodes)
7-Zip 21.07 (x64) (HKLM\...\7-Zip) (Version: 21.07 - Igor Pavlov)
7-Zip 22.01 (x64 edition) (HKLM\...\{23170F69-40C1-2702-2201-000001000000}) (Version: 22.01.00.0 - Igor Pavlov)
Acronis Drivers (HKLM\...\{EF343254-D355-4A01-A40E-51CEEA431518}) (Version: 25.0.39200 - Acronis) Hidden
Acronis True Image for Western Digital (HKLM-x32\...\{32449011-A026-4671-BDF2-D49A944181DA}) (Version: 25.0.39200 - Acronis) Hidden
Acronis True Image for Western Digital (HKLM-x32\...\{32449011-A026-4671-BDF2-D49A944181DA}Visible) (Version: 25.0.39200 - Acronis)
ActivePresenter (HKLM\...\{A2A40277-D807-4754-95A3-2F294C2C51D3}_is1) (Version: 9.0.5 - Atomi Systems, Inc.)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1031-1033-7760-BC15014EA700}) (Version: 24.003.20054 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601091}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
AltServer (HKLM-x32\...\{02C6BC9F-DB8B-4D6B-B991-B965D4193107}) (Version: 1.4.7 - Riley Testut)
Anki (HKLM-x32\...\Anki) (Version: 2.1.53 - )
Apple Application Support (32-Bit) (HKLM-x32\...\{CCA8C50D-785B-4896-8675-FFE0C4ECCBC3}) (Version: 8.7 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{75BEF7E8-4370-4D42-94F3-B5AA77057965}) (Version: 8.7 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{336D80E8-E773-4B6F-BCAB-D291F34A6685}) (Version: 17.5.0.12 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{B292D163-23D2-4523-A699-1ABEC1875609}) (Version: 2.7.0.3 - Apple Inc.)
AppLogLibSetup (HKLM-x32\...\{52FB0C8F-DF05-4C61-AEB6-18C55F8C385F}) (Version: 1.0.3.0 - Brother Industries Ltd.) Hidden
Audacity 3.0.0 (HKLM-x32\...\Audacity_is1) (Version: 3.0.0 - Audacity Team)
AusweisApp (HKLM\...\{AFBE7811-F997-4752-BB49-3E5517C34E8D}) (Version: 2.2.0 - Governikus GmbH & Co. KG)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
BrLauncher (HKLM-x32\...\{C04DCB6D-02A2-41AD-AA79-2644CEB26445}) (Version: 2.0.17.0 - Brother Industries Ltd.) Hidden
BrLogRx (HKLM-x32\...\{B556F816-FF4D-4BB6-9339-ED28639E2EF3}) (Version: 1.0.2.1 - Brother Industries Ltd.) Hidden
Brother iPrint&Scan (HKLM-x32\...\{89208d05-31fd-46e1-a160-6cba7ec49844}) (Version: 11.1.1.1 - Brother Industries, Ltd.)
Brother iPrint&Scan (HKLM-x32\...\{C86D9011-7AE0-4329-AEED-17C69CD84E88}) (Version: 11.1.1.1 - Brother Industries, Ltd.) Hidden
Brother Printer Driver (HKLM-x32\...\{B0526B11-2029-4DA4-8724-BB96BD874FF0}) (Version: 3.3.0.0 - Brother Industries Ltd.) Hidden
Brother Printer Setting Tool (HKLM-x32\...\{8DA2E2DC-C572-4F87-89FC-833DB588CC7B}) (Version: 1.6.0130 - Brother Industries, Ltd.)
Brother P-touch Address Book 1.4 (HKLM-x32\...\{183610C9-C423-4EF3-8B05-5B194851F9BA}) (Version: 1.4.0020 - Brother Industries, Ltd.)
Brother P-touch Editor 5.4 (HKLM-x32\...\{3D6B8787-51B7-45F3-B730-79875DA88764}) (Version: 5.4.0150 - Brother Industries, Ltd.)
Brother P-touch Update Software (HKLM-x32\...\{6C88B6DA-BD03-40A4-A920-A89A12BD5E15}) (Version: 1.0.0250 - Brother Industries, Ltd.)
Brother Scanner Driver (HKLM-x32\...\{77B57C72-AC29-42C6-BD2E-DA551A9ACC9B}) (Version: 1.0.38.1 - Brother Industries Ltd.) Hidden
BrSupportTools (HKLM-x32\...\{E1B7CE6D-A4F9-4C9B-8FAB-9178CF47FDED}) (Version: 1.0.27.0 - Brother Industries Ltd.) Hidden
Cisco AnyConnect Secure Mobility Client  (HKLM-x32\...\Cisco AnyConnect Secure Mobility Client) (Version: 4.10.08025 - Cisco Systems, Inc.)
Cisco AnyConnect Secure Mobility Client (HKLM-x32\...\{ECB9C055-4ECE-438C-AC50-2B09D76377D6}) (Version: 4.10.08025 - Cisco Systems, Inc.) Hidden
Citavi 6 (HKLM-x32\...\{6A331045-8FF4-4BC9-9C56-E593ACAE28C2}) (Version: 6.14.0.0 - Swiss Academic Software)
ControlCenter4 (HKLM-x32\...\{CAFE5834-5440-41B8-8C56-4DD946A1A5E1}) (Version: 4.6.21.1 - Brother Industries, Ltd.) Hidden
ControlCenter4 CSDK (HKLM-x32\...\{1E89F75C-EF46-406C-9AAC-615B3CCC1D3D}) (Version: 4.3.2.1 - Brother Insutries Ltd.) Hidden
CrystalDiskInfo 9.3.2 (HKLM\...\CrystalDiskInfo_is1) (Version: 9.3.2 - Crystal Dew World)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Dashboard (HKLM-x32\...\Western Digital SSD Dashboard) (Version: 4.2.2.5 - Western Digital Corporation)
DeviceDetect (HKLM-x32\...\{2AE08F71-6282-4083-B049-B4069679559E}) (Version: 1.4.5.0 - Brother Industries Ltd.) Hidden
Die Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.69.43.024017 - Electronic Arts Inc.)
Die Sims™ 3 Design-Garten-Accessoires (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}_The Sims 3 Outdoor Living Stuff) (Version: 1.0.0.0 - Electronic Arts Inc.)
Die Sims™ 3 Einfach tierisch (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}_The Sims 3 Pets) (Version: 1.0.0.0 - Electronic Arts Inc.)
Die Sims™ 3 Gib Gas-Accessoires (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}_The Sims 3 Fast Lane Stuff) (Version: 1.0.0.0 - Electronic Arts Inc.)
Die Sims™ 3 Inselparadies (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}_The Sims 3 Island Paradise) (Version: 1.0.0.0 - Electronic Arts Inc.)
Die Sims™ 3 Jahreszeiten (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}_The Sims 3 Seasons) (Version: 1.0.0.0 - Electronic Arts Inc.)
Die Sims™ 3 Late Night (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}_The Sims 3 Late Night) (Version: 1.0.0.0 - Electronic Arts Inc.)
Die Sims™ 3 Lebensfreude (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}_The Sims 3 Generations) (Version: 1.0.0.0 - Electronic Arts Inc.)
Die Sims™ 3 Luxus-Accessoires (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}_The Sims 3 High-End Loft Stuff) (Version: 1.0.0.0 - Electronic Arts Inc.)
Die Sims™ 3 Reiseabenteuer (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}_The Sims 3 World Adventures) (Version: 1.0.0.0 - Electronic Arts Inc.)
Die Sims™ 3 Showtime (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}_The Sims 3 Showtime) (Version: 1.0.0.0 - Electronic Arts Inc.)
Die Sims™ 3 Stadt-Accessoires (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}_The Sims 3 Town Life Stuff) (Version: 1.0.0.0 - Electronic Arts Inc.)
Die Sims™ 3 Traumkarrieren (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}_The Sims 3 Ambitions) (Version: 1.0.0.0 - Electronic Arts Inc.)
Die Sims™ 3 Traumsuite-Accessoires (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}_The Sims 3 Master Suite Stuff) (Version: 1.0.0.0 - Electronic Arts Inc.)
Die Sims™ 3 Wildes Studentenleben (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}_The Sims 3 University Life) (Version: 1.0.0.0 - Electronic Arts Inc.)
Die Sims™ 4 (HKLM-x32\...\{48EBEBBF-B9F8-4520-A3CF-89A730721917}) (Version: 1.93.146.1020 - Electronic Arts Inc.)
Druckerdeinstallation für EPSON ET-M1120 Series (HKLM\...\EPSON ET-M1120 Series) (Version:  - Seiko Epson Corporation)
EA app (HKLM\...\{C2622085-ABD2-49E5-8AB9-D3D6A642C091}) (Version: 13.284.0.5797 - Electronic Arts) Hidden
EA app (HKLM-x32\...\{26cf2948-31cf-432f-a22e-47939cfa26b1}) (Version: 13.284.0.5797 - Electronic Arts)
ENE_QSI_Loki_HAL (HKLM\...\{BDE43F26-5917-44F8-B86A-F1D9A6B80B32}) (Version: 1.0.3.0 - ENE TECHNOLOGY INC.) Hidden
ENE_QSI_Loki_HAL (HKLM-x32\...\{205ef3a8-937b-43cb-90fc-2f58f71408d8}) (Version: 1.0.3.0 - ENE TECHNOLOGY INC.) Hidden
Epic Games Launcher (HKLM-x32\...\{E0419FB0-0C46-4F07-9D5B-2FD78A8C45ED}) (Version: 1.3.0.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{32C68D93-D32F-4B01-8250-61642BFC22F8}) (Version: 2.0.28.0 - Epic Games, Inc.)
Epson Printer Connection Checker (HKLM-x32\...\{AA6AE72A-371E-4454-9066-3D02BB4BC4E9}) (Version: 3.3.1.0 - Seiko Epson Corporation)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
EPSON WF-3520 Series Printer Uninstall (HKLM\...\EPSON WF-3520 Series) (Version:  - SEIKO EPSON Corporation)
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.6.0 - SEIKO EPSON CORPORATION)
ES Status Monitor (HKLM-x32\...\{FE3F50E5-73E4-48C3-AA3A-95DB7374484F}) (Version: 1.5.0.0 - Brother Inductries, Ltd.)
Far Cry 4 (HKLM-x32\...\Uplay Install 420) (Version:  - Ubisoft)
FFmpeg (Windows) for Audacity Version 2.2.2 (HKLM-x32\...\{9C7E31E3-017F-434C-AC40-24431A354A1E}_is1) (Version: 2.2.2 - )
Fotogalerie (HKLM-x32\...\{41BF4A3B-D60A-4E92-883F-C88C8C157261}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Free DVD Video Converter (HKLM-x32\...\Free DVD Video Converter_is1) (Version: 2.0.65.823 - Digital Wave Ltd)
Futuremark SystemInfo (HKLM-x32\...\{6037E2E3-C7A4-4F37-AE61-0174E1A919BE}) (Version: 5.46.1056.0 - Futuremark)
G DATA INTERNET SECURITY (HKLM-x32\...\G DATA INTERNET SECURITY) (Version: 25.5.17.335 - G DATA CyberDefense AG)
G*Power 3.1.9.7 (HKLM-x32\...\{FA3666A9-FF30-4777-B906-305B1EF0486E}) (Version: 3.1.97 - Franz Faul, Uni Kiel, Germany)
GMX ProfiFax (HKU\S-1-5-21-4273318395-1383037713-1931220479-1001\...\GMXProfiFax) (Version: 1.5.0 - 1un1 Mail and Media GmbH)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 128.0.6613.114 - Google LLC)
Grand Theft Auto V (HKLM-x32\...\{5EFC6C07-6B87-43FC-9524-F9E967241741}) (Version: 1.0.3028.0 - Rockstar Games)
Graphics Rules Maker (HKLM-x32\...\Graphics Rules Maker) (Version: 2-0-0 - SimsNetwork.com)
HMA VPN (HKLM\...\Privax HMA) (Version: 24.7.10323.12088 - Privax)
HowToGuide (HKLM-x32\...\{36580EEB-4EDF-4880-BBD4-097E2C645ECD}) (Version: 1.0.1.0 - Brother Industries Ltd.) Hidden
HttpToUsbBridge (HKLM-x32\...\{999245BB-F187-45E8-95C9-4AE0CC8639D7}) (Version: 2.1.67.1 - Brother Industries Ltd.)
IBM SPSS Amos 29 (HKLM\...\{8E187325-A1A7-499D-A300-9A603E2CC2B6}) (Version: 29.0.0.0 - IBM Corp)
IBM SPSS Statistics (HKLM\...\{31DAF91B-B99C-4C42-BCA7-B50463A74961}) (Version: 29.0.2.0 - IBM Corp)
iCloud (HKLM\...\{8808B208-87D1-4725-8192-76D257E9DEAE}) (Version: 7.21.0.23 - Apple Inc.)
Inkscape (HKLM-x32\...\Inkscape) (Version: 1.2.1- - Inkscape)
iTunes (HKLM\...\{8A04F54C-B9A8-4C2B-BA5E-C80133232D07}) (Version: 12.13.2.3 - Apple Inc.)
Java(TM) SE Development Kit 17.0.2 (64-bit) (HKLM\...\{65BA81E7-0238-5B54-9069-A59610247B0B}) (Version: 17.0.2.0 - Oracle Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Legion Arena (HKLM-x32\...\Legion Arena_is1) (Version: 1.3.1.1 - Lenovo Group Ltd.)
LegionFanControl (HKLM-x32\...\LegionFanControl) (Version:  - Rodpad)
Lenovo Legion Toolkit Version 2.24.0 (HKLM\...\{0C37B9AC-9C3D-4302-8ABB-125C7C7D83D5}_is1) (Version: 2.24.0 - Bartosz Cichecki)
Lenovo Migration Assistant (HKLM\...\Lenovo Migration Assistant_is1) (Version: 2.1.4.6 - Lenovo)
Lenovo Service Bridge (HKU\S-1-5-21-4273318395-1383037713-1931220479-1001\...\{2C74547D-EF88-47F4-85F5-BE46A31E26B7}_is1) (Version: 5.0.2.17 - Lenovo)
Lenovo System Update (HKLM-x32\...\TVSU_is1) (Version: 5.08.03.59 - Lenovo)
Lens Studio (HKLM-x32\...\{652D235D-D6FF-4E47-B95F-D2BE6E8B9858}}_is1) (Version: 4.55.1 - Snap Inc.)
LibreOffice 7.3.1.3 (HKLM\...\{2AB46F12-061D-4BB1-BE17-FD65830DE46B}) (Version: 7.3.1.3 - The Document Foundation)
Luminar AI (HKLM\...\Luminar AI) (Version: 1.5.3.10043 - Skylum)
Mailbird (HKLM\...\{ADFE1914-39D7-47A8-BB92-5BD0FB9374EC}) (Version: 2.9.101 - Mailbird)
MakeMKV v1.16.4 (HKLM-x32\...\MakeMKV) (Version: v1.16.4 - GuinpinSoft inc)
MAXQDA 2022 (64 bit) (HKLM\...\{3ECA1A78-1095-4BAF-905E-66023E4C2753}) (Version: 22.6.1 - VERBI Software. Consult. Sozialforschung)
MEGAsync (HKLM-x32\...\MEGAsync) (Version:  - Mega Limited)
Microsoft .NET Host - 5.0.17 (x64) (HKLM\...\{E663ED1E-899C-40E8-91D0-8D37B95E3C69}) (Version: 40.68.31213 - Microsoft Corporation) Hidden
Microsoft .NET Host - 6.0.33 (x64) (HKLM\...\{8584855C-3B2B-4F95-BE1D-CCA5B6DE2815}) (Version: 48.132.18378 - Microsoft Corporation) Hidden
Microsoft .NET Host - 8.0.8 (x64) (HKLM\...\{3BA242F8-BDB5-4096-9FBC-333CD663BBAD}) (Version: 64.32.18380 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 5.0.17 (x64) (HKLM\...\{8BA25391-0BE6-443A-8EBF-86A29BAFC479}) (Version: 40.68.31213 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.33 (x64) (HKLM\...\{62A8E894-9FD1-45A0-A4D0-BD9FA854818D}) (Version: 48.132.18378 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 8.0.8 (x64) (HKLM\...\{7FE24458-0796-4428-99C2-9A0F8DAB93CC}) (Version: 64.32.18380 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 5.0.17 (x64) (HKLM\...\{5A66E598-37BD-4C8A-A7CB-A71C32ABCD78}) (Version: 40.68.31213 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.33 (x64) (HKLM\...\{07BE9B02-0247-471C-B06F-A3B1A8FA9216}) (Version: 48.132.18378 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 8.0.8 (x64) (HKLM\...\{9ACB23DB-4D32-49ED-A5E3-F4E2F8D9D2AA}) (Version: 64.32.18380 - Microsoft Corporation) Hidden
