Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung

Log-Analyse und Auswertung: PUP.Optional.WebProtector im AdwCleaner

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

Thema geschlossen
Alt 21.06.2023, 13:00   #1
FabToGo
 
PUP.Optional.WebProtector im AdwCleaner - Standard

PUP.Optional.WebProtector im AdwCleaner



Hallo liebes Trojaner-Board und insbesondere dessen Admins!

Ich habe nun schon alles Mögliche versucht, aber bekomme im AdwCleaner immer und immer wieder ein Ergebnis "PUP.Optional.WebProtector" bzw. "Chrome-Erweiterung" mit der Bezeichnung "kfecnpmgnlnbmipaogfhoacoioifjgko".

Code:
ATTFilter
# -------------------------------
# Malwarebytes AdwCleaner 8.4.0.0
# -------------------------------
# Build:    08-30-2022
# Database: 2022-10-10.1 (Cloud)
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start:    06-21-2023
# Duration: 00:00:04
# OS:       Windows 10 (Build 19045.3086)
# Scanned:  32036
# Detected: 1


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

PUP.Optional.WebProtector       kfecnpmgnlnbmipaogfhoacoioifjgko

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

***** [ Hosts File Entries ] *****

No malicious hosts file entries found.

***** [ Preinstalled Software ] *****

No Preinstalled Software found.


AdwCleaner[C05].txt - [1532 octets] - [21/06/2023 13:36:41]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########
         
Im hierauf folgenden Beitrag reiche ich dann noch den FRST.txt und Addition.txt nach.

Ich würde mich riesig freuen, wenn ihr mir dazu eine Einschätzung geben könntet oder sogar eine Lösung.

Tausend Dank schonmal im Voraus und ein ganz dickes Lob für eure Arbeit!

Hier die FRST Log-Dateien

Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 20-06-2023
durchgeführt von Fabian (Administrator) auf I7-11700 (21-06-2023 13:41:13)
Gestartet von C:\Users\Fabian\Desktop\FRST06\FRST64.exe
Geladene Profile: Fabian
Plattform: Microsoft Windows 10 Home Version 22H2 19045.3086 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: FF
Start-Modus: Normal

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe ->) (Alexey Nicolaychuk -> ) C:\Program Files (x86)\RivaTuner Statistics Server\EncoderServer64.exe
(C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe ->) (Alexey Nicolaychuk -> ) C:\Program Files (x86)\RivaTuner Statistics Server\RTSSHooksLoader64.exe
(C:\Program Files\Google\Chrome\Application\chrome.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Scans\MsMpEngCP.exe
(cmd.exe ->) () [Datei ist nicht signiert] C:\Users\Fabian\AppData\Local\KeeForm\keeform_host.exe <2>
(DriverStore\FileRepository\cui_dch.inf_amd64_2e49f48165b8de10\igfxCUIServiceN.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_2e49f48165b8de10\igfxEMN.exe
(explorer.exe ->) () [Datei ist nicht signiert] C:\Program Files (x86)\novideo-srgb\novideo_srgb.exe
(explorer.exe ->) (6099D0EF-9374-47ED-BDFE-A82136831235 -> File-New-Project) C:\Program Files\WindowsApps\40459File-New-Project.EarTrumpet_2.2.2.0_x86__1sdd7yawvg6ne\EarTrumpet\EarTrumpet.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <25>
(explorer.exe ->) (Peter Eduard Verbeek -> ) C:\Program Files\EqualizerAPO\config\Peace.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <12>
(Rémi Mercier) [Datei ist nicht signiert] C:\Program Files (x86)\FanControl\FanControl.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_2ed8bbc35e514626\RstMwService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_670360bdb5a40a0d\WMIRegistrationService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_2e49f48165b8de10\igfxCUIServiceN.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_78ff17a5ea060c5f\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_3ea756ac68d34d21\IntelCpHDCPSvc.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_01da06226db6f074\Display.NvContainer\NVDisplay.Container.exe <2>
(svchost.exe ->) (Alexey Nicolaychuk -> ) C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> ) C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe

==================== Registry (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [KeePass 2 PreLoad] => C:\Program Files\KeePass Password Safe 2\KeePass.exe [3274640 2023-06-03] (Open Source Developer, Dominik Reichl -> Dominik Reichl)
HKLM\...\Policies\Explorer: [NoInstrumentation] 1
HKLM\...\Policies\Explorer: [NoRecentDocsNetHood] 0
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Beschränkung <==== ACHTUNG
HKLM\Software\Policies\...\system: [EnableActivityFeed] 0
HKLM\Software\Policies\...\system: [UploadUserActivities] 0
HKU\S-1-5-21-1156397584-2715397874-1246108200-1001\...\Run: [novideo_srgb] => C:\Program Files (x86)\novideo-srgb\novideo_srgb.exe [176128 2022-08-17] () [Datei ist nicht signiert]
HKU\S-1-5-21-1156397584-2715397874-1246108200-1001\...\Policies\system: [DisableLockWorkstation] 0
HKU\S-1-5-21-1156397584-2715397874-1246108200-1001\...\Policies\Explorer: [NoPreviewPane] 0
HKU\S-1-5-21-1156397584-2715397874-1246108200-1001\...\Policies\Explorer: [NoWinkeys] 0
HKU\S-1-5-21-1156397584-2715397874-1246108200-1001\...\Policies\Explorer: [NoTrayContextMenu] 0
HKU\S-1-5-21-1156397584-2715397874-1246108200-1001\...\Policies\Explorer: [NoSetTaskbar] 0
HKU\S-1-5-21-1156397584-2715397874-1246108200-1001\...\Policies\Explorer: [NoViewContextMenu] 0
HKLM\...\Windows x64\Print Processors\BJ Print Processor3: C:\Windows\System32\spool\prtprocs\x64\CNBPP3.DLL [83968 2009-07-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\BJ Language Monitor3_2: c:\windows\system32\CNBLM3_2.DLL [211456 2009-07-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\PDF-XChange Lite Port Monitor: C:\WINDOWS\system32\pxcpmL.dll [953600 2022-12-12] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\114.0.5735.134\Installer\chrmstp.exe [2023-06-16] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{9459C573-B17A-45AE-9F64-1857B5D58CEE}] -> "C:\Program Files (x86)\Microsoft\Edge\Application\113.0.1774.35\Installer\setup.exe" --configure-user-settings --verbose-logging --system-level --msedge --channel=stable
Startup: C:\Users\Fabian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Notion.lnk [2021-05-19]
ShortcutTarget: Notion.lnk -> C:\Users\Fabian\AppData\Local\Programs\Notion\Notion.exe (Notion Labs, Inc. -> Notion Labs, Inc)
Startup: C:\Users\Fabian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Peace.lnk [2022-04-29]
ShortcutTarget: Peace.lnk -> C:\Program Files\EqualizerAPO\config\Peace.exe (Peter Eduard Verbeek -> )
GroupPolicy: Beschränkung ? <==== ACHTUNG
Policies: C:\ProgramData\NTUSER.pol: Beschränkung <==== ACHTUNG
HKLM\SOFTWARE\Policies\Microsoft\Edge: Beschränkung <==== ACHTUNG

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {04D64DA5-A70E-4EE8-938D-DD256CAFEACA} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [804312 2023-04-11] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
Task: {169198C8-0091-41F1-AD4B-FC6173CE7330} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe [5308576 2023-05-24] (Microsoft Windows -> Microsoft Corporation)
Task: {24946AD6-1127-49DD-BB59-C192ABCEAF41} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe  --automatic (Keine Datei)
Task: {4708D566-BBE5-47B7-8C40-3D3DC57248F9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe [1650040 2023-06-13] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4E69CFE4-0AF1-4195-9DDE-DB7A9433951D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe [1650040 2023-06-13] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A5950D4A-5AC5-43B5-9398-DC290B82CE63} - System32\Tasks\RTSS => C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe [436544 2023-03-30] (Alexey Nicolaychuk -> )
Task: {B41AE28F-BB7C-4C98-8A51-743BF058A260} - System32\Tasks\ViGEmBus_Updater => C:\Program Files\Nefarius Software Solutions\ViGEm Bus Driver\ViGEmBus_Updater.exe [1117096 2022-09-27] (Nefarius Software Solutions e.U. -> Nefarius Software Solutions e.U.)
Task: {B980123C-E901-4D47-B25A-4D47B26881F5} - System32\Tasks\GoogleUpdateTaskMachineUA{B988E800-5187-44F4-B9F3-D6EA382AA0CF} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2023-03-08] (Google LLC -> Google LLC)
Task: {C3F67CD9-022B-4FAB-901C-45E96A2E41B8} - System32\Tasks\GoogleUpdateTaskMachineCore{266555DC-1875-4EC9-8D18-B2E2C9810694} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2023-03-08] (Google LLC -> Google LLC)
Task: {CBA5098C-B5E9-4245-8042-E0E4B3C72293} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [732064 2023-06-20] (Mozilla Corporation -> Mozilla Foundation) <==== ACHTUNG
Task: {D6072931-353C-455A-B510-0AA8AE9A03F1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe [1650040 2023-06-13] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {DCB56F94-87F8-45C4-B5AF-39700891EADC} - System32\Tasks\MicrosoftEdgeUpdateTaskMachineUA{FCC99019-2712-4615-A9D7-FF7235546EB3} => C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe  /ua /installsource scheduler (Keine Datei)
Task: {E04599DB-D87E-42CD-87AA-82A06245CE0C} - System32\Tasks\FanControl => c:\windows\system32\cmd.exe [289792 2021-10-06] (Microsoft Windows -> Microsoft Corporation) -> /C start /B FanControl.exe
Task: {E7BFCAC2-188E-42A2-9560-927935DBF45C} - System32\Tasks\MicrosoftEdgeUpdateTaskMachineCore{07B0E02F-7275-4596-A823-B970E42FC36A} => C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe  /c (Keine Datei)
Task: {E9553626-E455-4ED9-8D69-F840B1ECF362} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe [1650040 2023-06-13] (Microsoft Windows Publisher -> Microsoft Corporation)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Hosts: Es ist mehr als ein Eintrag in der Hosts Datei zu finden. Siehe Hosts-Bereich in Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.8.1
Tcpip\..\Interfaces\{4b0b5439-022e-45bf-88a0-38362586021a}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{9d784384-9f9e-41a1-85bf-0badb74702e2}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{9d784384-9f9e-41a1-85bf-0badb74702e2}: [DhcpNameServer] 192.168.8.1
Tcpip\..\Interfaces\{aa1defd5-5419-40dc-beae-552b76b2b0ee}: [DhcpNameServer] 192.168.8.1
DnsPolicyConfig: [{0A0FB82B-7316-4C84-B5B0-5607D59B2DEE}] => GenericDNSServers=8.8.8.8
DnsPolicyConfig: [{0A41985C-0245-4C18-84E0-705E8ED9F4D2}] => GenericDNSServers=8.8.8.8
DnsPolicyConfig: [{5BF51F1A-2EDD-4DF2-853B-E6CD29B4F541}] => GenericDNSServers=8.8.8.8
DnsPolicyConfig: [{98E4D2D5-2173-46DE-8926-A6474D30DEDE}] => GenericDNSServers=8.8.8.8

FireFox:
========
FF DefaultProfile: 6dx3uoje.default
FF ProfilePath: C:\Users\Fabian\AppData\Roaming\Mozilla\Firefox\Profiles\6dx3uoje.default [2023-01-10]
FF ProfilePath: C:\Users\Fabian\AppData\Roaming\Mozilla\Firefox\Profiles\f6fkhara.default-release-1674606149771 [2023-06-21]
FF Homepage: Mozilla\Firefox\Profiles\f6fkhara.default-release-1674606149771 -> visions.de
FF Session Restore: Mozilla\Firefox\Profiles\f6fkhara.default-release-1674606149771 -> ist aktiviert.
FF Extension: (Facebook Container) - C:\Users\Fabian\AppData\Roaming\Mozilla\Firefox\Profiles\f6fkhara.default-release-1674606149771\Extensions\@contain-facebook.xpi [2023-01-25]
FF Extension: (CanvasBlocker) - C:\Users\Fabian\AppData\Roaming\Mozilla\Firefox\Profiles\f6fkhara.default-release-1674606149771\Extensions\CanvasBlocker@kkapsner.de.xpi [2023-04-24]
FF Extension: (I still don't care about cookies) - C:\Users\Fabian\AppData\Roaming\Mozilla\Firefox\Profiles\f6fkhara.default-release-1674606149771\Extensions\idcac-pub@guus.ninja.xpi [2023-06-05]
FF Extension: (Decentraleyes) - C:\Users\Fabian\AppData\Roaming\Mozilla\Firefox\Profiles\f6fkhara.default-release-1674606149771\Extensions\jid1-BoFifL9Vbdl2zQ@jetpack.xpi [2023-01-25]
FF Extension: (Privacy Badger) - C:\Users\Fabian\AppData\Roaming\Mozilla\Firefox\Profiles\f6fkhara.default-release-1674606149771\Extensions\jid1-MnnxcxisBPnSXQ@jetpack.xpi [2023-06-20]
FF Extension: (AdBlocker for YouTube™) - C:\Users\Fabian\AppData\Roaming\Mozilla\Firefox\Profiles\f6fkhara.default-release-1674606149771\Extensions\jid1-q4sG8pYhq8KGHs@jetpack.xpi [2023-01-25]
FF Extension: (KeeForm) - C:\Users\Fabian\AppData\Roaming\Mozilla\Firefox\Profiles\f6fkhara.default-release-1674606149771\Extensions\keeform@keeform.org.xpi [2023-04-05]
FF Extension: (Grammatik- und Rechtschreibprüfung – LanguageTool) - C:\Users\Fabian\AppData\Roaming\Mozilla\Firefox\Profiles\f6fkhara.default-release-1674606149771\Extensions\languagetool-webextension@languagetool.org.xpi [2023-03-25]
FF Extension: (Startpage Privatsphäre-Schutz) - C:\Users\Fabian\AppData\Roaming\Mozilla\Firefox\Profiles\f6fkhara.default-release-1674606149771\Extensions\{5b1a796b-231a-4ad1-84ff-918db0818207}.xpi [2023-03-08]
FF Extension: (NoScript) - C:\Users\Fabian\AppData\Roaming\Mozilla\Firefox\Profiles\f6fkhara.default-release-1674606149771\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2023-05-18]
FF Extension: (DarkTheme) - C:\Users\Fabian\AppData\Roaming\Mozilla\Firefox\Profiles\f6fkhara.default-release-1674606149771\Extensions\{99c277af-d778-4a0b-9faa-b1d8165f0a55}.xpi [2023-01-25]
FF Extension: (Adblock Plus - kostenloser Adblocker) - C:\Users\Fabian\AppData\Roaming\Mozilla\Firefox\Profiles\f6fkhara.default-release-1674606149771\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2023-05-04]
FF Extension: (Bypass Paywalls Clean) - C:\Users\Fabian\AppData\Roaming\Mozilla\Firefox\Profiles\f6fkhara.default-release-1674606149771\Extensions\{d133e097-46d9-4ecc-9903-fa6a722a6e0e}.xpi [2023-02-09]
FF Extension: (colee) - C:\Users\Fabian\AppData\Roaming\Mozilla\Firefox\Profiles\f6fkhara.default-release-1674606149771\Extensions\{d1cc7cf8-8f1b-419a-9ac7-5f709d61ea45}.xpi [2023-01-25]
FF Extension: (Add-ons Restricted Domains) - C:\Users\Fabian\AppData\Roaming\Mozilla\Firefox\Profiles\f6fkhara.default-release-1674606149771\features\{ee0ae0bc-fd24-4832-86c8-1a79cab6ea13}\addons-restricted-domains@mozilla.com.xpi [2023-06-13]
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2022-12-12] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2022-12-12] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2022-12-12] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB) [Datei ist nicht signiert]
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2022-12-12] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2022-12-12] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2022-12-12] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @videolan.org/vlc,version=3.0.10 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Keine Datei]
FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Keine Datei]
FF Plugin-x32: @videolan.org/vlc,version=3.0.12 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Keine Datei]
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Keine Datei]
FF Plugin HKU\.DEFAULT: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2022-12-12] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\.DEFAULT: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2022-12-12] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\.DEFAULT: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2022-12-12] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-1156397584-2715397874-1246108200-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2022-12-12] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-1156397584-2715397874-1246108200-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2022-12-12] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-1156397584-2715397874-1246108200-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2022-12-12] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)

