|
Alles rund um Windows: Windows 11: Unerwünschte Dateien auf dem Rechner. JPG, Word, PDF und TIFWindows 7 Hilfe zu allen Windows-Betriebssystemen: Windows XP, Windows Vista, Windows 7, Windows 8(.1) und Windows 10 / Windows 11- als auch zu sämtlicher Windows-Software. Alles zu Windows 10 ist auch gerne willkommen. Bitte benenne etwaige Fehler oder Bluescreens unter Windows mit dem Wortlaut der Fehlermeldung und Fehlercode. Erste Schritte für Hilfe unter Windows. |
27.11.2022, 17:53 | #1 |
| Problem: Windows 11: Unerwünschte Dateien auf dem Rechner. JPG, Word, PDF und TIF Sehr geehrte Damen und Herren, während ich mir heute ein Youtube Video angeschaut habe hat sich mein Datei Ordner aus dem nichts geöffnet ohne das ich etwas getan habe. Dadurch bin ich etwas stutzig geworden und habe sofort ein Windows Scan durchgeführt, der mir dann auch schließlich gesagt hat dass sich eine schwerwiegende Bedrohung auf meinem Rechner befindet, und zwar hier C:\Users\husey\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Files\S0\4\Attachments\inenglish[20530].pptx Ich habe die datei von windows entfernen lassen aber ich weiß nicht ob der Trojaner/ die Malware weg ist. Unter Anttachments befinden sich auch sehr sehr merkwürdige Dateien wie Interpol Briefe und eine Word datei wo eine alte frau womöglich 950.000 Euro geschenkt bekommen hat und diese weitergeben möchte. Hier meine Log file FRST Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 26-11-2022 durchgeführt von husey (Administrator) auf DESKTOP-FN1MLO3 (Micro-Star International Co., Ltd. MS-7C84) (27-11-2022 17:22:42) Gestartet von C:\Users\husey\Downloads Geladene Profile: husey Plattform: Microsoft Windows 11 Pro Version 22H2 22621.819 (X64) Sprache: Deutsch (Deutschland) Standard-Browser: Chrome Start-Modus: Normal ==================== Prozesse (Nicht auf der Ausnahmeliste) ================= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.) (C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AudioSDK\AudioAgent\ArmouryAudioAgent.exe (C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\SwAgent\ArmourySwAgent.exe (C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <12> (C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe ->) (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe (C:\Program Files (x86)\Overwolf\Overwolf.exe ->) (Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.208.1.4\OverwolfHelper.exe (C:\Program Files (x86)\Overwolf\Overwolf.exe ->) (Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.208.1.4\OverwolfHelper64.exe (C:\Program Files (x86)\Overwolf\Overwolf.exe ->) (Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Overwolf\0.208.1.4\OverwolfBrowser.exe <3> (C:\Program Files (x86)\Overwolf\Overwolf.exe ->) (Overwolf Ltd -> Overwolf LTD) C:\Users\husey\AppData\Local\Overwolf\ProcessCache\0.208.1.4\cchhcaiapeikjbdbpfplgmpobbcdkdaphclbmkbj\curseforge.exe (C:\Program Files (x86)\Razer\Razer Services\Razer Central\Razer Central.exe ->) (Razer USA Ltd. -> The CefSharp Authors) C:\Program Files (x86)\Razer\Razer Services\Razer Central\CefSharp.BrowserSubprocess.exe <5> (C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\Razer Central.exe (C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe ->) (Razer USA Ltd. -> ) C:\Program Files (x86)\Razer\Synapse3\UserProcess\Razer Synapse Service Process.exe (C:\Program Files (x86)\Surfshark\Resources\x64\nssm.exe ->) (Surfshark Ltd. -> Surfshark) C:\Program Files (x86)\Surfshark\Antivirus\Surfshark.AntivirusService.exe (C:\Program Files (x86)\Surfshark\Resources\x64\nssm.exe ->) (Surfshark Ltd. -> Surfshark) C:\Program Files (x86)\Surfshark\Surfshark.Service.exe (C:\Program Files (x86)\Surfshark\Resources\x64\nssm.exe ->) (Surfshark Ltd. -> Surfshark) C:\Program Files (x86)\Surfshark\Surfshark.ShadowsocksService.exe (C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.UserSessionHelper.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (C:\Program Files\WindowsApps\MicrosoftTeams_22287.702.1670.9453_x64__8wekyb3d8bbwe\msteams.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\107.0.1418.56\msedgewebview2.exe <7> (Discord Inc. -> Discord Inc.) C:\Users\husey\AppData\Local\Discord\app-1.0.9007\Discord.exe <6> (explorer.exe ->) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2> (explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <29> (explorer.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe (Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Overwolf\Overwolf.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe (services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUS Inc.) C:\Program Files (x86)\ASUS\GameSDK Service\GameSDK.exe (services.exe ->) (ASUSTeK Computer Inc. -> ASUSTek COMPUTER INC.) C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Program Files (x86)\ASUS\ROG Live Service\ROGLiveService.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Program Files (x86)\LightingService\LightingService.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\NisSrv.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\System32\Sgrm\SgrmBroker.exe (services.exe ->) (nordvpn s.a. -> TEFINCOM S.A.) C:\Program Files\NordUpdater\NordUpdateService.exe (services.exe ->) (nordvpn s.a. -> TEFINCOM S.A.) C:\Program Files\NordVPN\nordvpn-service.exe (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2> (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_c43eff7079c4c90c\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (philandro Software GmbH -> AnyDesk Software GmbH) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (services.exe ->) (Razer USA Ltd. -> Razer Inc) C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe (services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe (services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe (services.exe ->) (Surfshark Ltd. -> Surfshark) C:\Program Files (x86)\Surfshark\Resources\x64\nssm.exe <3> (services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe (sihost.exe ->) (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12126.1.57048.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (sihost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2022.31110.14005.0_x64__8wekyb3d8bbwe\PhotosService\PhotosService.exe (svchost.exe ->) (Adobe Systems Incorporated) C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe (svchost.exe ->) (ASUSTeK Computer Inc. -> ) C:\Program Files\ASUS\KINGSTON_Aac_DRAM\AacKingstonDramHal_x86.exe (svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe (svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe (svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe <4> (svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AudioSDK\Protocol\AudioLEDControl\ledcontrolservice3.exe (svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files\ASUS\AacExtCard\extensionCardHal_x86.exe (svchost.exe ->) (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files\ASUS\ASUS_Aac_DRAM\Aac3572DramHal_x86.exe (svchost.exe ->) (A-Volute SAS -> NahimicAPI) C:\Program Files\NahimicAPI\NahimicAPISvc64.exe (svchost.exe ->) (A-Volute SAS -> NahimicAPI) C:\Program Files\NahimicAPI\x86\NahimicAPISvc32.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\husey\AppData\Local\Microsoft\OneDrive\22.225.1026.0001\FileCoAuth.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.SecHealthUI_1000.22621.1.0_x64__8wekyb3d8bbwe\SecHealthUI.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2022.31110.14005.0_x64__8wekyb3d8bbwe\PhotosApp.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20970.0_x64__8wekyb3d8bbwe\HxOutlook.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20970.0_x64__8wekyb3d8bbwe\HxTsr.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.822.10271.0_x64__8wekyb3d8bbwe\GameBar.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.822.10271.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22092.214.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe (svchost.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\System32\SecurityHealth\1.0.2207.20002-0\SecurityHealthHost.exe <2> (svchost.exe ->) (WhatsApp Inc.) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2245.5.0_x64__cv1g1gvanyjgm\WhatsApp.exe ==================== Registry (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.) HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3476960 2022-09-27] (Adobe Inc. -> Adobe Systems, Incorporated) HKLM-x32\...\Run: [Discord] => C:\ProgramData\SquirrelMachineInstalls\Discord.exe [82992808 2022-04-18] (Discord Inc. -> Discord Inc.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [711328 2022-06-16] (Oracle America, Inc. -> Oracle Corporation) HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Beschränkung <==== ACHTUNG HKU\S-1-5-19\...\Run: [OneDriveSetup] => C:\Windows\System32\OneDriveSetup.exe [50312608 2022-05-07] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-20\...\Run: [OneDriveSetup] => C:\Windows\System32\OneDriveSetup.exe [50312608 2022-05-07] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-3780922625-143721777-232406852-1001\...\Run: [GogGalaxy] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [14858824 2020-12-23] (GOG Sp. z o.o. -> GOG.com) HKU\S-1-5-21-3780922625-143721777-232406852-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4245352 2022-11-17] (Valve Corp. -> Valve Corporation) HKU\S-1-5-21-3780922625-143721777-232406852-1001\...\Run: [Surfshark] => C:\Program Files (x86)\Surfshark\Surfshark.exe [7208248 2021-08-19] (Surfshark Ltd. -> Surfshark) HKU\S-1-5-21-3780922625-143721777-232406852-1001\...\Run: [Proxifier] => C:\Program Files (x86)\Proxifier\Proxifier.exe [6513072 2020-11-04] (Initeks, OOO -> Initex) HKU\S-1-5-21-3780922625-143721777-232406852-1001\...\Run: [SendCloud] => C:\Users\husey\AppData\Local\SendCloud\sendcloud.exe [67296 2019-03-28] (SendCloud -> ) HKU\S-1-5-21-3780922625-143721777-232406852-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32696784 2022-11-16] (Epic Games Inc. -> Epic Games, Inc.) HKU\S-1-5-21-3780922625-143721777-232406852-1001\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3542032 2022-11-07] (Razer USA Ltd. -> Razer Inc.) HKU\S-1-5-21-3780922625-143721777-232406852-1001\...\Run: [Discord] => C:\Users\husey\AppData\Local\Discord\Update.exe [1512616 2022-02-17] (Discord Inc. -> GitHub) HKU\S-1-5-21-3780922625-143721777-232406852-1001\...\Run: [Rave] => C:\Users\husey\AppData\Local\Programs\rave-desktop\Rave.exe [149357424 2022-09-17] (Rave Inc. -> Rave Inc.) HKU\S-1-5-21-3780922625-143721777-232406852-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1802584 2022-11-22] (Overwolf Ltd -> Overwolf Ltd.) HKU\S-1-5-21-3780922625-143721777-232406852-1001\...\Run: [NordVPN] => C:\Program Files\NordVPN\NordVPN.exe [280952 2022-02-18] (nordvpn s.a. -> TEFINCOM S.A.) HKU\S-1-5-21-3780922625-143721777-232406852-1001\...\Run: [Opera Browser Assistant] => C:\Users\husey\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [4152776 2022-10-19] (Opera Norway AS -> Opera Software) HKU\S-1-5-21-3780922625-143721777-232406852-1001\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [7223248 2022-11-14] (Adobe Inc. -> Adobe Systems Incorporated) HKU\S-1-5-18\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3542032 2022-11-07] (Razer USA Ltd. -> Razer Inc.) HKLM\...\Print\Monitors\HP CE11 Status Monitor: C:\Windows\system32\hpinkstsCE11LM.dll [393352 2017-03-20] (Hewlett Packard -> HP Inc.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\107.0.5304.107\Installer\chrmstp.exe [2022-11-10] (Google LLC -> Google LLC) HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] -> IFEO\osppsvc.exe: [VerifierDlls] SppExtComObjHook.dll IFEO\SppExtComObj.Exe: [VerifierDlls] SppExtComObjHook.dll Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2021-11-22] ShortcutTarget: AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH) ==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============ (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) Task: {01391AAC-0426-4E41-B6D3-BF2ADAE563B7} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8576000 2022-11-01] (Microsoft Corporation -> Microsoft Corporation) Task: {05565942-F034-4C8D-B7B9-E9E79F96FD35} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3476960 2022-09-27] (Adobe Inc. -> Adobe Systems, Incorporated) Task: {0600DD45-FAF2-4131-A006-0B17509B9F78} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => %windir%\system32\sc.exe start InventorySvc Task: {098E3B3F-567B-49D4-96B9-BE2FA90AD510} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {0B2830FA-D099-4701-99ED-485746D920D8} - System32\Tasks\ASUS\ASUSUpdateTaskMachineCore1d7e5787e5c0bfb => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [167384 2021-11-30] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) Task: {0C812575-C461-4F4C-A7E4-B3A2F62B07D9} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [66936 2022-11-01] (Microsoft Corporation -> Microsoft Corporation) Task: {0F1F0B06-C3B0-4727-8B8A-383A26FCB28B} - System32\Tasks\AsusAPI32 => C:\Program Files\NahimicAPI\\x86\NahimicAPISvc32.exe [725824 ] (A-Volute SAS -> NahimicAPI) Task: {1ECC0084-6EB7-4A00-A79B-469799DAA15F} - System32\Tasks\Opera scheduled Autoupdate 1620323232 => C:\Users\husey\AppData\Local\Programs\Opera\launcher.exe [2569160 2022-10-28] (Opera Norway AS -> Opera Software) Task: {23272FB4-E2D8-4F08-9AE2-13BEE26BCA1D} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342080 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {2652E4AB-FA8E-4466-8216-F4E1D69A8BB7} - System32\Tasks\update-S-1-5-21-3780922625-143721777-232406852-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>) Task: {37B20044-0369-445E-87F4-2321F4AD1F33} - System32\Tasks\ASUS\AcPowerNotification => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe [307568 2022-08-05] (ASUSTeK COMPUTER INC. -> ASUS) Task: {3BEDEF69-59F1-466C-87A4-CF927E0E4D16} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2576728 2022-11-22] (Overwolf Ltd -> Overwolf LTD) Task: {40808347-52CB-4EDB-A65F-374275126730} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCmdRun.exe [1567360 2022-11-11] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {45E713A5-37D1-499B-BA8A-AE5719FD16C0} - System32\Tasks\NahimicAPISvc64Run => C:\Program Files\NahimicAPI\NahimicAPISvc64.exe [745280 2022-06-01] (A-Volute SAS -> NahimicAPI) Task: {45E9926D-94D3-453F-8EEE-270FBAD63602} - System32\Tasks\AsusAPI64 => C:\Program Files\NahimicAPI\\NahimicAPISvc64.exe [745280 ] (A-Volute SAS -> NahimicAPI) Task: {55A74D1C-CAA0-4184-956B-A300BAB5B57C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCmdRun.exe [1567360 2022-11-11] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {5C724A06-E980-4589-93C7-B69376EC3CD9} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {5E54AC49-0E12-44A1-BE08-6E543B899FD3} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26154376 2022-11-16] (Microsoft Corporation -> Microsoft Corporation) Task: {5FBB4414-9A96-4485-B97C-551F3D862E3E} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>) Task: {633AB9C9-29FD-4A45-A13C-139D1D34CDA2} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646344 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {6995F74E-818F-47A6-A277-808DFCED6DBA} - System32\Tasks\Opera scheduled assistant Autoupdate 1620323235 => C:\Users\husey\AppData\Local\Programs\Opera\launcher.exe [2569160 2022-10-28] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\husey\AppData\Local\Programs\Opera\assistant" $(Arg0) Task: {6A35B108-42D7-48C1-8996-A777BB1140F8} - System32\Tasks\NahimicAPISvc32Run => C:\Program Files\NahimicAPI\x86\NahimicAPISvc32.exe [725824 2022-06-01] (A-Volute SAS -> NahimicAPI) Task: {750FA950-996F-4230-8CBE-A5BE60AE2EBE} - System32\Tasks\ASUS\P508PowerAgent_sdk => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ShareFromArmouryIII\Mouse\ROG STRIX CARRY\P508PowerAgent.exe (Keine Datei) Task: {79DF0DD1-5E48-4B61-BCD3-D4EA8CBB3A45} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => C:\WINDOWS\system32\MusNotification.exe /RunOnBattery RebootDialog (Keine Datei) Task: {7D354E7A-A072-4060-AB58-F489AB3004AB} - System32\Tasks\MicrosoftEdgeShadowStackRollbackTask => C:\Program Files (x86)\Microsoft\Edge\Application\105.0.1343.42\Installer\setup.exe --handle-crash="$(ProcessPath)" (Keine Datei) Task: {7D5A31E1-D76C-482C-A7B3-143024AD2D3C} - System32\Tasks\ASUS\ArmourySocketServer => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe [1856368 2022-08-05] (ASUSTeK COMPUTER INC. -> ASUS) Task: {86783C22-7043-41AE-9748-E9C4F780C4C7} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1552376 2022-09-26] (Adobe Inc. -> Adobe Inc.) Task: {893223DE-C71F-4315-833A-804C96CA9190} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-28] (Google LLC -> Google LLC) Task: {8978D9C0-911A-4D1F-A0EB-97A2C5FA77C8} - System32\Tasks\Microsoft\Windows\PI\SecureBootEncodeUEFI => C:\WINDOWS\system32\SecureBootEncodeUEFI.exe [94208 2022-11-09] (Microsoft Windows -> ) Task: {8DE75F47-6F51-4BA6-93F9-875BA671EA06} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144280 2022-11-16] (Microsoft Corporation -> Microsoft Corporation) Task: {918B83CD-4F11-4C1B-8A44-757586AB259C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8576000 2022-11-01] (Microsoft Corporation -> Microsoft Corporation) Task: {96745157-5534-48BF-BBB2-B6BE1118A601} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCmdRun.exe [1567360 2022-11-11] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {AFBDEB50-57DF-4BC7-ACE0-B4B53F927943} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {B8B5C948-86A0-4CA0-BD2F-9462966FF2D6} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {BA653738-597D-4DFA-AB90-82FE770E8A04} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-28] (Google LLC -> Google LLC) Task: {C9DF58E8-C8CF-41EE-989B-823E9C9C8E48} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (Keine Datei) Task: {DC145DEB-D08E-4068-80B8-40FDFD1B9578} - System32\Tasks\ASUS\ledcontrolservice3_sdk => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AudioSDK\Protocol\AudioLEDControl\ledcontrolservice3.exe [2837528 2022-06-16] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => C:\WINDOWS\system32\MusNotification.exe (Keine Datei) Task: {E6871A49-0F0C-4CC1-979A-B53C259E285B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCmdRun.exe [1567360 2022-11-11] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {E9A9BBD7-DC1A-4762-A450-CF563FF031A3} - System32\Tasks\ASUS\Framework Service => C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe [43509488 2022-07-08] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) Task: {EB04C7FD-DA2E-4544-98F4-FAE8653BFBF4} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-01] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {EBC58A12-83D3-47EC-8BA3-2FCEC67FF377} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26154376 2022-11-16] (Microsoft Corporation -> Microsoft Corporation) Task: {EBEF3016-809D-45D6-B1AE-55779CF37F3C} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {F8865AC0-E65A-407A-911D-731B56C57857} - System32\Tasks\ASUS\ASUSUpdateTaskMachineUA => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [167384 2021-11-30] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) Task: {F929300E-6751-42AE-875B-7BECC561AEB6} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => C:\WINDOWS\system32\MusNotification.exe /RunOnAC RebootDialog (Keine Datei) Task: {FB36A5C4-B852-4F2D-B52A-BAA3C9FD752E} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144280 2022-11-16] (Microsoft Corporation -> Microsoft Corporation) (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.) Task: C:\WINDOWS\Tasks\update-S-1-5-21-3780922625-143721777-232406852-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe ==================== Internet (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.) Hosts: Es ist mehr als ein Eintrag in der Hosts Datei zu finden. Siehe Hosts-Bereich in Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{6a848333-a30b-4554-afd3-4c74d5cc14db}: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{be97f992-7875-4557-af47-569d8543a0f1}: [DhcpNameServer] 172.20.10.1 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\husey\AppData\Local\Microsoft\Edge\User Data\Default [2022-11-27] FireFox: ======== FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-11-01] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-11-14] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: @java.com/DTPlugin,version=11.341.2 -> C:\Program Files (x86)\Java\jre1.8.0_341\bin\dtplugin\npDeployJava1.dll [2022-07-27] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.341.2 -> C:\Program Files (x86)\Java\jre1.8.0_341\bin\plugin2\npjp2.dll [2022-07-27] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-11-01] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\husey\AppData\Local\Google\Chrome\User Data\Default [2022-11-27] CHR Notifications: Default -> hxxps://elearning.uni-bremen.de; hxxps://it.oneblockdown.it; hxxps://www.distrelec.de; hxxps://www.lieferando.de; hxxps://www.netflix.com CHR Extension: (Pop up blocker for Chrome™ - Poper Blocker) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkkbcggnhapdmkeljlodobbkopceiche [2022-10-23] CHR Extension: (uBlock Origin) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2022-11-21] CHR Extension: (Google Docs Offline) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-11-04] CHR Extension: (Auto Refresh Plus | Page Monitor) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Default\Extensions\hgeljhfekpckiiplhkigfehkdpldcggm [2022-06-06] CHR Extension: (Google Notizen – Notizen & Listen) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmjkmjkepdijhoojdojkdfohbdgmmhki [2022-11-15] CHR Extension: (MetaMask) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Default\Extensions\nkbihfbeogaeaoehlefnkodbefgpgknn [2022-11-16] CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29] CHR Extension: (Datenheim) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofipngmbmooniijnflelmgpkjibkljak [2022-06-29] CHR Extension: (PD community extension) - C:\Users\husey\Desktop\PD-extension_2_2_5\pd-community-extension\pd-community-extension [2022-06-28] CHR Extension: (FlareAIO Extension) - C:\Users\husey\Desktop\prodirectextention\FlareAIO_Extension\Flare_Queue-It_Extension [2022-06-21] CHR Extension: (Fuze) - C:\Users\husey\Desktop\fuze-extension [2021-12-01] CHR Extension: (Hermesscripts) - C:\Users\husey\Desktop\Hermesscripts_2.5.0.8\Hermesscripts 2.5.0.8 [2022-09-18] CHR Profile: C:\Users\husey\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-06-04] CHR Profile: C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 1 [2022-11-01] CHR Extension: (Google Docs Offline) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-06-28] CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-04] CHR Profile: C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 10 [2022-05-14] CHR Extension: (Google Docs Offline) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 10\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-05-13] CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 10\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-03-11] CHR Profile: C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 11 [2022-06-28] CHR Extension: (Google Docs Offline) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-06-28] CHR Extension: (Magic Cart) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\nhhfgncpggkhgmapfpobajoglkdmlnmg [2021-07-29] CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-04-21] CHR Profile: C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 12 [2022-10-24] CHR Extension: (Google Docs Offline) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 12\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-10-07] CHR Extension: (Auto Refresh Plus | Page Monitor) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 12\Extensions\hgeljhfekpckiiplhkigfehkdpldcggm [2022-06-13] CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 12\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-04-25] CHR Extension: (Datenheim) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 12\Extensions\ofipngmbmooniijnflelmgpkjibkljak [2022-07-19] CHR Profile: C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 13 [2022-10-20] CHR Extension: (Google Docs Offline) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 13\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-10-20] CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 13\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-04-30] CHR Profile: C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 14 [2022-04-27] CHR Extension: (Präsentationen) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 14\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-05-05] CHR Extension: (Docs) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 14\Extensions\aohghmighlieiainnegkcijnfilokake [2021-05-05] CHR Extension: (Google Drive) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 14\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-05-05] CHR Extension: (YouTube) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 14\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-05-05] CHR Extension: (Tabellen) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 14\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-05-05] CHR Extension: (Google Docs Offline) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 14\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-04-27] CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 14\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-05-05] CHR Extension: (Google Mail) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 14\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-05-05] CHR Profile: C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 15 [2022-03-03] CHR Extension: (Präsentationen) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 15\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-05-05] CHR Extension: (Docs) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 15\Extensions\aohghmighlieiainnegkcijnfilokake [2021-05-05] CHR Extension: (Google Drive) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 15\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-05-05] CHR Extension: (YouTube) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 15\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-05-05] CHR Extension: (Tabellen) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 15\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-05-05] CHR Extension: (Google Docs Offline) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 15\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-03-03] CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 15\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-05-05] CHR Extension: (Google Mail) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 15\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-05-05] CHR Profile: C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 16 [2022-05-13] CHR Extension: (Google Docs Offline) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 16\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-05-13] CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 16\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-05-05] CHR Profile: C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 17 [2022-03-10] CHR Extension: (Präsentationen) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 17\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-05-18] CHR Extension: (Docs) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 17\Extensions\aohghmighlieiainnegkcijnfilokake [2021-05-18] CHR Extension: (Google Drive) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 17\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-05-18] CHR Extension: (YouTube) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 17\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-05-18] CHR Extension: (Tabellen) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 17\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-05-18] CHR Extension: (Google Docs Offline) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 17\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-10-06] CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 17\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-05-18] CHR Extension: (Google Mail) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 17\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-05-18] CHR Profile: C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 18 [2022-11-16] CHR Extension: (Google Docs Offline) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 18\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-04-27] CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 18\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-05-18] CHR Profile: C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 19 [2022-11-15] CHR Extension: (Google Docs Offline) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 19\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-11-15] CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 19\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-05-26] CHR Profile: C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 2 [2022-11-16] CHR Extension: (Google Docs Offline) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-11-16] CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-04] CHR Profile: C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 20 [2022-11-12] CHR Extension: (Google Docs Offline) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 20\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-11-11] CHR Extension: (Magic Cart) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 20\Extensions\nhhfgncpggkhgmapfpobajoglkdmlnmg [2021-07-01] CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 20\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-05-26] CHR Profile: C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 21 [2022-07-20] CHR Extension: (Google Docs Offline) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 21\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-06-24] CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 21\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-05-26] CHR Extension: (Datenheim) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 21\Extensions\ofipngmbmooniijnflelmgpkjibkljak [2022-07-20] CHR Profile: C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 22 [2022-11-08] CHR Extension: (Google Docs Offline) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 22\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-10-04] CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 22\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-05-26] CHR Extension: (Datenheim) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 22\Extensions\ofipngmbmooniijnflelmgpkjibkljak [2022-07-20] CHR Profile: C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 23 [2022-10-12] CHR Extension: (Google Docs Offline) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 23\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-10-04] CHR Extension: (Magic Cart) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 23\Extensions\nhhfgncpggkhgmapfpobajoglkdmlnmg [2021-08-19] CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 23\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-05-26] CHR Profile: C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 24 [2022-05-13] CHR Extension: (Google Docs Offline) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 24\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-04-27] CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 24\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-05-26] CHR Profile: C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 3 [2022-11-15] CHR Extension: (Google Docs Offline) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-11-15] CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-04] CHR Profile: C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 4 [2022-10-12] CHR Extension: (Google Docs Offline) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-10-12] CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-04] CHR Profile: C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 5 [2022-11-16] CHR Extension: (Google Docs Offline) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-11-16] CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-04] CHR Profile: C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 6 [2022-11-11] CHR Extension: (Google Docs Offline) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-11-09] CHR Extension: (Magic Cart) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\nhhfgncpggkhgmapfpobajoglkdmlnmg [2021-08-19] CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-23] CHR Profile: C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 7 [2022-11-15] CHR Notifications: Profile 7 -> hxxps://webshop.asus.com; hxxps://www.spartanien.de CHR Extension: (Google Docs Offline) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-11-09] CHR Extension: (Shoop Cashback & Gutscheine) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\hacngjmphfcjdfpmfmlngemhddjdncpe [2022-11-15] CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-25] CHR Extension: (Datenheim) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\ofipngmbmooniijnflelmgpkjibkljak [2022-07-01] CHR Extension: (Carnage Cookie Extension) - C:\Users\husey\Desktop\CarnageExtention\Carnage Extension [2020-12-11] CHR Profile: C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 8 [2022-11-26] CHR Extension: (BP Proxy Switcher) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\bapeomcobggcdleohggighcjbeeglhbn [2022-06-13] CHR Extension: (Google Docs Offline) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-11-09] CHR Extension: (AdBlock*– der beste Ad-Blocker) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-11-18] CHR Extension: (Shoop Cashback & Gutscheine) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\hacngjmphfcjdfpmfmlngemhddjdncpe [2022-11-25] CHR Extension: (Auto Refresh Plus | Page Monitor) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\hgeljhfekpckiiplhkigfehkdpldcggm [2022-06-10] CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-25] CHR Extension: (Datenheim) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\ofipngmbmooniijnflelmgpkjibkljak [2022-07-01] CHR Profile: C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 9 [2022-11-16] CHR Extension: (Google Docs Offline) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-09-28] CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\husey\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-03-11] CHR Profile: C:\Users\husey\AppData\Local\Google\Chrome\User Data\System Profile [2022-11-14] Opera: ======= OPR Profile: C:\Users\husey\AppData\Roaming\Opera Software\Opera Stable [2022-11-27] OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding} OPR Extension: (Rich Hints Agent) - C:\Users\husey\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2022-08-11] OPR Extension: (Opera Crypto Wallet) - C:\Users\husey\AppData\Roaming\Opera Software\Opera Stable\Extensions\gojhcdgcpbpfigcaejpfhfegekdgiblk [2022-08-11] OPR Extension: (Auto Refresh Plus | Page Monitor) - C:\Users\husey\AppData\Roaming\Opera Software\Opera Stable\Extensions\hgeljhfekpckiiplhkigfehkdpldcggm [2022-08-11] OPR Extension: (Amazon Assistant Promotion) - C:\Users\husey\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2021-09-06] OPR Extension: (Boring) - C:\Users\husey\Desktop\boring 3.0.8 [2021-04-28] ==================== Dienste (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2022-09-26] (Adobe Inc. -> Adobe Inc.) R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3866592 2022-09-27] (Adobe Inc. -> Adobe Systems, Incorporated) R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3702240 2022-09-27] (Adobe Inc. -> Adobe Systems, Incorporated) R2 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [3853384 2022-08-11] (philandro Software GmbH -> AnyDesk Software GmbH) R2 ArmouryCrateService; C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe [382112 2022-08-04] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) S3 ArmouryLiveUpdate; C:\WINDOWS\System32\DriverStore\FileRepository\rogaudiohid.inf_amd64_329251bb9f565b3b\ArmouryLiveUpdate.exe [576200 2021-12-28] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) S2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.02.12\atkexComSvc.exe [457544 2022-02-10] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) S2 asus; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [167384 2021-11-30] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) R2 AsusCertService; C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe [181576 2022-03-28] (ASUSTeK Computer Inc. -> ASUSTek COMPUTER INC.) S3 asusm; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [167384 2021-11-30] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8906088 2021-03-02] (BattlEye Innovations e.K. -> ) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12515768 2022-11-16] (Microsoft Corporation -> Microsoft Corporation) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1136040 2022-11-22] (EasyAntiCheat Oy -> Epic Games, Inc) S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [584680 2022-11-21] (EasyAntiCheat Oy -> Epic Games, Inc.) S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [16029456 2022-11-17] (Epic Games Inc. -> Epic Games, Inc.) S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [1741384 2020-12-23] (GOG Sp. z o.o. -> GOG.com) S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6821960 2020-12-23] (GOG Sp. z o.o. -> GOG.com) R2 GameSDK Service; C:\Program Files (x86)\ASUS\GameSDK Service\GameSDK.exe [397544 2022-05-31] (ASUSTeK COMPUTER INC. -> ASUS Inc.) R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [228848 2022-11-02] (HP Inc. -> HP Inc.) S3 InventorySvc; C:\WINDOWS\system32\inventorysvc.dll [304480 2022-10-11] (Microsoft Windows -> Microsoft Corporation) R2 LightingService; C:\Program Files (x86)\LightingService\LightingService.exe [3887504 2022-07-25] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) R2 NordUpdaterService; C:\Program Files\NordUpdater\NordUpdateService.exe [300408 2022-08-03] (nordvpn s.a. -> TEFINCOM S.A.) R2 nordvpn-service; C:\Program Files\NordVPN\nordvpn-service.exe [281464 2022-02-18] (nordvpn s.a. -> TEFINCOM S.A.) S3 OverwolfUpdater; C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2576728 2022-11-22] (Overwolf Ltd -> Overwolf LTD) R2 Razer Game Manager Service; C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe [254224 2021-11-16] (Razer USA Ltd. -> Razer Inc) R2 Razer Synapse Service; C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe [300552 2022-11-07] (Razer USA Ltd. -> Razer Inc.) R2 ROG Live Service; C:\Program Files (x86)\ASUS\ROG Live Service\ROGLiveService.exe [6739056 2022-09-21] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) R2 RzActionSvc; C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe [537912 2022-10-24] (Razer USA Ltd. -> Razer Inc.) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [249344 2022-11-09] (Microsoft Windows Publisher -> Microsoft Corporation) R2 SgrmBroker; C:\WINDOWS\system32\Sgrm\SgrmBroker.exe [414632 2022-05-07] (Microsoft Windows Publisher -> Microsoft Corporation) R2 Surfshark Antivirus; C:\Program Files (x86)\Surfshark\Resources\x64\nssm.exe [440120 2021-06-23] (Surfshark Ltd. -> Surfshark) R2 Surfshark Service; C:\Program Files (x86)\Surfshark\Resources\x64\nssm.exe [440120 2021-06-23] (Surfshark Ltd. -> Surfshark) R2 Surfshark Shadowsocks Service; C:\Program Files (x86)\Surfshark\Resources\x64\nssm.exe [440120 2021-06-23] (Surfshark Ltd. -> Surfshark) R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [16241056 2022-07-13] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) R2 TextInputManagementService; C:\WINDOWS\System32\TabSvc.dll [266240 2022-10-11] (Microsoft Windows -> Microsoft Corporation) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\NisSrv.exe [3191272 2022-11-11] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MsMpEng.exe [133544 2022-11-11] (Microsoft Windows Publisher -> Microsoft Corporation) S3 wuauserv; C:\WINDOWS\system32\wuauserv.dll [137544 2022-11-09] (Microsoft Windows -> Microsoft Corporation) R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_c43eff7079c4c90c\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_c43eff7079c4c90c\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Treiber (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.) S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.) R1 Asusgio2; C:\Windows\system32\drivers\AsIO2.sys [34384 2021-10-21] (ASUSTeK Computer Inc. -> ) R1 Asusgio3; C:\Windows\system32\drivers\AsIO3.sys [43168 2022-03-28] (ASUSTeK Computer Inc. -> ) R2 bfs; C:\WINDOWS\system32\drivers\bfs.sys [91480 2022-10-11] (Microsoft Windows -> Microsoft Corporation) S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [Datei ist nicht signiert] R1 CTIAIO; C:\WINDOWS\system32\drivers\CtiAIo64.sys [32304 2022-06-11] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Innovation Co., LTd.) R1 CTIIO; C:\WINDOWS\system32\drivers\CtiIo64.sys [30728 2022-03-28] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Innovation Co., LTd.) S0 GenPass; C:\WINDOWS\System32\DriverStore\FileRepository\genpass.inf_amd64_bef88a423225ecdc\genpass.sys [62800 2022-05-07] (Microsoft Windows -> Microsoft Corporation) R3 iriuna0; C:\WINDOWS\system32\drivers\iriuna0.sys [46976 2020-10-29] (Iriun Oy -> Windows (R) Win 7 DDK provider) R3 iriunv0; C:\WINDOWS\System32\DriverStore\FileRepository\iriunvid.inf_amd64_58518cc843573ae0\iriunv0.sys [38272 2020-09-21] (Iriun Oy -> Windows (R) Win 7 DDK provider) R1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [18496 2022-06-08] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd) R2 NDivert; C:\Program Files\NordVPN\6.48.18.0\Drivers\NDivert.sys [131456 2022-04-05] (nordvpn s.a. -> Nordvpn S.A.) R1 nordlwf; C:\WINDOWS\system32\DRIVERS\nordlwf.sys [44928 2022-02-22] (nordvpn s.a. -> TEFINCOM S.A.) R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation) R2 ProxifierDrv; C:\WINDOWS\system32\DRIVERS\ProxifierDrv.sys [58104 2020-09-24] (Initeks, OOO -> Initex) S0 pvscsi; C:\WINDOWS\System32\drivers\pvscsii.sys [45408 2022-05-07] (Microsoft Windows -> VMware, Inc.) R3 ROGMS; C:\WINDOWS\System32\DriverStore\FileRepository\rogms.inf_amd64_5d90e8e8f8692743\ROGMS.sys [40760 2022-08-03] (ASUSTeK COMPUTER INC. -> Windows (R) Win 7 DDK provider) S3 RoutePolicy; C:\WINDOWS\System32\drivers\RoutePolicy.sys [98304 2022-05-07] (Microsoft Windows -> ) R3 rtcx21; C:\WINDOWS\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_516e5c9b75c49dc2\rtcx21x64.sys [539648 2022-05-06] (Microsoft Windows -> Realtek) R3 RtsUpx; C:\WINDOWS\system32\drivers\RtsUpx.sys [35864 2022-03-28] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) R3 RzCommon; C:\WINDOWS\System32\drivers\RzCommon.sys [64168 2022-08-18] (Razer USA Ltd. -> Razer Inc) R3 RzDev_0C00; C:\WINDOWS\System32\drivers\RzDev_0C00.sys [54168 2020-08-24] (Razer USA Ltd. -> Razer Inc) S3 SurfsharkSplitTunnelDriver; C:\Program Files (x86)\Surfshark\Resources\x64\SurfsharkSplitTunnelCalloutDriver.sys [39648 2021-06-23] (Microsoft Windows Hardware Compatibility Publisher -> ) R3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [49744 2021-06-13] (nordvpn s.a. -> The OpenVPN Project) R3 tapsurfshark; C:\WINDOWS\System32\drivers\tapsurfshark.sys [38728 2020-06-15] (WDKTestCert Lenovo,131775874531219913 -> The OpenVPN Project) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49616 2022-11-11] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [469288 2022-11-11] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [95520 2022-11-11] (Microsoft Windows -> Microsoft Corporation) S3 wintun; C:\WINDOWS\System32\drivers\wintun.sys [29592 2022-10-11] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC) R3 wintunshark; C:\WINDOWS\System32\drivers\wintunshark.sys [31096 2020-09-17] (WDKTestCert nikod,132409123292239223 -> Surfshark Ltd) R2 wtd; C:\WINDOWS\System32\drivers\wtd.sys [118784 2022-10-11] (Microsoft Windows -> Microsoft Corporation) S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X] ==================== NetSvcs (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Ein Monat (erstellte) (Nicht auf der Ausnahmeliste) ========= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2022-11-27 17:22 - 2022-11-27 17:23 - 000058888 _____ C:\Users\husey\Downloads\FRST.txt 2022-11-27 17:22 - 2022-11-27 17:22 - 000000000 ____D C:\FRST 2022-11-27 17:21 - 2022-11-27 17:21 - 002375680 _____ (Farbar) C:\Users\husey\Downloads\FRST64.exe 2022-11-27 17:17 - 2022-11-27 17:17 - 000000000 ____D C:\Users\husey\Downloads\LocaleMetaData 2022-11-27 17:16 - 2022-11-27 17:17 - 000069632 _____ C:\Users\husey\Downloads\windowsdefenderLogs.evtx 2022-11-27 16:56 - 2022-11-27 16:56 - 000758838 _____ C:\WINDOWS\system32\perfh007.dat 2022-11-27 16:56 - 2022-11-27 16:56 - 000157058 _____ C:\WINDOWS\system32\perfc007.dat 2022-11-27 16:46 - 2022-11-27 16:47 - 000000000 ____D C:\WINDOWS\Microsoft Antimalware 2022-11-26 20:01 - 2022-11-26 21:17 - 000072565 _____ C:\Users\husey\Downloads\Rechnung_RE0604_26.11.2022.pdf 2022-11-26 17:18 - 2022-11-26 17:18 - 000047477 _____ C:\Users\husey\Downloads\26-11-2022_bulk (1).pdf 2022-11-26 15:09 - 2022-11-26 15:09 - 000048455 _____ C:\Users\husey\Downloads\26-11-2022_bulk.pdf 2022-11-25 17:13 - 2022-11-25 15:58 - 000010773 ____T C:\Users\husey\Downloads\3x_PS5_DISC+FIFA23_BUNDLE.pdf 2022-11-25 01:50 - 2022-11-25 01:50 - 000000000 ____D C:\Users\husey\AppData\Roaming\GMEGLOBAL 2022-11-24 16:47 - 2022-11-24 16:47 - 000049033 _____ C:\Users\husey\Downloads\24-11-2022_bulk.pdf 2022-11-23 18:19 - 2022-11-23 18:19 - 000998292 _____ C:\Users\husey\Downloads\IMG_2657.jpeg 2022-11-22 14:21 - 2022-11-22 14:27 - 000000000 ____D C:\Users\husey\Desktop\alias_Oktober 2022-11-22 13:32 - 2022-11-22 13:32 - 003376832 _____ C:\Users\husey\Downloads\Bzst_Brief.pdf 2022-11-22 00:25 - 2022-11-22 00:25 - 000000000 ____D C:\Users\husey\AppData\Local\EvilDead 2022-11-21 21:20 - 2022-11-21 21:20 - 000910294 _____ C:\Users\husey\Downloads\IMG_2676.jpeg 2022-11-21 21:20 - 2022-11-21 21:20 - 000860296 _____ C:\Users\husey\Downloads\IMG_2675.jpeg 2022-11-21 15:00 - 2022-11-21 15:00 - 000003866 _____ C:\Users\husey\Downloads\1xdiscsolo.pdf 2022-11-20 21:58 - 2022-11-20 21:58 - 001082903 _____ C:\Users\husey\Downloads\IMG_2654.jpeg 2022-11-20 21:57 - 2022-11-20 21:57 - 000913592 _____ C:\Users\husey\Downloads\IMG_2653.jpeg 2022-11-20 21:54 - 2022-11-20 21:54 - 001106815 _____ C:\Users\husey\Downloads\IMG_2656.jpeg 2022-11-20 21:54 - 2022-11-20 21:54 - 000982742 _____ C:\Users\husey\Downloads\IMG_2655.jpeg 2022-11-19 12:10 - 2022-11-19 12:10 - 000672546 _____ C:\Users\husey\Downloads\Mueller_Kassenbon.pdf 2022-11-18 00:47 - 2022-11-18 00:47 - 000930501 _____ C:\Users\husey\Downloads\Rechnung_197493801.pdf 2022-11-17 17:06 - 2022-11-17 17:06 - 000131631 _____ C:\Users\husey\Downloads\Rechnung-GVR4215927.pdf 2022-11-17 10:50 - 2022-11-17 10:50 - 000038585 _____ C:\Users\husey\Downloads\DHL-Paketmarke_6YYHCLXSHZB7_1_Hüseyin_Pir.pdf 2022-11-16 23:06 - 2022-11-16 23:06 - 000000000 ____D C:\Users\husey\AppData\Local\EpicOnlineServicesUserHelper 2022-11-16 22:40 - 2022-11-16 22:40 - 000000000 ____D C:\Users\husey\AppData\LocalLow\Mediatonic 2022-11-16 22:40 - 2022-11-16 22:40 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat 2022-11-16 13:33 - 2022-11-16 13:33 - 000048049 _____ C:\Users\husey\Downloads\16-11-2022_bulk.pdf 2022-11-14 16:29 - 2022-11-14 16:29 - 000080634 _____ C:\Users\husey\Downloads\DOF-221114BRE9CPBUW7EK-0025121843.pdf 2022-11-14 16:29 - 2022-11-14 16:29 - 000033469 _____ C:\Users\husey\Downloads\DHL-Paketmarke_BRE9CPBUW7EK_1_Thomas_Mörschel.pdf 2022-11-13 16:27 - 2022-11-13 16:27 - 000061148 _____ C:\Users\husey\Downloads\2022-10-11 (1).pdf 2022-11-12 16:30 - 2022-11-12 16:30 - 000796800 _____ C:\Users\husey\Downloads\IMG_2567.jpeg 2022-11-12 16:30 - 2022-11-12 16:30 - 000755860 _____ C:\Users\husey\Downloads\IMG_2566.jpeg 2022-11-12 16:30 - 2022-11-12 16:30 - 000561112 _____ C:\Users\husey\Downloads\IMG_2568.jpeg 2022-11-12 01:37 - 2022-11-12 01:37 - 000926701 _____ C:\Users\husey\Downloads\IMG_2538.jpeg 2022-11-12 01:37 - 2022-11-12 01:37 - 000849312 _____ C:\Users\husey\Downloads\IMG_2537.jpeg 2022-11-11 14:04 - 2022-11-11 14:04 - 000067284 _____ C:\Users\husey\Downloads\Rechnung_RE0594_11.11.2022.pdf 2022-11-10 21:24 - 2022-11-10 21:24 - 000003713 _____ C:\Users\husey\Downloads\09c36652-aeca-42ce-8c8b-6eda25201c4b.pdf 2022-11-10 17:40 - 2022-11-10 17:40 - 000069315 _____ C:\Users\husey\Downloads\Rechnung_RE0593_10.11.2022.pdf 2022-11-10 14:21 - 2022-11-10 14:21 - 000054495 _____ C:\Users\husey\Downloads\45856dcd-7ad4-4115-9f86-90f154ba64ba.jpeg 2022-11-09 11:53 - 2022-11-09 11:53 - 000094208 _____ C:\WINDOWS\system32\SecureBootEncodeUEFI.exe 2022-11-09 11:53 - 2022-11-09 11:53 - 000062832 _____ C:\WINDOWS\system32\AppInstallerBackgroundUpdate.exe 2022-11-09 11:53 - 2022-11-09 11:53 - 000016519 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2022-11-09 11:51 - 2022-11-09 11:51 - 000000000 ___HD C:\$WinREAgent 2022-11-08 15:35 - 2022-11-08 15:35 - 000003928 _____ C:\Users\husey\Downloads\1f6a6ac5-130b-4544-b932-130fdcd47e64.pdf 2022-11-08 15:35 - 2022-11-08 15:35 - 000003711 _____ C:\Users\husey\Downloads\b1ec750e-80d3-4bbd-bc46-caa41a1431bf.pdf 2022-11-07 14:35 - 2022-11-07 14:35 - 000069319 _____ C:\Users\husey\Downloads\Rechnung_RE0589_07.11.2022.pdf 2022-11-07 14:30 - 2022-11-07 14:30 - 000104235 _____ C:\Users\husey\Downloads\AmaHeizkörper.pdf 2022-11-07 13:03 - 2022-11-04 21:26 - 000035211 ____T C:\Users\husey\Downloads\001-R06033868-00-01-26438603.PDF 2022-11-06 19:40 - 2022-11-06 19:40 - 000027277 _____ C:\Users\husey\Downloads\AmaGranTurismoKorrektur.pdf 2022-11-06 19:39 - 2022-11-06 19:39 - 000027286 _____ C:\Users\husey\Downloads\AmaControllermitFifaKorrektur.pdf 2022-11-06 19:27 - 2022-11-06 19:27 - 000061147 _____ C:\Users\husey\Downloads\2022-10-11.pdf 2022-11-06 19:25 - 2022-11-06 19:25 - 000026927 _____ C:\Users\husey\Downloads\17245095707.pdf 2022-11-06 19:25 - 2022-11-06 19:25 - 000026713 _____ C:\Users\husey\Downloads\15630729107 (1).pdf 2022-11-06 19:25 - 2022-11-06 19:25 - 000026564 _____ C:\Users\husey\Downloads\16599489407.pdf 2022-11-04 16:20 - 2022-11-04 16:20 - 000003928 _____ C:\Users\husey\Downloads\ca0357a9-453b-476c-830b-09464a393a33.pdf 2022-11-03 19:32 - 2022-11-03 19:32 - 000121060 _____ C:\Users\husey\Downloads\Kartenabrechnung_04072022_2472 (1).pdf 2022-11-03 19:32 - 2022-11-03 19:32 - 000120525 _____ C:\Users\husey\Downloads\Kartenabrechnung_04082022_2634 (1).pdf 2022-11-03 18:36 - 2022-11-03 18:36 - 000061194 _____ C:\Users\husey\Downloads\2022-07-11 (3).pdf 2022-11-03 18:36 - 2022-11-03 18:36 - 000059534 _____ C:\Users\husey\Downloads\2022-06-11 (2).pdf 2022-11-03 18:36 - 2022-11-03 18:36 - 000059485 _____ C:\Users\husey\Downloads\2022-08-11.pdf 2022-11-03 18:36 - 2022-11-03 18:36 - 000058825 _____ C:\Users\husey\Downloads\2022-09-11.pdf 2022-11-02 19:52 - 2022-11-02 19:51 - 000067503 _____ C:\Users\husey\Downloads\Rechnung_RE0586_02.11.2022.pdf 2022-11-02 01:00 - 2022-11-22 00:25 - 000000000 ____D C:\Users\husey\AppData\Roaming\EasyAntiCheat 2022-11-02 01:00 - 2022-11-04 21:41 - 000000000 ____D C:\Users\husey\AppData\Roaming\7DaysToDie 2022-11-02 01:00 - 2022-11-02 01:00 - 000000000 ____D C:\Users\husey\AppData\LocalLow\The Fun Pimps 2022-11-02 01:00 - 2022-11-02 01:00 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat_EOS 2022-11-01 20:05 - 2022-11-01 20:05 - 000104396 _____ C:\Users\husey\Downloads\AmaControllermitFifa.pdf 2022-11-01 20:05 - 2022-11-01 20:05 - 000103880 _____ C:\Users\husey\Downloads\AmaGranTurismo.pdf 2022-11-01 18:44 - 2022-11-01 18:44 - 000041931 _____ C:\Users\husey\Downloads\VFDE059487.pdf 2022-10-30 17:38 - 2022-10-30 17:38 - 002642304 _____ C:\Users\husey\Downloads\invoice2022-10-30_16-38-16.pdf 2022-10-28 09:22 - 2022-10-28 09:22 - 000061188 _____ C:\Users\husey\Downloads\2022-07-11 (2).pdf 2022-10-28 09:22 - 2022-10-28 09:22 - 000059532 _____ C:\Users\husey\Downloads\2022-06-11 (1).pdf 2022-10-28 09:20 - 2022-10-28 09:20 - 000118840 _____ C:\Users\husey\Downloads\Kartenabrechnung_04062022_2645 (2).pdf 2022-10-28 09:20 - 2022-10-28 09:20 - 000104377 _____ C:\Users\husey\Downloads\Kartenabrechnung_04052022_2672 (1).pdf 2022-10-28 09:20 - 2022-10-28 09:20 - 000098278 _____ C:\Users\husey\Downloads\Kartenabrechnung_04042022_3069 (1).pdf ==================== Ein Monat (geänderte) ================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2022-11-27 17:19 - 2022-03-17 00:26 - 000000000 ____D C:\Users\husey\AppData\Roaming\discord 2022-11-27 17:18 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-11-27 17:18 - 2021-01-28 21:27 - 000000000 ____D C:\Users\husey\AppData\Local\Packages 2022-11-27 17:06 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemTemp 2022-11-27 17:06 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\AppReadiness 2022-11-27 16:56 - 2022-09-21 13:05 - 001754660 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2022-11-27 16:56 - 2022-05-07 06:22 - 000000000 ____D C:\WINDOWS\INF 2022-11-27 16:53 - 2021-01-28 21:43 - 000000000 ____D C:\Users\husey\AppData\Local\D3DSCache 2022-11-27 16:51 - 2021-01-28 21:31 - 000000000 ____D C:\Program Files (x86)\Google 2022-11-27 16:50 - 2022-08-12 11:03 - 000000000 ____D C:\Users\husey\AppData\Local\Overwolf 2022-11-27 16:50 - 2022-04-18 11:05 - 000000000 ____D C:\Users\husey\AppData\Local\Discord 2022-11-27 16:50 - 2021-01-28 21:28 - 000000000 ___RD C:\Users\husey\OneDrive 2022-11-27 16:49 - 2022-09-21 10:44 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2022-11-27 16:49 - 2022-09-21 10:39 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2022-11-27 16:49 - 2022-08-09 18:24 - 000000000 ____D C:\Program Files\TeamViewer 2022-11-27 16:49 - 2022-05-07 06:24 - 000000000 ___HD C:\Program Files\WindowsApps 2022-11-27 16:49 - 2021-01-28 21:22 - 000000000 ____D C:\ProgramData\NVIDIA 2022-11-27 16:49 - 2021-01-28 21:18 - 000012288 ___SH C:\DumpStack.log.tmp 2022-11-27 16:46 - 2022-05-07 06:17 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2022-11-27 14:24 - 2021-11-30 00:28 - 000000000 ____D C:\Program Files\ASUS 2022-11-27 13:58 - 2022-04-05 13:35 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData 2022-11-27 02:21 - 2021-01-28 21:54 - 000000000 ____D C:\Users\husey\AppData\Local\Battle.net 2022-11-25 17:27 - 2022-02-07 14:25 - 000000000 ____D C:\Users\husey\Desktop\StockxLabels 2022-11-25 17:11 - 2022-02-07 