Microsoft 365 - de-de (HKLM\...\O365HomePremRetail - de-de) (Version: 16.0.17928.20114 - Microsoft Corporation)
Microsoft Access database engine 2016 (English) (HKLM-x32\...\{90160000-00D1-0409-0000-0000000FF1CE}) (Version: 16.0.5044.1000 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 128.0.2739.54 - Microsoft Corporation)
Microsoft Edge WebView2-Laufzeit (HKLM-x32\...\Microsoft EdgeWebView) (Version: 128.0.2739.54 - Microsoft Corporation)
Microsoft GameInput (HKLM-x32\...\{1F2B6AF3-C260-8666-5950-E3FEDBC851D6}) (Version: 10.1.22621.3036 - Microsoft Corporation)
Microsoft Office Professional Plus 2021 - de-de (HKLM\...\ProPlus2021Retail - de-de) (Version: 16.0.17928.20114 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 24.166.0818.0002 - Microsoft Corporation)
Microsoft OneNote - de-de (HKLM\...\OneNoteFreeRetail - de-de) (Version: 16.0.17928.20114 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-4273318395-1383037713-1931220479-1001\...\Teams) (Version: 1.6.00.6754 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{C6FD611E-7EFE-488C-A0E0-974C09EF6473}) (Version: 5.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.36.32532 (HKLM-x32\...\{8bdfe669-9705-4184-9368-db9ce581e0e7}) (Version: 14.36.32532.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.32.31326 (HKLM-x32\...\{817e21c1-6b3a-4bc1-8c49-67e4e1887b3a}) (Version: 14.32.31326.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.36.32532 (HKLM\...\{0025DD72-A959-45B5-A0A3-7EFEB15A8050}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.36.32532 (HKLM\...\{D5D19E2F-7189-42FE-8103-92CD1FA457C2}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.32.31326 (HKLM-x32\...\{A250E750-DB3F-40C1-8460-8EF77C7582DA}) (Version: 14.32.31326 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.32.31326 (HKLM-x32\...\{46E11E7F-01E1-44D0-BB86-C67342D253DD}) (Version: 14.32.31326 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 5.0.17 (x64) (HKLM\...\{3C31CBA1-A0D9-4B95-A807-AD2313D12F47}) (Version: 40.68.31219 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 5.0.17 (x64) (HKLM-x32\...\{20d5df4e-006c-4d6d-a0dc-490d009b9786}) (Version: 5.0.17.31219 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 6.0.33 (x64) (HKLM\...\{A59F43A6-AADB-42EB-883B-2FE4E3AA3A69}) (Version: 48.132.18374 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.33 (x64) (HKLM-x32\...\{ecb94bc3-963d-412a-b141-8b7c32ef103f}) (Version: 6.0.33.33916 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 8.0.8 (x64) (HKLM\...\{663E7053-3B36-4AE5-8223-234867FAEAE6}) (Version: 64.32.18376 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 8.0.8 (x64) (HKLM-x32\...\{33832ff3-5583-4b81-b270-d9fd42760e1a}) (Version: 8.0.8.33916 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{70C91B91-61E8-4D06-86D6-A9DCC291983A}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox (x64 de) (HKLM\...\Mozilla Firefox 129.0.2 (x64 de)) (Version: 129.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 115.12.2 - Mozilla)
Mozilla Thunderbird (x64 de) (HKLM\...\Mozilla Thunderbird 115.12.2 (x64 de)) (Version: 115.12.2 - Mozilla)
MSVCRT (HKLM-x32\...\{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}) (Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (HKLM-x32\...\{8E14DDC8-EA60-4E18-B3E3-1937104D5BDA}) (Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (HKLM\...\{E9FA781F-3E80-4399-825A-AD3E11C28C77}) (Version: 16.4.1109.0912 - Microsoft) Hidden
Navigation Updater (HKU\S-1-5-21-4273318395-1383037713-1931220479-1001\...\{b5230d5e-be15-4893-994e-6d42514bac82}) (Version: 2.2.3.8 - HYUNDAI MOTOR GROUP)
Nero Burning ROM & Express (HKLM-x32\...\Nero Burning ROM) (Version: 26.5.1.8 - Nero AG)
Nero Disc to Device (HKLM-x32\...\Nero Disc to Device) (Version: 26.5.1.1 - Nero AG)
Nero Info (HKLM-x32\...\Nero Info) (Version: 26.5.1.1 - Nero AG)
Nero Start (HKLM-x32\...\Nero Common) (Version: 26.5.15.0 - Nero AG)
NetworkRepairTool (HKLM-x32\...\{947DE453-69FD-4CF6-A682-04D1308C79AF}) (Version: 1.2.15.0 - Brother Industries, Ltd.) Hidden
Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 8.4.6 - Notepad++ Team)
NVIDIA Broadcast 1.4.0.29 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIABroadcast) (Version: 1.4.0.29 - NVIDIA Corporation)
NVIDIA FrameView SDK 1.3.8513.32290073 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8513.32290073 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.27.0.120 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.27.0.120 - NVIDIA Corporation)
NVIDIA Grafiktreiber 546.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 546.17 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.40.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.40.14 - NVIDIA Corporation)
NVIDIA Omniverse Launcher 1.6.10 (HKU\S-1-5-21-4273318395-1383037713-1931220479-1001\...\ddd216ee-cf6c-55b0-9ca8-733b2ef622a0) (Version: 1.6.10 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
NVIDIA USBC Driver 1.50.831.832 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_USBC) (Version: 1.50.831.832 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.17928.20018 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.17928.20114 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0407-1000-0000000FF1CE}) (Version: 16.0.17628.20110 - Microsoft Corporation) Hidden
Opera GX Stable 109.0.5097.142 (HKU\S-1-5-21-4273318395-1383037713-1931220479-1001\...\Opera GX 109.0.5097.142) (Version: 109.0.5097.142 - Opera Software)
Opera Stable 112.0.5197.53 (HKU\S-1-5-21-4273318395-1383037713-1931220479-1001\...\Opera 112.0.5197.53) (Version: 112.0.5197.53 - Opera Software)
Paradox Launcher v2 (HKLM\...\{8C5CF4CE-D589-40B4-A77F-01FD64602C50}) (Version: 2.4.0 - Paradox Interactive)
PDF24 Creator 11.14.0 (HKLM\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version: 11.14.0 - PDF24.org)
PDF-XChange Editor (HKLM\...\{3BF936CE-B4E6-4BFF-B9BD-51052D19C419}) (Version: 9.2.359.0 - Tracker Software Products (Canada) Ltd.) Hidden
PDF-XChange Editor (HKLM-x32\...\{21177007-de9c-4f5b-84c9-151f690f72a0}) (Version: 9.2.359.0 - Tracker Software Products (Canada) Ltd.)
Photo Common (HKLM-x32\...\{87DABDEA-47A4-4182-AA7C-2C90DAAE3117}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Photo Gallery (HKLM-x32\...\{07AAB66E-4718-422D-9218-4AFB3C922A71}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Plex (HKLM-x32\...\Plex) (Version: 1.95.3 - Plex, Inc.)
Plex Media Server 1.40.1.8227 (x64) (HKLM\...\{688e1d8f-188e-49cd-83ca-2669a7e3f8cc}_is1) (Version: 1.40.1.8227 - Plex, Inc.)
Poly Lens (HKLM-x32\...\{8F88CDF9-FE3C-46AA-8E23-259021E46F9B}) (Version: 1.1.24.4686 - Poly, Inc.)
PotPlayer-64 bit (HKLM\...\PotPlayer64) (Version: 230208 - Kakao Corp.)
Python 3.12.5 (64-bit) (HKU\S-1-5-21-4273318395-1383037713-1931220479-1001\...\{65f0caff-14d5-41c8-bfcc-cf071c618bc3}) (Version: 3.12.5150.0 - Python Software Foundation)
Python 3.12.5 Add to Path (64-bit) (HKLM\...\{297F0F40-8782-45A0-A4A1-7A27E5629000}) (Version: 3.12.5150.0 - Python Software Foundation) Hidden
Python 3.12.5 Core Interpreter (64-bit) (HKLM\...\{B2ACF787-C0C6-4049-B5E0-728FDE281A0C}) (Version: 3.12.5150.0 - Python Software Foundation) Hidden
Python 3.12.5 Development Libraries (64-bit) (HKLM\...\{A576F2EB-97DB-4B01-9422-B8E1FA15B92B}) (Version: 3.12.5150.0 - Python Software Foundation) Hidden
Python 3.12.5 Documentation (64-bit) (HKLM\...\{3E498CAA-A927-434A-9A52-1C0BAB891020}) (Version: 3.12.5150.0 - Python Software Foundation) Hidden
Python 3.12.5 Executables (64-bit) (HKLM\...\{49C6B471-DE43-4ECA-B4F2-2CE5D7BF8F6D}) (Version: 3.12.5150.0 - Python Software Foundation) Hidden
Python 3.12.5 pip Bootstrap (64-bit) (HKLM\...\{C43FD2AD-079B-409F-ADE9-FD287B1F79F0}) (Version: 3.12.5150.0 - Python Software Foundation) Hidden
Python 3.12.5 Standard Library (64-bit) (HKLM\...\{0DC6C3A0-5CF6-46F6-B639-80DA74882478}) (Version: 3.12.5150.0 - Python Software Foundation) Hidden
Python 3.12.5 Tcl/Tk Support (64-bit) (HKLM\...\{C3052A24-45DB-4723-AD99-9025FC199975}) (Version: 3.12.5150.0 - Python Software Foundation) Hidden
Python 3.12.5 Test Suite (64-bit) (HKLM\...\{C0BCA7FE-EABE-4740-B19D-FAF0C1DFF90C}) (Version: 3.12.5150.0 - Python Software Foundation) Hidden
Python Launcher (HKLM-x32\...\{F88968D7-7934-415F-910A-4C35E6528C6C}) (Version: 3.12.5150.0 - Python Software Foundation)
RemoteSetup (HKLM-x32\...\{EB4D046E-28C1-4884-9129-47F41317E9B0}) (Version: 3.10.3.0 - Brother Industries Ltd.) Hidden
Rename Master (HKLM-x32\...\Rename Master_is1) (Version:  - )
Roblox Player for emres (HKU\S-1-5-21-4273318395-1383037713-1931220479-1001\...\roblox-player) (Version:  - Roblox Corporation)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.81.1699 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.2.3.4 - Rockstar Games)
ScannerUtilityInstaller (HKLM-x32\...\{D94DD953-F38C-4220-A17C-9217106510A6}) (Version: 1.20.0.1 - Brother) Hidden
StarMoney 14 Basic  (HKLM-x32\...\{2B4EF437-D473-45CB-9E62-F7C85223426F}) (Version: 14 - Star Finanz GmbH)
StatusMonitor (HKLM-x32\...\{1F4C40FC-9C25-450C-9F77-0AE71CA0DB64}) (Version: 1.22.14.0 - Brother Industries, Ltd.) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Surfshark (HKLM-x32\...\{45260B6A-0934-44AE-B23C-5ECF22240B10}) (Version: 4.12.0999 - Surfshark) Hidden
Surfshark (HKLM-x32\...\Surfshark 4.12.0999) (Version: 4.12.0999 - Surfshark)
Surfshark TAP Driver Windows (HKLM-x32\...\{3E0F2149-F7FA-4299-A940-5EB798F74D47}) (Version: 1.0.1 - Surfshark)
Surfshark TAP Driver Windows (HKLM-x32\...\{51F73AB8-1008-4637-B82A-4DAC08F96D2F}) (Version: 1.0.1 - Surfshark)
Surfshark TAP Driver Windows (HKLM-x32\...\{A270BA60-BE4B-44CE-A208-1028297B65C1}) (Version: 1.0.1 - Surfshark)
Sweet Home 3D version 6.6 (HKLM\...\Sweet Home 3D_is1) (Version: 6.6 - eTeks)
Teams Machine-Wide Installer (HKLM-x32\...\{731F6BAA-A986-45A4-8936-7C3AAAAA760B}) (Version: 1.4.0.22976 - Microsoft Corporation)
Telegram Desktop (HKU\S-1-5-21-4273318395-1383037713-1931220479-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 5.4.1 - Telegram FZ-LLC)
The Sims 2: Ultimate Collection (HKLM-x32\...\{04450C18-F039-4B81-A621-70C3B0F523D5}) (Version: 1.0.0.1 - Electronic Arts)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 129.0.10647 - Ubisoft)
UsbRepairTool (HKLM-x32\...\{F8762A81-32B5-4144-9F3C-9274F515A651}) (Version: 1.4.0.0 - Brother Industries, Ltd.) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 3.0.21 - VideoLAN)
Watch_Dogs (HKLM-x32\...\Uplay Install 274) (Version:  - Ubisoft)
WATCH_DOGS2 (HKLM-x32\...\Uplay Install 2688) (Version:  - Ubisoft)
WD Discovery (HKLM-x32\...\WDDiscovery) (Version: 4.6.433 - Western Digital Technologies, Inc.)
WD Drive Utilities (HKLM-x32\...\{45BDDAE8-E34D-46D7-AC23-39C567A719B9}) (Version: 2.1.2.167 - Western Digital Technologies, Inc.) Hidden
WD Drive Utilities (HKLM-x32\...\{f114c741-7aa6-4296-93f4-75082754ec24}) (Version: 2.1.2.167 - Western Digital Technologies, Inc.)
WD SES Driver Setup (HKLM-x32\...\{D9ABF771-729C-471F-A6DF-1010527DB376}) (Version: 2.1.0 - Western Digital) Hidden
Windows Live Communications Platform (HKLM-x32\...\{41C61308-6CFD-4D54-AB6A-7136ED08A18E}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\{66233218-CA57-4AB2-BA43-A97AA4635960}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows Live Installer (HKLM-x32\...\{659CB81C-B54E-4DF1-B618-F35777393A54}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Photo Common (HKLM-x32\...\{1D6432B4-E24D-405E-A4AB-D7E6D088CBC9}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (HKLM-x32\...\{B2611F8A-EFE7-4E88-875D-19F0EFAE87E4}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live SOXE (HKLM-x32\...\{CDC1AB00-01FF-4FC7-816A-16C67F0923C0}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (HKLM-x32\...\{D1893000-EA77-493C-8DDD-E262436E959B}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live UX Platform (HKLM-x32\...\{00F9DB8C-65D7-4D47-AB5F-F698EE38580D}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (HKLM-x32\...\{FC071B45-4A5F-408F-92F8-4D9D693E866F}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windscribe (HKLM\...\{fa690e90-ddb0-4f0c-b3f1-136c084e5fc7}_is1) (Version: 2.5.18 - Windscribe Limited)
WOW 8.14.0.0 (HKU\S-1-5-21-4273318395-1383037713-1931220479-1001\...\com.bskyb.wowtv_is1) (Version: 8.14.0.0 - WOW)
X-Rite Color Assistant 2.12.0.0 (HKLM-x32\...\{6DCFB107-4604-4AA8-BEA6-CC80BCF0B3E4}_is1) (Version: 2.12.0.0 - X-Rite, Inc)
Zoom (HKU\S-1-5-21-4273318395-1383037713-1931220479-1001\...\ZoomUMX) (Version: 5.17.11 (34827) - Zoom Video Communications, Inc.)