Chrome: 
=======
CHR Profile: C:\Users\Fabian\AppData\Local\Google\Chrome\User Data\Default [2023-06-21]
CHR StartupUrls: Default -> "hxxp://visions.de/"
CHR Extension: (KeeForm) - C:\Users\Fabian\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmhcphbkicakelgpchlhccaeljahoima [2023-04-05]
CHR Extension: (Adblock Plus - kostenloser Adblocker) - C:\Users\Fabian\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2023-06-19]
CHR Extension: (I still don't care about cookies) - C:\Users\Fabian\AppData\Local\Google\Chrome\User Data\Default\Extensions\edibdbjcniadpccecjdfdjjppcpchdlm [2023-06-05]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Fabian\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-03-08]
CHR Extension: (Grammatik- und Rechtschreibprüfung – LanguageTool) - C:\Users\Fabian\AppData\Local\Google\Chrome\User Data\Default\Extensions\oldceeleldhonbafppcapldpdifcinji [2023-06-21]

==================== Dienste (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 Backupper Service; C:\Program Files (x86)\AOMEI\AOMEI Backupper\7.2.1\ABService.exe [1102328 2023-04-19] (AOMEI International Network Limited -> AOMEI International Network Limited)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [9880840 2022-12-06] (BattlEye Innovations e.K. -> )
S3 EAAntiCheatService; C:\Program Files\EA\AC\eaanticheat.gameservice.exe [52590680 2023-04-13] (Electronic Arts, Inc. -> )
S3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [11498600 2023-06-21] (Electronic Arts, Inc. -> Electronic Arts)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [811496 2022-11-03] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [943528 2023-05-17] (EasyAntiCheat Oy -> Epic Games, Inc.)
S4 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2022-07-11] (Epic Games Inc. -> Epic Games, Inc.)
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [347408 2023-04-28] (Underwriters Laboratories Inc. -> Futuremark)
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [2117096 2023-02-11] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7166552 2022-09-20] (GOG Sp. z o.o. -> GOG.com)
S3 ProtonVPN Service; C:\Program Files\Proton\VPN\v3.0.5\ProtonVPNService.exe [472168 2023-04-19] (Proton Technologies AG -> ProtonVPN)
S3 ProtonVPN WireGuard; C:\Program Files\Proton\VPN\v3.0.5\ProtonVPN.WireGuardService.exe [471656 2023-04-19] (Proton Technologies AG -> ProtonVPN)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [2703192 2023-01-10] (Rockstar Games, Inc. -> Rockstar Games)
S3 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [17029944 2023-04-24] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 ucldr_battlegrounds_gl; C:\Program Files\Common Files\Wellbia.com\ucldr_battlegrounds_gl.exe [5964328 2023-04-17] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\NisSrv.exe [3232576 2023-06-13] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MsMpEng.exe [133592 2023-06-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 zksvc; C:\Program Files\Common Files\PUBG\zksvc.exe [12311392 2023-06-02] (KRAFTON, Inc. -> KRAFTON, Inc)
S3 edgeupdate; "C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /svc [X]
S3 edgeupdatem; "C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /medsvc [X]
S3 MicrosoftEdgeElevationService; "C:\Program Files (x86)\Microsoft\Edge\Application\113.0.1774.35\elevation_service.exe" [X]
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_01da06226db6f074\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_01da06226db6f074\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
S4 RtkAudioUniversalService; "%SystemRoot%\System32\RtkAudUService64.exe" [X]

===================== Treiber (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 AcxHdAudio; C:\WINDOWS\System32\drivers\AcxHdAudio.sys [526848 2022-09-09] (Microsoft Windows -> Microsoft Corporation)
R0 ambakdrv; C:\WINDOWS\System32\ambakdrv.sys [51120 2019-05-14] (CHENGDU AOMEI Tech Co., Ltd. -> )
R2 ammntdrv; C:\WINDOWS\system32\ammntdrv.sys [172928 2023-04-20] (AOMEI International Network Limited -> )
R2 amwrtdrv; C:\WINDOWS\system32\amwrtdrv.sys [32176 2023-04-20] (AOMEI International Network Limited -> )
S3 AndnetBus; C:\WINDOWS\System32\drivers\lgandnetbus64.sys [30208 2016-08-31] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
S3 AndNetDiag; C:\WINDOWS\system32\DRIVERS\lgandnetdiag64.sys [30720 2016-08-24] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
S3 ANDNetModem; C:\WINDOWS\system32\DRIVERS\lgandnetmodem64.sys [37376 2016-08-24] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
S3 AsrDrv105; C:\WINDOWS\SysWOW64\Drivers\AsrDrv105.sys [40696 2022-04-13] (ASROCK INC. -> ASRock Incorporation)
S3 AsrDrv106; C:\WINDOWS\SysWOW64\Drivers\AsrDrv106.sys [49984 2022-05-12] (ASROCK INC. -> ASRock Incorporation)
S3 AxtuDrv; C:\WINDOWS\SysWOW64\Drivers\AxtuDrv.sys [21768 2020-04-01] (ASROCK Incorporation -> RW-Everything)
R1 CTIIO; C:\WINDOWS\system32\drivers\CtiIo64.sys [30728 2022-03-29] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Innovation Co., LTd.)
R1 EneTechIo; C:\WINDOWS\system32\drivers\ene.sys [19968 2019-10-17] (Microsoft Windows Hardware Compatibility Publisher -> )
R1 GLCKIO2; C:\WINDOWS\system32\drivers\GLCKIO2.sys [29368 2019-04-24] (ASUSTeK Computer Inc. -> )
S4 GUBootStartup; C:\WINDOWS\System32\drivers\GUBootStartup.sys [30720 2021-02-18] (Microsoft Windows Hardware Compatibility Publisher -> Glarysoft Ltd)
R2 inpoutx64; C:\WINDOWS\System32\Drivers\inpoutx64.sys [15008 2022-05-23] (Red Fox UK Limited -> Highresolution Enterprises [www.highrez.co.uk])
S3 IntelGNA; C:\WINDOWS\System32\DriverStore\FileRepository\gna.inf_amd64_04d4eecc5838a558\gna.sys [88776 2022-06-24] (Intel Corporation -> Intel Corporation)
R3 MpKsl4b526d9f; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{9032EEBA-29A5-4908-BE8B-1154DBD46D68}\MpKslDrv.sys [213288 2023-06-21] (Microsoft Windows -> Microsoft Corporation)
R1 MSIO; C:\WINDOWS\system32\drivers\MsIo64.sys [17424 2020-01-19] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
S3 ProtonVPNCallout; C:\Program Files\Proton\VPN\v3.0.5\Resources\ProtonVPN.CalloutDriver.sys [34176 2023-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Proton Technologies AG)
R3 R0FanControl; C:\Program Files (x86)\FanControl\FanControl.sys [14544 2023-06-21] (Noriyuki MIYAZAKI -> OpenLibSys.org)
S3 rspLLL; C:\WINDOWS\System32\DRIVERS\rspLLL64.sys [27744 2021-03-09] (Daniel Terhell -> Resplendence Software Projects Sp.)
R3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [36824 2020-07-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
S3 RtlWlanu; C:\WINDOWS\System32\drivers\rtwlanu.sys [12187328 2022-01-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation)
S3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions)
R2 SSGDIO; C:\WINDOWS\SysWOW64\DRIVERS\ssgdio64.sys [14608 2022-05-12] (ATI Technologies, Inc -> ATI Technologies Inc.)
S3 tapprotonvpn; C:\WINDOWS\System32\drivers\tapprotonvpn.sys [49024 2022-04-01] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
R1 ViGEmBus; C:\WINDOWS\System32\drivers\ViGEmBus.sys [249400 2022-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Nefarius Software Solutions e.U.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49560 2023-06-13] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [498944 2023-06-13] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99568 2023-06-13] (Microsoft Windows -> Microsoft Corporation)
R3 WiManH; C:\WINDOWS\System32\DriverStore\FileRepository\wiman.inf_amd64_367f6ef053419fd6\WiManH\WiManH.sys [180296 2022-09-20] (Intel Corporation -> Intel Corporation)
S3 WireGuard; C:\WINDOWS\System32\drivers\wireguard.sys [489368 2022-05-30] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [1447240 2023-06-19] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
S3 cpuz155; \??\C:\WINDOWS\temp\cpuz155\cpuz155_x64.sys [X]
S3 EAAntiCheat; system32\drivers\eaanticheat.sys [X]
S3 semav6msr64; \??\C:\WINDOWS\system32\drivers\semav6msr64.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat (erstellte) (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2023-06-21 13:40 - 2023-06-21 13:41 - 000000000 ____D C:\Users\Fabian\Desktop\FRST06
2023-06-21 13:40 - 2023-06-21 13:41 - 000000000 ____D C:\FRST
2023-06-21 12:48 - 2023-06-21 12:48 - 000001574 _____ C:\Users\Fabian\AppData\Roaming\PureRef.ini
2023-06-21 12:34 - 2023-06-21 12:34 - 000003130 _____ C:\WINDOWS\system32\Tasks\MSIAfterburner
2023-06-21 12:07 - 2023-06-21 13:16 - 000000000 ____D C:\Users\Fabian\AppData\LocalLow\IGDump
2023-06-20 19:38 - 2023-06-21 13:38 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-06-15 17:30 - 2023-06-15 17:31 - 002240336 _____ C:\Users\Fabian\Desktop\Bewerbung_Ausbildung_FabianMarcus.pdf
2023-06-15 16:17 - 2023-06-15 17:45 - 000000000 ____D C:\Users\Fabian\AppData\Roaming\EasyAntiCheat
2023-06-15 16:14 - 2023-06-15 16:17 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat
2023-06-15 16:09 - 2023-06-15 16:09 - 000000000 ____D C:\Users\Fabian\AppData\Local\HellLetLoose
2023-06-14 20:48 - 2023-06-14 20:48 - 000000000 ____D C:\Users\Fabian\AppData\Roaming\NVIDIA
2023-06-14 20:47 - 2023-06-14 20:49 - 000000000 ____D C:\Users\Fabian\AppData\Local\NVIDIA Corporation
2023-06-14 20:28 - 2023-06-20 12:01 - 000000000 ____D C:\Users\Fabian\AppData\Local\D3DSCache
2023-06-14 20:25 - 2023-06-21 13:37 - 000000000 ____D C:\ProgramData\NVIDIA
2023-06-14 20:25 - 2023-06-14 20:25 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2023-06-14 20:24 - 2023-06-14 20:24 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2023-06-14 20:24 - 2023-06-14 20:20 - 000121880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2023-06-14 20:23 - 2023-06-14 20:23 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2023-06-14 20:21 - 2023-06-14 20:20 - 014520328 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2023-06-14 20:21 - 2023-06-14 20:20 - 012066840 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2023-06-14 20:21 - 2023-06-14 20:20 - 007858128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2023-06-14 20:21 - 2023-06-14 20:20 - 006737000 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2023-06-14 20:21 - 2023-06-14 20:20 - 006190088 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2023-06-14 20:21 - 2023-06-14 20:20 - 005844448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2023-06-14 20:21 - 2023-06-14 20:20 - 005550616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll
2023-06-14 20:21 - 2023-06-14 20:20 - 003482632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2023-06-14 20:21 - 2023-06-14 20:20 - 002167776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2023-06-14 20:21 - 2023-06-14 20:20 - 001621472 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2023-06-14 20:21 - 2023-06-14 20:20 - 001537504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2023-06-14 20:21 - 2023-06-14 20:20 - 001194976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2023-06-14 20:21 - 2023-06-14 20:20 - 000992224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2023-06-14 20:21 - 2023-06-14 20:20 - 000933896 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2023-06-14 20:21 - 2023-06-14 20:20 - 000853488 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2023-06-14 20:21 - 2023-06-14 20:20 - 000848976 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2023-06-14 20:21 - 2023-06-14 20:20 - 000848976 _____ C:\WINDOWS\system32\vulkaninfo.exe
2023-06-14 20:21 - 2023-06-14 20:20 - 000777200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2023-06-14 20:21 - 2023-06-14 20:20 - 000768520 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2023-06-14 20:21 - 2023-06-14 20:20 - 000713808 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2023-06-14 20:21 - 2023-06-14 20:20 - 000713808 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2023-06-14 20:21 - 2023-06-14 20:20 - 000668640 _____ C:\WINDOWS\system32\nvofapi64.dll
2023-06-14 20:21 - 2023-06-14 20:20 - 000653352 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2023-06-14 20:21 - 2023-06-14 20:20 - 000653352 _____ C:\WINDOWS\system32\vulkan-1.dll
2023-06-14 20:21 - 2023-06-14 20:20 - 000636968 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2023-06-14 20:21 - 2023-06-14 20:20 - 000636968 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2023-06-14 20:21 - 2023-06-14 20:20 - 000504344 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2023-06-14 20:21 - 2023-06-14 20:20 - 000459800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2023-06-14 20:21 - 2023-06-14 20:20 - 000107938 _____ C:\WINDOWS\system32\nvinfo.pb
2023-06-14 19:35 - 2023-06-14 19:35 - 041892633 _____ C:\Users\Fabian\Desktop\xoio_3d_people_collection.zip
2023-06-14 19:18 - 2023-06-14 19:18 - 000000000 ____D C:\WINDOWS\system32\lxss
2023-06-14 19:18 - 2023-06-14 19:18 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2023-06-14 19:15 - 2023-06-14 19:13 - 001487896 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2023-06-14 19:15 - 2023-06-14 19:13 - 001227288 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2023-06-13 21:48 - 2023-06-13 21:48 - 000000000 ___HD C:\$WinREAgent
2023-06-13 14:26 - 2023-06-13 14:26 - 041906684 _____ C:\Users\Fabian\Desktop\Oekotest 5-23.pdf
2023-06-13 14:26 - 2023-06-13 14:26 - 026426336 _____ C:\Users\Fabian\Desktop\Oekotest 4-23.pdf
2023-06-13 11:36 - 2023-06-13 11:36 - 000031333 _____ C:\Users\Fabian\Desktop\OpenDocument Text (neu).odt
2023-06-09 17:33 - 2023-06-09 17:33 - 000000000 ____D C:\Users\Fabian\AppData\LocalLow\Intel
2023-06-09 16:38 - 2023-06-21 13:37 - 000000000 __SHD C:\Users\Fabian\IntelGraphicsProfiles
2023-06-09 16:37 - 2021-03-30 02:59 - 000309656 _____ (Intel Corporation) C:\WINDOWS\system32\libmfxhw64.dll
2023-06-09 16:37 - 2021-03-30 02:59 - 000257048 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\libmfxhw32.dll
2023-06-09 16:37 - 2021-03-30 02:59 - 000173080 _____ (Intel Corporation) C:\WINDOWS\system32\intel_gfx_api-x64.dll
2023-06-09 16:37 - 2021-03-30 02:59 - 000148368 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\intel_gfx_api-x86.dll
2023-06-09 00:26 - 2023-06-12 15:21 - 000000000 ____D C:\Program Files (x86)\ROCCAT
2023-06-08 13:28 - 2023-06-08 13:28 - 000000000 ____D C:\Users\Fabian\AppData\Local\AWSToolkit
2023-06-07 10:59 - 2023-06-07 10:59 - 000000875 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LatencyMon.lnk
2023-06-07 10:59 - 2023-06-07 10:59 - 000000000 ____D C:\Program Files\LatencyMon
2023-06-07 10:59 - 2021-03-09 15:07 - 000027744 _____ (Resplendence Software Projects Sp.) C:\WINDOWS\system32\Drivers\rspLLL64.sys
2023-06-06 16:11 - 2023-06-06 16:10 - 000033230 _____ C:\Users\Fabian\Desktop\Kaufmännische Berufe.odt
2023-06-06 15:09 - 2023-06-07 16:35 - 000018300 _____ C:\Users\Fabian\Desktop\Gehäusetests.odt
2023-06-05 18:22 - 2023-06-05 18:22 - 000003114 _____ C:\WINDOWS\system32\Tasks\RTSS
2023-06-03 20:21 - 2023-06-03 20:21 - 000000977 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeePass 2.lnk
2023-06-03 16:13 - 2023-06-03 16:13 - 000000000 ____D C:\Program Files (x86)\Futuremark
2023-06-02 19:40 - 2023-06-02 23:41 - 000000000 ____D C:\Users\Fabian\AppData\Roaming\Microsoft\Teams
2023-06-02 19:40 - 2023-06-02 19:40 - 000002411 _____ C:\Users\Fabian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk
2023-06-02 12:35 - 2023-06-02 12:35 - 000000000 ____D C:\Users\Fabian\AppData\Local\MidnightGhostHunt
2023-06-02 11:04 - 2023-06-02 11:04 - 000000000 ____D C:\WINDOWS\Panther
2023-05-31 09:18 - 2023-05-31 09:18 - 000095152 _____ C:\Users\Fabian\Desktop\Bewerbungsliste_FabianMarcus.pdf
2023-05-31 09:18 - 2023-05-31 09:18 - 000045712 _____ C:\Users\Fabian\Desktop\Ausbildungsoptionen_ProContra_FabianMarcus.pdf
2023-05-29 17:51 - 2023-05-29 17:50 - 000024230 _____ C:\Users\Fabian\Desktop\Ausbildungsoptionen_ProContra.odt
2023-05-26 13:49 - 2023-05-26 13:49 - 001058105 _____ C:\Users\Fabian\Desktop\Zeugnisse_FabianMarcus.pdf
2023-05-24 15:46 - 2023-05-29 17:50 - 000091855 _____ C:\Users\Fabian\Desktop\Anschreiben_Ausbildung_FabianMarcus.odt