14:24 - 000000000 ____D C:\Users\husey\Desktop\AliasLabels 2022-11-25 02:26 - 2021-01-28 23:10 - 000000000 ____D C:\Program Files (x86)\Steam 2022-11-24 13:23 - 2022-08-12 11:04 - 000000000 ____D C:\Program Files (x86)\Overwolf 2022-11-24 02:21 - 2022-08-04 02:23 - 000004087 _____ C:\GetDeviceStatus.xml 2022-11-24 02:21 - 2022-08-04 02:23 - 000000898 _____ C:\QueryAllDevice.xml 2022-11-24 02:21 - 2022-08-04 02:23 - 000000375 _____ C:\GetDeviceCap.xml 2022-11-24 02:21 - 2022-08-04 02:23 - 000000228 _____ C:\SetMatrixLEDScript.xml 2022-11-23 20:59 - 2022-10-02 18:09 - 000000000 ____D C:\Users\husey\Desktop\Ausgaben_Oktober 2022-11-23 13:39 - 2020-11-19 00:53 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-11-23 13:39 - 2020-11-19 00:53 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2022-11-22 16:53 - 2021-01-28 21:53 - 000000000 ____D C:\Program Files (x86)\Battle.net 2022-11-22 00:25 - 2021-06-10 22:18 - 000000000 ____D C:\ProgramData\Epic 2022-11-22 00:25 - 2021-01-29 01:03 - 000000000 ____D C:\Users\husey\AppData\Local\UnrealEngine 2022-11-21 15:00 - 2022-09-21 10:44 - 000003522 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0 2022-11-19 12:22 - 2022-09-11 15:20 - 000000000 ____D C:\Users\husey\AppData\Roaming\com.adobe.dunamis 2022-11-19 12:02 - 2022-10-13 10:49 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk 2022-11-19 12:02 - 2022-10-13 10:49 - 000002061 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk 2022-11-19 12:02 - 2022-09-21 10:44 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2022-11-18 16:16 - 2022-09-21 10:44 - 000004228 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1620323232 2022-11-18 16:16 - 2021-05-06 18:47 - 000001405 _____ C:\Users\husey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Opera-Browser.lnk 2022-11-16 22:40 - 2021-10-13 16:38 - 000000000 ____D C:\Users\husey\AppData\Local\Epic Games 2022-11-16 21:16 - 2021-02-11 17:33 - 000000000 ____D C:\Program Files\Microsoft Office 2022-11-16 00:58 - 2021-01-29 01:03 - 000000000 ____D C:\Users\husey\AppData\Local\CrashDumps 2022-11-14 21:12 - 2022-09-21 10:44 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3780922625-143721777-232406852-1001 2022-11-14 21:12 - 2022-09-21 10:44 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3780922625-143721777-232406852-1001 2022-11-14 21:12 - 2021-01-28 21:23 - 000002395 _____ C:\Users\husey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2022-11-14 16:30 - 2021-02-04 10:04 - 000000000 ____D C:\ProgramData\Riot Games 2022-11-12 16:28 - 2021-05-31 23:21 - 000000000 ____D C:\Program Files (x86)\Overwatch 2022-11-11 10:11 - 2021-11-30 00:25 - 000000000 ____D C:\ProgramData\ASUS 2022-11-11 09:43 - 2020-11-19 00:51 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2022-11-10 23:24 - 2021-01-28 21:31 - 000002239 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2022-11-10 23:24 - 2021-01-28 21:31 - 000002198 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2022-11-10 10:34 - 2021-10-19 00:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer 2022-11-10 05:30 - 2022-09-21 10:39 - 000480664 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2022-11-10 05:30 - 2022-05-07 11:39 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2022-11-10 05:30 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\UUS 2022-11-10 05:30 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2022-11-10 05:30 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemResources 2022-11-10 05:30 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2022-11-10 05:30 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm 2022-11-10 05:30 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\setup 2022-11-10 05:30 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\appraiser 2022-11-10 05:30 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ShellExperiences 2022-11-10 05:30 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ShellComponents 2022-11-10 05:30 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\bcastdvr 2022-11-10 05:28 - 2022-09-21 10:44 - 000003756 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2022-11-10 05:28 - 2022-09-21 10:44 - 000003632 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2022-11-09 11:56 - 2021-02-03 03:46 - 000000000 ____D C:\WINDOWS\system32\MRT 2022-11-09 11:54 - 2022-05-07 06:17 - 000000000 ____D C:\WINDOWS\CbsTemp 2022-11-09 11:54 - 2021-02-03 03:46 - 146960040 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2022-11-09 11:53 - 2022-09-21 10:40 - 003212288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2022-11-09 08:49 - 2021-07-21 19:05 - 000000000 ____D C:\Users\husey\Desktop\Fuze 2022-11-09 08:31 - 2021-12-01 10:07 - 000001020 _____ C:\Users\Public\Desktop\Fuze.lnk 2022-11-09 08:31 - 2021-11-17 09:42 - 000001032 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fuze.lnk 2022-11-09 08:31 - 2021-11-17 09:42 - 000000000 ____D C:\Program Files (x86)\Fuze 2022-11-02 19:49 - 2022-09-21 10:44 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP 2022-11-02 19:49 - 2021-06-11 14:01 - 000000000 ____D C:\Program Files\HPPrintScanDoctor 2022-11-01 23:47 - 2021-10-15 13:21 - 000002382 ____H C:\Users\husey\Documents\Default.rdp 2022-11-01 16:39 - 2022-08-15 22:15 - 000001957 _____ C:\Users\husey\Desktop\NordVPN.lnk 2022-11-01 13:53 - 2021-11-30 00:25 - 000000000 ____D C:\Program Files (x86)\ASUS ==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ======== 2021-12-17 23:43 - 2022-02-24 01:30 - 000006393 _____ () C:\Users\husey\AppData\Roaming\a32.json 2022-02-09 09:00 - 2022-03-30 10:21 - 000001275 _____ () C:\Users\husey\AppData\Roaming\zlnew.json 2022-04-05 13:52 - 2022-04-05 13:52 - 000000000 _____ () C:\Users\husey\AppData\Local\oobelibMkey.log 2021-01-29 20:13 - 2021-01-29 20:13 - 000000003 _____ () C:\Users\husey\AppData\Local\updater.log 2021-01-29 20:13 - 2022-01-26 22:50 - 000000059 _____ () C:\Users\husey\AppData\Local\UserProducts.xml ==================== SigCheck ============================ (Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.) ==================== Ende von FRST.txt ======================== Ich hoffe, ihr könnt mir mit diesen Informationen die ich euch bereitstelle weiterhelfen. Mit freundlichen Grüßen Hüseyin Pir |
27.11.2022, 17:55 | #2 |
| Windows 11: Unerwünschte Dateien auf dem Rechner. JPG, Word, PDF und TIF Anleitung / HilfeCode:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 26-11-2022 durchgeführt von husey (27-11-2022 17:23:36) Gestartet von C:\Users\husey\Downloads Microsoft Windows 11 Pro Version 22H2 22621.819 (X64) (2022-09-21 11:58:22) Start-Modus: Normal ========================================================== ==================== Konten: ============================= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.) Administrator (S-1-5-21-3780922625-143721777-232406852-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-3780922625-143721777-232406852-503 - Limited - Disabled) Gast (S-1-5-21-3780922625-143721777-232406852-501 - Limited - Disabled) husey (S-1-5-21-3780922625-143721777-232406852-1001 - Administrator - Enabled) => C:\Users\husey WDAGUtilityAccount (S-1-5-21-3780922625-143721777-232406852-504 - Limited - Disabled) ==================== Sicherheits-Center ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installierte Programme ====================== (Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.) 4K Video Downloader (HKLM\...\{9A0CB9F2-12E4-4490-B052-116E9BDC6877}) (Version: 4.21.1.4960 - Open Media LLC) ActivePerl-5.28 (HKLM\...\{FAFB92A9-5A72-07A0-81D6-751F7EF75E63}) (Version: 5.28.1001 - ActiveState) Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1031-1033-7760-BC15014EA700}) (Version: 22.003.20282 - Adobe) Adobe Genuine Service (HKLM-x32\...\AdobeGenuineService) (Version: 8.1.0.3 - Adobe Inc.) Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601032}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden AnyDesk (HKLM-x32\...\AnyDesk) (Version: ad 7.0.14 - AnyDesk Software GmbH) ARMOURY CRATE Lite Service (HKLM\...\{EF3944FF-2501-4568-B15C-5701E726719E}) (Version: 5.2.10 - ASUS) ASUS AURA Extension Card HAL (HKLM\...\{237E1CAC-1708-4940-AC34-DF15C079AB70}) (Version: 1.1.0.18 - ASUSTeK COMPUTER INC.) Hidden ASUS AURA Extension Card HAL (HKLM-x32\...\{4e2b05b0-eb08-41e5-9eb3-cdcc43d6bee0}) (Version: 1.1.0.18 - ASUSTeK COMPUTER INC.) Hidden ASUS AURA Headset Component (HKLM\...\{A3C4120D-8096-4307-91A2-FFE37EBD5A3D}) (Version: 1.3.46.0 - ASUSTek COMPUTER INC.) Hidden ASUS AURA Headset Component (HKLM-x32\...\{bee37cc6-e850-4317-8185-97770a491106}) (Version: 1.3.46.0 - ASUSTek COMPUTER INC.) Hidden ASUS Aura SDK (HKLM\...\{CF8E6E00-9C03-4440-81C0-21FACB921A6B}) (Version: 3.04.17 - ASUSTek COMPUTER INC.) Hidden ASUS AURA VGA Component (HKLM\...\{71BB96A6-EAC4-45AE-A17D-D3ED43FF1D14}) (Version: 0.0.4.3 - ASUSTek COMPUTER INC. ) Hidden ASUS AURA VGA Component (HKLM-x32\...\{7a0d5159-cb5e-4f66-91f8-bab46f864f14}) (Version: 0.0.4.3 - ASUSTek COMPUTER INC. ) Hidden ASUS Framework Service (HKLM-x32\...\{339A6383-7862-46DA-8A9D-E84180EF9424}) (Version: 3.1.0.2 - ASUSTeK Computer Inc.) ASUS Keyboard HAL (HKLM\...\{0FA0CDEE-5DC8-421E-A97D-C74FA6E66FC3}) (Version: 1.2.10.0 - ASUSTek COMPUTER INC.) Hidden ASUS Keyboard HAL (HKLM-x32\...\{7686bcb2-8fea-451d-bb38-609825b57aa5}) (Version: 1.2.10.0 - ASUSTek COMPUTER INC.) Hidden ASUS Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.107.93 - ASUSTeK Computer Inc.) Hidden AURA DRAM Component (HKLM\...\{9AFE5429-866B-457D-A864-80BCF7672EE8}) (Version: 1.1.18 - ASUS) Hidden AURA DRAM Component (HKLM-x32\...\{c3ae9104-ed9b-4ab5-9eb1-569697f4514b}) (Version: 1.1.18 - ASUS) Hidden AURA lighting effect add-on (HKLM-x32\...\{1E2EA04B-FCA7-457E-B6F4-F33E1858E859}) (Version: 0.0.24 - ASUS) AURA lighting effect add-on x64 (HKLM\...\{C5A4A164-4428-4931-B728-96EEF0FA3C44}) (Version: 0.0.24 - ASUS) AURA Service (HKLM-x32\...\{0E536061-3B55-4D45-BF58-0BDA261C94B0}) (Version: 3.05.66 - ASUSTeK Computer Inc.) Hidden AURA Service (HKLM-x32\...\{d4425362-eb40-415b-bb0d-5933fa345e9c}) (Version: 3.05.66 - ASUSTeK Computer Inc.) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) BlueJ (HKLM\...\{A6CCBCE2-3101-4337-8659-9F7F4C19E7BB}) (Version: 5.0.0 - BlueJ Team) Burning Crusade Classic (HKLM-x32\...\Burning Crusade Classic) (Version: - Blizzard Entertainment) Call of Duty Black Ops Cold War (HKLM-x32\...\Call of Duty Black Ops Cold War) (Version: - Blizzard Entertainment) Chia Blockchain (HKU\S-1-5-21-3780922625-143721777-232406852-1001\...\chia-blockchain) (Version: 1.1.5 - Chia Network) CPUID HWMonitor 1.46 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.46 - CPUID, Inc.) CrystalDiskMark 8.0.4a (HKLM\...\CrystalDiskMark8_is1) (Version: 8.0.4a - Crystal Dew World) CurseForge (HKU\S-1-5-21-3780922625-143721777-232406852-1001\...\Overwolf_cchhcaiapeikjbdbpfplgmpobbcdkdaphclbmkbj) (Version: 0.212.3.7035 - Overwolf app) Cyberpunk 2077 (HKLM-x32\...\1423049311_is1) (Version: 1.31 - GOG.com) Discord (HKU\S-1-5-21-3780922625-143721777-232406852-1001\...\Discord) (Version: 1.0.9004 - Discord Inc.) ENE RGB HAL (HKLM\...\{E050E98C-5524-4AFB-9E53-97700BEF2C02}) (Version: 1.1.39.18 - Ene Tech.) Hidden ENE RGB HAL (HKLM-x32\...\{cf6be873-4fda-41b6-87c1-54f5f726365d}) (Version: 1.1.39.18 - Ene Tech.) Hidden ENE_EHD_M2_HAL (HKLM\...\{37A48B7F-D4EA-4863-844E-A284E2AA3C5D}) (Version: 1.0.9.12 - ENE TECHNOLOGY INC.) Hidden ENE_EHD_M2_HAL (HKLM-x32\...\{97f3a665-a91b-4def-91e2-97fec9f22bfa}) (Version: 1.0.9.12 - ENE TECHNOLOGY INC.) Hidden Epic Games Launcher (HKLM-x32\...\{2A27CA16-E158-4B0A-A502-3E6364B1F03E}) (Version: 1.2.17.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Epic Online Services (HKLM-x32\...\{32C68D93-D32F-4B01-8250-61642BFC22F8}) (Version: 2.0.28.0 - Epic Games, Inc.) Ethereum - Geth - Official Go implementation of the Ethereum protocol (HKLM-x32\...\Ethereum Geth) (Version: 1.9.25-e7872729 - Ethereum) Far Cry 6 (HKLM-x32\...\Uplay Install 5266) (Version: - Ubisoft) FlareAIO version 3.8.39 (HKLM-x32\...\{DFEE5B84-17CC-4544-AA52-4C839AC94A40}_is1) (Version: 3.8.39 - FlareBots) FlareGUI (HKU\S-1-5-21-3780922625-143721777-232406852-1001\...\77f0857b-6f09-521e-8bfc-a9595e16a581) (Version: 3.5.0 - Atmosoles) Fuze version 1.9.43 (HKLM-x32\...\{FFF98F07-DF95-4FFD-88E8-2BE85142A6B1}_is1) (Version: 1.9.43 - FuzeLabs) GameSDK Service (HKLM-x32\...\{021d69c3-d686-4a94-8fb5-fd1ee782fb14}) (Version: 1.0.5.0 - ASUSTek COMPUTER INC.) GameSDK Service (HKLM-x32\...\{7160DA8D-3F25-4F6E-ABC8-F693551D82FA}) (Version: 1.0.5.0 - ASUSTek COMPUTER INC.) Hidden GitHub Desktop (HKU\S-1-5-21-3780922625-143721777-232406852-1001\...\GitHubDesktop) (Version: 3.0.5 - GitHub, Inc.) Gods Unchained 0.14.2 (HKU\S-1-5-21-3780922625-143721777-232406852-1001\...\6ae4b193-3f11-53fc-9cc5-14b1f1a73184) (Version: 0.14.2 - Immutable) GOG GALAXY (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 107.0.5304.107 - Google LLC) Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment) Hearthstone Deck Tracker (HKU\S-1-5-21-3780922625-143721777-232406852-1001\...\HearthstoneDeckTracker) (Version: 1.18.20 - HearthSim) HWiNFO64 Version 6.42 (HKLM\...\HWiNFO64_is1) (Version: 6.42 - Martin Malik - REALiX) Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000000-0220-1031-84C8-B8D95FA3C8C3}) (Version: 22.00.0.2 - Intel Corporation) IntelliJ IDEA 2022.2 (HKLM-x32\...\IntelliJ IDEA 2022.2) (Version: 222.3345.118 - JetBrains s.r.o.) Iriun Webcam version 2.6.3 (HKLM-x32\...\IriunWebcam_is1) (Version: 2.6.3 - Iriun) Java 8 Update 341 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180341F0}) (Version: 8.0.3410.10 - Oracle Corporation) Java(TM) SE Development Kit 17.0.4 (64-bit) (HKLM\...\{939A3D92-E4EC-599C-B706-C872465960D2}) (Version: 17.0.4.0 - Oracle Corporation) Java(TM) SE Development Kit 18.0.2 (64-bit) (HKLM\...\{EA16FB93-3AC2-538A-A3AD-03372A6682EA}) (Version: 18.0.2.0 - Oracle Corporation) Kingston AURA DRAM Component (HKLM\...\{965CDF5F-901C-476F-B3A8-7396701B1129}) (Version: 1.1.12 - KINGSTON COMPONENTS INC.) Hidden Kingston AURA DRAM Component (HKLM-x32\...\{2237a879-7fa4-4e21-ae3b-00f6a649b9d9}) (Version: 1.1.12 - KINGSTON COMPONENTS INC.) Hidden Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden League of Legends (HKU\S-1-5-21-3780922625-143721777-232406852-1001\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc) Microsoft .NET Host - 5.0.15 (x64) (HKLM\...\{FCEBE299-E0D2-4F08-AC41-16A836D35AD8}) (Version: 40.60.31015 - Microsoft Corporation) Hidden Microsoft .NET Host FX Resolver - 5.0.15 (x64) (HKLM\...\{00AE1248-489D-48B6-805D-714F8F123521}) (Version: 40.60.31015 - Microsoft Corporation) Hidden Microsoft .NET Runtime - 5.0.15 (x64) (HKLM\...\{6C4FCC4E-D663-484F-A7E2-44047806BFC5}) (Version: 40.60.31015 - Microsoft Corporation) Hidden Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 107.0.1418.56 - Microsoft Corporation) Microsoft Edge WebView2-Laufzeit (HKLM-x32\...\Microsoft EdgeWebView) (Version: 107.0.1418.56 - Microsoft Corporation) Microsoft Office Standard 2019 - de-de (HKLM\...\Standard2019Volume - de-de) (Version: 16.0.15726.20202 - Microsoft Corporation) Microsoft Office Standard 2019 - en-us (HKLM\...\Standard2019Volume - en-us) (Version: 16.0.15726.20202 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-3780922625-143721777-232406852-1001\...\OneDriveSetup.exe) (Version: 22.225.1026.0001 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{6A2A8076-135F-4F55-BB02-DED67C8C6934}) (Version: 4.67.0.0 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29913 (HKLM-x32\...\{855e31d2-9031-46e1-b06d-c9d7777deefb}) (Version: 14.28.29913.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29914 (HKLM-x32\...\{1b5476d9-ab8e-4b0d-b004-059a1bd5568b}) (Version: 14.28.29914.0 - Microsoft Corporation) Microsoft Visual C++ 2019 X64 Additional Runtime - 14.28.29913 (HKLM\...\{620A7633-7A09-42A8-8580-076A4483C4B0}) (Version: 14.28.29913 - Microsoft Corporation) Hidden Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.28.29913 (HKLM\...\{EECDD137-13DA-46ED-ADA0-BDF7F8BE65B8}) (Version: 14.28.29913 - Microsoft Corporation) Hidden Microsoft Visual C++ 2019 X86 Additional Runtime - 14.28.29914 (HKLM-x32\...\{BD8C6100-7C7D-48DD-93BA-69F6828213FE}) (Version: 14.28.29914 - Microsoft Corporation) Hidden Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.28.29914 (HKLM-x32\...\{42365A3A-622A-4EED-A727-FE192A794AFD}) (Version: 14.28.29914 - Microsoft Corporation) Hidden Microsoft Windows Desktop Runtime - 5.0.15 (x64) (HKLM\...\{CA657E97-EF38-4C2D-9CA7-6D51E39F53E8}) (Version: 40.60.31016 - Microsoft Corporation) Hidden Microsoft Windows Desktop Runtime - 5.0.15 (x64) (HKLM-x32\...\{1e198010-5aa4-4fa4-b886-a31eb45f4661}) (Version: 5.0.15.31016 - Microsoft Corporation) MiKTeX (HKU\S-1-5-21-3780922625-143721777-232406852-1001\...\MiKTeX) (Version: 21.1 - MiKTeX.org) MSI Afterburner 4.6.4 (HKLM-x32\...\Afterburner) (Version: 4.6.4 - MSI Co., LTD) NiceHash Miner 3.0.5.6 (only current user) (HKU\S-1-5-21-3780922625-143721777-232406852-1001\...\8abad8e2-b957-48ed-92ba-4339c2a40e78) (Version: 3.0.5.6 - H-BIT, d.o.o.) Node.js (HKLM\...\{A6F1DDFA-322E-40BA-874F-F0749FABB236}) (Version: 16.13.1 - Node.js Foundation) NordUpdater (HKLM\...\{6E35DB82-3D19-4DD6-B8CB-F082815FDE18}_is1) (Version: 1.3.0.73 - Nord Security) NordVPN (HKLM\...\{19465C24-3D5D-4327-B99F-3CC0A1D38151}_is1) (Version: 6.48.18.0 - Nord Security) NordVPN network TAP (HKLM-x32\...\{97DEC5D6-2BE9-45BB-BFC5-274B851B486B}) (Version: 1.0.1 - NordVPN) Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 8.1.9.3 - Notepad++ Team) NVIDIA FrameView SDK 1.2.7521.31103277 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.2.7521.31103277 - NVIDIA Corporation) NVIDIA GeForce Experience 3.25.1.27 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.25.1.27 - NVIDIA Corporation) NVIDIA Grafiktreiber 516.40 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 516.40 - NVIDIA Corporation) NVIDIA HD-Audiotreiber 1.3.39.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.39.3 - NVIDIA Corporation) NVIDIA PhysX-Systemsoftware 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation) OBS Studio (HKLM-x32\...