Chrome apps:
============
Kami (HKU\S-1-5-21-4273318395-1383037713-1931220479-1001\...\7228281d9e8e58aa71cb7120caa18a73) (Version: 1.0 - Google\Chrome)
Lotto24 (HKU\S-1-5-21-4273318395-1383037713-1931220479-1001\...\188c0351b0bfbe0daca2c27254788b2e) (Version: 1.0 - Google\Chrome)
Sheets (HKU\S-1-5-21-4273318395-1383037713-1931220479-1001\...\29afe052244ddd507c72798ddeca0abe) (Version: 1.0 - Google\Chrome)

Packages:
=========

Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC [2024-06-16] ()
AMD Radeon Software -> C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.22.20073.0_x64__0a9344xs7nr4m [2024-05-25] (Advanced Micro Devices Inc.) [Startup Task]
Cities: Skylines II - PC Edition -> C:\Program Files\WindowsApps\ParadoxInteractive.CitiesSkylinesII-PCEdition_1.1.7.0_x64__zfnrdv2de78ny [2024-07-12] (Paradox Interactive)
Disney+ -> C:\Program Files\WindowsApps\Disney.37853FC22B2CE_2024.3.211.0_neutral__6rarf9sa4v8jt [2024-07-19] (Disney)
Dolby Vision -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyVisionHDR_2.20303.556.0_x64__rz1tebttyb220 [2024-05-19] (Dolby Laboratories)
Fotos-Add-On -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2022-06-30] (Microsoft Corporation)
hiView -> C:\Program Files\WindowsApps\20671ZongZheZhao.hiView_3.3.64.0_x64__9mtfc1y94xmjp [2024-02-28] (ZongZhe Zhao)
Intel® Unison™ -> C:\Program Files\WindowsApps\AppUp.IntelTechnologyMDE_20.23.9257.0_x64__8j3eq9eme6ctt [2024-08-06] (INTEL CORP)
Lenovo Hotkeys -> C:\Program Files\WindowsApps\E0469640.LenovoUtility_4.6.12.0_x64__5grkq8ppsgwt4 [2024-04-04] (LENOVO INC) [Startup Task]
Microsoft Family -> C:\Program Files\WindowsApps\MicrosoftCorporationII.MicrosoftFamily_0.2.40.0_x64__8wekyb3d8bbwe [2023-09-15] (Microsoft Corp.)
Microsoft Flight Simulator -> C:\Program Files\WindowsApps\Microsoft.FlightSimulator_1.37.19.0_x64__8wekyb3d8bbwe [2024-06-13] (Microsoft Studios)
Microsoft Flight Simulator Digital Ownership -> C:\Program Files\WindowsApps\Microsoft.DigitalOwnership_1.0.1.0_x64__8wekyb3d8bbwe [2023-11-29] (Microsoft Studios)
Microsoft Teams (work or school) -> C:\Program Files\WindowsApps\MSTeams_23306.3315.2560.6525_x64__8wekyb3d8bbwe [2023-12-12] (Microsoft) [Startup Task]
Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_53.21110.548.0_x64__8wekyb3d8bbwe [2024-08-09] (Microsoft Corporation)
Microsoft.AV1VideoExtension -> C:\Program Files\WindowsApps\Microsoft.AV1VideoExtension_1.2.1293.0_x64__8wekyb3d8bbwe [2024-06-03] (Microsoft Corporation)
Microsoft.BingSearch -> C:\Program Files\WindowsApps\Microsoft.BingSearch_1.0.95.0_x64__8wekyb3d8bbwe [2024-07-27] (Microsoft Corporation)
Microsoft.MPEG2VideoExtension -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.61931.0_x64__8wekyb3d8bbwe [2023-08-26] (Microsoft Corporation)
MicrosoftWindows.CrossDevice -> C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24072.45.0_x64__cw5n1h2txyewy [2024-08-17] (Microsoft Windows) [Startup Task]
Nahimic -> C:\Program Files\WindowsApps\A-Volute.Nahimic_1.10.1.0_x64__w2gh52qy24etm [2024-05-10] (A-Volute)
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_7.0.8.0_neutral__mcm4njqhnhss8 [2024-07-22] (Netflix, Inc.)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.966.0_x64__56jybvy8sckqj [2024-05-09] (NVIDIA Corp.)
Reader Notification Client -> C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r [2024-02-05] (Adobe Systems Incorporated)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.40.286.0_x64__dt26b99r8h8gj [2023-06-21] (Realtek Semiconductor Corp)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.245.454.0_x64__zpdnekdrzrea0 [2024-09-01] (Spotify AB) [Startup Task]
Starfield -> C:\Program Files\WindowsApps\BethesdaSoftworks.ProjectGold_1.13.61.0_x64__3275kfvn8vcwc [2024-09-01] (Bethesda Softworks)
Superliminal -> C:\Program Files\WindowsApps\PillowCastle.Superliminal_1.0.5.0_x64__r6zr3eg4hg8h4 [2024-06-13] (Pillow Castle)
WinAppRuntime.Main.1.2-p1 -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Main.1.2-p1_2000.609.1413.0_x64__8wekyb3d8bbwe [2024-06-24] (Microsoft Corp.)
WinAppRuntime.Main.1.5 -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Main.1.5_5001.214.1843.0_x64__8wekyb3d8bbwe [2024-08-17] (Microsoft Corp.)
WinAppRuntime.Singleton -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Singleton_5001.214.1843.0_x64__8wekyb3d8bbwe [2024-08-17] (Microsoft Corp.)
WinAppRuntime.Singleton-p1 -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Singleton-p1_2000.609.1413.0_x64__8wekyb3d8bbwe [2024-06-24] (Microsoft Corp.)
Windows App Runtime DDLM 2000.609.1413.0-x6-p1 -> C:\Program Files\WindowsApps\Microsoft.WinAppRuntime.DDLM.2000.609.1413.0-x6-p1_2000.609.1413.0_x64__8wekyb3d8bbwe [2024-06-24] (Microsoft Corporation)
Windows App Runtime DDLM 2000.609.1413.0-x8-p1 -> C:\Program Files\WindowsApps\Microsoft.WinAppRuntime.DDLM.2000.609.1413.0-x8-p1_2000.609.1413.0_x86__8wekyb3d8bbwe [2024-06-24] (Microsoft Corporation)
Windows Feature Experience Pack -> C:\WINDOWS\SystemApps\LKG\MicrosoftWindows.LKG.DesktopSpotlight_cw5n1h2txyewy [2024-08-28] (Microsoft Windows)
WindowsAppRuntime.1.2-preview1 -> C:\Program Files\WindowsApps\Microsoft.WindowsAppRuntime.1.2-preview1_2000.609.1413.0_x64__8wekyb3d8bbwe [2024-06-24] (Microsoft Corporation)
WindowsAppRuntime.1.2-preview1 -> C:\Program Files\WindowsApps\Microsoft.WindowsAppRuntime.1.2-preview1_2000.609.1413.0_x86__8wekyb3d8bbwe [2024-06-24] (Microsoft Corporation)
Windows-Fotoanzeige -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2024.11070.31001.0_x64__8wekyb3d8bbwe [2024-08-09] (Microsoft Corporation) [Startup Task]
Zoo Tycoon: Ultimate Animal Collection -> C:\Program Files\WindowsApps\Microsoft.ZooTycoon_1.1806.51917.2_x64__8wekyb3d8bbwe [2024-09-01] (Microsoft Studios)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-4273318395-1383037713-1931220479-1001_Classes\CLSID\{13357088-9834-0409-1600-134951500000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-4273318395-1383037713-1931220479-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\emres\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.23061.1\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4273318395-1383037713-1931220479-1001_Classes\CLSID\{30532786-a140-2c3a-51c3-72ee2053fcc1}\localserver32 -> C:\Users\emres\Downloads\handbrake-1.8.0-x86_64-win_gui\HandBrake\HandBrake.exe (HandBrake Team) [Datei ist nicht signiert]
CustomCLSID: HKU\S-1-5-21-4273318395-1383037713-1931220479-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-4273318395-1383037713-1931220479-1001_Classes\CLSID\{3e5dba08-7ec3-cc88-1f18-0cf79ce7ade4}\localserver32 -> "C:\Program Files\AtlasVPN\Bin\AtlasVPN.exe" -ToastActivated => Keine Datei
CustomCLSID: HKU\S-1-5-21-4273318395-1383037713-1931220479-1001_Classes\CLSID\{444c3d34-4024-4c6f-a9da-b47eed58ceb6}\localserver32 -> C:\Program Files\Skylum\Luminar AI\Luminar AI.exe (Skylum Software USA, Inc. -> Skylum)
CustomCLSID: HKU\S-1-5-21-4273318395-1383037713-1931220479-1001_Classes\CLSID\{7F6A7EC6-57EA-44EC-AF37-2AECC19CF566} -> [MEGA] => C:\Users\emres\Documents\MEGA [2024-07-23 18:25]
CustomCLSID: HKU\S-1-5-21-4273318395-1383037713-1931220479-1001_Classes\CLSID\{80172dde-4e20-4df0-81a2-0a48553e80bb}\localserver32 -> C:\Users\emres\AppData\Local\NhNotifSys\nahimic\nahimicNotifSys.exe (A-Volute SAS -> A-Volute)
CustomCLSID: HKU\S-1-5-21-4273318395-1383037713-1931220479-1001_Classes\CLSID\{9486aaf1-0930-362a-962d-8e6908739c817}\InprocServer32 -> 0x89562D8F3A19D80134B82D8F3A19D801010000000C00000000000000 => Keine Datei
CustomCLSID: HKU\S-1-5-21-4273318395-1383037713-1931220479-1001_Classes\CLSID\{B7CBE980-A073-4BBF-84EE-B6E2A7035B3A}\localserver32 -> "c:\program files\canary mail\canary mail\canary mail.exe" ----AppNotificationActivated: => Keine Datei
CustomCLSID: HKU\S-1-5-21-4273318395-1383037713-1931220479-1001_Classes\CLSID\{d1b22d3d-8585-53a6-acb3-0e803c7e8d2a}\localserver32 -> C:\Users\emres\AppData\Local\Microsoft\Teams\current\Teams.exe (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ MEGA (NotFound)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890635} => C:\Users\emres\AppData\Local\MEGAsync\ShellExtX64.dll [2024-06-21] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\emres\AppData\Local\MEGAsync\ShellExtX64.dll [2024-06-21] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\emres\AppData\Local\MEGAsync\ShellExtX64.dll [2024-06-21] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\emres\AppData\Local\MEGAsync\ShellExtX64.dll [2024-06-21] (Mega Limited -> )
ShellIconOverlayIdentifiers: [     AcronisDrive] -> {5D74FD4B-4EFB-4586-8022-8637BBE40970} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64_25_0_39200.dll [2021-08-10] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [     AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64_25_0_39200.dll [2021-08-10] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [     AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64_25_0_39200.dll [2021-08-10] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [     AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64_25_0_39200.dll [2021-08-10] (Acronis International GmbH -> )
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.166.0818.0002\FileSyncShell64.dll [2024-08-28] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files\Notepad++\NppShell_06.dll [2022-09-25] (Notepad++ -> )
ContextMenuHandlers1: [AVK9CM] -> {CAF4C320-32F5-11D3-A222-004095200FF2} => C:\Program Files (x86)\G DATA\InternetSecurity\AVK\ShellExt64.dll [2024-01-11] (G DATA CyberDefense AG -> G DATA Software AG)
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\emres\AppData\Local\MEGAsync\ShellExtX64.dll [2024-06-21] (Mega Limited -> )
ContextMenuHandlers1: [PDFXChange Editor Context menu] -> {2ACD35AB-F74A-4C20-AA9B-2DE80081626D} => C:\Program Files\Tracker Software\Shell Extensions\XCShellMenu.x64.dll [2021-11-23] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)
ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2020-09-08] (Apple Inc. -> Apple Inc.)
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\emres\AppData\Local\MEGAsync\ShellExtX64.dll [2024-06-21] (Mega Limited -> )
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\emres\AppData\Local\MEGAsync\ShellExtX64.dll [2024-06-21] (Mega Limited -> )
ContextMenuHandlers3: [Reisswolf] -> {1F0F1EE7-36B9-11D2-8985-0080ADA96E9B} => C:\Program Files (x86)\G DATA\InternetSecurity\Shredder\Reisswlf64.dll [2024-01-11] (G DATA CyberDefense AG -> G DATA Software AG)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.166.0818.0002\FileSyncShell64.dll [2024-08-28] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\emres\AppData\Local\MEGAsync\ShellExtX64.dll [2024-06-21] (Mega Limited -> )
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.166.0818.0002\FileSyncShell64.dll [2024-08-28] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} =>  -> Keine Datei
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvlti.inf_amd64_47fd36f5fdab8d71\nvshext.dll [2023-11-10] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers6: [AVK9CM] -> {CAF4C320-32F5-11D3-A222-004095200FF2} => C:\Program Files (x86)\G DATA\InternetSecurity\AVK\ShellExt64.dll [2024-01-11] (G DATA CyberDefense AG -> G DATA Software AG)
ContextMenuHandlers6: [Reisswolf] -> {1F0F1EE7-36B9-11D2-8985-0080ADA96E9B} => C:\Program Files (x86)\G DATA\InternetSecurity\Shredder\Reisswlf64.dll [2024-01-11] (G DATA CyberDefense AG -> G DATA Software AG)

==================== Codecs (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Drivers32: [vidc.i420] => C:\Windows\system32\lvcod64.dll [175392 2012-10-23] (Logitech, Inc. -> Logitech Inc.)
HKLM\...\Drivers32: [vidc.i420] => C:\Windows\SysWOW64\lvcodec2.dll [305000 2012-10-23] (Logitech, Inc. -> Logitech Inc.)
HKLM\...\Drivers32: [vidc.VP60] => C:\Windows\SysWOW64\vp6vfw.dll [447752 2015-04-14] (Electronic Arts -> On2.com)
HKLM\...\Drivers32: [vidc.VP61] => C:\Windows\SysWOW64\vp6vfw.dll [447752 2015-04-14] (Electronic Arts -> On2.com)

==================== Verknüpfungen & WMI ========================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

ShortcutWithArgument: C:\Users\emres\Desktop\Lotto24.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) ->  --profile-directory=Default --app-id=ehlabaclkghgnhmiapolhdeamoafdinc
ShortcutWithArgument: C:\Users\emres\AppData\Local\Google\Chrome\User Data\Default\Web Applications\_crx_ehlabaclkghgnhmiapolhdeamoafdinc\Lotto24.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) ->  --profile-directory=Default --app-id=ehlabaclkghgnhmiapolhdeamoafdinc
ShortcutWithArgument: C:\Users\emres\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Kami.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) ->  --profile-directory=Default --app-id=ibcfaepamhcbokhfmigciephnkdiohnc
ShortcutWithArgument: C:\Users\emres\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Lotto24.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) ->  --profile-directory=Default --app-id=ehlabaclkghgnhmiapolhdeamoafdinc
ShortcutWithArgument: C:\Users\emres\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Emre (Studium) - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 1"
ShortcutWithArgument: C:\Users\emres\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\188f5ec9d11ded56\Geschäftlich - Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation) -> --profile-directory="Profile 1"