==================== Ein Monat (geänderte) ==================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2023-06-21 13:39 - 2021-12-16 17:06 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-06-21 13:39 - 2021-04-17 14:04 - 000000000 ____D C:\Program Files (x86)\Google
2023-06-21 13:37 - 2022-05-12 12:16 - 000000000 ____D C:\Intel
2023-06-21 13:37 - 2022-05-03 14:49 - 000000000 ____D C:\Program Files (x86)\FanControl
2023-06-21 13:37 - 2021-11-15 17:06 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-06-21 13:37 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-06-21 13:37 - 2019-12-07 11:03 - 000262144 _____ C:\WINDOWS\system32\config\BBI
2023-06-21 13:30 - 2021-11-15 17:11 - 001722856 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-06-21 13:30 - 2019-12-07 16:50 - 000743714 _____ C:\WINDOWS\system32\perfh007.dat
2023-06-21 13:30 - 2019-12-07 16:50 - 000150136 _____ C:\WINDOWS\system32\perfc007.dat
2023-06-21 13:30 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2023-06-21 13:23 - 2022-05-23 13:34 - 000001623 _____ C:\WINDOWS\system32\config\VSMIDK
2023-06-21 13:19 - 2019-09-15 01:23 - 000000000 ____D C:\Program Files (x86)\Steam
2023-06-21 13:16 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-06-21 12:32 - 2021-11-15 17:02 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-06-21 12:00 - 2021-09-13 11:52 - 000000000 ____D C:\Program Files\Mozilla Thunderbird
2023-06-21 12:00 - 2019-09-15 00:29 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-06-20 22:17 - 2022-10-11 17:42 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner
2023-06-20 20:02 - 2020-05-04 20:52 - 000000000 ____D C:\Users\Fabian\AppData\LocalLow\Mozilla
2023-06-20 14:19 - 2021-11-15 16:54 - 000000000 ____D C:\Users\Fabian
2023-06-20 12:26 - 2019-09-15 01:50 - 000007603 _____ C:\Users\Fabian\AppData\Local\Resmon.ResmonCfg
2023-06-20 10:00 - 2023-03-30 15:20 - 000000000 ____D C:\Users\Fabian\AppData\Roaming\KeePass
2023-06-19 18:59 - 2022-12-13 00:02 - 000000000 ____D C:\Program Files\EA
2023-06-19 18:54 - 2023-03-15 22:29 - 000000000 ____D C:\ProgramData\EA Desktop
2023-06-19 18:47 - 2022-10-11 17:40 - 000000000 ____D C:\Users\Fabian\AppData\Local\NVIDIA
2023-06-19 18:47 - 2021-01-22 17:50 - 000000000 ____D C:\Users\Fabian\AppData\Local\CrashDumps
2023-06-19 18:34 - 2020-11-06 01:02 - 000000000 ____D C:\Program Files\Common Files\PUBG
2023-06-19 18:07 - 2021-06-29 14:27 - 001447240 _____ (Wellbia.com Co., Ltd.) C:\WINDOWS\xhunter1.sys
2023-06-19 18:02 - 2022-05-16 16:49 - 000000000 ____D C:\Users\Fabian\AppData\Local\Ubisoft Game Launcher
2023-06-19 17:04 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-06-19 16:29 - 2021-05-05 22:37 - 000000000 ____D C:\Users\Fabian\AppData\Roaming\discord
2023-06-19 16:26 - 2023-01-21 00:57 - 000000000 ____D C:\Users\Fabian\AppData\Local\Discord
2023-06-19 16:08 - 2019-09-16 10:46 - 000000000 ____D C:\Users\Fabian\AppData\Roaming\Telegram Desktop
2023-06-16 10:29 - 2023-03-08 20:12 - 000002241 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-06-16 02:57 - 2021-05-19 12:19 - 000000000 ____D C:\Users\Fabian\AppData\Roaming\Notion
2023-06-15 17:23 - 2023-03-08 20:10 - 000004002 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{B988E800-5187-44F4-B9F3-D6EA382AA0CF}
2023-06-15 17:23 - 2023-03-08 20:10 - 000003878 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{266555DC-1875-4EC9-8D18-B2E2C9810694}
2023-06-14 20:48 - 2021-11-16 17:44 - 000000000 ____D C:\Users\Fabian\AppData\Local\UnrealEngine
2023-06-14 20:27 - 2019-03-19 14:07 - 000000000 ____D C:\Users\Fabian\AppData\Local\Packages
2023-06-14 20:26 - 2022-09-22 16:40 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2023-06-14 20:26 - 2022-06-21 16:18 - 001656868 _____ C:\WINDOWS\ntbtlog.txt
2023-06-14 20:25 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-06-14 19:38 - 2019-09-15 13:28 - 000000000 ____D C:\Users\Fabian\AppData\Local\Spotify
2023-06-14 19:36 - 2019-09-15 13:25 - 000000000 ____D C:\Users\Fabian\AppData\Roaming\Spotify
2023-06-13 23:32 - 2023-03-08 20:01 - 000505656 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-06-13 23:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-06-13 23:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-06-13 21:54 - 2022-04-13 14:29 - 000000000 ____D C:\Program Files\dotnet
2023-06-13 21:54 - 2021-05-13 01:31 - 000000000 ____D C:\Users\Default\.dotnet
2023-06-13 21:54 - 2019-09-15 01:25 - 000000000 ____D C:\ProgramData\Package Cache
2023-06-13 21:50 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-06-13 21:49 - 2021-11-15 17:06 - 003015168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-06-13 21:37 - 2019-09-14 23:32 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-06-13 21:35 - 2020-11-19 01:34 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-06-13 21:35 - 2019-09-14 23:32 - 170078616 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-06-12 15:21 - 2021-10-11 20:02 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2023-06-09 17:32 - 2022-05-17 20:41 - 000000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2023-06-09 16:31 - 2020-04-01 16:59 - 000000000 ____D C:\Program Files\Intel
2023-06-09 16:31 - 2019-09-15 23:10 - 000000000 ____D C:\ProgramData\Intel
2023-06-09 15:18 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2023-06-09 10:58 - 2022-02-23 13:54 - 000000000 ____D C:\WINDOWS\system32\SteelSeries
2023-06-06 20:07 - 2023-02-06 01:07 - 000000000 ____D C:\Users\Fabian\AppData\Roaming\vlc
2023-06-06 15:29 - 2021-10-19 01:28 - 000000000 ____D C:\Users\Fabian\AppData\Local\darktable
2023-06-06 15:28 - 2021-08-31 16:14 - 000000000 ____D C:\Users\Fabian\.dbus-keyrings
2023-06-06 15:28 - 2021-04-07 00:31 - 000000000 ____D C:\Users\Fabian\AppData\Local\babl-0.1
2023-06-06 14:56 - 2023-05-16 11:01 - 000034260 _____ C:\Users\Fabian\Desktop\Bewerbungsliste.odt
2023-06-03 20:21 - 2023-03-30 15:19 - 000000000 ____D C:\Program Files\KeePass Password Safe 2
2023-06-02 19:40 - 2023-01-21 00:57 - 000000000 ____D C:\Users\Fabian\AppData\Local\SquirrelTemp
2023-05-24 15:59 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-05-24 15:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-05-24 15:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-05-24 15:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-05-24 15:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-05-24 15:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========