\OBS Studio) (Version: 26.1.1 - OBS Project) Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.15726.20202 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.15726.20202 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0407-1000-0000000FF1CE}) (Version: 16.0.15726.20202 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden Opera Stable 92.0.4561.33 (HKU\S-1-5-21-3780922625-143721777-232406852-1001\...\Opera 92.0.4561.33) (Version: 92.0.4561.33 - Opera Software) osu! (HKLM-x32\...\{521f1410-1cab-4469-9b95-342a7f57385c}) (Version: latest - ppy Pty Ltd) Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment) Overwolf (HKLM-x32\...\Overwolf) (Version: 0.208.1.4 - Overwolf Ltd.) Patriot Viper DRAM RGB (HKLM\...\{1F9C282E-CCB4-4D8E-A5CB-7B74DFCD8C95}) (Version: 1.0.9.4 - Patriot Memory) Hidden Patriot Viper DRAM RGB (HKLM-x32\...\{7a768c14-2a28-456f-872a-73d67d88f3ce}) (Version: 1.0.9.4 - Patriot Memory) Hidden Patriot Viper M2 SSD RGB (HKLM\...\{8B4C0A3D-C135-4E1F-98D8-3926494B4D61}) (Version: 1.1.0.2 - Patriot Memory) Hidden Patriot Viper M2 SSD RGB (HKLM-x32\...\{959e5696-0edd-4896-b1d8-54aaa725f770}) (Version: 1.1.0.2 - Patriot Memory) Hidden PHISON HAL (HKLM\...\{966E33F0-6786-4B38-AA29-C1B3F6C1955D}) (Version: 1.0.9.0 - PHISON Electronics Corp.) Hidden PHISON HAL (HKLM-x32\...\{549da357-1b81-456b-83f2-dcc47c41dfff}) (Version: 1.0.9.0 - PHISON Electronics Corp.) Hidden Proxifier version 4.03 (HKLM-x32\...\{187182AF-79AD-4717-85E9-2508E3F4775B}_is1) (Version: 4.03 - Initex) Rave 1.9.1 (HKU\S-1-5-21-3780922625-143721777-232406852-1001\...\be557dd2-1201-5931-9663-5f29db56628a) (Version: 1.9.1 - Rave Inc.) Razer Synapse (HKLM-x32\...\Razer Synapse) (Version: 3.7.1103.110716 - Razer Inc.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.46.1231.2020 - Realtek) RivaTuner Statistics Server 7.3.3 (HKLM-x32\...\RTSS) (Version: 7.3.3 - Unwinder) ROG Live Service (HKLM-x32\...\{2D87BFB6-C184-4A59-9BBE-3E20CE797631}) (Version: 1.6.4.0 - ASUSTek COMPUTER INC.) ROG STRIX FUSION 500 (HKLM-x32\...\{4070b6bf-434f-4eef-84f7-64e0ae1b89a9}) (Version: 3.00.11 - ASUSTek Computer Inc.) ROG STRIX SCOPE TKL (HKLM-x32\...\{a679861b-dfb8-4315-9195-4d5b120c89f9}) (Version: 3.00.23 - ASUSTek Computer Inc.) Ron's Editor (Remove Only) (HKLM-x32\...\Ron's Editor_is1) (Version: - ) SendCloud (HKU\S-1-5-21-3780922625-143721777-232406852-1001\...\SendCloud_is1) (Version: 1.0.4 - SendCloud) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Surfshark (HKLM-x32\...\{E6CC5F40-0760-4730-9B59-56E1F33BDC26}) (Version: 3.0.2999 - Surfshark) Hidden Surfshark (HKLM-x32\...\Surfshark 3.0.2999) (Version: 3.0.2999 - Surfshark) Surfshark TAP Driver Windows (HKLM-x32\...\{B203CAD3-1016-4D60-96AD-42669DCF696F}) (Version: 1.0 - Surfshark) Surfshark TUN Driver Windows (HKLM\...\{A7B3275A-3A1C-4916-8ACF-92DA1B1591DE}) (Version: 1.0 - Surfshark) TeamViewer (HKLM\...\TeamViewer) (Version: 15.32.3 - TeamViewer) TechPowerUp GPU-Z (HKLM-x32\...\{8B0F211E-5846-4FB2-B0B9-4EB31546FDF9}}_is1) (Version: - TechPowerUp) Texmaker 5.0.4 (64-bit) (HKLM-x32\...\{A0BF9BD0-B576-47A7-B650-0204CB190D28}) (Version: 5.0.4.0 - Texmaker) TreeSize Free V4.4.2 (HKLM-x32\...\TreeSize Free_is1) (Version: 4.4.2 - JAM Software) Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 126.0.10593 - Ubisoft) Universal Holtek RGB DRAM (HKLM\...\{826388E4-E31F-4514-948B-3BB954FB3EAF}) (Version: 1.0.0.3 - PD) Hidden Universal Holtek RGB DRAM (HKLM-x32\...\{ee57d541-1c3b-44fb-b847-e1b47aae9df4}) (Version: 1.0.0.3 - PD) Hidden WD_BLACK AN1500 (HKLM\...\{085E2365-0A70-4230-B664-02D5E4FE7E9C}) (Version: 1.0.14.0 - ENE TECHNOLOGY INC.) Hidden WD_BLACK AN1500 (HKLM-x32\...\{e42c5874-37b0-4977-9e8d-70bf006e1f76}) (Version: 1.0.14.0 - ENE TECHNOLOGY INC.) Hidden Windows*11-Installationsassistent (HKLM-x32\...\{115DF11E-4B4C-4EA9-9A79-00DB0C7EF02D}) (Version: 1.4.19041.1610 - Microsoft Corporation) Windows-PC-Integritätsprüfung (HKLM\...\{68C9C2A4-C212-4310-AB68-12F97050A416}) (Version: 3.2.2110.14001 - Microsoft Corporation) Windows-PC-Integritätsprüfung (HKLM\...\{AD47C6B2-6C72-4F0E-B66F-7685C28ACDFD}) (Version: 3.3.2110.22002 - Microsoft Corporation) WinRAR 6.00 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 6.00.0 - win.rar GmbH) World of Warcraft Classic Era (HKLM-x32\...\World of Warcraft Classic Era) (Version: - Blizzard Entertainment) WOW 8.12.0.0 (HKU\S-1-5-21-3780922625-143721777-232406852-1001\...\com.bskyb.wowtv_is1) (Version: 8.12.0.0 - WOW) Wrath of the Lich King Classic (HKLM-x32\...\Wrath of the Lich King Classic) (Version: - Blizzard Entertainment) XAMPP (HKLM\...\xampp) (Version: 8.0.6-0 - Bitnami) Zoom (HKU\S-1-5-21-3780922625-143721777-232406852-1001\...\ZoomUMX) (Version: 5.8.1 (1435) - Zoom Video Communications, Inc.) Packages: ========= ARMOURY CRATE -> C:\Program Files\WindowsApps\B9ECED6F.ArmouryCrate_5.3.4.0_x64__qmba6cd70vzyy [2022-09-29] (ASUSTeK COMPUTER INC.) Clipchamp -> C:\Program Files\WindowsApps\Clipchamp.Clipchamp_2.5.5.0_neutral__yxz26nhyzhsrt [2022-11-17] (Microsoft Corp.) Disney+ -> C:\Program Files\WindowsApps\Disney.37853FC22B2CE_1.42.5.0_x64__6rarf9sa4v8jt [2022-11-17] (Disney) HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_140.1.307.0_x64__v10z8vjag6ke6 [2022-11-02] (HP Inc.) iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12126.1.57048.0_x64__nzyj5cx40ttqa [2022-10-26] (Apple Inc.) [Startup Task] Media Engine-Add-On für Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-08-16] (Microsoft Corporation) Microsoft Defender Application Guard Companion -> C:\Program Files\WindowsApps\Microsoft.WindowsDefenderApplicationGuard_1.0.11.0_x64__8wekyb3d8bbwe [2022-03-02] (Microsoft Corporation) Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.14.9130.0_x64__8wekyb3d8bbwe [2022-09-18] (Microsoft Studios) [MS Ad] ms-resource:APP_WINDOW_NAME -> C:\Program Files\WindowsApps\MicrosoftCorporationII.QuickAssist_2.0.9.0_x64__8wekyb3d8bbwe [2022-09-24] (Microsoft Corp.) ms-resource:AppStoreName -> C:\Program Files\WindowsApps\Microsoft.RawImageExtension_2.1.32791.0_x64__8wekyb3d8bbwe [2022-11-02] (Microsoft Corporation) ms-resource:AppxManifest_DisplayName -> C:\Windows\SystemApps\Microsoft.Windows.PrintQueueActionCenter_cw5n1h2txyewy [2022-09-21] (Microsoft Corporation) ms-resource:ProductPkgDisplayName -> C:\WINDOWS\SystemApps\MicrosoftWindows.Client.Core_cw5n1h2txyewy [2022-11-10] (ms-resource:ProductPublisherDisplayName) NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.963.0_x64__56jybvy8sckqj [2022-10-17] (NVIDIA Corp.) Reader Notification Client -> C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r [2022-04-21] (Adobe Systems Incorporated) Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.199.878.0_x86__zpdnekdrzrea0 [2022-11-24] (Spotify AB) [Startup Task] WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2245.5.0_x64__cv1g1gvanyjgm [2022-11-18] (WhatsApp Inc.) [Startup Task] XING -> C:\Program Files\WindowsApps\XINGAG.XING_4.0.9.0_x86__xpfg3f7e9an52 [2021-06-02] (New Work SE) ==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2021-07-16] (Notepad++ -> ) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_c43eff7079c4c90c\nvshext.dll [2022-06-08] (Nvidia Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.) HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\system32\rtvcvfw64.dll [246272 2012-09-28] () [Datei ist nicht signiert] HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [Datei ist nicht signiert] ==================== Verknüpfungen & WMI ======================== (Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.) ShortcutWithArgument: C:\Users\husey\Desktop\fsdefsdsfd - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 6" ShortcutWithArgument: C:\Users\husey\Desktop\Hüseyin (ali neu) - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 8" ShortcutWithArgument: C:\Users\husey\Desktop\julian - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 9" ShortcutWithArgument: C:\Users\husey\Desktop\NBB - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 1" ShortcutWithArgument: C:\Users\husey\Desktop\Neoflaver - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Default" ShortcutWithArgument: C:\Users\husey\Desktop\StockX_ The Stock Market of Things.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=fmfpbgdfnfjfhienfldcgbcooakdhdnf ShortcutWithArgument: C:\Users\husey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Google Notizen – Notizen & Listen.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=hmjkmjkepdijhoojdojkdfohbdgmmhki ShortcutWithArgument: C:\Users\husey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\StockX_ The Stock Market of Things.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=fmfpbgdfnfjfhienfldcgbcooakdhdnf ShortcutWithArgument: C:\Users\husey\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\ff13ca23fee04978\nbb4 - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 5" ShortcutWithArgument: C:\Users\husey\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\f64d3603c29a95a7\ps52232 - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 15" ShortcutWithArgument: C:\Users\husey\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\f36b4a13a07e79c7\bvergergergegegegege - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 22" ShortcutWithArgument: C:\Users\husey\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\f0936695556e8bf\egrergertgergergegege - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 21" ShortcutWithArgument: C:\Users\husey\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\de0b1d243227e473\martin2000 - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 18" ShortcutWithArgument: C:\Users\husey\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\d76736477ba15566\mehmet - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 10" ShortcutWithArgument: C:\Users\husey\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\bd751de9f96ba530\ps5555 - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 17" ShortcutWithArgument: C:\Users\husey\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\b85361f99b8f4950\gertgegegegegeg - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 20" ShortcutWithArgument: C:\Users\husey\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\b42be1c9c51179ef\alternate - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 7" ShortcutWithArgument: C:\Users\husey\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\a2f4a7937b204df\playstationkek - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 16" ShortcutWithArgument: C:\Users\husey\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\9c5f1dad405065f1\boringIO - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 12" ShortcutWithArgument: C:\Users\husey\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\9501e18d7c2ab92e\NBB2 - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 2" ShortcutWithArgument: C:\Users\husey\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69514ab4fcfe459c\fwfwffw - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 19" ShortcutWithArgument: C:\Users\husey\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\603d61d7b578f489\madscripts - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 11" ShortcutWithArgument: C:\Users\husey\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\48499db33039e897\nbb3 - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 4" ShortcutWithArgument: C:\Users\husey\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\44311d836ea7d828\jhtztzjtzjtzgjtzjtzjtz - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 23" ShortcutWithArgument: C:\Users\husey\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\411761930c433448\ps5 - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 14" ShortcutWithArgument: C:\Users\husey\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\2e23362dec6d287e\thgrthrhrthrthrhr - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 24" ShortcutWithArgument: C:\Users\husey\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\2b054a3d8e89c41e\nelli - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 13" ShortcutWithArgument: C:\Users\husey\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\225bb61db2f318c1\nbb2 - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 3" ==================== Geladene Module (Nicht auf der Ausnahmeliste) ============= 2022-10-24 06:03 - 2022-08-09 04:52 - 001427968 _____ () [Datei ist nicht signiert] [Datei wird verwendet] C:\Program Files (x86)\Razer\Razer Services\Razer Central\CefSharp.Core.Runtime.dll 2022-08-04 02:23 - 2022-06-20 14:14 - 000520704 _____ () [Datei ist nicht signiert] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\ac_node_addon\prebuilds\win32-ia32\node.napi.node 2022-08-04 02:23 - 2022-06-08 09:33 - 000479744 _____ () [Datei ist nicht signiert] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\ffi-napi\prebuilds\win32-ia32\node.napi.node 2022-08-04 02:23 - 2022-06-08 09:33 - 000470016 _____ () [Datei ist nicht signiert] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\ref-napi\prebuilds\win32-ia32\node.napi.node 2022-08-04 02:23 - 2022-06-08 09:33 - 000832512 _____ () [Datei ist nicht signiert] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\usb-detection\prebuilds\win32-ia32\node.napi.node 2022-08-04 02:23 - 2022-06-08 09:33 - 000081920 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\WindowID\WindowID.dll 2019-08-15 16:13 - 2019-08-15 16:13 - 000989184 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Surfshark\Antivirus\runtimes\win-x86\native\e_sqlite3.dll 2021-06-23 11:01 - 2021-06-23 11:01 - 000324096 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Surfshark\Resources\x64\Surfshark.Firewall.dll 2021-06-23 10:39 - 2021-06-23 10:39 - 004035072 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Surfshark\Resources\x64\SurfsharkWg.dll 2022-11-17 11:59 - 2022-11-17 11:59 - 100471808 _____ () [Datei ist nicht signiert] C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2245.5.0_x64__cv1g1gvanyjgm\WhatsApp.dll 2022-11-17 11:59 - 2022-11-17 11:59 - 008576000 _____ () [Datei ist nicht signiert] C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2245.5.0_x64__cv1g1gvanyjgm\WhatsAppNative.dll ==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ======== ==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HidSpiCx.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TextInputManagementService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{5099944A-F6B9-4057-A056-8C550228544C} => ""="Memory" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{5099944A-F6B9-4057-A056-8C550228544C} => "SafeBootDrivers"="1" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\HidSpiCx.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TextInputManagementService => ""="Service" ==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ================= ==================== Internet Explorer (Nicht auf der Ausnahmeliste) ========== BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2022-11-01] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_341\bin\ssv.dll [2022-07-27] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_341\bin\jp2ssv.dll [2022-07-27] (Oracle America, Inc. -> Oracle Corporation) Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-11-01] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-11-01] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-11-01] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-11-01] (Microsoft Corporation -> Microsoft Corporation) Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-11-01] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-11-01] (Microsoft Corporation -> Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-11-01] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-11-01] (Microsoft Corporation -> Microsoft Corporation) ==================== Hosts Inhalt: ========================= (Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.) 2019-12-07 10:14 - 2022-07-24 23:13 - 000002877 _____ C:\WINDOWS\system32\drivers\etc\hosts 127.0.0.1 captcha.fuzelabs.io 127.0.0.1 fuzelabs.amd.com 127.0.0.1 fuzelabs.smythstoys.com 127.0.0.1 fuzelabs.shop.jaegermeister.de 127.0.0.1 captcha.flarebots.com 127.0.0.1 flarebots.caliroots.com 127.0.0.1 flarebots.sotostore.com 127.0.0.1 flarebots.nakedcph.com 127.0.0.1 flarebots.bstn.com 127.0.0.1 flarebots.en.titoloshop.com 127.0.0.1 flarebots.en.titolo.ch 127.0.0.1 flarebots.courir.com 127.0.0.1 flarebots.courir.es 127.0.0.1 flarebots.courir.be 127.0.0.1 flarebots.c.captcha-delivery.com 127.0.0.1 flarebots.sneakersnstuff.com 127.0.0.1 flarebots.footdistrict.com 127.0.0.1 flarebots.footpatrol.com 127.0.0.1 flarebots.size.co.uk 127.0.0.1 flarebots.consortium.co.uk 127.0.0.1 flarebots.secure.footasylum.com 127.0.0.1 flarebots.prodirectbasketball.com 127.0.0.1 flarebots.asphaltgold.com 127.0.0.1 flarebots.asos.com 127.0.0.1 flarebots.chmielna20.pl 127.0.0.1 flarebots.woodwood.com 127.0.0.1 flarebots.geo.captcha-delivery.com 127.0.0.1 flarebots.offspring.co.uk 127.0.0.1 flarebots.office.co.uk 127.0.0.1 flarebots.snipes.com 2021-02-03 20:08 - 2021-05-28 08:12 - 000000444 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics 92.168.137.1 DESKTOP-FN1MLO3.mshome.net # 2026 2 1 2 19 10 28 215 ==================== Andere Bereiche =========================== (Aktuell gibt es keinen automatisierten Fix für diesen Bereich.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Common Files\Oracle\Java\javapath;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Perl64\bin;C:\Users\husey\AppData\Roaming\ActiveState\bin;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Geth;C:\Program Files\nodejs\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\dotnet\ HKU\S-1-5-21-3780922625-143721777-232406852-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\husey\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img0.jpg DNS Servers: 192.168.0.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: ) ist aktiviert. Network Binding: ============= WLAN: NordVPN LightWeight Firewall -> NordLwf (enabled) Ethernet 2: NordVPN LightWeight Firewall -> NordLwf (enabled) Ethernet: NordVPN LightWeight Firewall -> NordLwf (enabled) Ethernet 3: NordVPN LightWeight Firewall -> NordLwf (enabled) ==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge == (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.) HKLM\...\StartupApproved\StartupFolder: => "AnyDesk.lnk" HKU\S-1-5-21-3780922625-143721777-232406852-1001\...