==================== Geladene Module (Nicht auf der Ausnahmeliste) =============

2009-02-27 17:38 - 2009-02-27 17:38 - 000139264 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
2017-11-07 20:55 - 2017-11-07 20:55 - 000137728 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\ControlCenter4\BrCcAssoc.dll
2017-08-18 12:23 - 2017-08-18 12:23 - 000087552 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\ControlCenter4\BrCcDlgRc.dll
2017-08-18 12:23 - 2017-08-18 12:23 - 017974784 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\ControlCenter4\BrCcGrImg.dll
2017-11-07 21:04 - 2017-11-07 21:04 - 000095232 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\ControlCenter4\BrCcLGer.dll
2017-11-07 20:55 - 2017-11-07 20:55 - 000440832 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\ControlCenter4\Track.dll
2023-05-30 13:10 - 2023-05-30 13:10 - 000281600 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Surfshark\Resources\x64\Surfshark.Firewall.dll
2021-10-27 14:41 - 2021-10-27 14:41 - 001601536 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Surfshark\runtimes\win-x64\native\e_sqlite3.dll
2022-02-23 23:34 - 2018-05-02 16:25 - 000091648 _____ () [Datei ist nicht signiert] C:\WINDOWS\system32\BrNetSti.dll
2022-02-23 23:34 - 2005-04-22 14:36 - 000143360 _____ () [Datei ist nicht signiert] C:\WINDOWS\system32\BrSNMP64.dll
2024-08-28 00:15 - 2024-01-16 18:09 - 000372224 _____ (Autofac) [Datei ist nicht signiert] [Datei wird verwendet] C:\Users\emres\AppData\Local\Programs\LenovoLegionToolkit\Autofac.dll
2016-04-12 11:07 - 2016-04-12 11:07 - 000067584 _____ (Brother Industries, Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Brother\AppLogLib\BrBFLogI.dll
2021-10-28 10:27 - 2021-10-28 10:27 - 000176128 _____ (Brother Industries, Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Brother\ES Status Monitor\BroSNMP.dll
2021-10-28 10:27 - 2021-10-28 10:27 - 000803328 _____ (Brother Industries, Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Brother\ES Status Monitor\PTNMWNDGer.dll
2024-08-28 00:15 - 2020-12-09 06:59 - 000467968 _____ (falahati.net) [Datei ist nicht signiert] [Datei wird verwendet] C:\Users\emres\AppData\Local\Programs\LenovoLegionToolkit\NvAPIWrapper.dll
2024-08-28 00:15 - 2020-02-10 19:30 - 000065536 _____ (falahati.net) [Datei ist nicht signiert] [Datei wird verwendet] C:\Users\emres\AppData\Local\Programs\LenovoLegionToolkit\WindowsDisplayAPI.dll
2024-08-28 00:15 - 2024-05-01 13:09 - 000334848 _____ (GitHub Community) [Datei ist nicht signiert] [Datei wird verwendet] C:\Users\emres\AppData\Local\Programs\LenovoLegionToolkit\Microsoft.Win32.TaskScheduler.dll
2024-08-28 00:15 - 2024-07-02 21:12 - 001389056 _____ (GitHub) [Datei ist nicht signiert] [Datei wird verwendet] C:\Users\emres\AppData\Local\Programs\LenovoLegionToolkit\Octokit.dll
2022-07-15 20:00 - 2022-07-15 20:00 - 000094720 _____ (Igor Pavlov) [Datei ist nicht signiert] C:\Program Files\7-Zip\7-zip.dll
2024-08-28 00:15 - 2024-08-26 16:40 - 000084480 _____ (Lenovo Legion Toolkit) [Datei ist nicht signiert] [Datei wird verwendet] C:\Users\emres\AppData\Local\Programs\LenovoLegionToolkit\de\Lenovo Legion Toolkit.resources.dll
2024-08-28 00:15 - 2024-08-26 16:40 - 001159680 _____ (Lenovo Legion Toolkit) [Datei ist nicht signiert] [Datei wird verwendet] C:\Users\emres\AppData\Local\Programs\LenovoLegionToolkit\Lenovo Legion Toolkit.dll
2024-08-28 00:15 - 2024-08-26 16:40 - 001094144 _____ (LenovoLegionToolkit.Lib) [Datei ist nicht signiert] [Datei wird verwendet] C:\Users\emres\AppData\Local\Programs\LenovoLegionToolkit\LenovoLegionToolkit.Lib.dll
2024-08-28 00:15 - 2024-08-26 16:40 - 000114688 _____ (LenovoLegionToolkit.Lib.Automation) [Datei ist nicht signiert] [Datei wird verwendet] C:\Users\emres\AppData\Local\Programs\LenovoLegionToolkit\LenovoLegionToolkit.Lib.Automation.dll
2024-08-28 00:15 - 2024-08-26 16:40 - 000028160 _____ (LenovoLegionToolkit.Lib.Macro) [Datei ist nicht signiert] [Datei wird verwendet] C:\Users\emres\AppData\Local\Programs\LenovoLegionToolkit\LenovoLegionToolkit.Lib.Macro.dll
2024-08-28 00:15 - 2023-08-19 04:43 - 005086720 _____ (lepo.co) [Datei ist nicht signiert] [Datei wird verwendet] C:\Users\emres\AppData\Local\Programs\LenovoLegionToolkit\Wpf.Ui.dll
2024-08-28 00:15 - 2023-09-04 19:49 - 000179200 _____ (Mark Heath) [Datei ist nicht signiert] [Datei wird verwendet] C:\Users\emres\AppData\Local\Programs\LenovoLegionToolkit\NAudio.Wasapi.dll
2024-08-28 00:15 - 2022-01-10 21:48 - 000016384 _____ (NeoSmart Technologies) [Datei ist nicht signiert] [Datei wird verwendet] C:\Users\emres\AppData\Local\Programs\LenovoLegionToolkit\AsyncLock.dll
2024-08-28 00:15 - 2023-09-06 15:49 - 000132096 _____ (PixiEditor) [Datei ist nicht signiert] [Datei wird verwendet] C:\Users\emres\AppData\Local\Programs\LenovoLegionToolkit\ColorPicker.dll
2022-02-23 21:50 - 2012-11-12 16:15 - 000558592 _____ (SEIKO EPSON CORPORATION) [Datei ist nicht signiert] C:\WINDOWS\System32\enppmon.dll
2022-02-23 21:50 - 2012-10-22 18:19 - 000219648 _____ (SEIKO EPSON CORPORATION) [Datei ist nicht signiert] C:\WINDOWS\System32\enpres.dll
2024-08-28 00:15 - 2021-11-24 01:01 - 000011776 _____ (upta) [Datei ist nicht signiert] [Datei wird verwendet] C:\Users\emres\AppData\Local\Programs\LenovoLegionToolkit\PubSub.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================

==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================

==================== Internet Explorer (Nicht auf der Ausnahmeliste) =============

HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
BHO: Citavi Picker -> {609D670F-B735-4da7-AC6D-F3BD358E325E} -> C:\Program Files (x86)\Internet Explorer\Citavi Picker\x64\SwissAcademic.Citavi.IEPicker.DLL [2022-07-26] (Swiss Academic Software -> Swiss Academic Software)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2024-08-29] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Citavi Picker -> {609D670F-B735-4da7-AC6D-F3BD358E325E} -> C:\Program Files (x86)\Internet Explorer\Citavi Picker\SwissAcademic.Citavi.IEPicker.DLL [2022-07-26] (Swiss Academic Software -> Swiss Academic Software)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-08-29] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-08-29] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-08-29] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-08-29] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-08-29] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-08-29] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-08-29] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-08-29] (Microsoft Corporation -> Microsoft Corporation)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)

IE trusted site: HKU\S-1-5-21-4273318395-1383037713-1931220479-1001\...\sharepoint.com -> hxxps://fhagen-files.sharepoint.com

==================== Hosts Inhalt: =========================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2021-06-05 14:08 - 2021-06-05 14:08 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

2022-09-26 23:32 - 2024-08-09 16:08 - 000000443 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
172.22.80.1 Emre-Legion-7.mshome.net # 2029 8 3 8 14 8 52 240

==================== Andere Bereiche ===========================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files (x86)\Common Files\Acronis\SnapAPI\;C:\Program Files (x86)\Common Files\Acronis\VirtualFile\;C:\Program Files (x86)\Common Files\Acronis\VirtualFile64\;C:\Program Files (x86)\Common Files\Acronis\FileProtector\;C:\Program Files (x86)\Common Files\Acronis\FileProtector64\;C:\Program Files\dotnet\;C:\Program Files\Java\jdk-17.0.2\bin;C:\Program Files (x86)\Windows Live\Shared;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-4273318395-1383037713-1931220479-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\lenovo\lenovowallpaper.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
 ist aktiviert.

Network Binding:
=============
Ethernet 3: TAP-Surfshark Windows Adapter V9 -> tapsurfshark.sys
LAN-Verbindung: Windscribe VPN -> tapwindscribe0901.sys
Ethernet 5: Realtek USB GbE Family Controller #2 -> rtucx22x64.sys
Ethernet 2: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64 -> vpnva64-6.sys
Ethernet: Realtek PCIe GbE Family Controller -> rt640x64.sys
WLAN: MediaTek Wi-Fi 6 MT7921 Wireless LAN Card -> mtkwl6ex.sys
LAN-Verbindung 2: Windscribe Windtun420 -> windtun420.sys
Bluetooth-Netzwerkverbindung: Bluetooth Device (Personal Area Network) -> bthpan.sys
HMA VPN: HMA VPN Wintun Adapter -> pvxWintun.sys

vms_vsf: Erweiterungsfilter für virtuellen Hyper-V-Switch
vms_vsp: Extension-Protokoll für virtuellen Hyper-V-Switch