2022-10-21 12:56 - 2022-08-31 19:20 - 000497096 ___SH (AOMEI International Network Limited) C:\Program Files (x86)\ABLaucher.exe
2022-04-28 22:52 - 2022-04-28 22:52 - 000000048 ____H () C:\Program Files (x86)\ufu8snbw0k.dat
2023-06-21 12:48 - 2023-06-21 12:48 - 000001574 _____ () C:\Users\Fabian\AppData\Roaming\PureRef.ini
2020-09-15 23:31 - 2021-02-01 20:29 - 000000081 _____ () C:\Users\Fabian\AppData\Local\.bidstack.fault
2022-04-09 00:04 - 2023-03-20 18:58 - 001065984 _____ () C:\Users\Fabian\AppData\Local\file__0.localstorage
2021-04-15 14:40 - 2021-06-08 14:27 - 000000505 _____ () C:\Users\Fabian\AppData\Local\karboncalligraphyrc
2021-04-15 14:31 - 2023-04-01 13:59 - 000007687 _____ () C:\Users\Fabian\AppData\Local\krita-sysinfo.log
2021-04-15 14:31 - 2023-04-01 13:59 - 000032349 _____ () C:\Users\Fabian\AppData\Local\krita.log
2023-04-01 13:59 - 2023-04-01 13:59 - 000000214 _____ () C:\Users\Fabian\AppData\Local\kritadisplayrc
2021-04-15 14:31 - 2023-04-01 13:59 - 000029190 _____ () C:\Users\Fabian\AppData\Local\kritarc
2020-03-22 21:16 - 2020-03-22 21:16 - 000000410 _____ () C:\Users\Fabian\AppData\Local\oobelibMkey.log
2023-05-07 15:27 - 2023-05-07 15:27 - 000003448 _____ () C:\Users\Fabian\AppData\Local\recently-used.xbel
2019-09-15 01:50 - 2023-06-20 12:26 - 000007603 _____ () C:\Users\Fabian\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

==================== Ende von FRST.txt ========================
         

Alt 21.06.2023, 13:01   #2
FabToGo
 
PUP.Optional.WebProtector im AdwCleaner - Standard

PUP.Optional.WebProtector im AdwCleaner



Und hier die Addition

Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 20-06-2023
durchgeführt von Fabian (21-06-2023 13:43:26)
Gestartet von C:\Users\Fabian\Desktop\FRST06
Microsoft Windows 10 Home Version 22H2 19045.3086 (X64) (2021-11-15 15:06:17)
Start-Modus: Normal
==========================================================


==================== Konten: =============================


(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

Administrator (S-1-5-21-1156397584-2715397874-1246108200-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1156397584-2715397874-1246108200-503 - Limited - Disabled)
Fabian (S-1-5-21-1156397584-2715397874-1246108200-1001 - Administrator - Enabled) => C:\Users\Fabian
Gast (S-1-5-21-1156397584-2715397874-1246108200-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-1156397584-2715397874-1246108200-504 - Limited - Disabled)

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

7-Zip 23.00 (x64) (HKLM\...\7-Zip) (Version: 23.00 - Igor Pavlov)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601032}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Amazon Music (HKU\S-1-5-21-1156397584-2715397874-1246108200-1001\...\Amazon Amazon Music) (Version: 9.4.0.2386 - Amazon.com Services LLC)
AOMEI Backupper (HKLM-x32\...\{A83692F5-3E9B-4E95-9E7E-B5DF5536CE9D}_is1) (Version: 7.2.1 - AOMEI International Network Limited.)
ASRock Timing Configurator v4.0.13 (HKLM\...\ASRock Timing Configurator_is1) (Version: 4.0.13 - ASRock Inc.)
Assassin's Creed Origins (HKLM-x32\...\Uplay Install 3539) (Version:  - Ubisoft)
ASUS GLCKIO2 Driver (HKLM-x32\...\{3507c756-a80f-4b0e-8475-975d8b432176}) (Version: 1.0.20 - ASUSTeK Computer Inc.) Hidden
Audacity 3.2.2 (HKLM\...\Audacity_is1) (Version: 3.2.2 - Audacity Team)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.0 - EA Digital Illusions CE AB)
blender (HKLM\...\{B6999FEA-9449-4D4C-BA10-008A03B36D32}) (Version: 3.5.0 - Blender Foundation)
CPUID CPU-Z 2.06 (HKLM\...\CPUID CPU-Z_is1) (Version: 2.06 - CPUID, Inc.)
CrystalDiskInfo 8.17.13 (HKLM\...\CrystalDiskInfo_is1) (Version: 8.17.13 - Crystal Dew World)
Cyberpunk 2077 (HKLM-x32\...\1423049311_is1) (Version: 1.62_PT_Hotfix - GOG.com)
darktable (HKLM\...\darktable) (Version: 4.2.0 - the darktable project)
DaVinci Resolve (HKLM\...\{70890F13-D570-4CD1-9435-F6C485834A7D}) (Version: 18.1.20006 - Blackmagic Design)
Discord (HKU\S-1-5-21-1156397584-2715397874-1246108200-1001\...\Discord) (Version: 1.0.9008 - Discord Inc.)
DLSS Swapper (HKU\S-1-5-21-1156397584-2715397874-1246108200-1001\...\DLSS Swapper) (Version:  - )
Dynamic Application Loader Host Interface Service (HKLM\...\{F2043484-B5E9-4B26-980D-DE1FF2C0ADB2}) (Version: 1.0.0.0 - Intel Corporation) Hidden
EA app (HKLM\...\{C2622085-ABD2-49E5-8AB9-D3D6A642C091}) (Version: 12.216.0.5473 - Electronic Arts) Hidden
EA app (HKLM-x32\...\{6a2cab7c-78d8-42d9-bb85-6674959d4c77}) (Version: 12.216.0.5473 - Electronic Arts)
Epic Games Launcher (HKLM-x32\...\{5F15891E-8342-47CD-AFFF-89211CFC04D0}) (Version: 1.3.23.0 - Epic Games, Inc.)
Epic Online Services (HKLM-x32\...\{19695986-25CE-41AC-9C6F-54794653EDBA}) (Version: 2.0.36.0 - Epic Games, Inc.)
Equalizer APO (HKLM\...\EqualizerAPO) (Version: 1.2.1 - )
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB)
FIFA 23 (HKLM-x32\...\{B2A14ADC-C2DC-432C-BA7E-FA59282364AB}) (Version: 1.0.81.34113 - Electronic Arts)
Futuremark SystemInfo (HKLM-x32\...\{C5692829-165E-41A3-B2B1-9E249B2557A2}) (Version: 5.63.1186.0 - Futuremark)
Geekbench 6 (HKLM-x32\...\Geekbench 6) (Version:  - Primate Labs Inc.)
Geeks3D FurMark 1.34.0.0 (HKLM-x32\...\{2397CAD4-2263-4CD0-96BE-E43A980B9C9A}_is1) (Version: 1.34.0.0 - Geeks3D)
GIMP 2.10.34 (HKU\S-1-5-21-1156397584-2715397874-1246108200-1001\...\GIMP-2_is1) (Version: 2.10.34 - The GIMP Team)
GOG GALAXY (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version:  - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 114.0.5735.134 - Google LLC)
HandBrake 1.6.1 (HKLM-x32\...\HandBrake) (Version: 1.6.1 - )
Heaven Benchmark version 4.0 (HKLM-x32\...\Unigine Heaven Benchmark (Basic Edition)_is1) (Version: 4.0 - Unigine Corp.)
HWiNFO64 Version 7.46 (HKLM\...\HWiNFO64_is1) (Version: 7.46 - Martin Malik, REALiX s.r.o.)
Intel(R) Icls (HKLM\...\{0D02A7FB-EC9A-4D20-A726-035A0711F3FD}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) LMS (HKLM\...\{362F5255-4CDA-4CA3-9C18-0D368A3EDC63}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) LMS (HKLM\...\{74F339CC-3350-4BD0-A65E-CD38EA5656E6}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{0A30716C-97BB-474F-BDA7-53194D378F39}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 2135.15.0.2431 - Intel Corporation)
Intel(R) Management Engine Driver (HKLM\...\{C9E6B0FE-E3E4-47FA-B4FA-7FFD7EF7498F}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) ME UninstallLegacy (HKLM\...\{ECA145AF-55D0-42BA-870F-4213F0198A46}) (Version: 1.0.1.0 - Intel Corporation) Hidden
Intel(R) Serial IO (HKLM\...\{0B2E3413-D932-411F-A7E2-73E2ED419760}) (Version: 30.100.2132.2 - Intel Corporation) Hidden
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.2132.2 - Intel Corporation)
IrfanView 4.60 (64-bit) (HKLM\...\IrfanView64) (Version: 4.60 - Irfan Skiljan)
KeeForm 4.2.0 Fabian (HKU\S-1-5-21-1156397584-2715397874-1246108200-1001\...\KeeForm3KP2 Fabian_is1) (Version: 4.2.0 - keeform.org)
KeePass Password Safe 2.54 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version: 2.54 - Dominik Reichl)
Krita (x64) 5.1.5 (HKLM\...\Krita_x64) (Version: 5.1.5.100 - Krita Foundation)
LatencyMon 7.20 (HKLM\...\LatencyMon_is1) (Version: 7.20 - Resplendence Software Projects Sp.)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
LibreOffice 7.5.3.2 (HKLM\...\{063CC195-EEF8-4601-89C6-CB18230BD5E6}) (Version: 7.5.3.2 - The Document Foundation)
Max Payne 3 (HKLM-x32\...\{1AA94747-3BF6-4237-9E1A-7B3067738FE1}) (Version: 1,0,0,255 - Rockstar Games)
Microsoft .NET 6.0 Templates 6.0.410 (x64) (HKLM\...\{9CF1F3FA-75D4-46A3-A40F-FF766C7714E6}) (Version: 24.6.34028 - Microsoft Corporation) Hidden
Microsoft .NET AppHost Pack - 5.0.17 (x64) (HKLM\...\{83EE22D9-C7B3-4CBC-9956-9DF0D4D0FF46}) (Version: 40.68.31213 - Microsoft Corporation) Hidden
Microsoft .NET AppHost Pack - 5.0.17 (x64_arm) (HKLM\...\{38CA215A-103C-4C37-A86E-57E49C2220AD}) (Version: 40.68.31213 - Microsoft Corporation) Hidden
Microsoft .NET AppHost Pack - 5.0.17 (x64_arm64) (HKLM\...\{E61152B0-06C3-4EA3-AE31-13BCB874406A}) (Version: 40.68.31213 - Microsoft Corporation) Hidden
Microsoft .NET AppHost Pack - 5.0.17 (x64_x86) (HKLM\...\{A95FEF96-3FF2-4387-9301-792B6721F648}) (Version: 40.68.31213 - Microsoft Corporation) Hidden
Microsoft .NET AppHost Pack - 6.0.18 (x64) (HKLM\...\{E6EEBD7C-F575-4B6A-BE1B-19A73223CF53}) (Version: 48.75.61559 - Microsoft Corporation) Hidden
Microsoft .NET AppHost Pack - 6.0.18 (x64_arm) (HKLM\...\{4C616387-D549-48D4-9779-9D5B49CF043C}) (Version: 48.75.61559 - Microsoft Corporation) Hidden
Microsoft .NET AppHost Pack - 6.0.18 (x64_arm64) (HKLM\...\{E281BA87-30D0-44CD-BBA9-AB49EB23F204}) (Version: 48.75.61559 - Microsoft Corporation) Hidden
Microsoft .NET AppHost Pack - 6.0.18 (x64_x86) (HKLM\...\{2D9A38E6-52EF-45B8-A08A-8AF671E051F3}) (Version: 48.75.61559 - Microsoft Corporation) Hidden
Microsoft .NET Core 5.0 Templates 5.0.214 (x64) (HKLM\...\{AAF41096-50BD-47DE-877F-F4CD1B04B155}) (Version: 20.4.59785 - Microsoft Corporation) Hidden
Microsoft .NET Core 5.0 Templates 5.0.408 (x64) (HKLM\...\{AA05EFF3-3AB6-47B9-941B-6E5E72C74A6D}) (Version: 20.4.59784 - Microsoft Corporation) Hidden
Microsoft .NET Core Host - 3.1.32 (x64) (HKLM\...\{8A8E3A04-83BC-4CDE-9259-893B666C1AB1}) (Version: 24.192.31915 - Microsoft Corporation) Hidden
Microsoft .NET Core Host FX Resolver - 3.1.32 (x64) (HKLM\...\{ABC6B3C2-1A8D-4C5E-AC16-C2AE44F02743}) (Version: 24.192.31915 - Microsoft Corporation) Hidden
Microsoft .NET Core Runtime - 3.1.32 (x64) (HKLM\...\{A741B803-3F0E-4684-81EF-FC128D15A92C}) (Version: 24.192.31915 - Microsoft Corporation) Hidden
Microsoft .NET Core Runtime - 3.1.32 (x64) (HKLM-x32\...\{784973c8-d618-4ac8-97ed-1fd52c5bdf2f}) (Version: 3.1.32.31915 - Microsoft Corporation)
Microsoft .NET Host - 5.0.17 (x64) (HKLM\...\{E663ED1E-899C-40E8-91D0-8D37B95E3C69}) (Version: 40.68.31213 - Microsoft Corporation) Hidden
Microsoft .NET Host - 6.0.18 (x64) (HKLM\...\{1A7F6299-C501-49CA-B91D-5E83ED7FB8CA}) (Version: 48.75.61559 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 5.0.17 (x64) (HKLM\...\{8BA25391-0BE6-443A-8EBF-86A29BAFC479}) (Version: 40.68.31213 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.18 (x64) (HKLM\...\{CB1B935F-234E-452D-91DA-4CBA519E9581}) (Version: 48.75.61559 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 5.0.17 (x64) (HKLM\...\{5A66E598-37BD-4C8A-A7CB-A71C32ABCD78}) (Version: 40.68.31213 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.18 (x64) (HKLM\...\{8BBCB5E9-5775-4465-AABC-3E276EBBD496}) (Version: 48.75.61559 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.18 (x64) (HKLM-x32\...\{01be8d48-9ecc-40e0-bc71-4d7aa47d5472}) (Version: 6.0.18.32519 - Microsoft Corporation)
Microsoft .NET SDK 5.0.214 (x64) (HKLM-x32\...\{05193f35-5448-4366-8847-4d7dd7f0dee1}) (Version: 5.2.1422.21929 - Microsoft Corporation)
Microsoft .NET SDK 5.0.408 (x64) (HKLM-x32\...\{59d9f5d4-8e28-4e05-b207-9deff597277c}) (Version: 5.4.822.21928 - Microsoft Corporation)
Microsoft .NET SDK 6.0.410 (x64) (HKLM-x32\...\{bb09b273-2207-45dc-a5af-d8db0dbfb9af}) (Version: 6.4.1023.27244 - Microsoft Corporation)
Microsoft .NET Standard Targeting Pack - 2.1.0 (x64) (HKLM\...\{A7036CFB-B403-4598-85FF-D397ABB88173}) (Version: 24.0.28113 - Microsoft Corporation) Hidden
Microsoft .NET Targeting Pack - 5.0.0 (x64) (HKLM\...\{F9CD5A8F-B00B-4770-9E4A-A3C818BE840F}) (Version: 40.0.29513 - Microsoft Corporation) Hidden
Microsoft .NET Targeting Pack - 6.0.18 (x64) (HKLM\...\{F999B212-4EAF-425B-A88B-F67F9CCC3994}) (Version: 48.75.61559 - Microsoft Corporation) Hidden
Microsoft .NET Toolset 5.0.214 (x64) (HKLM\...\{3FD3F550-7C37-43BB-8576-4790988B5474}) (Version: 20.7.59785 - Microsoft Corporation) Hidden
Microsoft .NET Toolset 5.0.408 (x64) (HKLM\...\{20631FA6-D978-41DE-98D0-AFCC1ECA4D4D}) (Version: 20.6.59784 - Microsoft Corporation) Hidden
Microsoft .NET Toolset 6.0.410 (x64) (HKLM\...\{429D0DD6-70B8-441E-BE83-AD699FE9BE3E}) (Version: 24.6.34028 - Microsoft Corporation) Hidden
Microsoft ASP.NET Core 5.0.0 Targeting Pack (x64) (HKLM\...\{7E0C04EC-9D6F-36CD-A821-DC8493EE407F}) (Version: 5.0.0.20526 - Microsoft Corporation) Hidden
Microsoft ASP.NET Core 5.0.17 Shared Framework (x64) (HKLM\...\{C1FF10EF-6BCB-3B08-AE1A-0D237C9F9F30}) (Version: 5.0.17.22215 - Microsoft Corporation) Hidden
Microsoft ASP.NET Core 6.0.18 Shared Framework (x64) (HKLM\...\{5FC405D7-181B-37E7-B9BF-431A0D89592E}) (Version: 6.0.18.23269 - Microsoft Corporation) Hidden
Microsoft ASP.NET Core 6.0.18 Targeting Pack (x64) (HKLM\...\{ECF19E74-74A7-307F-8A58-A767C849E0B0}) (Version: 6.0.18.23269 - Microsoft Corporation) Hidden
Microsoft Teams (HKU\S-1-5-21-1156397584-2715397874-1246108200-1001\...\Teams) (Version: 1.6.00.11166 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{BB052C53-34CB-42DE-AF41-66FDFCEEC868}) (Version: 3.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.36.32532 (HKLM-x32\...\{8bdfe669-9705-4184-9368-db9ce581e0e7}) (Version: 14.36.32532.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.36.32532 (HKLM-x32\...\{410c0ee1-00bb-41b6-9772-e12c2828b02f}) (Version: 14.36.32532.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.36.32532 (HKLM\...\{0025DD72-A959-45B5-A0A3-7EFEB15A8050}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.36.32532 (HKLM\...\{D5D19E2F-7189-42FE-8103-92CD1FA457C2}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.36.32532 (HKLM-x32\...\{C2C59CAB-8766-4ABD-A8EF-1151A36C41E5}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.36.32532 (HKLM-x32\...\{73F77E4E-5A17-46E5-A5FC-8A061047725F}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 3.1.32 (x64) (HKLM\...\{5BEE5F3E-4D78-4DE8-A8F3-36D3E9D8868C}) (Version: 24.192.31915 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 3.1.32 (x64) (HKLM-x32\...\{0eddeab6-01c1-4cf7-83ba-164ea8974c90}) (Version: 3.1.32.31915 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 5.0.17 (x64) (HKLM\...\{3C31CBA1-A0D9-4B95-A807-AD2313D12F47}) (Version: 40.68.31219 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.18 (x64) (HKLM\...\{81D7013F-AB4C-4DEF-8549-2AC6A3D612BB}) (Version: 48.75.61602 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Targeting Pack - 5.0.0 (x64) (HKLM\...\{B7846BB6-4EDE-409B-9147-631286EF7FDD}) (Version: 40.0.29420 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Targeting Pack - 6.0.18 (x64) (HKLM\...\{6EE60642-F368-486B-8DC5-6F0C48F97955}) (Version: 48.75.61602 - Microsoft Corporation) Hidden
Microsoft.NET.Sdk.Android.Manifest-6.0.300 (HKLM\...\{F4E591C2-810D-4D36-B4F9-DC55103019D1}) (Version: 128.75.16384 - Microsoft Corporation) Hidden
Microsoft.NET.Sdk.iOS.Manifest-6.0.300 (HKLM\...\{BBA9C60D-75E7-44EE-922D-069AA85C8EC1}) (Version: 125.191.42208 - Microsoft Corporation) Hidden
Microsoft.NET.Sdk.MacCatalyst.Manifest-6.0.300 (HKLM\...\{FEB76EC8-02F4-46E6-8031-BE403766D13A}) (Version: 125.191.42208 - Microsoft Corporation) Hidden
Microsoft.NET.Sdk.macOS.Manifest-6.0.300 (HKLM\...\{F590F859-2F6A-4559-9D09-A8FC442AF16B}) (Version: 100.255.42208 - Microsoft Corporation) Hidden
Microsoft.NET.Sdk.Maui.Manifest-6.0.300 (HKLM\...\{C2863251-07E7-44A0-B2F8-4C4E2AF08937}) (Version: 24.78.0 - Microsoft Corporation) Hidden
Microsoft.NET.Sdk.tvOS.Manifest-6.0.300 (HKLM\...\{69B1631F-5F98-4C6C-B757-46B0ECC8EDBB}) (Version: 125.191.42208 - Microsoft Corporation) Hidden
Microsoft.NET.Workload.Emscripten.Manifest (HKLM\...\{7CBF3451-2A94-4DFD-8355-6B97C5EABB26}) (Version: 48.27.39026 - Microsoft Corporation) Hidden
Microsoft.NET.Workload.Mono.Toolchain.Manifest (HKLM\...\{DBB48387-294D-4179-81CB-B06A97F8CD8E}) (Version: 48.3.40665 - Microsoft Corporation) Hidden
Mozilla Firefox (x64 de) (HKLM\...\Mozilla Firefox 112.0.1 (x64 de)) (Version: 112.0.1 - Mozilla)
Mozilla Firefox (x64 de) (HKU\S-1-5-21-1156397584-2715397874-1246108200-1001\...\Mozilla Firefox 114.0.2 (x64 de)) (Version: 114.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 89.0.2 - Mozilla)
Mozilla Thunderbird (x86 de) (HKLM-x32\...\Mozilla Thunderbird 102.12.0 (x86 de)) (Version: 102.12.0 - Mozilla)
MSI Afterburner 4.6.5 (HKLM-x32\...\Afterburner) (Version: 4.6.5 - MSI Co., LTD)
MSI Kombustor 4.1.26.0 (64-bit) (HKLM\...\{F3D3CC6B-9AD7-4F43-8C69-40D5902FDC5C}}_is1) (Version:  - MSI / Geeks3D)
NewGAN-Manager (HKLM-x32\...\{AF0E59A5-F2F1-4FBB-8A12-CA33AAEA5D9D}) (Version: 1.3.1 - Maradonna (gestalt))
Notion 2.0.41 (HKU\S-1-5-21-1156397584-2715397874-1246108200-1001\...\fcdf0d7f-424b-5f10-a1c7-a8f643f21adf) (Version: 2.0.41 - Notion Labs, Inc)
NVIDIA Grafiktreiber 536.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 536.23 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.40.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.40.14 - NVIDIA Corporation)
OpenIV (HKU\S-1-5-21-1156397584-2715397874-1246108200-1001\...\OpenIV) (Version: 4.1.1502 - .black/OpenIV Team)
Paradox Launcher v2 (HKLM\...\{8C5CF4CE-D589-40B4-A77F-01FD64602C50}) (Version: 2.4.0 - Paradox Interactive)
PDF-XChange Editor (HKLM\...\{1DE89B26-390D-4262-B7BD-788427632263}) (Version: 9.5.366.0 - Tracker Software Products (Canada) Ltd.) Hidden
PDF-XChange Editor (HKLM-x32\...\{e563cf57-fc77-4977-83d0-56532d421d33}) (Version: 9.5.366.0 - Tracker Software Products (Canada) Ltd.)
Peace (HKLM\...\Peace) (Version: 1.6.4.1 - P.E. Verbeek)
Proton VPN (HKLM\...\Proton VPN_is1) (Version: 3.0.5 - Proton AG)
PureRef (HKLM-x32\...\PureRef) (Version: 1.11.1 - Idyllic Pixel)
qBittorrent (HKLM-x32\...\qBittorrent) (Version: 4.5.2 - The qBittorrent project)
Revo Uninstaller 2.4.5 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.4.5 - VS Revo Group, Ltd.)
RivaTuner Statistics Server 7.3.4 (HKLM-x32\...\RTSS) (Version: 7.3.4 - Unwinder)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.67.1178 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.1.6.5 - Rockstar Games)
Signal 6.1.0 (HKU\S-1-5-21-1156397584-2715397874-1246108200-1001\...\7d96caee-06e6-597c-9f2f-c7bb2e0948b4) (Version: 6.1.0 - Signal Messenger, LLC)
Spotify (HKU\S-1-5-21-1156397584-2715397874-1246108200-1001\...\Spotify) (Version: 1.2.12.902.g1924b088 - Spotify AB)
TeamViewer (HKLM\...\TeamViewer) (Version: 15.41.7 - TeamViewer)
Telegram Desktop (HKU\S-1-5-21-1156397584-2715397874-1246108200-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 4.8.3 - Telegram FZ-LLC)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 137.0.10799 - Ubisoft)
ViGEm Bus Driver (HKLM\...\{9C581C76-2D68-40F8-AA6F-94D3C5215C05}) (Version: 1.21.442 - Nefarius Software Solutions e.U.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.18 - VideoLAN)
Wacom Tablett (HKLM\...\Wacom Tablet Driver) (Version: 6.4.0-10 - Wacom Technology Corp.)
Zoom (HKU\S-1-5-21-1156397584-2715397874-1246108200-1001\...\ZoomUMX) (Version: 5.14.8 (16213) - Zoom Video Communications, Inc.)