\StartupApproved\Run: => "GogGalaxy" HKU\S-1-5-21-3780922625-143721777-232406852-1001\...\StartupApproved\Run: => "Proxifier" HKU\S-1-5-21-3780922625-143721777-232406852-1001\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-3780922625-143721777-232406852-1001\...\StartupApproved\Run: => "Surfshark" HKU\S-1-5-21-3780922625-143721777-232406852-1001\...\StartupApproved\Run: => "Opera Browser Assistant" HKU\S-1-5-21-3780922625-143721777-232406852-1001\...\StartupApproved\Run: => "SendCloud" HKU\S-1-5-21-3780922625-143721777-232406852-1001\...\StartupApproved\Run: => "EpicGamesLauncher" HKU\S-1-5-21-3780922625-143721777-232406852-1001\...\StartupApproved\Run: => "Rave" HKU\S-1-5-21-3780922625-143721777-232406852-1001\...\StartupApproved\Run: => "NordVPN" ==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================ (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) FirewallRules: [{111DEE61-E804-4FA9-B348-39A0AA213030}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmouryHtmlDebugServer.exe (ASUSTeK COMPUTER INC. -> ASUS) FirewallRules: [{47BBBBD6-E978-4409-B2EC-9726BCE80CD0}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe (ASUSTeK COMPUTER INC. -> ASUS) FirewallRules: [{E008A201-DE5B-4F57-855C-9023832922F9}] => (Block) C:\users\husey\appdata\local\godsunchained\gods unchained\standalonewindows64\gods.exe (Immutable Pty Ltd -> ) FirewallRules: [{6D185D1D-0F91-4741-91C1-DA897FF2CFFA}] => (Block) C:\users\husey\appdata\local\godsunchained\gods unchained\standalonewindows64\gods.exe (Immutable Pty Ltd -> ) FirewallRules: [UDP Query User{47FDDEB9-CF95-4A5A-8500-C91E68BB832B}C:\users\husey\appdata\local\godsunchained\gods unchained\standalonewindows64\gods.exe] => (Allow) C:\users\husey\appdata\local\godsunchained\gods unchained\standalonewindows64\gods.exe (Immutable Pty Ltd -> ) FirewallRules: [TCP Query User{76C983E0-0FF0-4069-8128-755A7DB26E5A}C:\users\husey\appdata\local\godsunchained\gods unchained\standalonewindows64\gods.exe] => (Allow) C:\users\husey\appdata\local\godsunchained\gods unchained\standalonewindows64\gods.exe (Immutable Pty Ltd -> ) FirewallRules: [{7211D24B-2203-4393-9C7F-989F31CD759C}] => (Block) C:\users\husey\appdata\local\programs\immutable-launcher\gods unchained.exe (Immutable Pty Ltd -> Immutable) FirewallRules: [{072C21C9-47C9-485D-A2CF-2ECCBBB87C0B}] => (Block) C:\users\husey\appdata\local\programs\immutable-launcher\gods unchained.exe (Immutable Pty Ltd -> Immutable) FirewallRules: [UDP Query User{E81B504E-2194-498D-BDC6-05DACE6C00F5}C:\users\husey\appdata\local\programs\immutable-launcher\gods unchained.exe] => (Allow) C:\users\husey\appdata\local\programs\immutable-launcher\gods unchained.exe (Immutable Pty Ltd -> Immutable) FirewallRules: [TCP Query User{14B8719C-915F-455B-BD6E-3A666AA5D8F9}C:\users\husey\appdata\local\programs\immutable-launcher\gods unchained.exe] => (Allow) C:\users\husey\appdata\local\programs\immutable-launcher\gods unchained.exe (Immutable Pty Ltd -> Immutable) FirewallRules: [{22D5251E-FF64-4C31-8B0F-4CACCB9AA650}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{2ED6F9E7-2D15-4557-92DB-669A262A0A55}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{79A745B6-FF03-4FCC-B898-BC44BFECC034}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{8B44C6F2-6D82-44A9-AB07-65623F3992A2}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{758C8036-D6E2-460E-978D-85BC1A1BE5B4}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) FirewallRules: [{4A48EBBC-E819-4881-8752-D5A0F685E7A0}] => (Block) C:\program files\jetbrains\intellij idea 2022.2\bin\idea64.exe (JetBrains s.r.o. -> JetBrains s.r.o.) FirewallRules: [{F98CE286-446A-4125-84E7-4AD22A687543}] => (Block) C:\program files\jetbrains\intellij idea 2022.2\bin\idea64.exe (JetBrains s.r.o. -> JetBrains s.r.o.) FirewallRules: [UDP Query User{80BCFD7D-B73D-4EDA-BEAE-094CE0402022}C:\program files\jetbrains\intellij idea 2022.2\bin\idea64.exe] => (Allow) C:\program files\jetbrains\intellij idea 2022.2\bin\idea64.exe (JetBrains s.r.o. -> JetBrains s.r.o.) FirewallRules: [TCP Query User{868E34A7-A6A8-403D-A159-211877E32C53}C:\program files\jetbrains\intellij idea 2022.2\bin\idea64.exe] => (Allow) C:\program files\jetbrains\intellij idea 2022.2\bin\idea64.exe (JetBrains s.r.o. -> JetBrains s.r.o.) FirewallRules: [{BE2CC0B0-A9AC-407C-B3D7-7DF4349152AE}] => (Block) D:\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> ) FirewallRules: [{3A6F7429-6767-4E94-9D61-CEB4E69D4ADC}] => (Block) D:\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> ) FirewallRules: [UDP Query User{6BB52A17-ABEB-42E4-8271-25FD280AE181}D:\hearthstone\hearthstone.exe] => (Allow) D:\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> ) FirewallRules: [TCP Query User{015773DB-42F7-4270-8EFA-09F9AC720FFB}D:\hearthstone\hearthstone.exe] => (Allow) D:\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> ) FirewallRules: [UDP Query User{2BBB17D9-AFB6-4AE2-9C89-D3E8CC048CA6}C:\program files\java\jdk-18.0.2\bin\java.exe] => (Allow) C:\program files\java\jdk-18.0.2\bin\java.exe FirewallRules: [TCP Query User{144E8A08-5FF0-4540-A730-3DCE76A77EB5}C:\program files\java\jdk-18.0.2\bin\java.exe] => (Allow) C:\program files\java\jdk-18.0.2\bin\java.exe FirewallRules: [{E6CC7580-BD36-421C-93F4-B219265FBA07}] => (Allow) D:\SteamLibrary\steamapps\common\MIR4\MirMobile\Binaries\Win64\Mir4S.exe (Wemade Co., Ltd. -> WemadeEntertainment) FirewallRules: [{7BE94340-E308-4D8B-8B53-8F0545C81B25}] => (Allow) D:\SteamLibrary\steamapps\common\MIR4\MirMobile\Binaries\Win64\Mir4S.exe (Wemade Co., Ltd. -> WemadeEntertainment) FirewallRules: [{F2322D5D-11A2-4D3D-83F6-19AED8E3C46E}] => (Block) C:\users\husey\appdata\local\programs\rave-desktop\rave.exe (Rave Inc. -> Rave Inc.) FirewallRules: [{E6E3A144-27B0-433A-8283-EDF5A0BB5B58}] => (Block) C:\users\husey\appdata\local\programs\rave-desktop\rave.exe (Rave Inc. -> Rave Inc.) FirewallRules: [UDP Query User{C1B19480-E16E-421D-BEB0-F6D45343665A}C:\users\husey\appdata\local\programs\rave-desktop\rave.exe] => (Allow) C:\users\husey\appdata\local\programs\rave-desktop\rave.exe (Rave Inc. -> Rave Inc.) FirewallRules: [TCP Query User{81746DC8-3F86-4DED-B6BE-25AC1E4CD49C}C:\users\husey\appdata\local\programs\rave-desktop\rave.exe] => (Allow) C:\users\husey\appdata\local\programs\rave-desktop\rave.exe (Rave Inc. -> Rave Inc.) FirewallRules: [{4AE02A70-D57A-4CF4-976A-B225174F3273}] => (Block) C:\users\husey\desktop\neuer ordner\hermeshubuseralphawindows\hermes hub user alpha\hermeshub_v_0_2.exe => Keine Datei FirewallRules: [{59D0EB9B-ACCC-4326-A8ED-71C46757A41C}] => (Block) C:\users\husey\desktop\neuer ordner\hermeshubuseralphawindows\hermes hub user alpha\hermeshub_v_0_2.exe => Keine Datei FirewallRules: [UDP Query User{5E7F55E8-7EC8-4C8E-AD77-2A4C0F58BC46}C:\users\husey\desktop\neuer ordner\hermeshubuseralphawindows\hermes hub user alpha\hermeshub_v_0_2.exe] => (Allow) C:\users\husey\desktop\neuer ordner\hermeshubuseralphawindows\hermes hub user alpha\hermeshub_v_0_2.exe => Keine Datei FirewallRules: [TCP Query User{C87ECE1C-2AB3-41B6-8F72-04AC32D39ECF}C:\users\husey\desktop\neuer ordner\hermeshubuseralphawindows\hermes hub user alpha\hermeshub_v_0_2.exe] => (Allow) C:\users\husey\desktop\neuer ordner\hermeshubuseralphawindows\hermes hub user alpha\hermeshub_v_0_2.exe => Keine Datei FirewallRules: [{8E6A30AE-A5F0-441E-A7BF-A86436DC029F}] => (Block) C:\users\husey\appdata\local\temp\dotnetbrowser-chromium\100.0.4896.127.2.14.0.562\x64\chromium.exe => Keine Datei FirewallRules: [{4C0D693D-7881-48FA-B849-4428782E1F33}] => (Block) C:\users\husey\appdata\local\temp\dotnetbrowser-chromium\100.0.4896.127.2.14.0.562\x64\chromium.exe => Keine Datei FirewallRules: [UDP Query User{E7036DA8-D260-4B1F-8A37-3A41D8D352DB}C:\users\husey\appdata\local\temp\dotnetbrowser-chromium\100.0.4896.127.2.14.0.562\x64\chromium.exe] => (Allow) C:\users\husey\appdata\local\temp\dotnetbrowser-chromium\100.0.4896.127.2.14.0.562\x64\chromium.exe => Keine Datei FirewallRules: [TCP Query User{5CCB258D-E606-4B2A-A17B-F8ABBB2D0EAA}C:\users\husey\appdata\local\temp\dotnetbrowser-chromium\100.0.4896.127.2.14.0.562\x64\chromium.exe] => (Allow) C:\users\husey\appdata\local\temp\dotnetbrowser-chromium\100.0.4896.127.2.14.0.562\x64\chromium.exe => Keine Datei FirewallRules: [{507FA2EF-5865-4124-AAE9-841CC5615EB6}] => (Block) C:\users\husey\appdata\local\flareaio\flareclient.exe () [Datei ist nicht signiert] FirewallRules: [{29CF1809-3C84-487C-99B3-8DBB8889913A}] => (Block) C:\users\husey\appdata\local\flareaio\flareclient.exe () [Datei ist nicht signiert] FirewallRules: [UDP Query User{1428A183-9371-44F8-9599-65AB87D8A8E8}C:\users\husey\appdata\local\flareaio\flareclient.exe] => (Allow) C:\users\husey\appdata\local\flareaio\flareclient.exe () [Datei ist nicht signiert] FirewallRules: [TCP Query User{7E452493-646B-4F3F-8177-B66221C9BCB6}C:\users\husey\appdata\local\flareaio\flareclient.exe] => (Allow) C:\users\husey\appdata\local\flareaio\flareclient.exe () [Datei ist nicht signiert] FirewallRules: [{DE68A31E-4111-4B22-8BA1-C69294806F88}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{17CC9F28-93D1-4157-80C5-15A12A5E4AA8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{56B9BC2D-32C6-472E-B911-B95CB40B7C9C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{2452CF0B-060B-4ECB-8B93-EEB41AEB209B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{AF17AD17-A1BE-4909-A482-68DCAB5CDB95}] => (Block) C:\users\husey\appdata\local\temp\dotnetbrowser-chromium\100.0.4896.60.2.13.0.553\x64\chromium.exe => Keine Datei FirewallRules: [{E8AE1F60-A7DA-4545-AD60-1A5BC0413639}] => (Block) C:\users\husey\appdata\local\temp\dotnetbrowser-chromium\100.0.4896.60.2.13.0.553\x64\chromium.exe => Keine Datei FirewallRules: [UDP Query User{203FB32E-B116-44C1-997E-318553B232F7}C:\users\husey\appdata\local\temp\dotnetbrowser-chromium\100.0.4896.60.2.13.0.553\x64\chromium.exe] => (Allow) C:\users\husey\appdata\local\temp\dotnetbrowser-chromium\100.0.4896.60.2.13.0.553\x64\chromium.exe => Keine Datei FirewallRules: [TCP Query User{D36C6663-3D93-46E9-B996-F8F940948EA4}C:\users\husey\appdata\local\temp\dotnetbrowser-chromium\100.0.4896.60.2.13.0.553\x64\chromium.exe] => (Allow) C:\users\husey\appdata\local\temp\dotnetbrowser-chromium\100.0.4896.60.2.13.0.553\x64\chromium.exe => Keine Datei FirewallRules: [{552CC8F6-6AD0-485D-9EBE-6952CB877838}] => (Block) C:\users\husey\appdata\local\temp\dotnetbrowser-chromium\96.0.4664.110.2.11.0.508\x64\chromium.exe => Keine Datei FirewallRules: [{C063C4DC-3F31-4092-9788-9B2F1EF7147C}] => (Block) C:\users\husey\appdata\local\temp\dotnetbrowser-chromium\96.0.4664.110.2.11.0.508\x64\chromium.exe => Keine Datei FirewallRules: [UDP Query User{82697078-3CBE-4A50-A4D1-6C8E4DDA3830}C:\users\husey\appdata\local\temp\dotnetbrowser-chromium\96.0.4664.110.2.11.0.508\x64\chromium.exe] => (Allow) C:\users\husey\appdata\local\temp\dotnetbrowser-chromium\96.0.4664.110.2.11.0.508\x64\chromium.exe => Keine Datei FirewallRules: [TCP Query User{ECA3BDBD-D601-4989-90C1-50232C5ECF90}C:\users\husey\appdata\local\temp\dotnetbrowser-chromium\96.0.4664.110.2.11.0.508\x64\chromium.exe] => (Allow) C:\users\husey\appdata\local\temp\dotnetbrowser-chromium\96.0.4664.110.2.11.0.508\x64\chromium.exe => Keine Datei FirewallRules: [{D62343F9-6368-4A98-83F4-E7ED3B96A58B}] => (Block) C:\users\husey\appdata\local\programs\opera\opera.exe (Opera Norway AS -> Opera Software) FirewallRules: [{52183FD4-2804-4400-8736-87526DBD1809}] => (Block) C:\users\husey\appdata\local\programs\opera\opera.exe (Opera Norway AS -> Opera Software) FirewallRules: [UDP Query User{397BE2B0-7EC2-4468-B180-154E80C657F7}C:\users\husey\appdata\local\programs\opera\opera.exe] => (Allow) C:\users\husey\appdata\local\programs\opera\opera.exe (Opera Norway AS -> Opera Software) FirewallRules: [TCP Query User{5E5EB0E2-12C9-49D0-9D92-7B2B4A148734}C:\users\husey\appdata\local\programs\opera\opera.exe] => (Allow) C:\users\husey\appdata\local\programs\opera\opera.exe (Opera Norway AS -> Opera Software) FirewallRules: [{CD9E2F60-DAB2-4CE1-B78C-2D5BC42A7A98}] => (Block) C:\program files (x86)\fuze\fuzeclient.exe () [Datei ist nicht signiert] FirewallRules: [{38022647-47FF-40E0-A2C3-0307B51D1BEB}] => (Block) C:\program files (x86)\fuze\fuzeclient.exe () [Datei ist nicht signiert] FirewallRules: [UDP Query User{4A3E9C8B-CA17-4DD9-8E41-AF20C1D6C87D}C:\program files (x86)\fuze\fuzeclient.exe] => (Allow) C:\program files (x86)\fuze\fuzeclient.exe () [Datei ist nicht signiert] FirewallRules: [TCP Query User{ACFCBA71-3F2A-417C-92DF-555F17E0715F}C:\program files (x86)\fuze\fuzeclient.exe] => (Allow) C:\program files (x86)\fuze\fuzeclient.exe () [Datei ist nicht signiert] FirewallRules: [{D569D375-EC0B-4D0D-BB30-007010B48FF4}] => (Block) C:\users\husey\appdata\local\discord\app-1.0.9004\discord.exe => Keine Datei FirewallRules: [{48957755-E2E0-4F37-8B07-A85BB5DBE429}] => (Block) C:\users\husey\appdata\local\discord\app-1.0.9004\discord.exe => Keine Datei FirewallRules: [UDP Query User{97FB6E5A-994C-444F-BE42-556A79B35CB6}C:\users\husey\appdata\local\discord\app-1.0.9004\discord.exe] => (Allow) C:\users\husey\appdata\local\discord\app-1.0.9004\discord.exe => Keine Datei FirewallRules: [TCP Query User{C584E91A-4127-44E9-88E7-D665EEE065D8}C:\users\husey\appdata\local\discord\app-1.0.9004\discord.exe] => (Allow) C:\users\husey\appdata\local\discord\app-1.0.9004\discord.exe => Keine Datei FirewallRules: [{A6B1BD95-DAD3-45E9-85E1-124C5994561C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{98044B86-C2FC-4558-AE56-DFD8F0A2EBFA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [TCP Query User{2A095630-738A-4A28-B5D5-7FBDFD65F46E}C:\program files (x86)\call of duty black ops cold war\blackopscoldwar.exe] => (Allow) C:\program files (x86)\call of duty black ops cold war\blackopscoldwar.exe (Activision Publishing Inc -> Activision Publishing, Inc.) FirewallRules: [UDP Query User{B779C18A-64B4-46F4-AB61-B25BF956D5C8}C:\program files (x86)\call of duty black ops cold war\blackopscoldwar.exe] => (Allow) C:\program files (x86)\call of duty black ops cold war\blackopscoldwar.exe (Activision Publishing Inc -> Activision Publishing, Inc.) FirewallRules: [{F8A6A3F9-7F4E-4D15-917D-2736782E016D}] => (Block) C:\program files (x86)\call of duty black ops cold war\blackopscoldwar.exe (Activision Publishing Inc -> Activision Publishing, Inc.) FirewallRules: [{BA0F6C48-52C7-4219-9730-ED6460D3F5C7}] => (Block) C:\program files (x86)\call of duty black ops cold war\blackopscoldwar.exe (Activision Publishing Inc -> Activision Publishing, Inc.) FirewallRules: [{6CFCFC60-DF12-4C9B-837F-2ED47E3F999A}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{1AC51E00-5296-44DD-8084-D7EF0EE04AD3}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{BC5CB9EE-07B1-4006-84BE-10B1311DA811}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Keine Datei FirewallRules: [{F6933B98-27E1-4A30-9523-2B130DEEAC92}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Keine Datei FirewallRules: [TCP Query User{BEA927DE-E7B6-4BB0-8C2E-1C7C8E91B415}C:\program files (x86)\steam\steamapps\common\kurtzpel\thechase\binaries\win64\thechase-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\kurtzpel\thechase\binaries\win64\thechase-win64-shipping.exe => Keine Datei FirewallRules: [UDP Query User{4573F777-CFF0-4262-80F7-0021C01B86AE}C:\program files (x86)\steam\steamapps\common\kurtzpel\thechase\binaries\win64\thechase-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\kurtzpel\thechase\binaries\win64\thechase-win64-shipping.exe => Keine Datei FirewallRules: [{7954BBD6-D075-4795-9C21-E769D19B833A}] => (Block) C:\program files (x86)\steam\steamapps\common\kurtzpel\thechase\binaries\win64\thechase-win64-shipping.exe => Keine Datei FirewallRules: [{B0E29646-8045-4B31-AE33-56F4EC89FE8F}] => (Block) C:\program files (x86)\steam\steamapps\common\kurtzpel\thechase\binaries\win64\thechase-win64-shipping.exe => Keine Datei FirewallRules: [TCP Query User{7D894F26-F867-428F-A564-4F80E2128161}C:\program files (x86)\gog galaxy\games\cyberpunk 2077\bin\x64\cyberpunk2077.exe] => (Allow) C:\program files (x86)\gog galaxy\games\cyberpunk 2077\bin\x64\cyberpunk2077.exe (CD PROJEKT SPÓŁKA AKCYJNA -> CD PROJEKT S.A.) FirewallRules: [UDP Query User{F5E24B67-F5BC-4F62-8431-8E622D1D337E}C:\program files (x86)\gog galaxy\games\cyberpunk 2077\bin\x64\cyberpunk2077.exe] => (Allow) C:\program files (x86)\gog galaxy\games\cyberpunk 2077\bin\x64\cyberpunk2077.exe (CD PROJEKT SPÓŁKA AKCYJNA -> CD PROJEKT S.A.) FirewallRules: [{E9200338-32FD-4423-BD5E-3E292157E563}] => (Block) C:\program files (x86)\gog galaxy\games\cyberpunk 2077\bin\x64\cyberpunk2077.exe (CD PROJEKT SPÓŁKA AKCYJNA -> CD PROJEKT S.A.) FirewallRules: [{E928138D-B912-4AEE-BC6C-A28C8B152517}] => (Block) C:\program files (x86)\gog galaxy\games\cyberpunk 2077\bin\x64\cyberpunk2077.exe (CD PROJEKT SPÓŁKA AKCYJNA -> CD PROJEKT S.A.) FirewallRules: [{C1532839-FECC-44DF-B040-E5C42B4493E5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Geometry Dash\GeometryDash.exe () [Datei ist nicht signiert] FirewallRules: [{CC7BFCB6-806B-41E1-9256-7F07DC8B1A07}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Geometry Dash\GeometryDash.exe () [Datei ist nicht signiert] FirewallRules: [{D3D8F65D-6B56-400D-BE92-330BC809E558}] => (Allow) C:\Users\husey\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FirewallRules: [{5AE1F6A3-B1A7-4904-AF93-4DF1C08A3D6D}] => (Allow) C:\Users\husey\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FirewallRules: [{7F01BBE4-AF29-4D69-AA03-8888DC1E763F}] => (Allow) C:\Users\husey\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FirewallRules: [{4ED8174B-021B-4E16-B951-B837C67E13B0}] => (Allow) C:\Program Files (x86)\Iriun Webcam\webcam.exe () [Datei ist nicht signiert] FirewallRules: [{2546418A-B297-4F4B-BF82-0D526B1D2495}] => (Allow) C:\Program Files (x86)\Iriun Webcam\webcam.exe () [Datei ist nicht signiert] FirewallRules: [{7BA1CDA1-40EE-446D-A98A-7B39C1447479}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{63DC43C5-FAAB-4480-B25A-7CF2AD7FA8FC}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{8D604811-3865-4E68-8FAB-132393E17090}] => (Allow) LPort=1688 FirewallRules: [{AF99A7E2-CE42-4F83-8908-DA057A886425}] => (Allow) LPort=1688 FirewallRules: [{AC7EB31E-CAC2-431E-A8E2-BAB084977665}] => (Allow) C:\Program