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

HKLM\...\StartupApproved\StartupFolder: => "HMA VPN.lnk"
HKLM\...\StartupApproved\Run: => "Acronis Scheduler2 Service"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run: => "PDF24"
HKLM\...\StartupApproved\Run32: => "AcronisTibMounterMonitor"
HKLM\...\StartupApproved\Run32: => "TrueImageMonitor.exe"
HKLM\...\StartupApproved\Run32: => "TeamsMachineInstaller"
HKLM\...\StartupApproved\Run32: => "BrHelp"
HKLM\...\StartupApproved\Run32: => "Cisco AnyConnect Secure Mobility Agent for Windows"
HKLM\...\StartupApproved\Run32: => "WDDiscovery"
HKLM\...\StartupApproved\Run32: => "DriveUtilitiesHelper"
HKU\S-1-5-21-4273318395-1383037713-1931220479-1001\...\StartupApproved\StartupFolder: => "Logitech . Produktregistrierung.lnk"
HKU\S-1-5-21-4273318395-1383037713-1931220479-1001\...\StartupApproved\StartupFolder: => "Luminar AI.lnk"
HKU\S-1-5-21-4273318395-1383037713-1931220479-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_B607E283948793785252B81A2BBFA871"
HKU\S-1-5-21-4273318395-1383037713-1931220479-1001\...\StartupApproved\Run: => "com.squirrel.Teams.Teams"
HKU\S-1-5-21-4273318395-1383037713-1931220479-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-4273318395-1383037713-1931220479-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-4273318395-1383037713-1931220479-1001\...\StartupApproved\Run: => "Opera GX Stable"
HKU\S-1-5-21-4273318395-1383037713-1931220479-1001\...\StartupApproved\Run: => "Surfshark"
HKU\S-1-5-21-4273318395-1383037713-1931220479-1001\...\StartupApproved\Run: => "Opera GX Browser Assistant"
HKU\S-1-5-21-4273318395-1383037713-1931220479-1001\...\StartupApproved\Run: => "AusweisApp2"
HKU\S-1-5-21-4273318395-1383037713-1931220479-1001\...\StartupApproved\Run: => "electron.app.NVIDIA Omniverse Launcher"
HKU\S-1-5-21-4273318395-1383037713-1931220479-1001\...\StartupApproved\Run: => "Plex Media Server"
HKU\S-1-5-21-4273318395-1383037713-1931220479-1001\...\StartupApproved\Run: => "EADM"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [{5DE4B840-F3A7-4313-8920-04927399F192}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4_x64.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{9C44B8CC-27DE-460B-BB60-DBF957411E82}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4_x64.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{3E61385F-251F-4A02-B774-9A85F8DCCB37}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin_LE\TS4.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{B9777775-672E-461C-B42E-6DEA84A9D3B5}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin_LE\TS4.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{9AF9EDCD-370F-4F66-8328-4FCC7718FF20}] => (Allow) C:\Program Files\ATOMI\ActivePresenter\rlactivator.exe (Atomi Systems, Inc.) [Datei ist nicht signiert]
FirewallRules: [{01B3E1DC-E9B1-4D0D-915B-1C7AB39A751B}] => (Allow) C:\Program Files\ATOMI\ActivePresenter\ActivePresenter.exe (Atomi Systems, Inc.) [Datei ist nicht signiert]
FirewallRules: [{51C6B70E-14D7-4291-B0B9-EDDE980765AD}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4_x64.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{98191A66-D65F-4748-893B-979AB62A9783}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4_x64.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{AC7A53DF-809F-4B7C-92F2-BC81DDD38FAB}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin_LE\TS4.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{AA95B502-FDB8-473C-87E7-362269A50B3A}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin_LE\TS4.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{6C03467F-30CC-40CF-B112-9DD2FFEB465A}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 2 Ultimate Collection\Fun with Pets\SP9\TSBin\Sims2EP9.exe (Electronic Arts -> Maxis, a division of Electronic Arts Inc.) [Datei ist nicht signiert]
FirewallRules: [{496BE95A-C715-4FC0-B5E5-ACBA1178E5BA}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 2 Ultimate Collection\Fun with Pets\SP9\TSBin\Sims2EP9.exe (Electronic Arts -> Maxis, a division of Electronic Arts Inc.) [Datei ist nicht signiert]
FirewallRules: [{BBE9A892-DE12-4247-96D6-298DF8780422}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{4EB94446-A475-453D-9E9D-D1772A937C23}] => (Allow) LPort=27015
FirewallRules: [{4E7299F1-8C7B-4160-894A-DDDF44FC2C39}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{E22F4DE4-A31E-48DC-81EF-1440D4006711}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{4C2B3173-A06E-42A2-9CF6-6CEE4C7FB0C1}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{8CDA0E05-DFF6-49B4-BD51-B10001BD6717}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{E4F1B0FD-3B4B-465E-BF4D-81CD1DE41CDE}] => (Allow) LPort=80
FirewallRules: [{7F02F674-B542-4A34-9F76-4A23B4D8F78F}] => (Allow) C:\Program Files (x86)\3uTools\libXunlei\Download\MiniThunderPlatform.exe (ShenZhen Thunder Networking Technologies Ltd. -> 深圳市迅雷网络技术有限公司)
FirewallRules: [{58068106-066F-4C06-986D-8B68072165CF}] => (Allow) C:\Program Files (x86)\3uTools\libXunlei\Download\MiniThunderPlatform.exe (ShenZhen Thunder Networking Technologies Ltd. -> 深圳市迅雷网络技术有限公司)
FirewallRules: [{EFF62519-B761-48D1-B174-FA98F9D2FF7B}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{FB0A31D5-4BDF-45AF-A200-2EFF0CA5A0E1}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{31EA0CA2-8553-4B3F-96E2-F4FDE3576ABB}] => (Allow) C:\Program Files\Epic Games\ACValhallaDemo\ACValhalla_Plus.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{70422C86-613D-4E42-B478-B00F949F17D3}] => (Allow) c:\program files (x86)\pc-faxreceive\brengineprocess.exe => Keine Datei
FirewallRules: [{0175936A-9350-4F98-8B3B-1D05AF82870E}] => (Allow) c:\program files (x86)\pc-faxreceive\brengineprocess.exe => Keine Datei
FirewallRules: [{44BEB99E-F88C-42C6-ABE7-D89BCDDD92AA}] => (Allow) LPort=54925
FirewallRules: [{C8E8AB05-5091-47AC-A519-40033232C496}] => (Allow) C:\Users\emres\AppData\Local\Temp\EPSON WF-3520 Series_Home\Network\EpsonNetSetup\Data\ENEasyApp.exe => Keine Datei
FirewallRules: [{495F5394-F591-4862-AEA0-CE5FD3A8B8A3}] => (Allow) C:\Users\emres\AppData\Local\Temp\EPSON WF-3520 Series_Home\Network\EpsonNetSetup\Data\ENEasyApp.exe => Keine Datei
FirewallRules: [{1ECE2461-781D-4F5C-B87B-92AD02D6973A}] => (Block) C:\users\emres\appdata\local\programs\opera gx\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [{E5E5AB9A-6CFA-4A5E-9A4D-8212E415D179}] => (Block) C:\users\emres\appdata\local\programs\opera gx\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [UDP Query User{A34FBE2E-9D9B-46C0-8F6B-0B902F1B0AA0}C:\users\emres\appdata\local\programs\opera gx\opera.exe] => (Allow) C:\users\emres\appdata\local\programs\opera gx\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [TCP Query User{FBAFB28A-AD92-4F8C-990B-FB89CC7F6574}C:\users\emres\appdata\local\programs\opera gx\opera.exe] => (Allow) C:\users\emres\appdata\local\programs\opera gx\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [{C6739121-7D17-4A5E-AA38-F1E63B69B0A6}] => (Allow) LPort=1900
FirewallRules: [{C333CE29-F066-4BF5-B0C1-49CF1D5DC85D}] => (Allow) LPort=2869
FirewallRules: [{C4CA89F1-33CC-4ACF-9772-0F172B8DD174}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E3078F51-805D-498E-946A-DADB94D2DB62}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{F611C998-A7E6-4E89-B96F-E724CFEE975A}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{045FECCA-24D0-4AF4-A33B-F0B115164BB9}] => (Allow) C:\Users\emres\AppData\Roaming\Zoom\bin\airhost.exe () [Zugriff verweigert]
FirewallRules: [{88C7F523-30A7-4BCC-8152-A6CAAAD1FFB7}] => (Allow) C:\Users\emres\AppData\Roaming\Zoom\bin\airhost.exe () [Zugriff verweigert]
FirewallRules: [{023C3FFA-FCBA-4F7C-9D04-97B7ED5FD3B5}] => (Allow) C:\Users\emres\AppData\Roaming\Zoom\bin\Zoom.exe () [Zugriff verweigert]
FirewallRules: [{A40D5FC8-C974-4423-9F26-8120FE94DA29}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{E214EE35-8197-4003-83DC-8E5AB12BD9A8}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{6DA19FB9-EB54-4F11-A017-DE6AAB396655}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{83983E0F-173B-4749-A820-511A7A8B340D}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{F9C0F1F5-83D6-4F03-843C-4170BD1755D2}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{3EE7B707-E4A9-44FC-B77A-48B8A7585593}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{22E1BAF0-F678-4D2D-B124-A052929CF635}] => (Allow) C:\Program Files\Acronis\CyberProtect\cyber-protect-service.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{727A6C55-4F5B-4072-9E5F-9EAC4760455B}] => (Allow) C:\Program Files (x86)\Acronis\Agent\aakore.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{587B548A-A3AB-4171-B291-A10A42CB8C10}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe (Acronis International GmbH -> )
FirewallRules: [{7BEF0C3E-27F9-40BA-8CD0-95C9796E1B79}] => (Allow) C:\Program Files (x86)\Acronis\Agent\bin\task-manager.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{6CF10874-F4AC-454B-ADB3-72E1D71CE265}] => (Allow) C:\Program Files (x86)\Acronis\Agent\bin\bckp_amgr.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{CE63DCF1-BE40-49FC-8175-7847B6ABE5B9}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\Home\report_sender.exe (Acronis International GmbH -> )
FirewallRules: [{81569BAE-9DA7-4339-959E-22DA2BB952FD}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\LicenseActivator.exe (Acronis International GmbH -> )
FirewallRules: [{F2A4842E-9F0E-448A-B07E-40961343E984}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\ga_service.exe (Acronis International GmbH -> )
FirewallRules: [{7DE61EC9-0E6A-49E7-B5BF-1FF65894226B}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\SystemReport.exe (Acronis International GmbH -> )
FirewallRules: [{690F0E72-B24C-4B17-A58B-6D19B4EA9764}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\MediaBuilder.exe (Acronis International GmbH -> )
FirewallRules: [{37631AB6-4E44-4113-A5F9-476904DAABEA}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\TrueImageHome\TrueImageHomeService.exe (Acronis International GmbH -> )
FirewallRules: [{E6FBA6E6-8876-412D-A7B6-F8F62B1B6E6F}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageTools.exe (Acronis International GmbH -> )
FirewallRules: [{48BD9DF0-2507-40DE-9EF8-DEF67A4BB0C7}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe (Acronis International GmbH -> )
FirewallRules: [{C906CEE7-C135-40D9-A30A-64E079906916}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImage.exe (Acronis International GmbH -> )