Packages:
=========
Deezer Music -> C:\Program Files\WindowsApps\Deezer.62021768415AF_5.30.540.0_x86__q7m17pa7q8kj0 [2023-03-21] (Deezer SA)
EarTrumpet -> C:\Program Files\WindowsApps\40459File-New-Project.EarTrumpet_2.2.2.0_x86__1sdd7yawvg6ne [2023-01-30] (File-New-Project) [Startup Task]
Intel® Grafik-Kontrollraum -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.4979.0_x64__8j3eq9eme6ctt [2023-05-30] (INTEL CORP) [Startup Task]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2022-12-07] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2022-12-07] (Microsoft Corporation) [MS Ad]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.964.0_x64__56jybvy8sckqj [2023-06-14] (NVIDIA Corp.)
Slack -> C:\Program Files\WindowsApps\91750D7E.Slack_4.32.122.0_x64__8she8kybcnzg4 [2023-05-08] (Slack Technologies Inc.) [Startup Task]
WinDbg Preview -> C:\Program Files\WindowsApps\Microsoft.WinDbg_1.2210.3001.0_x64__8wekyb3d8bbwe [2023-01-05] (Microsoft Corporation)
Windows Package Manager Source (winget) -> C:\Program Files\WindowsApps\Microsoft.Winget.Source_2023.120.2252.541_neutral__8wekyb3d8bbwe [2023-01-21] (Microsoft Corporation)
WindowsAppRuntime.1.1 -> C:\Program Files\WindowsApps\Microsoft.WindowsAppRuntime.1.1_1005.616.1651.0_x64__8wekyb3d8bbwe [2023-01-16] (Microsoft Corporation)
WindowsAppRuntime.1.1 -> C:\Program Files\WindowsApps\Microsoft.WindowsAppRuntime.1.1_1005.616.1651.0_x86__8wekyb3d8bbwe [2023-01-16] (Microsoft Corporation)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-1156397584-2715397874-1246108200-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\Fabian\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.23089.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1156397584-2715397874-1246108200-1001_Classes\CLSID\{1a46400f-4c81-802a-c2c1-1e9a687a9340}\localserver32 -> C:\Program Files\HandBrake\HandBrake.exe (HandBrake Team) [Datei ist nicht signiert]
CustomCLSID: HKU\S-1-5-21-1156397584-2715397874-1246108200-1001_Classes\CLSID\{bdf037d5-d1f4-16de-7c00-9c2204d45001}\localserver32 -> C:\Program Files\Proton\VPN\v3.0.5\ProtonVPN.exe (Proton Technologies AG -> )
CustomCLSID: HKU\S-1-5-21-1156397584-2715397874-1246108200-1001_Classes\CLSID\{D45F043D-F17F-4e8a-8435-70971D9FA46D}\InprocServer32 -> C:\Program Files\Blender Foundation\Blender 3.5\BlendThumb.dll (Stichting Blender Foundation -> )
CustomCLSID: HKU\S-1-5-21-1156397584-2715397874-1246108200-1001_Classes\CLSID\{d936918b-9c4b-555e-074a-c79314be04e1}\localserver32 -> "C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.exe" -ToastActivated => Keine Datei
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  -> Keine Datei
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} =>  -> Keine Datei
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} =>  -> Keine Datei
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  -> Keine Datei
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  -> Keine Datei
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} =>  -> Keine Datei
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} =>  -> Keine Datei
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  -> Keine Datei
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} =>  -> Keine Datei
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} =>  -> Keine Datei
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  -> Keine Datei
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  -> Keine Datei
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} =>  -> Keine Datei
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} =>  -> Keine Datei
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2023-05-07] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers1: [PDFXChange Editor Context menu] -> {2ACD35AB-F74A-4C20-AA9B-2DE80081626D} => C:\Program Files\Tracker Software\Shell Extensions\XCShellMenu.x64.dll [2022-12-12] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2023-05-07] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_01da06226db6f074\nvshext.dll [2023-06-14] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2023-05-07] (Igor Pavlov) [Datei ist nicht signiert]
FolderExtensions: [] -> {27DD0F8B-3E0E-4ADC-A78A-66047E71ADC5} => C:\Custom Themes and Icons\OldNewExplorer\OldNewExplorer64.dll [2019-09-24] (www.startisback.com) [Datei ist nicht signiert]