Files\Geth\geth.exe () [Datei ist nicht signiert] FirewallRules: [{D9282DC9-49DF-43CE-A772-F3B8022E39CE}] => (Allow) C:\Program Files\Geth\geth.exe () [Datei ist nicht signiert] FirewallRules: [{3353351F-DD94-413F-924C-21E41A1D126D}] => (Allow) C:\Program Files\Geth\geth.exe () [Datei ist nicht signiert] FirewallRules: [TCP Query User{8E856A2F-CD87-42BC-97C7-0020424F088C}C:\users\husey\appdata\local\programs\nicehash miner\miner_plugins\fa369d10-94eb-11ea-a64d-17be303ea466\bins\15.1\phoenixminer_5.2e_windows\phoenixminer.exe] => (Allow) C:\users\husey\appdata\local\programs\nicehash miner\miner_plugins\fa369d10-94eb-11ea-a64d-17be303ea466\bins\15.1\phoenixminer_5.2e_windows\phoenixminer.exe () [Datei ist nicht signiert] FirewallRules: [UDP Query User{95FD592B-AEDE-4640-A8C9-515121E2E016}C:\users\husey\appdata\local\programs\nicehash miner\miner_plugins\fa369d10-94eb-11ea-a64d-17be303ea466\bins\15.1\phoenixminer_5.2e_windows\phoenixminer.exe] => (Allow) C:\users\husey\appdata\local\programs\nicehash miner\miner_plugins\fa369d10-94eb-11ea-a64d-17be303ea466\bins\15.1\phoenixminer_5.2e_windows\phoenixminer.exe () [Datei ist nicht signiert] FirewallRules: [{CDE0E28A-9239-4DA4-B026-197A50E4BFC6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations) FirewallRules: [{6523A749-EF0C-4C26-B3DE-2DF53F60CF15}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations) FirewallRules: [{B070C111-FFB1-490C-85EF-CADB8CFDCD17}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned.exe (Smartly Dressed Games Ltd. -> ) FirewallRules: [{0BFF5D8C-8515-4705-894B-E6DFE3131E57}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned.exe (Smartly Dressed Games Ltd. -> ) FirewallRules: [{3E71ADE7-25BF-4CEC-994D-AB7C1EA043F8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dead Frontier 2\DeadFrontier2.exe (Creaky Corpse Ltd -> ) FirewallRules: [{9BA5226A-8F30-4550-BE0B-DCABEDA95E33}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dead Frontier 2\DeadFrontier2.exe (Creaky Corpse Ltd -> ) FirewallRules: [TCP Query User{01B282F2-E136-46FB-A6B3-AA8A5F1C4DE4}C:\program files (x86)\iriun webcam\webcam.exe] => (Block) C:\program files (x86)\iriun webcam\webcam.exe () [Datei ist nicht signiert] FirewallRules: [UDP Query User{04BBD59A-488A-40AB-A127-642784099D26}C:\program files (x86)\iriun webcam\webcam.exe] => (Block) C:\program files (x86)\iriun webcam\webcam.exe () [Datei ist nicht signiert] FirewallRules: [{9CBADEB0-6BE1-45AC-A4D0-8120C3F33CD4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Among Us\Among Us.exe () [Datei ist nicht signiert] FirewallRules: [{E058C8FA-7778-4D6C-8F06-BC6D27036983}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Among Us\Among Us.exe () [Datei ist nicht signiert] FirewallRules: [TCP Query User{FF9C80A3-18AE-44B1-9BE8-974DEE1B1EC9}C:\users\husey\appdata\local\chia-blockchain\app-1.1.5\resources\app.asar.unpacked\daemon\start_full_node.exe] => (Allow) C:\users\husey\appdata\local\chia-blockchain\app-1.1.5\resources\app.asar.unpacked\daemon\start_full_node.exe (Chia Network Inc -> ) [Datei ist nicht signiert] FirewallRules: [UDP Query User{275DC0FD-FB49-4361-884E-DFEDCD1FA518}C:\users\husey\appdata\local\chia-blockchain\app-1.1.5\resources\app.asar.unpacked\daemon\start_full_node.exe] => (Allow) C:\users\husey\appdata\local\chia-blockchain\app-1.1.5\resources\app.asar.unpacked\daemon\start_full_node.exe (Chia Network Inc -> ) [Datei ist nicht signiert] FirewallRules: [TCP Query User{F594F35F-C47A-4E33-ABE5-82BF7C5AD898}C:\users\husey\appdata\local\chia-blockchain\app-1.1.5\resources\app.asar.unpacked\daemon\start_farmer.exe] => (Allow) C:\users\husey\appdata\local\chia-blockchain\app-1.1.5\resources\app.asar.unpacked\daemon\start_farmer.exe (Chia Network Inc -> ) [Datei ist nicht signiert] FirewallRules: [UDP Query User{E36EC753-E25B-41B5-99A2-EA0F20BA98EB}C:\users\husey\appdata\local\chia-blockchain\app-1.1.5\resources\app.asar.unpacked\daemon\start_farmer.exe] => (Allow) C:\users\husey\appdata\local\chia-blockchain\app-1.1.5\resources\app.asar.unpacked\daemon\start_farmer.exe (Chia Network Inc -> ) [Datei ist nicht signiert] FirewallRules: [TCP Query User{8DD21D57-829B-42A1-8995-3BF92B373117}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe (Apache Software Foundation) [Datei ist nicht signiert] FirewallRules: [UDP Query User{D9278E2D-4761-4D48-BE65-5E63CCCAFDF9}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe (Apache Software Foundation) [Datei ist nicht signiert] FirewallRules: [{BF84822C-A2BC-4648-AD27-072CAD9F1C76}] => (Block) C:\xampp\apache\bin\httpd.exe (Apache Software Foundation) [Datei ist nicht signiert] FirewallRules: [{7E401A1D-5577-47DA-B964-329D3901411C}] => (Block) C:\xampp\apache\bin\httpd.exe (Apache Software Foundation) [Datei ist nicht signiert] FirewallRules: [TCP Query User{6D863FE1-E5FC-4CCC-8E4F-49D25006EE4C}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe (MariaDB Corporation Ab -> ) FirewallRules: [UDP Query User{22E9659E-059E-4892-B204-09EAEC8B03F8}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe (MariaDB Corporation Ab -> ) FirewallRules: [{C4EC650C-797C-4872-944E-2D36C753838A}] => (Block) C:\xampp\mysql\bin\mysqld.exe (MariaDB Corporation Ab -> ) FirewallRules: [{A43FB3F1-DE0E-4A53-97BB-57F4103428EB}] => (Block) C:\xampp\mysql\bin\mysqld.exe (MariaDB Corporation Ab -> ) FirewallRules: [TCP Query User{ABAD2EBA-9F95-4263-A519-0C342951BAD5}C:\program files (x86)\overwatch\_retail_\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment) FirewallRules: [UDP Query User{4D402A72-DD14-4711-B464-E263BB84E47B}C:\program files (x86)\overwatch\_retail_\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment) FirewallRules: [{4D5D53AF-4D17-4AF3-A5EB-EC02234F629C}] => (Block) C:\program files (x86)\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment) FirewallRules: [{AA3741E8-52BF-4B05-A6E3-7EBB8F9189BE}] => (Block) C:\program files (x86)\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment) FirewallRules: [{0BB4EBF7-87F0-4416-9958-7F0D2B3E9A4D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\New World Closed Beta\NewWorldLauncher.exe => Keine Datei FirewallRules: [{30EC0805-24A2-407C-BE7C-22ACD580D755}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\New World Closed Beta\NewWorldLauncher.exe => Keine Datei FirewallRules: [TCP Query User{2F9799D5-88EF-4353-BE54-12B8A2DAEF07}C:\program files (x86)\steam\steamapps\common\new world closed beta\bin64\newworld.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\new world closed beta\bin64\newworld.exe => Keine Datei FirewallRules: [UDP Query User{A3550AA7-B543-497E-85EE-DD9CC9D82ACB}C:\program files (x86)\steam\steamapps\common\new world closed beta\bin64\newworld.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\new world closed beta\bin64\newworld.exe => Keine Datei FirewallRules: [TCP Query User{F85F9E6C-0151-48F2-845D-68A4AEAC2133}C:\program files (x86)\fuze\main.exe] => (Allow) C:\program files (x86)\fuze\main.exe () [Datei ist nicht signiert] FirewallRules: [UDP Query User{F4F5C088-1E8B-4365-BC4F-19253A3D6347}C:\program files (x86)\fuze\main.exe] => (Allow) C:\program files (x86)\fuze\main.exe () [Datei ist nicht signiert] FirewallRules: [{72416FF5-6E85-4E34-8785-320353E335F4}] => (Block) C:\program files (x86)\fuze\main.exe () [Datei ist nicht signiert] FirewallRules: [{4FD7F7EA-1544-4C6C-AB09-5764D8735960}] => (Block) C:\program files (x86)\fuze\main.exe () [Datei ist nicht signiert] FirewallRules: [TCP Query User{679D7474-E1E8-4C99-BAA6-A35CC978EFCA}C:\riot games\riot client\riotclientservices.exe] => (Allow) C:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.) FirewallRules: [UDP Query User{E72D5CA8-EC4B-4F23-A95A-77093DE18F1D}C:\riot games\riot client\riotclientservices.exe] => (Allow) C:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.) FirewallRules: [{1D2F56D8-CA7D-4AF3-AE33-CFEFABB4C647}] => (Allow) F:\Far Cry 6\bin\FarCry6.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment) FirewallRules: [{76776764-4880-4B8E-80E0-8591C187C473}] => (Allow) F:\Far Cry 6\bin\FarCry6.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment) FirewallRules: [{361F1027-C1E8-47E9-9334-D6490F3C0312}] => (Allow) F:\Far Cry 6\bin_plus\FarCry6.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment) FirewallRules: [{DF06E11F-03C9-44BD-8BC2-4ECE25C8B565}] => (Allow) F:\Far Cry 6\bin_plus\FarCry6.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment) FirewallRules: [TCP Query User{723776B0-23B3-480B-B6FF-A0C7613EBF9A}C:\program files (x86)\flarecli\flarecli.exe] => (Allow) C:\program files (x86)\flarecli\flarecli.exe => Keine Datei FirewallRules: [UDP Query User{2D2E45B7-7004-4DA7-BD95-6C849DCC2B68}C:\program files (x86)\flarecli\flarecli.exe] => (Allow) C:\program files (x86)\flarecli\flarecli.exe => Keine Datei FirewallRules: [{7D511420-5B6F-4BB2-BEA5-583BDEF1952B}] => (Block) C:\program files (x86)\flarecli\flarecli.exe => Keine Datei FirewallRules: [{9922B67E-0F15-42D5-A30E-8ED72F957D3D}] => (Block) C:\program files (x86)\flarecli\flarecli.exe => Keine Datei FirewallRules: [TCP Query User{B515B01E-A3F5-4EB0-BEA5-390087DE30CA}C:\users\husey\appdata\local\flareaio\flareaio.exe] => (Allow) C:\users\husey\appdata\local\flareaio\flareaio.exe () [Datei ist nicht signiert] FirewallRules: [UDP Query User{4DAB12DD-FF85-4FE1-9842-62CF8FC83B7C}C:\users\husey\appdata\local\flareaio\flareaio.exe] => (Allow) C:\users\husey\appdata\local\flareaio\flareaio.exe () [Datei ist nicht signiert] FirewallRules: [{55CDE900-670B-48ED-8513-6D9CAA8187CF}] => (Block) C:\users\husey\appdata\local\flareaio\flareaio.exe () [Datei ist nicht signiert] FirewallRules: [{67921AB9-F345-4E46-A908-ABE8906ECB0D}] => (Block) C:\users\husey\appdata\local\flareaio\flareaio.exe () [Datei ist nicht signiert] FirewallRules: [TCP Query User{FA1C720E-600C-4DE0-9FFF-60763AA13583}C:\users\husey\appdata\local\programs\flaregui\flaregui.exe] => (Allow) C:\users\husey\appdata\local\programs\flaregui\flaregui.exe (Atmosoles) [Datei ist nicht signiert] FirewallRules: [UDP Query User{FC4DBE64-4326-40A0-9E8D-35C967DA50F3}C:\users\husey\appdata\local\programs\flaregui\flaregui.exe] => (Allow) C:\users\husey\appdata\local\programs\flaregui\flaregui.exe (Atmosoles) [Datei ist nicht signiert] FirewallRules: [{E07FE73D-D357-453A-871A-C3F3487CB4B4}] => (Block) C:\users\husey\appdata\local\programs\flaregui\flaregui.exe (Atmosoles) [Datei ist nicht signiert] FirewallRules: [{8D36EAD9-1D41-4CD3-9D3A-102AEFB8C141}] => (Block) C:\users\husey\appdata\local\programs\flaregui\flaregui.exe (Atmosoles) [Datei ist nicht signiert] FirewallRules: [TCP Query User{5765C408-A4DD-4C9D-BCC0-4B2B02955780}C:\users\husey\desktop\pepperscripts\pepper-cli.exe] => (Allow) C:\users\husey\desktop\pepperscripts\pepper-cli.exe (Node.js) [Datei ist nicht signiert] FirewallRules: [UDP Query User{C54DB1BC-378F-4FC7-A9FA-A6BC2366C1F3}C:\users\husey\desktop\pepperscripts\pepper-cli.exe] => (Allow) C:\users\husey\desktop\pepperscripts\pepper-cli.exe (Node.js) [Datei ist nicht signiert] FirewallRules: [{6B226F6E-5BC8-4E93-AA80-B0FBF5ED247A}] => (Block) C:\users\husey\desktop\pepperscripts\pepper-cli.exe (Node.js) [Datei ist nicht signiert] FirewallRules: [{F0CBF706-FE52-4AA5-9CD5-6B12EDB2BC72}] => (Block) C:\users\husey\desktop\pepperscripts\pepper-cli.exe (Node.js) [Datei ist nicht signiert] FirewallRules: [TCP Query User{BF320C92-216D-4FD0-9C91-C58AE106DE89}C:\program files (x86)\steam\steamapps\common\new world\bin64\newworld.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\new world\bin64\newworld.exe => Keine Datei FirewallRules: [UDP Query User{C63E934F-696F-45D1-9755-2D3D2A672A75}C:\program files (x86)\steam\steamapps\common\new world\bin64\newworld.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\new world\bin64\newworld.exe => Keine Datei FirewallRules: [{B45D47A0-A7A2-41D3-B840-6F781C13D179}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{EAC4AB01-BEAB-45D9-9D04-6908FEA92011}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Yu-Gi-Oh! Master Duel\masterduel.exe () [Datei ist nicht signiert] FirewallRules: [{311E26A7-2C2D-4C8F-9A35-AD07005697AB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Yu-Gi-Oh! Master Duel\masterduel.exe () [Datei ist nicht signiert] FirewallRules: [TCP Query User{21579146-412C-45A3-B09D-6C4D62AC45CB}F:\call of duty modern warfare\modernwarfare.exe] => (Allow) F:\call of duty modern warfare\modernwarfare.exe => Keine Datei FirewallRules: [UDP Query User{DA32561A-A7EE-487E-8284-830AD38587F5}F:\call of duty modern warfare\modernwarfare.exe] => (Allow) F:\call of duty modern warfare\modernwarfare.exe => Keine Datei FirewallRules: [{15C1EC07-7D7E-4EA7-8303-0E9F5A553F46}] => (Block) F:\call of duty modern warfare\modernwarfare.exe => Keine Datei FirewallRules: [{D2528C8F-40F5-4B98-96EF-AA318031927B}] => (Block) F:\call of duty modern warfare\modernwarfare.exe => Keine Datei FirewallRules: [{2061CFBA-76A6-4717-A10B-9970ECC167DC}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12126.1.57048.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{B25E3E7B-55E4-40B1-870D-CC1A2055309B}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12126.1.57048.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{DB8A0D4B-AB06-42A4-9A78-C32FDF484353}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12126.1.57048.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{A98A8C8B-5B42-4D4D-ACE8-9CFC1CD07617}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12126.1.57048.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{2B00B76C-FC8A-4C51-BE45-CAE8BB45FE2F}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12126.1.57048.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{3EC14793-8946-43B1-9D82-524F0A9F40E7}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12126.1.57048.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{8DFCBCD3-F086-4BC3-B463-6AC6E42495D5}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12126.1.57048.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{FFE8DEAF-982C-44D7-90CE-EEFD7DCE5304}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12126.1.57048.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{9B18EE72-58A4-4037-8CD9-D089056ABB62}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DARK SOULS III\Game\DarkSoulsIII.exe (FromSoftware,Inc. -> BANDAI NAMCO Entertainment Inc.) FirewallRules: [{92417DDF-9A14-4CFD-AD5A-C58B5D12C294}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DARK SOULS III\Game\DarkSoulsIII.exe (FromSoftware,Inc. -> BANDAI NAMCO Entertainment Inc.) FirewallRules: [{4465DA63-C0A4-47B4-8BBB-26F3ECDCDD4B}] => (Allow) D:\SteamLibrary\steamapps\common\7 Days To Die\7dLauncher.exe () [Datei ist nicht signiert] FirewallRules: [{31D6FA5C-7E5D-4C6B-ADC0-8644FB3DCCC4}] => (Allow) D:\SteamLibrary\steamapps\common\7 Days To Die\7dLauncher.exe () [Datei ist nicht signiert] FirewallRules: [TCP Query User{295E61AD-565C-42BD-8035-B819E2261DB4}D:\steamlibrary\steamapps\common\7 days to die\7daystodie.exe] => (Block) D:\steamlibrary\steamapps\common\7 days to die\7daystodie.exe () [Datei ist nicht signiert] FirewallRules: [UDP Query User{B4F4EAFA-219B-46F4-BEDD-4FC83424EB4C}D:\steamlibrary\steamapps\common\7 days to die\7daystodie.exe] => (Block) D:\steamlibrary\steamapps\common\7 days to die\7daystodie.exe () [Datei ist nicht signiert] FirewallRules: [{81FAE87F-5F8F-4F98-B08D-84BB47D43897}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_22287.702.1670.9453_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{D746E089-4443-471B-BF4B-042C0DC47129}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_22287.702.1670.9453_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{8CA99C10-9EC6-4D7A-8BF4-24572C1D3A03}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{2E199C93-62FD-4937-85E8-058DA4E0ABD0}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{E9836E4C-5507-4A2D-820A-881B842AE69A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{1117AB2E-8664-4C31-9B21-5856826E7D0B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{819938FF-D0C6-478E-8585-88CDF03659EF}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [TCP Query User{E24990AB-2E9F-45CC-8878-F89E2B095882}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [UDP Query User{92E63CCB-08F0-4627-8E89-AA4887B668B8}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [{D498A094-99D0-4859-908B-BF8A25470E89}] => (Block) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [{91B59FA1-4C1D-482B-87AD-7F8081600CAA}] => (Block) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [TCP Query User{F3DB9CBE-BE0A-4CFF-8368-18ACC415325B}D:\fallguys\fallguys\fallguys_client_game.exe] => (Block) D:\fallguys\fallguys\fallguys_client_game.exe () [Datei ist nicht signiert] FirewallRules: [UDP Query User{5792A79F-78C4-4BFC-87FF-3A0C92182512}D:\fallguys\fallguys\fallguys_client_game.exe] => (Block) D:\fallguys\fallguys\fallguys_client_game.exe () [Datei ist nicht signiert] FirewallRules: [TCP Query User{A9D62850-00E4-435D-BF5E-122D3C2E773C}D:\fallguys\evildeadthegame\evildead\binaries\win64\evildead-win64-shipping.exe] => (Block) D:\fallguys\evildeadthegame\evildead\binaries\win64\evildead-win64-shipping.exe (Saber Interactive Inc.) [Datei ist nicht signiert] FirewallRules: [UDP Query User{FC46AC44-6C43-4C15-81A2-82618442DFF1}D:\fallguys\evildeadthegame\evildead\binaries\win64\evildead-win64-shipping.exe] => (Block) D:\fallguys\evildeadthegame\evildead\binaries\win64\evildead-win64-shipping.exe (Saber Interactive Inc.) [Datei ist nicht signiert] FirewallRules: [{D6BFB91B-3FDB-4DA9-B9EB-99762DDFE37A}] => (Allow) C:\Program Files (x86)\Overwolf\0.208.1.2\OverwolfBrowser.exe => Keine Datei FirewallRules: [{E33DF0BE-98FA-49E1-9E99-CA399E8632BB}] => (Allow) C:\Program Files (x86)\Overwolf\0.208.1.2\OverwolfBrowser.exe => Keine Datei FirewallRules: [{5B7851DD-1785-43A0-AA97-3376A2B0D505}] => (Block) C:\Program Files (x86)\Overwolf\0.208.1.2\OverwolfBrowser.exe => Keine Datei FirewallRules: [{DB2B5F20-FD38-4C83-8434-A48041ED20D4}] => (Block) C:\Program Files (x86)\Overwolf\0.208.1.2\OverwolfBrowser.exe => Keine Datei FirewallRules: [{08EC974F-0A07-4989-92CE-9F6AC4850067}] => (Allow) C:\Program Files (x86)\Overwolf\0.208.1.4\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD) FirewallRules: [{24A673DC-8BDC-43A2-A2DA-3ED7D930C9A6}] => (Allow) C:\Program Files (x86)\Overwolf\0.208.1.4\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD) FirewallRules: [{2204F801-8039-404E-BA96-475EA10CF3C8}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\107.0.1418.56\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{626A9E4A-8E79-4110-A61B-5456F057C193}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.199.878.