FirewallRules: [{4E171201-7518-487A-8173-AB724CB31DB2}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{D2A69D58-AA1B-47B4-B174-A501CAEAA55D}] => (Allow) C:\Program Files\Lenovo\Lenovo Migration Assistant\Lenovo Migration Assistant Srv.exe (Lenovo -> )
FirewallRules: [{A92AB317-BF2F-4BDF-9EBD-E0B3355BD100}] => (Allow) C:\Program Files\Lenovo\Lenovo Migration Assistant\Lenovo Migration Assistant Srv.exe (Lenovo -> )
FirewallRules: [{36717A66-8622-454B-AAAE-FA3A704E07D8}] => (Allow) C:\Program Files\Lenovo\Lenovo Migration Assistant\MigrationAssistant.exe (Lenovo -> )
FirewallRules: [{409736EF-FC2C-47F9-9F2F-F799B063C49B}] => (Allow) C:\Program Files\Lenovo\Lenovo Migration Assistant\MigrationAssistant.exe (Lenovo -> )
FirewallRules: [{3F23F499-5E9B-4C3D-8715-4ADCF6B28BC4}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe => Keine Datei
FirewallRules: [{A733B418-CF8D-4505-94D7-F764B0D40C89}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{4C7EAD47-5D40-4799-8175-1F8A7DA73B60}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{36A46347-B06E-419B-A5C6-E5B9B8002A4B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cities_Skylines\dowser.exe (Paradox Interactive AB (publ) -> )
FirewallRules: [{43883398-BD60-464E-B183-77C81911B773}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cities_Skylines\dowser.exe (Paradox Interactive AB (publ) -> )
FirewallRules: [{1A7EB8B1-ACB0-4E95-B905-3F630CA5810F}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe => Keine Datei
FirewallRules: [{5EFCB153-F2E7-4DAA-AB5E-7B361D8100D7}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe => Keine Datei
FirewallRules: [{14CC26B1-54D0-411B-AC03-23013BC46A94}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{5B58E034-6635-4563-86EC-B91ADE4CD28B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{2FB75B4D-9B84-4F7E-87EE-BF015FF9CF3D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{61C754A2-62C3-450F-AE5B-5680F3A3EB0E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{6742EAD7-7655-4100-8D05-65A7D2E9B346}] => (Allow) C:\Program Files (x86)\Nero\Nero Common\Nero Launcher\NeroLauncher.exe (Nero AG -> Nero AG)
FirewallRules: [{E0E9611F-2512-4614-959E-1228705398B3}] => (Allow) C:\Program Files (x86)\Nero\Nero Platinum Suite\Nero Burning ROM\StartNBR.exe (Nero AG -> Nero AG)
FirewallRules: [{74B155BD-E014-4CAD-9B66-975A52832EFF}] => (Allow) C:\Program Files (x86)\Nero\Nero Platinum Suite\Nero Burning ROM\nero.exe (Nero AG -> Nero AG)
FirewallRules: [{7933894A-CD8F-44B9-8FCC-769FDC1BFB38}] => (Allow) C:\Program Files (x86)\Nero\Nero Platinum Suite\Nero Burning ROM\StartNE.exe (Nero AG -> Nero AG)
FirewallRules: [{36089BE7-FC2C-4CCE-8CF8-C8C99EBA0EA3}] => (Allow) C:\Program Files\WindowsApps\MSTeams_23306.3315.2560.6525_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{610F4E4A-51C0-4607-BC44-1685BD864617}] => (Allow) C:\Program Files\WindowsApps\MSTeams_23306.3315.2560.6525_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{ADE6D49D-DBE0-4E9A-8D10-D1D3EB20C8FB}] => (Allow) C:\Program Files\Privax\HMA VPN\Vpn.exe (Privax Limited -> Privax Limited)
FirewallRules: [{74FD1D1A-B2F7-4F8C-9C1B-441323DD58B5}] => (Allow) C:\Program Files\Privax\HMA VPN\Vpn.exe (Privax Limited -> Privax Limited)
FirewallRules: [{9346BDA1-7E30-4B5E-87D6-F32C4F1CDA10}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{4E78C833-3B67-4516-ADB0-F7646FF81D3B}] => (Allow) C:\Program Files (x86)\StarMoney 14 Basic\ouservice\StarMoneyOnlineUpdate.exe (Star Finanz-Software Entwicklung und Vertriebs GmbH -> Star Finanz-Software Entwicklung und Vertriebs GmbH)
FirewallRules: [{C96B200A-09D3-45F6-94D9-DD794DDC0271}] => (Allow) C:\Program Files (x86)\StarMoney 14 Basic\ouservice\StarMoneyOnlineUpdate.exe (Star Finanz-Software Entwicklung und Vertriebs GmbH -> Star Finanz-Software Entwicklung und Vertriebs GmbH)
FirewallRules: [{82E40FDD-5037-4043-8BC6-02ABAAFB07A6}] => (Allow) C:\Program Files (x86)\StarMoney 14 Basic\app\StarMoney.exe (Star Finanz-Software Entwicklung und Vertriebs GmbH -> Star Finanz-Software Entwicklung und Vertriebs GmbH)
FirewallRules: [{A876A488-DE4D-423D-82B6-D95DABC13630}] => (Allow) C:\Program Files (x86)\StarMoney 14 Basic\app\StarMoney.exe (Star Finanz-Software Entwicklung und Vertriebs GmbH -> Star Finanz-Software Entwicklung und Vertriebs GmbH)
FirewallRules: [{4D6E9C61-E02A-447E-8E09-EEAF0331BA91}] => (Allow) C:\Program Files\Plex\Plex Media Server\Plex Media Server.exe (Plex, Inc. -> Plex, Inc.)
FirewallRules: [{49F7885F-583B-4E9E-8EE0-7C8D053249CC}] => (Allow) C:\Program Files\Plex\Plex Media Server\PlexScriptHost.exe (Plex, Inc. -> )
FirewallRules: [{0EE27F94-C817-432E-BB20-F1C5A2EC89D9}] => (Allow) C:\Program Files\Plex\Plex Media Server\Plex DLNA Server.exe (Plex, Inc. -> Plex, Inc.)
FirewallRules: [{E3A4016E-3E92-4EE8-9AAF-592E4941B451}] => (Allow) C:\Program Files\Plex\Plex Media Server\Plex Tuner Service.exe (Plex, Inc. -> )
FirewallRules: [{BD53C069-3B91-4A29-8C47-0A54E81C2057}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{DF1007EA-EFBB-48F5-82A1-689C5311F7E8}] => (Allow) C:\Program Files\AusweisApp2\AusweisApp.exe (Governikus GmbH & Co. KG -> Governikus GmbH & Co. KG)
FirewallRules: [AusweisApp-Firewall-Rule] => (Allow) C:\Program Files\AusweisApp2\AusweisApp.exe (Governikus GmbH & Co. KG -> Governikus GmbH & Co. KG)
FirewallRules: [{2FCF4DE8-8AF1-41C4-91C7-63EA69951B5F}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe (Lenovo -> Lenovo)
FirewallRules: [{89E835B5-BCDB-40F0-9CF9-52D668867D1B}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe (Lenovo -> Lenovo)
FirewallRules: [{564D28F5-19C0-4AED-9CE5-F21C5EBE59AB}] => (Allow) C:\Program Files\WindowsApps\AppUp.IntelTechnologyMDE_20.23.9257.0_x64__8j3eq9eme6ctt\IntelUnison.exe (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation)
FirewallRules: [{7A6E932B-A1ED-4E06-AE9C-E396A208BA4E}] => (Allow) C:\Program Files\WindowsApps\AppUp.IntelTechnologyMDE_20.23.9257.0_x64__8j3eq9eme6ctt\IntelUnison.exe (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation)
FirewallRules: [{2A3F55ED-A5CC-4E8B-BFB2-E5FD2987CA9F}] => (Allow) LPort=54950
FirewallRules: [{AC50ECF6-19B3-4FAB-B82E-C549DADD0397}] => (Allow) LPort=54955
FirewallRules: [{EF84DD68-BFA9-4FF3-8672-5E876F1944F1}] => (Allow) C:\Users\emres\AppData\Local\Temp\pftBB18.tmp\bsq16aw190cger\start.exe => Keine Datei
FirewallRules: [{573BDEED-3FC8-4CE6-AFCB-28C16D5A74C8}] => (Allow) C:\Users\emres\AppData\Local\Temp\pftBB18.tmp\bsq16aw190cger\start.exe => Keine Datei
FirewallRules: [{9D74D9D7-DBDC-491F-8314-79B6104614C7}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24215.1105.3082.1600_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E50316B7-C918-44BA-9ED4-F85B2989E780}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24215.1105.3082.1600_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{24AD0B8C-2D0F-4C7C-821B-CC7926E9C6FB}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\128.0.2739.54\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{4F235EA1-DF24-4274-820F-921D557AAFAE}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.245.454.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{3675C7A4-4852-4235-85AF-520AB5FE7A6A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.245.454.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{22DA4A8B-6C1D-4BDF-927F-FC353DA61D89}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.245.454.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{65262BB3-CBB9-49FE-A71C-D0AC12D09235}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.245.454.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{7485C061-54AD-43E6-BF2E-A988D74E11B8}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.245.454.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{1FD63103-019C-44F7-9407-AB1B39C9D0FA}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.245.454.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{0B1CEB34-1C95-47C8-BE4C-9382A37A3925}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.245.454.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{135A3931-FAF6-4285-9A84-4362A45454AB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.245.454.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{A038FD39-D1CD-41F3-8011-9D3E5843A99A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.245.454.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{BE6A19A8-A762-4C0C-8581-5962D259E0C0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.245.454.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{23DB9C18-4BD8-4C95-8354-E7CEA7482255}] => (Allow) C:\Users\emres\AppData\Local\Temp\pft4A19.tmp\bsq16aw190cger\start.exe => Keine Datei
FirewallRules: [{A0345BEA-1294-4829-96F9-6B3398B9827A}] => (Allow) C:\Users\emres\AppData\Local\Temp\pft4A19.tmp\bsq16aw190cger\start.exe => Keine Datei
FirewallRules: [{C684437C-F8F1-4F7B-8C1C-837875F4EBB9}] => (Allow) C:\Users\emres\AppData\Local\Temp\pftF71.tmp\bsq16aw190cger\start.exe => Keine Datei
FirewallRules: [{D775A4B4-FFEC-43C9-868D-ACF453918DC8}] => (Allow) C:\Users\emres\AppData\Local\Temp\pftF71.tmp\bsq16aw190cger\start.exe => Keine Datei
FirewallRules: [{D246A2E4-5602-4247-9F5D-CBC47D992705}] => (Allow) C:\Users\emres\AppData\Local\Temp\pftFBFA.tmp\bsq16aw190cger\start.exe => Keine Datei
FirewallRules: [{07B69FD6-252C-414D-8832-1136FCD7410A}] => (Allow) C:\Users\emres\AppData\Local\Temp\pftFBFA.tmp\bsq16aw190cger\start.exe => Keine Datei
FirewallRules: [{0C00F280-40DB-48CA-BD8E-8E9CBE54A958}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{7C19FE76-7F16-491A-BD03-482D0E18EFBF}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{C10F5EDC-1F8B-40BC-B55F-BB08C7790434}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{6257631D-8D94-48DF-8C9E-30CEEC712E34}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{D3DCCE4B-1243-4EEB-AA2E-80C8B0126726}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{B90BBBDA-87A3-4609-8751-8FF62C02721D}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{4B9B436C-3FB9-4510-B577-3ED9D5BD4D0A}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{4D1E0BEE-B7C1-4862-A3D2-7D964B8C35ED}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{CA75D55C-76F2-4E04-B37C-03B6254EFCE4}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{A6625875-1C66-48CA-A7F5-A73B755A3A6A}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{D5E4FE25-DF8B-4559-9E12-D367DC0A09D2}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALaunchHelper.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{2A82F2C4-FE0A-4F8E-9431-04FA23B46D07}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Wiederherstellungspunkte =========================