==================== Codecs (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Drivers32: [VIDC.RTV1] => c:\windows\system32\rtvcvfw64.dll [246272 2012-09-28] () [Datei ist nicht signiert]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [Datei ist nicht signiert]
HKLM\...\Drivers32-x32: [vidc.VP60] => C:\WINDOWS\system32\vp6vfw.dll
HKLM\...\Drivers32-x32: [vidc.VP61] => C:\WINDOWS\system32\vp6vfw.dll

==================== Verknüpfungen & WMI ========================

==================== Geladene Module (Nicht auf der Ausnahmeliste) =============

2023-04-03 00:48 - 2023-04-03 00:48 - 000232960 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\MSI Afterburner\RTCore.dll
2023-04-03 00:48 - 2023-04-03 00:48 - 000059392 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\MSI Afterburner\RTFC.dll
2023-04-03 00:49 - 2023-04-03 00:49 - 000699904 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\MSI Afterburner\RTHAL.dll
2023-04-03 00:48 - 2023-04-03 00:48 - 000074240 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\MSI Afterburner\RTMUI.dll
2023-04-03 00:48 - 2023-04-03 00:48 - 000371712 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\MSI Afterburner\RTUI.dll
2023-03-14 17:57 - 2023-03-14 17:57 - 000058368 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\RivaTuner Statistics Server\RTFC.dll
2023-03-14 17:57 - 2023-03-14 17:57 - 000074240 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\RivaTuner Statistics Server\RTMUI.dll
2023-03-14 17:57 - 2023-03-14 17:57 - 000368640 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\RivaTuner Statistics Server\RTUI.dll
2019-06-10 13:21 - 2019-06-10 13:21 - 000668160 _____ () [Datei ist nicht signiert] C:\Program Files\EqualizerAPO\EqualizerAPO.dll
2017-07-08 12:52 - 2017-07-08 12:52 - 002983917 _____ () [Datei ist nicht signiert] C:\Program Files\EqualizerAPO\libfftw3f-3.dll
2015-11-22 22:05 - 2015-11-22 22:05 - 001530880 _____ () [Datei ist nicht signiert] C:\Program Files\EqualizerAPO\libsndfile-1.dll
2023-05-08 11:38 - 2023-05-07 18:00 - 000100352 _____ (Igor Pavlov) [Datei ist nicht signiert] C:\Program Files\7-Zip\7-zip.dll
2022-12-12 16:40 - 2019-09-24 00:51 - 000261632 _____ (www.startisback.com) [Datei ist nicht signiert] C:\Custom Themes and Icons\OldNewExplorer\OldNewExplorer64.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)

AlternateDataStreams: C:\ProgramData\TEMP:4FC01C57 [128]
AlternateDataStreams: C:\Users\Fabian\Anwendungsdaten:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\Fabian\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [480]

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================

==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================

==================== Internet Explorer (Nicht auf der Ausnahmeliste) ==========

HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = 
BHO: IEToEdge BHO -> {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} -> C:\Program Files (x86)\Microsoft\Edge\Application\113.0.1774.35\BHO\ie_to_edge_bho_64.dll => Keine Datei
BHO: Kein Name -> {27DD0F8B-3E0E-4ADC-A78A-66047E71ADC5} -> C:\Custom Themes and Icons\OldNewExplorer\OldNewExplorer64.dll [2019-09-24] (www.startisback.com) [Datei ist nicht signiert]
BHO-x32: IEToEdge BHO -> {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} -> C:\Program Files (x86)\Microsoft\Edge\Application\113.0.1774.35\BHO\ie_to_edge_bho.dll => Keine Datei
BHO-x32: Kein Name -> {27DD0F8B-3E0E-4ADC-A78A-66047E71ADC5} -> C:\Custom Themes and Icons\OldNewExplorer\OldNewExplorer32.dll => Keine Datei

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)

IE trusted site: HKU\S-1-5-21-1156397584-2715397874-1246108200-1001\...\download.microsoft.com -> hxxp://download.microsoft.com
IE trusted site: HKU\S-1-5-21-1156397584-2715397874-1246108200-1001\...\download.windowsupdate.com -> hxxp://download.windowsupdate.com
IE trusted site: HKU\S-1-5-21-1156397584-2715397874-1246108200-1001\...\download.windowsupdate.com -> hxxps://download.windowsupdate.com
IE trusted site: HKU\S-1-5-21-1156397584-2715397874-1246108200-1001\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-1156397584-2715397874-1246108200-1001\...\microsoft.com -> hxxp://ntservicepack.microsoft.com
IE trusted site: HKU\S-1-5-21-1156397584-2715397874-1246108200-1001\...\ntservicepack.microsoft.com -> hxxp://ntservicepack.microsoft.com
IE trusted site: HKU\S-1-5-21-1156397584-2715397874-1246108200-1001\...\update.microsoft.com -> hxxp://update.microsoft.com
IE trusted site: HKU\S-1-5-21-1156397584-2715397874-1246108200-1001\...\update.microsoft.com -> hxxps://update.microsoft.com
IE trusted site: HKU\S-1-5-21-1156397584-2715397874-1246108200-1001\...\windows.com -> hxxp://wustat.windows.com
IE trusted site: HKU\S-1-5-21-1156397584-2715397874-1246108200-1001\...\windowsupdate.com -> hxxp://download.windowsupdate.com
IE trusted site: HKU\S-1-5-21-1156397584-2715397874-1246108200-1001\...\windowsupdate.com -> hxxps://download.windowsupdate.com
IE trusted site: HKU\S-1-5-21-1156397584-2715397874-1246108200-1001\...\windowsupdate.microsoft.com -> hxxp://windowsupdate.microsoft.com
IE trusted site: HKU\S-1-5-21-1156397584-2715397874-1246108200-1001\...\ws.microsoft.com -> hxxp://ws.microsoft.com
IE trusted site: HKU\S-1-5-21-1156397584-2715397874-1246108200-1001\...\ws.microsoft.com -> hxxps://ws.microsoft.com
IE trusted site: HKU\S-1-5-21-1156397584-2715397874-1246108200-1001\...\wustat.windows.com -> hxxp://wustat.windows.com

==================== Hosts Inhalt: =========================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2020-04-24 12:30 - 2023-01-23 14:07 - 000004015 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 a-0001.a-msedge.net
127.0.0.1 a.ads1.msn.com
127.0.0.1 a.ads2.msads.net
127.0.0.1 a.ads2.msn.com
127.0.0.1 a.rad.msn.com
127.0.0.1 ac3.msn.com
127.0.0.1 ad.doubleclick.net
127.0.0.1 adnexus.net
127.0.0.1 adnxs.com
127.0.0.1 ads1.msads.net
127.0.0.1 ads1.msn.com
127.0.0.1 ads.msn.com
127.0.0.1 aidps.atdmt.com
127.0.0.1 aka-cdn-ns.adtech.de
127.0.0.1 apps.skype.com
127.0.0.1 az361816.vo.msecnd.net
127.0.0.1 az512334.vo.msecnd.net
127.0.0.1 b.ads1.msn.com
127.0.0.1 b.ads2.msads.net
127.0.0.1 b.rad.msn.com
127.0.0.1 bs.serving-sys.com
127.0.0.1 c.atdmt.com
127.0.0.1 c.msn.com
127.0.0.1 cdn.atdmt.com
127.0.0.1 cds26.ams9.msecn.net
127.0.0.1 choice.microsoft.com
127.0.0.1 choice.microsoft.com.nsatc.net
127.0.0.1 compatexchange.cloudapp.net
127.0.0.1 corp.sts.microsoft.com
127.0.0.1 corpext.msitadfs.glbdns2.microsoft.com

2023-02-06 16:49 - 2023-05-08 11:53 - 000000436 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
172.18.112.1 i7-11700.mshome.net # 2028 5 6 6 9 53 25 980