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{406279A0-B6E1-43CA-9202-295B49EA8A50}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.199.878.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{4EA0AC83-DD10-4E51-A62F-8D99CA76225D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.199.878.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{BD5851B7-E8DC-427E-B3F8-F75DE97D5DD4}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.199.878.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{0AEB3BCF-806E-4823-9CAA-512D611FC851}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.199.878.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{B2609FBE-4E28-4136-84FB-C9716BD87693}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.199.878.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{BC5F108F-4CCB-4D6D-910A-5B8BDCDF1CC4}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.199.878.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{E00286D4-C286-4ACA-9D26-C2676F993A25}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.199.878.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{EB248D7F-E2C6-4659-8875-7F25124F82C1}] => (Allow) D:\SteamLibrary\steamapps\common\Crab Game\Crab Game.exe () [Datei ist nicht signiert] FirewallRules: [{4A036198-4353-454D-BE1F-A390E21F405D}] => (Allow) D:\SteamLibrary\steamapps\common\Crab Game\Crab Game.exe () [Datei ist nicht signiert] FirewallRules: [{518C0EE4-BDDE-4130-A9DD-F6CFF78CDBEB}] => (Allow) D:\SteamLibrary\steamapps\common\Bounty Game\FishGame.exe (Beijing Jingyunmake Technology Co. , Ltd. -> Epic Games, Inc.) FirewallRules: [{2E048746-6320-4D3D-9466-951D79AFCFE7}] => (Allow) D:\SteamLibrary\steamapps\common\Bounty Game\FishGame.exe (Beijing Jingyunmake Technology Co. , Ltd. -> Epic Games, Inc.) FirewallRules: [{B778D750-C2EE-4DB4-8B56-8BDE6525BC96}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH) FirewallRules: [{24701545-1490-4D24-8B28-3C7E6C683B17}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH) FirewallRules: [{58B82010-C238-412D-9968-1B20690E1369}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH) FirewallRules: [{D6FBDFB5-46E1-48AA-9604-5EBBF7B064D5}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH) FirewallRules: [{128047B7-E284-47B4-9E63-3B49716D462E}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH) FirewallRules: [{D9D762C7-D3A1-4A53-9AA3-C3AA16F53E3F}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH) ==================== Wiederherstellungspunkte ========================= 09-11-2022 11:51:14 Windows Modules Installer 18-11-2022 17:27:25 Geplanter Prüfpunkt 27-11-2022 13:56:41 Geplanter Prüfpunkt ==================== Fehlerhafte Geräte im Gerätemanager ============ ==================== Fehlereinträge in der Ereignisanzeige: ======================== Applikationsfehler: ================== Error: (11/27/2022 04:49:51 PM) (Source: CertEnroll) (EventID: 86) (User: NT-AUTORITÄT) Description: Fehler bei der Initialisierung der SCEP-Zertifikatregistrierung für WORKGROUP\DESKTOP-FN1MLO3$ über https://AMD-KeyId-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net/templates/Aik/scep: GetCACaps GetCACaps: Not Found {"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."} HTTP/1.1 404 Not Found Date: Sun, 27 Nov 2022 15:49:50 GMT Content-Length: 121 Content-Type: application/json; charset=utf-8 X-Content-Type-Options: nosniff Strict-Transport-Security: max-age=31536000;includeSubDomains x-ms-request-id: 0ff2428d-ca7d-4e4d-bd36-ce144df59675 Methode: GET(203ms) Phase: GetCACaps Nicht gefunden (404). 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND) Error: (11/27/2022 04:49:50 PM) (Source: CertEnroll) (EventID: 86) (User: NT-AUTORITÄT) Description: Fehler bei der Initialisierung der SCEP-Zertifikatregistrierung für Lokales System über https://AMD-KeyId-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net/templates/Aik/scep: GetCACaps GetCACaps: Not Found {"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."} HTTP/1.1 404 Not Found Date: Sun, 27 Nov 2022 15:49:50 GMT Content-Length: 121 Content-Type: application/json; charset=utf-8 X-Content-Type-Options: nosniff Strict-Transport-Security: max-age=31536000;includeSubDomains x-ms-request-id: 3741e0f2-c3e5-46ab-9037-4c74beebcfcb Methode: GET(453ms) Phase: GetCACaps Nicht gefunden (404). 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND) Error: (11/27/2022 04:49:45 PM) (Source: Application Error) (EventID: 1000) (User: NT-AUTORITÄT) Description: Name der fehlerhaften Anwendung: atkexComSvc.exe, Version: 1.0.0.1, Zeitstempel: 0x6156aa76 Name des fehlerhaften Moduls: atkexComSvc.exe, Version: 1.0.0.1, Zeitstempel: 0x6156aa76 Ausnahmecode: 0xc0000005 Fehleroffset: 0x0001eb62 ID des fehlerhaften Prozesses: 0x0xf8c Startzeit der fehlerhaften Anwendung: 0x0x1d90277de82cd3a Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\ASUS\AXSP\4.02.12\atkexComSvc.exe Pfad des fehlerhaften Moduls: C:\Program Files (x86)\ASUS\AXSP\4.02.12\atkexComSvc.exe Berichtskennung: 19b239db-c0be-42c5-984f-6c0852e6d8b8 Vollständiger Name des fehlerhaften Pakets: Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Error: (11/27/2022 04:46:17 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Volumeschattenkopie-Dienstfehler: Beim Aufrufen von Routine "CoCreateInstance" ist ein unerwarteter Fehler aufgetreten. hr = 0x8007045b, Der Computer wird heruntergefahren. . Error: (11/27/2022 04:46:17 PM) (Source: VSS) (EventID: 13) (User: ) Description: Volumenschattenkopie-Dienst-Informationen: Der COM-Server mit CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} und dem Namen "CEventSystem" kann nicht gestartet werden. [0x8007045b, Der Computer wird heruntergefahren. ] Error: (11/27/2022 04:46:17 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Volumeschattenkopie-Dienstfehler: Beim Aufrufen von Routine "CoCreateInstance" ist ein unerwarteter Fehler aufgetreten. hr = 0x8007045b, Der Computer wird heruntergefahren. . Error: (11/27/2022 04:46:17 PM) (Source: VSS) (EventID: 13) (User: ) Description: Volumenschattenkopie-Dienst-Informationen: Der COM-Server mit CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} und dem Namen "CEventSystem" kann nicht gestartet werden. [0x8007045b, Der Computer wird heruntergefahren. ] Error: (11/16/2022 12:58:31 AM) (Source: Application Error) (EventID: 1000) (User: DESKTOP-FN1MLO3) Description: Name der fehlerhaften Anwendung: ArmouryAudioAgent.exe, Version: 1.0.0.8, Zeitstempel: 0x62cd20d7 Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 10.0.22621.819, Zeitstempel: 0x1355b9cf Ausnahmecode: 0xc000041d Fehleroffset: 0x00147402 ID des fehlerhaften Prozesses: 0x0x64d8 Startzeit der fehlerhaften Anwendung: 0x0x1d8f94bad7bdc9c Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AudioSDK\AudioAgent\ArmouryAudioAgent.exe Pfad des fehlerhaften Moduls: C:\WINDOWS\System32\KERNELBASE.dll Berichtskennung: 202f6576-bf13-4d5d-88c9-680fcacf2638 Vollständiger Name des fehlerhaften Pakets: Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Systemfehler: ============= Error: (11/27/2022 04:51:35 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-FN1MLO3) Description: Der Server "{8CFC164F-4BE5-4FDD-94E9-E2AF73ED4A19}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden. Error: (11/27/2022 04:49:47 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Das Zeitlimit (45000 ms) wurde beim Verbindungsversuch mit dem Dienst asComSvc erreicht. Error: (11/27/2022 03:09:01 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-FN1MLO3) Description: Der Server "{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden. Error: (11/27/2022 03:09:01 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-FN1MLO3) Description: Der Server "{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden. Error: (11/27/2022 03:09:01 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-FN1MLO3) Description: Der Server "{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden. Error: (11/27/2022 03:09:01 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-FN1MLO3) Description: Der Server "{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden. Error: (11/27/2022 03:09:01 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-FN1MLO3) Description: Der Server "{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden. Error: (11/27/2022 03:09:01 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-FN1MLO3) Description: Der Server "{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden. Windows Defender: ================ Date: 2022-11-27 16:28:48 Description: Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet. Überprüfungs-ID: {50C36413-1AFE-44DB-B96F-3B86D089629C} Überprüfungstyp: Antimalware Überprüfungsparameter: Schnellüberprüfung Benutzer: DESKTOP-FN1MLO3\husey Date: 2022-11-27 16:14:26 Description: Microsoft Defender Antivirus hat Schadsoftware oder andere potenziell unerwünschte Software erkannt. Weitere Informationen: https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:AndroidOS/Multiverze&threatid=2147785333&enterprise=0 Name: Trojan:AndroidOS/Multiverze Schweregrad: Schwerwiegend Kategorie: Trojaner Pfad: file:_C:\Users\husey\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Files\S0\4\Attachments\inenglish[20530].pptx Erkennungsursprung: Lokaler Computer Erkennungstype: FastPath Erkennungsquelle: Benutzer Benutzer: DESKTOP-FN1MLO3\husey Prozessname: C:\Windows\explorer.exe Sicherheitsversion: AV: 1.379.1034.0, AS: 1.379.1034.0, NIS: 1.379.1034.0 Modulversion: AM: 1.1.19800.4, NIS: 1.1.19800.4 Date: 2022-11-27 16:12:43 Description: Microsoft Defender Antivirus hat Schadsoftware oder andere potenziell unerwünschte Software erkannt. Weitere Informationen: https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:AndroidOS/Multiverze&threatid=2147785333&enterprise=0 Name: Trojan:AndroidOS/Multiverze Schweregrad: Schwerwiegend Kategorie: Trojaner Pfad: file:_C:\Users\husey\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Files\S0\4\Attachments\inenglish[20530].pptx Erkennungsursprung: Lokaler Computer Erkennungstype: FastPath Erkennungsquelle: Benutzer Benutzer: DESKTOP-FN1MLO3\husey Prozessname: Unknown Sicherheitsversion: AV: 1.379.1034.0, AS: 1.379.1034.0, NIS: 1.379.1034.0 Modulversion: AM: 1.1.19800.4, NIS: 1.1.19800.4 Date: 2022-11-27 13:55:40 Description: Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet. Überprüfungs-ID: {644FB0F5-99C4-4DF6-8937-15EC772F0DCE} Überprüfungstyp: Antimalware Überprüfungsparameter: Schnellüberprüfung Benutzer: NT-AUTORITÄT\SYSTEM Date: 2022-11-25 16:16:34 Description: Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet. Überprüfungs-ID: {B291DCA8-DEA0-4E72-BA39-1D44FED2B783} Überprüfungstyp: Antimalware Überprüfungsparameter: Schnellüberprüfung Benutzer: NT-AUTORITÄT\SYSTEM Event[0] Date: 2022-10-27 19:26:16 Description: Bei Microsoft Defender Antivirus ist ein Fehler bei dem Versuch aufgetreten, eine verdächtige Datei zur weiteren Analyse hochzuladen. Dateiname: C:\Program Files (x86)\Fuze\main.exe Sha256: 324b77535ae53a3074e10a57e644967b682a6858a63d5adf605bd0569d282416 Aktuelle Sicherheitsversion: AV: 1.377.889.0, AS: 1.377.889.0 Aktuelle Modulversion: 1.1.19700.3 Fehlercode: 0x80071112 Date: 2022-10-27 11:31:56 Description: Bei Microsoft Defender Antivirus ist ein Fehler bei dem Versuch aufgetreten, eine verdächtige Datei zur weiteren Analyse hochzuladen. Dateiname: C:\Program Files (x86)\Fuze\main.exe Sha256: 324b77535ae53a3074e10a57e644967b682a6858a63d5adf605bd0569d282416 Aktuelle Sicherheitsversion: AV: 1.377.876.0, AS: 1.377.876.0 Aktuelle Modulversion: 1.1.19700.3 Fehlercode: 0x80071112 Date: 2022-10-27 07:32:45 Description: Bei Microsoft Defender Antivirus ist ein Fehler bei dem Versuch aufgetreten, eine verdächtige Datei zur weiteren Analyse hochzuladen. Dateiname: C:\Program Files (x86)\Fuze\main.exe Sha256: 324b77535ae53a3074e10a57e644967b682a6858a63d5adf605bd0569d282416 Aktuelle Sicherheitsversion: AV: 1.377.868.0, AS: 1.377.868.0 Aktuelle Modulversion: 1.1.19700.3 Fehlercode: 0x80071112 Date: 2022-10-27 07:22:41 Description: Bei Microsoft Defender Antivirus ist ein Fehler bei dem Versuch aufgetreten, eine verdächtige Datei zur weiteren Analyse hochzuladen. Dateiname: C:\Program Files (x86)\Fuze\main.exe Sha256: 324b77535ae53a3074e10a57e644967b682a6858a63d5adf605bd0569d282416 Aktuelle Sicherheitsversion: AV: 1.377.830.0, AS: 1.377.830.0 Aktuelle Modulversion: 1.1.19700.3 Fehlercode: 0x80071112 CodeIntegrity: =============== Date: 2022-11-11 09:58:57 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2022-11-10 05:41:15 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.5-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2022-11-01 14:04:55 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.4-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2022-10-27 07:36:36 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\ProgramData\Microsoft\Windows Defender\Platform\4.18.2209.7-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2022-10-12 16:16:31 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Speicherinformationen =========================== BIOS: American Megatrends Inc. 1.40 10/29/2020 Hauptplatine: Micro-Star International Co., Ltd. MAG X570 TOMAHAWK WIFI (MS-7C84) Prozessor: AMD Ryzen 7 5800X 8-Core Processor Prozentuale Nutzung des RAM: 34% Installierter physikalischer RAM: 32693.84 MB Verfügbarer physikalischer RAM: 21554.68 MB Summe virtueller Speicher: 34741.84 MB Verfügbarer virtueller Speicher: 20611.04 MB ==================== Laufwerke ================================ Drive c: () (Fixed) (Total:930.73 GB) (Free:269.61 GB) (Model: WDC WDS100T2B0C-00PXH0) NTFS Drive d: (Volume) (Fixed) (Total:931.51 GB) (Free:859.25 GB) (Model: Samsung SSD 980 PRO 1TB) NTFS Drive e: (Storage) (Fixed) (Total:931.29 GB) (Free:751.01 GB) (Model: WDC WD10EZEX-00BN5A0) NTFS Drive f: (Volume) (Fixed) (Total:229.75 GB) (Free:150.47 GB) (Model: Samsung SSD 850 EVO 250GB) NTFS \\?\Volume{339f01aa-965b-4bcb-ade4-dcf393523deb}\ () (Fixed) (Total:0.67 GB) (Free:0.07 GB) NTFS \\?\Volume{75a3f891-d00f-410e-b1aa-31aaeb381753}\ () (Fixed) (Total:0.09 GB) (Free:0.06 GB) FAT32 ==================== MBR & Partitionstabelle ==================== ========================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 232.9 GB) (Disk ID: F7C2BCFB) Partition 1: (Not Active) - (Size=229.7 GB) - (Type=0F Extended) ========================================================== Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 058E7B1C) Partition: GPT. ========================================================== Disk: 2 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 3E3BD100) Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS) ========================================================== Disk: 3 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000) Partition: GPT. ==================== Ende von Addition.txt ======================= |
27.11.2022, 19:14 | #3 | |
/// Winkelfunktion /// TB-Süch-Tiger™ | Windows 11: Unerwünschte Dateien auf dem Rechner. JPG, Word, PDF und TIF DetailsZitat:
Die Virenfunde sind einfach nur irgendwelche Anhänge von Spam-E-Mails.
__________________ |
27.11.2022, 19:56 | #4 |
| Lösung: Windows 11: Unerwünschte Dateien auf dem Rechner. JPG, Word, PDF und TIF warum werden denn Anhänge aus Spam mails auf dem Rechner abgespeichert? |
27.11.2022, 19:58 | #5 |
/// Winkelfunktion /// TB-Süch-Tiger™ | Wie Windows 11: Unerwünschte Dateien auf dem Rechner. JPG, Word, PDF und TIF Das musst du Microsoft fragen warum die jeden möglichen Scheiß da in diesen Ordner reinsyncen. Welchen Mailclient verwendest du? Die Windows 10 Mail App? Nutzt du auch onedrive?
__________________ Logfiles bitte immer in CODE-Tags posten |
27.11.2022, 20:18 | #6 |
/// Winkelfunktion /// TB-Süch-Tiger™ | Wo Windows 11: Unerwünschte Dateien auf dem Rechner. JPG, Word, PDF und TIF Lösung! Also so wirkliche Informationen über diesen Ordner hab ich bisher nicht gefunden. Was Microsoft da so alles treibt war schon immer sehr undurchsichtig Sicher ist bisher nur, dass dieser Ordner im Zusammenhang mit der Mailapp und Onedrive steht. Und von der Nutzung sowohl der Mailapp (stattdessen Mozilla Thunderbird nutzen) als auch von Onedrive kann ich nur abraten. Lies mal https://www.heise.de/hintergrund/Aut...s-7324608.html
__________________ --> Windows 11: Unerwünschte Dateien auf dem Rechner. JPG, Word, PDF und TIF |
28.11.2022, 02:14 | #7 |
| Windows 11: Unerwünschte Dateien auf dem Rechner. JPG, Word, PDF und TIF ja genau, ich benutze die Mail app von Windows. One Drive ist sehr lästig auf Windows und ich muss das echt mal abstellen, wie kann ich das komplett deaktivieren sodass das nicht wieder anfängt zu nerven? Mozilla Thunderbird schaue ich mir dann mal an wenn das besser sein soll als das Mailprogramm direkt von Windows. |
28.11.2022, 10:17 | #8 |
| Windows 11: Unerwünschte Dateien auf dem Rechner. JPG, Word, PDF und TIF Kann ich nur empfehlen, benutze es schon über 10 Jahre.
__________________ Lieber mit dem Fahrrad zum Strand, als mit dem Mercedes zur Arbeit. |
28.11.2022, 15:40 | #9 |
| Windows 11: Unerwünschte Dateien auf dem Rechner. JPG, Word, PDF und TIF Im Taskmanager unter dem Reiter Autostart von Apps kannst du One Drive deaktivieren oder im Startmenü unter Installierte Apps One Drive deinstallieren. |
28.11.2022, 23:42 | #10 |
| Windows 11: Unerwünschte Dateien auf dem Rechner. JPG, Word, PDF und TIF [gelöst] danke, habs jetzt über autostart deaktiviert. |
Themen zu Windows 11: Unerwünschte Dateien auf dem Rechner. JPG, Word, PDF und TIF |
.dll, administrator, adobe, antivirus, browser, computer, defender, desktop, downloader, entfernen, euro, explorer, geforce, google, helper, internet, internet explorer, karte, log file, malware, nvcontainer, pdf, performance, proxy, prozesse, realtek, registry, rundll, scan, security, server, services.exe, software, svchost.exe, system, tcp, temp, trojan, udp, windows, wmi |