01-09-2024 17:15:33 Windows Update
01-09-2024 17:15:36 Windows Update
01-09-2024 17:15:37 Windows Update

==================== Fehlerhafte Geräte im Gerätemanager ============

Name: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Description: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Cisco Systems
Service: vpnva
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Brother MFC-J5330DW
Description: Brother MFC-J5330DW
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: Brother
Service: usbscan
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: Brother MFC-J5330DW
Description: Brother MFC-J5330DW
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: Brother
Service: usbscan
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: Universal Device Client Device
Description: Universal Device Client Device
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Lenovo
Service: WUDFRd
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver


==================== Fehlereinträge in der Ereignisanzeige: ========================

Applikationsfehler:
==================
Error: (09/03/2024 12:49:16 AM) (Source: CertEnroll) (EventID: 86) (User: NT-AUTORITÄT)
Description: Fehler bei der Initialisierung der SCEP-Zertifikatregistrierung für WORKGROUP\EMRE-LEGION-7$ über https://AMD-KeyId-52fb59e29aa83a962fb9eef0fe5b4811de6b751e.microsoftaik.azure.net/templates/Aik/scep:

GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-52fb59e29aa83a962fb9eef0fe5b4811de6b751e.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Mon, 02 Sep 2024 22:49:19 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: effdc224-9172-473c-bc61-059e3e029c4d

Methode: GET(187ms)
Phase: GetCACaps
Nicht gefunden (404). 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)

Error: (09/03/2024 12:49:16 AM) (Source: CertEnroll) (EventID: 86) (User: NT-AUTORITÄT)
Description: Fehler bei der Initialisierung der SCEP-Zertifikatregistrierung für Lokales System über https://AMD-KeyId-52fb59e29aa83a962fb9eef0fe5b4811de6b751e.microsoftaik.azure.net/templates/Aik/scep:

GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-52fb59e29aa83a962fb9eef0fe5b4811de6b751e.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Mon, 02 Sep 2024 22:49:18 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 68d07345-bf0a-4382-bb58-05b16c1ae7b4

Methode: GET(359ms)
Phase: GetCACaps
Nicht gefunden (404). 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)

Error: (09/03/2024 12:49:03 AM) (Source: WorkflowAppControl) (EventID: 32767) (User: )
Description: Start Broadcast Receiver Server...