==================== Andere Bereiche ===========================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-1156397584-2715397874-1246108200-1001\Control Panel\Desktop\\Wallpaper -> f:\render\glühbirne.jpg
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
 ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AGMService => 2
MSCONFIG\Services: AGSService => 2
MSCONFIG\Services: Backupper Service => 2
MSCONFIG\Services: BEService => 3
MSCONFIG\Services: EABackgroundService => 3
MSCONFIG\Services: EasyAntiCheat => 3
MSCONFIG\Services: EasyAntiCheat_EOS => 3
MSCONFIG\Services: EpicOnlineServices => 3
MSCONFIG\Services: Futuremark SystemInfo Service => 3
MSCONFIG\Services: FvSvc => 3
MSCONFIG\Services: GalaxyClientService => 3
MSCONFIG\Services: GalaxyCommunication => 3
MSCONFIG\Services: GoogleChromeElevationService => 3
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: HuaweiHiSuiteService64.exe => 2
MSCONFIG\Services: Intel(R) Capability Licensing Service TCP IP Interface => 3
MSCONFIG\Services: Intel(R) TPM Provisioning Service => 2
MSCONFIG\Services: MozillaMaintenance => 2
MSCONFIG\Services: Origin Client Service => 3
MSCONFIG\Services: Origin Web Helper Service => 2
MSCONFIG\Services: ProtonVPN Service => 3
MSCONFIG\Services: Rockstar Service => 3
MSCONFIG\Services: Steam Client Service => 3
MSCONFIG\Services: ucldr_battlegrounds_gl => 3
MSCONFIG\Services: WTabletServicePro => 2
MSCONFIG\Services: XTU3SERVICE => 2
MSCONFIG\Services: zksvc => 3
HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run: => "RtkAudUService"
HKLM\...\StartupApproved\Run: => "KeePass 2 PreLoad"
HKLM\...\StartupApproved\Run32: => "PDFPrint"
HKLM\...\StartupApproved\Run32: => "Intel Driver & Support Assistant"
HKU\S-1-5-21-1156397584-2715397874-1246108200-1001\...\StartupApproved\StartupFolder: => "Skype.lnk"
HKU\S-1-5-21-1156397584-2715397874-1246108200-1001\...\StartupApproved\StartupFolder: => "Discord.lnk"
HKU\S-1-5-21-1156397584-2715397874-1246108200-1001\...\StartupApproved\StartupFolder: => "Notion.lnk"
HKU\S-1-5-21-1156397584-2715397874-1246108200-1001\...\StartupApproved\StartupFolder: => "podman-desktop.vbs"
HKU\S-1-5-21-1156397584-2715397874-1246108200-1001\...\StartupApproved\Run: => "GUDelayStartup"
HKU\S-1-5-21-1156397584-2715397874-1246108200-1001\...\StartupApproved\Run: => "vidnotifier.exe"
HKU\S-1-5-21-1156397584-2715397874-1246108200-1001\...\StartupApproved\Run: => "Launcher"
HKU\S-1-5-21-1156397584-2715397874-1246108200-1001\...\StartupApproved\Run: => "SpeedFan"
HKU\S-1-5-21-1156397584-2715397874-1246108200-1001\...\StartupApproved\Run: => "GogGalaxy"
HKU\S-1-5-21-1156397584-2715397874-1246108200-1001\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-1156397584-2715397874-1246108200-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-1156397584-2715397874-1246108200-1001\...\StartupApproved\Run: => "Gaijin.Net Updater"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [{F1EB1AF7-1971-46E6-80F6-B804E139CC93}] => (Allow) D:\Steam\steamapps\common\ImperatorRome\launcher\dowser.exe => Keine Datei
FirewallRules: [{4D55FB07-E5D9-4344-9555-2078A898FDFB}] => (Allow) D:\Steam\steamapps\common\ImperatorRome\launcher\dowser.exe => Keine Datei
FirewallRules: [{E6AD01F9-F278-4FBF-B99B-DD3A3CACDEB8}] => (Allow) E:\Origin\Battlefield V\bfv.exe => Keine Datei
FirewallRules: [{3D508036-12D9-4486-B9E7-1057D84A2D57}] => (Allow) E:\Origin\Battlefield V\bfv.exe => Keine Datei
FirewallRules: [{BD1F7254-DCB3-4523-8B2D-3A5D1A5127E8}] => (Allow) E:\Origin\Battlefield V\bfvTrial.exe => Keine Datei
FirewallRules: [{8EFD991A-548E-4947-B3B6-BA1C469EA67B}] => (Allow) E:\Origin\Battlefield V\bfvTrial.exe => Keine Datei
FirewallRules: [{481A394E-5C60-4664-99AD-C45D948F4584}] => (Allow) C:\Program Files (x86)\Origin Games\Dragon Age Inquisition\DragonAgeInquisition.exe => Keine Datei
FirewallRules: [{6C457C46-5DA9-466E-B544-AC3C50859A12}] => (Allow) C:\Program Files (x86)\Origin Games\Dragon Age Inquisition\DragonAgeInquisition.exe => Keine Datei
FirewallRules: [{C3A094BD-4F8E-4294-A961-9A7694A509DC}] => (Allow) D:\Steam\steamapps\common\Divinity Original Sin Enhanced Edition\Shipping\EoCApp.exe => Keine Datei
FirewallRules: [{0BBDE008-2112-4071-AE5A-F536F6BC12E0}] => (Allow) D:\Steam\steamapps\common\Divinity Original Sin Enhanced Edition\Shipping\EoCApp.exe => Keine Datei
FirewallRules: [{8D3B38E4-332D-4CD4-A18E-8BC99BFEAD46}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe => Keine Datei
FirewallRules: [{10787441-33D4-4347-A5C9-BCE8F0C63174}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe => Keine Datei
FirewallRules: [UDP Query User{D23E734C-420F-4917-9AD3-0DC8334DAEC0}D:\steam\steamapps\common\post scriptum\postscriptum\binaries\win64\postscriptum.exe] => (Allow) D:\steam\steamapps\common\post scriptum\postscriptum\binaries\win64\postscriptum.exe => Keine Datei
FirewallRules: [TCP Query User{6F6B02E2-0F37-4A0F-B91E-06AA0BF60165}D:\steam\steamapps\common\post scriptum\postscriptum\binaries\win64\postscriptum.exe] => (Allow) D:\steam\steamapps\common\post scriptum\postscriptum\binaries\win64\postscriptum.exe => Keine Datei
FirewallRules: [{E63A41A7-86A3-4E5C-8AAD-37CA6BB41F26}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{3C3EC360-3097-45A1-B492-24F759ACEF78}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{2D799496-C79A-44DF-8EE6-084B6F40FE85}C:\program files (x86)\blackmagic design\davinci control panels\fairlight studio utility\fairlight studio utility.exe] => (Allow) C:\program files (x86)\blackmagic design\davinci control panels\fairlight studio utility\fairlight studio utility.exe => Keine Datei
FirewallRules: [TCP Query User{EB7C2D26-F4F8-4619-8824-F4B37EA70EFB}C:\program files (x86)\blackmagic design\davinci control panels\fairlight studio utility\fairlight studio utility.exe] => (Allow) C:\program files (x86)\blackmagic design\davinci control panels\fairlight studio utility\fairlight studio utility.exe => Keine Datei
FirewallRules: [UDP Query User{DC66CABC-C933-41E3-9FC1-F59AB947E8BB}C:\program files\octaneserverprime\octaneserver.exe] => (Allow) C:\program files\octaneserverprime\octaneserver.exe => Keine Datei
FirewallRules: [TCP Query User{84E9DC93-AEA3-41F4-B648-F40CE2682917}C:\program files\octaneserverprime\octaneserver.exe] => (Allow) C:\program files\octaneserverprime\octaneserver.exe => Keine Datei
FirewallRules: [{E694FD13-EAE4-48D1-8E81-D1AF4E8CA7B6}] => (Allow) D:\Steam\steamapps\common\sandstorm\Insurgency.exe => Keine Datei
FirewallRules: [{B8CA25AF-7071-4815-ACDA-5FEE7AEC810D}] => (Allow) D:\Steam\steamapps\common\sandstorm\Insurgency.exe => Keine Datei
FirewallRules: [{2257FBEB-F194-4259-B3F8-D011B16F901D}] => (Allow) C:\Program Files (x86)\AOMEI\AOMEI Backupper\6.5.1\ABService.exe => Keine Datei
FirewallRules: [{EA402E1A-6877-4ED3-84D7-64A60F579AFD}] => (Allow) C:\Program Files (x86)\AOMEI\AOMEI Backupper\6.5.1\ABService.exe => Keine Datei
FirewallRules: [{6DD9684C-499F-46B5-8174-9D65052CCACB}] => (Allow) C:\Program Files (x86)\AOMEI\AOMEI Backupper\6.5.1\ABService.exe => Keine Datei
FirewallRules: [{6D38D99D-4AEC-4B24-9B9E-8954DB4B9987}] => (Allow) C:\Program Files (x86)\AOMEI\AOMEI Backupper\6.5.1\ABService.exe => Keine Datei
FirewallRules: [{C1A1D908-26B6-4D35-8979-4035B24AE55C}] => (Allow) D:\Steam\steamapps\common\RESIDENT EVIL 2  BIOHAZARD RE2\re2.exe => Keine Datei
FirewallRules: [{40163BBF-FBDE-40F7-836C-00C0A22E8BF0}] => (Allow) D:\Steam\steamapps\common\RESIDENT EVIL 2  BIOHAZARD RE2\re2.exe => Keine Datei
FirewallRules: [{ED5FB2AF-2220-4AAE-B05C-2ED15A46A8A7}] => (Allow) D:\Epic\AssassinsCreedOdyssey\ACOdyssey_plus.exe => Keine Datei
FirewallRules: [{A026620D-D15F-4A8F-B10F-4A3954A9F746}] => (Allow) D:\Epic\AssassinsCreedOdyssey\ACOdyssey_plus.exe => Keine Datei
FirewallRules: [UDP Query User{CEAC3F15-0018-40A2-A02B-855297259345}D:\origin\battlefield 4\bf4.exe] => (Allow) D:\origin\battlefield 4\bf4.exe => Keine Datei
FirewallRules: [TCP Query User{54A3EE8E-C73D-4BE7-BA91-796607D18405}D:\origin\battlefield 4\bf4.exe] => (Allow) D:\origin\battlefield 4\bf4.exe => Keine Datei
FirewallRules: [{A88C9CF6-22C1-4F5B-ADF3-2F1564499ADC}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FirewallRules: [{1CC6DC74-7F74-43E8-A705-C87E81295FBE}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FirewallRules: [UDP Query User{982FBD69-AE57-46E0-8450-AD68AEE378AC}C:\users\fabian\appdata\roaming\displaycal\dl\argyll_v2.1.2\bin\dispcal.exe] => (Allow) C:\users\fabian\appdata\roaming\displaycal\dl\argyll_v2.1.2\bin\dispcal.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{E9B8DF1E-A7B5-4C5E-AF7F-2C6D4DD12FDC}C:\users\fabian\appdata\roaming\displaycal\dl\argyll_v2.1.2\bin\dispcal.exe] => (Allow) C:\users\fabian\appdata\roaming\displaycal\dl\argyll_v2.1.2\bin\dispcal.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{FDF65112-D22B-421E-845D-6050FEC7D640}D:\downloads\snappy driver\sdio_1.6.1.710\sdio_x64_r722.exe] => (Allow) D:\downloads\snappy driver\sdio_1.6.1.710\sdio_x64_r722.exe => Keine Datei
FirewallRules: [UDP Query User{9EA5F181-5DC7-40E7-A30C-7BCFECC43905}D:\downloads\snappy driver\sdio_1.6.1.710\sdio_x64_r722.exe] => (Allow) D:\downloads\snappy driver\sdio_1.6.1.710\sdio_x64_r722.exe => Keine Datei
FirewallRules: [TCP Query User{71040201-63DF-4935-BEAF-D09BD683F689}D:\gog galaxy\games\cyberpunk 2077\bin\x64\cyberpunk2077.exe] => (Allow) D:\gog galaxy\games\cyberpunk 2077\bin\x64\cyberpunk2077.exe => Keine Datei
FirewallRules: [UDP Query User{C1E9058E-6080-4165-8FA1-9D301B977A83}D:\gog galaxy\games\cyberpunk 2077\bin\x64\cyberpunk2077.exe] => (Allow) D:\gog galaxy\games\cyberpunk 2077\bin\x64\cyberpunk2077.exe => Keine Datei
FirewallRules: [TCP Query User{DD68D9FE-5A70-4EDF-98F3-D97A46FD0A82}C:\program files (x86)\steam\steam.exe] => (Allow) C:\program files (x86)\steam\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{8B9E793C-670A-4D7E-AF6E-41DDE8AE53A5}] => (Allow) C:\Program Files (x86)\Steam\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{CB3385B0-D71B-45D1-A99C-0123BBFE856B}] => (Allow) C:\Program Files (x86)\Steam\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{E7CAF527-BB54-4156-9701-A8AB4D49871D}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{8ACD1E03-77F8-4818-AF51-DFF419A18ED8}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{CD75C4CA-CFC5-446E-831B-91849DCEF749}] => (Allow) D:\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe => Keine Datei
FirewallRules: [{7F5554B7-D2F7-4B35-BDA9-4C129ED00014}] => (Allow) D:\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe => Keine Datei
FirewallRules: [{5E278344-75E2-4506-81E8-25D5D2326367}] => (Allow) D:\Steam\steamapps\common\sandstorm\InsurgencyEAC.exe => Keine Datei
FirewallRules: [{AB26F831-EC95-4F3C-AE20-75062CF851C8}] => (Allow) D:\Steam\steamapps\common\sandstorm\InsurgencyEAC.exe => Keine Datei
FirewallRules: [TCP Query User{95D92220-FA8C-4744-A341-6D7B7F80E2C2}D:\steam\steamapps\common\sandstorm\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe] => (Allow) D:\steam\steamapps\common\sandstorm\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe => Keine Datei
FirewallRules: [UDP Query User{627AAD92-5D64-4E50-84B4-4BDE7190D836}D:\steam\steamapps\common\sandstorm\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe] => (Allow) D:\steam\steamapps\common\sandstorm\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe => Keine Datei
FirewallRules: [TCP Query User{D48A9CD0-DB1F-4697-8996-38D4335154FC}C:\users\fabian\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\fabian\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{D5D19857-B751-445D-AC3C-52F23A8DFAA0}C:\users\fabian\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\fabian\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{FFC6B4CE-813B-49B3-9A1A-F8E659B72D7A}D:\epic\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\epic\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => Keine Datei
FirewallRules: [UDP Query User{B3FAF708-DFE8-402E-A4A1-4CDAB682A975}D:\epic\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\epic\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => Keine Datei
FirewallRules: [TCP Query User{69F9B21B-796E-4D95-86D4-B3968F0AE94A}D:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe => Keine Datei
FirewallRules: [UDP Query User{E16C1C71-7619-4493-9AE9-21E398BEB5CC}D:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe => Keine Datei
FirewallRules: [TCP Query User{07BBB2C9-058E-4BCA-BFA3-52C1ACC4CF14}D:\downloads\snappy driver\sdio_1.6.1.710\sdio_x64_r728.exe] => (Allow) D:\downloads\snappy driver\sdio_1.6.1.710\sdio_x64_r728.exe => Keine Datei