Error: (09/03/2024 12:49:03 AM) (Source: WorkflowAppControl) (EventID: 32767) (User: )
Description: Wait Workflow Commands request from device.

Error: (09/03/2024 12:49:03 AM) (Source: WorkflowAppControl) (EventID: 32767) (User: )
Description: Start Server...

Error: (09/03/2024 12:49:03 AM) (Source: WorkflowAppControl) (EventID: 32767) (User: )
Description: Start Server...

Error: (09/03/2024 12:49:03 AM) (Source: WorkflowAppControl) (EventID: 32767) (User: )
Description: Host.AddressList[3]: 192.168.178.76

Error: (09/03/2024 12:49:03 AM) (Source: WorkflowAppControl) (EventID: 32767) (User: )
Description: Host.AddressList[2]: 2003:cc:5f33:bd00:5421:15da:1bf7:1e42


Systemfehler:
=============
Error: (09/03/2024 12:51:14 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Google Update-Dienst (gupdate)" wurde aufgrund folgenden Fehlers nicht gestartet: 
Der Dienst antwortete nicht rechtzeitig auf die Start- oder Steuerungsanforderung.

Error: (09/03/2024 12:51:14 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Google Update-Dienst (gupdate) erreicht.

Error: (09/03/2024 12:50:09 AM) (Source: disk) (EventID: 154) (User: )
Description: Fehler beim E/A-Vorgang an der logischen Blockadresse "0x0" für den Datenträger "1" (PDO-Name: \Device\0000007f) aufgrund eines Hardwarefehlers.

Error: (09/03/2024 12:50:09 AM) (Source: disk) (EventID: 154) (User: )
Description: Fehler beim E/A-Vorgang an der logischen Blockadresse "0x0" für den Datenträger "1" (PDO-Name: \Device\0000007f) aufgrund eines Hardwarefehlers.

Error: (09/03/2024 12:49:32 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst AcronisActiveProtectionService erreicht.

Error: (09/03/2024 12:49:07 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "GameInput Service" wurde unerwartet beendet. Dies ist bereits 6 Mal passiert.

Error: (09/03/2024 12:49:07 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "GameInput Service" wurde mit folgendem Fehler beendet: 
Die Verbunddatei "GameInput Service" wurde mit einer neueren Version erstellt.

Error: (09/03/2024 12:49:07 AM) (Source: disk) (EventID: 154) (User: )
Description: Fehler beim E/A-Vorgang an der logischen Blockadresse "0x0" für den Datenträger "1" (PDO-Name: \Device\0000007f) aufgrund eines Hardwarefehlers.


Windows Defender:
================
Date: 2024-08-05 22:17:29
Description: 
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {633BC1B1-6CA9-4EE2-833B-C151F2551391}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM 

Date: 2023-10-17 02:32:15
Description: 
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {A5A24A7E-A254-4E30-8F56-B2BFAB08283D}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM 

Date: 2023-10-16 03:01:58
Description: 
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {1968B729-1CDD-4655-9113-B4E68CCB9DBF}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM 

Date: 2023-10-15 04:55:56
Description: 
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {583F20A5-5BE5-4EAF-9C25-6C5E772E3D78}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM 

Date: 2023-10-13 04:14:39
Description: 
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {623B1E94-CBFE-4017-8996-6A0A062D9473}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM 
Event[0]

Date: 2024-02-05 02:52:14
Description: 
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.
Neue Version der Sicherheitsinformationen: 
%Vorherige Version der Sicherheitsinformationen: 1.399.817.0
Update Source: Microsoft Update-Server
Sicherheitstyp: AntiVirus
Updatetyp: Voll
Benutzer: NT-AUTORITÄT\SYSTEM
Aktuelle Modulversion: 
%Vorherige Modulversion: 1.1.23090.2007
Fehlercode: 0x8007045b
Fehlerbeschreibung: Der Computer wird heruntergefahren.  

CodeIntegrity:
===============
Date: 2024-09-03 01:01:39
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Common Files\G Data\AVKProxy\GDAMSIx64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. 


==================== Speicherinformationen =========================== 

BIOS: LENOVO GKCN65WW 01/16/2024
Hauptplatine: LENOVO LNVNB161216
Prozessor: AMD Ryzen 7 5800H with Radeon Graphics 
Prozentuale Nutzung des RAM: 43%
Installierter physikalischer RAM: 28524.06 MB
Verfügbarer physikalischer RAM: 16212.64 MB
Summe virtueller Speicher: 42348.06 MB
Verfügbarer virtueller Speicher: 26177.73 MB

==================== Laufwerke ================================

Drive c: (Windows-SSD) (Fixed) (Total:1861.66 GB) (Free:805.17 GB) (Model: WD_BLACK  SN750 2TB) NTFS
Drive y: () (Network) (Total:0 GB) (Free:0 GB) (Model: WD_BLACK  SN750 2TB) 
Drive z: () (Network) (Total:0 GB) (Free:0 GB) (Model: WD_BLACK  SN750 2TB) 

\\?\Volume{7dd3ef7b-4bdc-4d1f-9ace-41a00010fa30}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.16 GB) NTFS
\\?\Volume{8ed81632-2628-4922-8cdd-9f585e4157d6}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Partitionstabelle ====================

==========================================================
Disk: 0 (Size: 1863 GB) (Disk ID: F428865F)

Partition: GPT.

==================== Ende von Addition.txt =======================
Die Browser habe ich zurückgesetzt und hatte erstmal keine Meldung mehr von GDATA, jedoch kommt es plötzlich immer wieder zu Blue Screen Abstürzen.

Code:
ATTFilter
Malwarebytes
www.malwarebytes.com

-Protokolldetails-
Scan-Datum: 03.09.2024
Scan-Zeit: 01:22
Protokolldatei: 302b4ffa-6982-11ef-8e65-84a9387e2a33.json

-Softwaredaten-
Version: 5.1.9.124
Komponentenversion: 1.0.5014
Version des Aktualisierungspakets: 1.0.88681
Lizenz: Testversion

-Systemdaten-
Betriebssystem: Windows 11 (Build 22631.4037)
CPU: x64
Dateisystem: NTFS
Benutzer: Emre-Legion-7\emres

-Scan-Übersicht-
Scan-Typ: Bedrohungs-Scan
Scan gestartet von: Manuell
Ergebnis: Abgeschlossen
Gescannte Objekte: 309762
Erkannte Bedrohungen: 1
In die Quarantäne verschobene Bedrohungen: 1
Abgelaufene Zeit: 3 Min., 55 Sek.

-Scan-Optionen-
Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Aktiviert
Heuristik: Aktiviert
PUP: Erkennung
PUM: Erkennung

-Scan-Details-
Prozess: 0
(keine bösartigen Elemente erkannt)

Modul: 0
(keine bösartigen Elemente erkannt)

Registrierungsschlüssel: 0
(keine bösartigen Elemente erkannt)

Registrierungswert: 0
(keine bösartigen Elemente erkannt)

Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)

Daten-Stream: 0
(keine bösartigen Elemente erkannt)

Ordner: 0
(keine bösartigen Elemente erkannt)

Datei: 1
PUP.Optional.PlayaNext, C:\$RECYCLE.BIN\S-1-5-21-4273318395-1383037713-1931220479-1001\$RV04I6D.EXE, In Quarantäne, 9844, 1263249, 1.0.88681, , ame, , 8DEF3BD33DEABA804A76158BA13573D1, 92EBED59140D192F4DB511247BE1946ED589927E3389D206A83C2AC02043F242

Physischer Sektor: 0
(keine bösartigen Elemente erkannt)

WMI: 0
(keine bösartigen Elemente erkannt)


(end)

 

Themen zu GData Phishing erkannt beim Öffnen eines Browsers
antivirus programme, browser, cultures, erhalte, erkannt, folge, folgende, g data, gdata, gefunde, https, meldung, phishing, phishingwarnungen, sobald, unter, verweigert, windows, windows 11, zugriff


« Order Suboxone 8mg Near Me:+1(862)-294-0647 | Ensuring Tidy and Secure Fuel Stations »


Ähnliche Themen: GData Phishing erkannt beim Öffnen eines Browsers


  1. Seltsame Stimme beim Öffnen des Browsers gehört. Wurde ich gehackt?
    Alles rund um Windows - 10.11.2016 (1)
  2. Seltsame Stimme beim Öffnen des Browsers gehört. Wurde ich gehackt?
    Plagegeister aller Art und deren Bekämpfung - 28.10.2016 (17)
  3. IncrediBar-search erscheint immer beim Öffnen eines neuen Tabs
    Log-Analyse und Auswertung - 02.07.2015 (9)
  4. Probleme beim Öffnen des Browsers
    Log-Analyse und Auswertung - 05.07.2014 (10)
  5. Windows7: NationZoom.com öffnet sich beim Öffnen eines Browsers
    Log-Analyse und Auswertung - 21.01.2014 (11)
  6. XP - IE8 - Beim Öffnen des Browsers - Fehlermeldung
    Plagegeister aller Art und deren Bekämpfung - 15.11.2013 (10)
  7. Virenprogramm reagiert jedes mal beim öffnen des browsers
    Plagegeister aller Art und deren Bekämpfung - 14.10.2013 (3)
  8. PC friert beim Starten eines Browsers ein oder das Starten des PC`s läuft "schief"
    Log-Analyse und Auswertung - 12.05.2013 (3)
  9. MyStart beim öffnen eines Chromefensters
    Plagegeister aller Art und deren Bekämpfung - 10.07.2012 (3)
  10. Unerwünschtes Öffnen eines (Phishing) Links
    Plagegeister aller Art und deren Bekämpfung - 24.01.2012 (3)
  11. Trojanermeldung beim Öffnen eines Internetbrowsers
    Plagegeister aller Art und deren Bekämpfung - 21.07.2009 (20)
  12. Beim öffnen eines Laufwerks: s-9-7-43-100021691-100026446-100030222-2282.com
    Plagegeister aller Art und deren Bekämpfung - 21.02.2009 (1)
  13. Virus Fehler beim Öffnen eines Ordners !!!
    Log-Analyse und Auswertung - 23.08.2008 (12)
  14. Also ich brauch Hilfe beim öffnen eines Spiele Servers :D
    Mülltonne - 03.08.2008 (0)
  15. Vista mit Warnmeldungen beim Öffnen eines Ordners
    Plagegeister aller Art und deren Bekämpfung - 29.07.2008 (12)
  16. Virusmeldung beim öffnen eines ordners!!!
    Log-Analyse und Auswertung - 24.07.2008 (7)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema GData Phishing erkannt beim Öffnen eines Browsers - Sobald ich unter Windows 11 irgendeinen Browser öffne, erhalte ich folgende Meldung: Phishing beim Öffnen von Web-Seiten gefunden. Adresse: https://edisciplinas.usp.br/pluginfile.php/5944413/mod_folder/content/0/Textos/Goertz%20and%20Mahoney%2C%20A%20Tale%20of%20Two%20Cultures%20-%20Qualitative%20and%20Quantitative%20Research%20in%20the%20Social%20Sciences.pdf?forcedownload=1 Status: Der Zugriff wurde verweigert. - GData Phishing erkannt beim Öffnen eines Browsers...
Archiv
Du betrachtest: GData Phishing erkannt beim Öffnen eines Browsers auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130