FirewallRules: [UDP Query User{66EECD79-A28D-480A-ADAC-5FD8DD6CBF35}D:\downloads\snappy driver\sdio_1.6.1.710\sdio_x64_r728.exe] => (Allow) D:\downloads\snappy driver\sdio_1.6.1.710\sdio_x64_r728.exe => Keine Datei
FirewallRules: [TCP Query User{22B75980-9C35-4C1D-B5F1-2BFE3F07400D}D:\epic\thelongdark\tld.exe] => (Allow) D:\epic\thelongdark\tld.exe => Keine Datei
FirewallRules: [UDP Query User{B7CC4B79-7E26-4ED2-9970-44A88D57434D}D:\epic\thelongdark\tld.exe] => (Allow) D:\epic\thelongdark\tld.exe => Keine Datei
FirewallRules: [TCP Query User{A93D52B9-4A0A-44A3-97A2-CE5B1CB3DBC5}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe => Keine Datei
FirewallRules: [UDP Query User{495E04F9-F7FF-4036-9900-37465AD808FF}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe => Keine Datei
FirewallRules: [TCP Query User{C36E1D75-BE74-4DAE-8D24-87A616C29009}C:\program files (x86)\blackmagic design\davinci control panels\setup utility\davinci control panels setup.exe] => (Allow) C:\program files (x86)\blackmagic design\davinci control panels\setup utility\davinci control panels setup.exe => Keine Datei
FirewallRules: [UDP Query User{238BEF8A-76F2-4307-9408-71E82B870C85}C:\program files (x86)\blackmagic design\davinci control panels\setup utility\davinci control panels setup.exe] => (Allow) C:\program files (x86)\blackmagic design\davinci control panels\setup utility\davinci control panels setup.exe => Keine Datei
FirewallRules: [{F6BB6496-C380-4439-A9B8-1D7E83D7EBCF}] => (Allow) C:\Users\Fabian\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{3C8212CD-6D7B-4656-9901-3A833F3A416C}] => (Allow) C:\Users\Fabian\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{109582FB-F3DF-4032-8903-D8C99EDE89C8}] => (Allow) C:\Users\Fabian\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [TCP Query User{A9413A7D-1730-4240-97C9-2E789614F276}D:\downloads\snappy driver\sdio_1.6.1.710\sdio_r728.exe] => (Allow) D:\downloads\snappy driver\sdio_1.6.1.710\sdio_r728.exe => Keine Datei
FirewallRules: [UDP Query User{53237584-AEA3-4636-934B-413CDF904716}D:\downloads\snappy driver\sdio_1.6.1.710\sdio_r728.exe] => (Allow) D:\downloads\snappy driver\sdio_1.6.1.710\sdio_r728.exe => Keine Datei
FirewallRules: [{C299004C-3313-460D-A927-3FE3DF7A4EEC}] => (Allow) D:\Epic\AssassinsCreedUnity\ACU.exe => Keine Datei
FirewallRules: [{9D2E27BE-76D5-4CB4-BAF6-E21FCECC9616}] => (Allow) D:\Epic\AssassinsCreedUnity\ACU.exe => Keine Datei
FirewallRules: [{094DFA4D-096F-4884-9BEA-46BEE4D836C9}] => (Allow) D:\Steam\steamapps\common\Empire Total War\Empire.exe => Keine Datei
FirewallRules: [{A7613F97-CD58-45EA-9E39-952A9BA764A6}] => (Allow) D:\Steam\steamapps\common\Empire Total War\Empire.exe => Keine Datei
FirewallRules: [TCP Query User{8A70C493-64E4-482D-AE41-0E2DCEACA133}C:\users\fabian\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\fabian\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{CA7A180D-701C-4709-B90F-BC52714CA7D5}C:\users\fabian\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\fabian\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{6D21DE5E-0DA0-47ED-AB0B-AF05392CC4FF}D:\downloads\snappy driver\sdio_1.6.1.710\sdio_x64_r729.exe] => (Allow) D:\downloads\snappy driver\sdio_1.6.1.710\sdio_x64_r729.exe => Keine Datei
FirewallRules: [UDP Query User{38BB0F93-14FA-4857-A1E8-0DD69C7BFFA2}D:\downloads\snappy driver\sdio_1.6.1.710\sdio_x64_r729.exe] => (Allow) D:\downloads\snappy driver\sdio_1.6.1.710\sdio_x64_r729.exe => Keine Datei
FirewallRules: [TCP Query User{10AE4C23-BCD7-4E2B-9B2E-F98253652980}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{92851D36-DFDA-48CC-A874-47CB3547997D}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{DF45BE32-8377-44C2-8C99-435246C93E48}D:\epic\ue_4.26\engine\binaries\win64\ue4editor.exe] => (Allow) D:\epic\ue_4.26\engine\binaries\win64\ue4editor.exe => Keine Datei
FirewallRules: [UDP Query User{0B422244-5095-4FBD-B7C4-247785E739A6}D:\epic\ue_4.26\engine\binaries\win64\ue4editor.exe] => (Allow) D:\epic\ue_4.26\engine\binaries\win64\ue4editor.exe => Keine Datei
FirewallRules: [TCP Query User{BE159B98-47DD-4E7B-8FB3-CF0B33291DDB}C:\users\fabian\appdata\local\ov\pkg\create-2021.1.0\_build\kit_release\_build\windows-x86_64\release\kit.exe] => (Allow) C:\users\fabian\appdata\local\ov\pkg\create-2021.1.0\_build\kit_release\_build\windows-x86_64\release\kit.exe => Keine Datei
FirewallRules: [UDP Query User{3F66906F-4527-4E39-92E8-79E629F188CE}C:\users\fabian\appdata\local\ov\pkg\create-2021.1.0\_build\kit_release\_build\windows-x86_64\release\kit.exe] => (Allow) C:\users\fabian\appdata\local\ov\pkg\create-2021.1.0\_build\kit_release\_build\windows-x86_64\release\kit.exe => Keine Datei
FirewallRules: [TCP Query User{99B943D4-3C6A-4F6E-85A6-6B4A39224E70}D:\downloads\snappy driver\sdio_1.6.1.710\sdio_x64_r730.exe] => (Allow) D:\downloads\snappy driver\sdio_1.6.1.710\sdio_x64_r730.exe => Keine Datei
FirewallRules: [UDP Query User{8DB70EAF-F3E7-4CF0-B1F3-2344FABE4313}D:\downloads\snappy driver\sdio_1.6.1.710\sdio_x64_r730.exe] => (Allow) D:\downloads\snappy driver\sdio_1.6.1.710\sdio_x64_r730.exe => Keine Datei
FirewallRules: [TCP Query User{446064E1-91EB-483A-AA91-2E310963B087}C:\users\fabian\desktop\sdi_r2102\sdi_x64_r2102.exe] => (Allow) C:\users\fabian\desktop\sdi_r2102\sdi_x64_r2102.exe => Keine Datei
FirewallRules: [UDP Query User{2A7FD89E-077B-48F6-8842-47E5FB0691F7}C:\users\fabian\desktop\sdi_r2102\sdi_x64_r2102.exe] => (Allow) C:\users\fabian\desktop\sdi_r2102\sdi_x64_r2102.exe => Keine Datei
FirewallRules: [TCP Query User{F2D0FF9F-E6A3-42D0-94AA-FB3228340090}D:\downloads\sdi_r2102\sdi_x64_r2102.exe] => (Allow) D:\downloads\sdi_r2102\sdi_x64_r2102.exe => Keine Datei
FirewallRules: [UDP Query User{2AFA74D6-331A-44F6-8180-A7E06856DEC4}D:\downloads\sdi_r2102\sdi_x64_r2102.exe] => (Allow) D:\downloads\sdi_r2102\sdi_x64_r2102.exe => Keine Datei
FirewallRules: [{366E9D0E-F1D1-427C-9F72-E72225B085C0}] => (Allow) D:\Steam\steamapps\common\Europa Universalis IV\dowser.exe => Keine Datei
FirewallRules: [{C4351265-C5DF-4F99-9EDF-368537D8AC90}] => (Allow) D:\Steam\steamapps\common\Europa Universalis IV\dowser.exe => Keine Datei
FirewallRules: [TCP Query User{EB038073-5018-4F90-BA0A-F9C82970513E}D:\epic\rs2v\binaries\win64\vngame.exe] => (Allow) D:\epic\rs2v\binaries\win64\vngame.exe => Keine Datei
FirewallRules: [UDP Query User{61239382-2478-4724-937D-75908C01F24B}D:\epic\rs2v\binaries\win64\vngame.exe] => (Allow) D:\epic\rs2v\binaries\win64\vngame.exe => Keine Datei
FirewallRules: [{2B463C7E-8213-47CF-9027-486EE0A08FF8}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe (The qBittorrent Project) [Datei ist nicht signiert]
FirewallRules: [{36C761AA-2375-4281-89E0-23A58C865AF7}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe (The qBittorrent Project) [Datei ist nicht signiert]
FirewallRules: [{A8BAFEC8-6D35-49EE-A3CB-F3D8F3147740}] => (Allow) C:\Program Files (x86)\AOMEI\AOMEI Backupper\6.8.0\ABService.exe => Keine Datei
FirewallRules: [{C3068A6A-8100-41F3-A3AA-5D940576A1C4}] => (Allow) C:\Program Files (x86)\AOMEI\AOMEI Backupper\6.8.0\ABService.exe => Keine Datei
FirewallRules: [{CBB07DBC-70B5-45F0-BE0A-C7E7CDF33BA5}] => (Allow) C:\Program Files (x86)\AOMEI\AOMEI Backupper\6.8.0\ABService.exe => Keine Datei
FirewallRules: [{7D6487F5-CDD3-4C09-8F97-43DDECDCF381}] => (Allow) C:\Program Files (x86)\AOMEI\AOMEI Backupper\6.8.0\ABService.exe => Keine Datei
FirewallRules: [{4290B3BE-81FE-4471-A80F-749938CE8210}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmouryHtmlDebugServer.exe => Keine Datei
FirewallRules: [{241E8464-219B-4023-9A29-FE272942B90F}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe => Keine Datei
FirewallRules: [{F8CC7101-62B7-4406-A1EF-56224209A523}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe => Keine Datei
FirewallRules: [{1E10B51B-A484-4B2F-A143-8C16554BD810}] => (Allow) D:\Steam\steamapps\common\Prison Architect\Launcher\dowser.exe => Keine Datei
FirewallRules: [{8D2A6466-C461-4822-ACB8-0DF28B390EE4}] => (Allow) D:\Steam\steamapps\common\Prison Architect\Launcher\dowser.exe => Keine Datei
FirewallRules: [{FB97C20C-CEF4-43F0-8AD1-3AAB19A2B5B6}] => (Allow) D:\Steam\steamapps\common\3DMark\3DMarkLauncher.exe => Keine Datei
FirewallRules: [{5550CFDD-011D-4488-B5B7-1DA199C9C0ED}] => (Allow) D:\Steam\steamapps\common\3DMark\3DMarkLauncher.exe => Keine Datei
FirewallRules: [{2408F1C9-A379-4072-B8A4-9CB5D96CFF03}] => (Allow) D:\Steam\steamapps\common\Prison Architect\Prison Architect64.exe => Keine Datei
FirewallRules: [{56C06D43-4B54-4FC9-968E-86E36326B46B}] => (Allow) D:\Steam\steamapps\common\Prison Architect\Prison Architect64.exe => Keine Datei
FirewallRules: [{04DC0AA9-71A7-4730-A2A5-A53F98C7DC51}] => (Allow) C:\Program Files (x86)\AOMEI(1)\ABService.exe => Keine Datei
FirewallRules: [{C58D1912-8AA4-46B6-9DED-51D710E1C497}] => (Allow) C:\Program Files (x86)\AOMEI(1)\ABService.exe => Keine Datei
FirewallRules: [{01884612-DEDC-4410-8B85-7C326CACBCFC}] => (Allow) D:\Steam\steamapps\common\Hell Let Loose\Launch_HLL.exe => Keine Datei
FirewallRules: [{6443A777-5FBC-44AA-A606-29CC7D1515DE}] => (Allow) D:\Steam\steamapps\common\Hell Let Loose\Launch_HLL.exe => Keine Datei
FirewallRules: [{21483CCC-A55D-4393-A225-7CE519783D36}] => (Allow) D:\Steam\steamapps\common\Grand Theft Auto IV\GTAIV\PlayGTAIV.exe => Keine Datei
FirewallRules: [{A4BB17DC-8A88-4F3F-85DA-2E227D47CCBB}] => (Allow) D:\Steam\steamapps\common\Grand Theft Auto IV\GTAIV\PlayGTAIV.exe => Keine Datei
FirewallRules: [{C036B0DD-08FA-4254-902A-1B08D589BB55}] => (Allow) D:\Steam\steamapps\common\Call of Duty HQ\bootstrapper.exe => Keine Datei
FirewallRules: [{DAD2B8F4-83B2-4F27-B167-5CFB00562FE9}] => (Allow) D:\Steam\steamapps\common\Call of Duty HQ\bootstrapper.exe => Keine Datei
FirewallRules: [{318DE82F-B205-498F-B775-41A87BC12ADE}] => (Allow) D:\Steam\steamapps\common\Call of Duty HQ\cod.exe => Keine Datei
FirewallRules: [{EF7A997A-5258-4584-A4D2-85C28E6A112F}] => (Allow) D:\Steam\steamapps\common\Call of Duty HQ\cod.exe => Keine Datei
FirewallRules: [{47513977-178E-44E9-8997-2EAFD2BC0144}] => (Allow) D:\Steam\steamapps\common\Hunt Showdown\hunt.exe => Keine Datei
FirewallRules: [{9D7E9643-2488-4410-837D-4752034349A1}] => (Allow) D:\Steam\steamapps\common\Hunt Showdown\hunt.exe => Keine Datei
FirewallRules: [{4EE81989-EBC9-4C7E-93A3-5A9B6B8DE471}] => (Allow) D:\EA Games\FIFA 23\EAAntiCheat.GameServiceLauncher.exe => Keine Datei
FirewallRules: [{CC64D23F-CC34-441E-AE05-4C2336164808}] => (Allow) D:\EA Games\FIFA 23\EAAntiCheat.GameServiceLauncher.exe => Keine Datei
FirewallRules: [{B0E3D707-0A3B-4633-A38A-1D35A8669CA4}] => (Allow) D:\Steam\steamapps\common\3DMark\bin\x86\3DMark.exe => Keine Datei
FirewallRules: [{6040FFFF-EF16-4DC9-BF7C-5F63CB2BA386}] => (Allow) D:\Steam\steamapps\common\3DMark\bin\x86\3DMark.exe => Keine Datei
FirewallRules: [{149E29D4-4EF1-4B6B-85C6-53BF56B35170}] => (Allow) D:\Steam\steamapps\common\3DMark\bin\x64\3DMark.exe => Keine Datei
FirewallRules: [{168B6270-4F87-4CCA-9946-7952B8475678}] => (Allow) D:\Steam\steamapps\common\3DMark\bin\x64\3DMark.exe => Keine Datei
FirewallRules: [{4E99A749-C0EC-4560-B484-0B032DDABEFA}] => (Allow) D:\Steam\steamapps\common\Victoria 3\launcher\dowser.exe => Keine Datei
FirewallRules: [{70213AE3-5090-440D-BB55-01CB2720DEB3}] => (Allow) D:\Steam\steamapps\common\Victoria 3\launcher\dowser.exe => Keine Datei
FirewallRules: [{D4C42CE3-AA73-435C-ABF4-1F7AD8CFD3A7}] => (Allow) D:\Steam\steamapps\common\Dying Light\DyingLightGame.exe => Keine Datei
FirewallRules: [{F91888DC-56F1-4DB4-94BF-43ACEC1195F8}] => (Allow) D:\Steam\steamapps\common\Dying Light\DyingLightGame.exe => Keine Datei
FirewallRules: [{7A708010-31D8-4448-8A7C-24F44321DF39}] => (Allow) D:\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe => Keine Datei
FirewallRules: [{4E46EB95-9438-45A9-B18F-1D4A2B122EC4}] => (Allow) D:\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe => Keine Datei
FirewallRules: [{05410DCD-1BD0-4FA6-80F8-A8E67C1BC8F7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.WinDbg_1.2210.3001.0_x64__8wekyb3d8bbwe\x86\EngHost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{AB7E0F61-FA58-4F50-AAA2-A8ADA6DC93CF}] => (Allow) C:\Program Files\WindowsApps\Microsoft.WinDbg_1.2210.3001.0_x64__8wekyb3d8bbwe\x86\EngHost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{CD4C98BB-934B-4871-A2F8-CACE8484D63C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.WinDbg_1.2210.3001.0_x64__8wekyb3d8bbwe\amd64\EngHost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{41EE0440-F4F7-4EE8-B3D2-7CCABF5909FD}] => (Allow) C:\Program Files\WindowsApps\Microsoft.WinDbg_1.2210.3001.0_x64__8wekyb3d8bbwe\amd64\EngHost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{88D7FC97-2671-4849-ABBB-F91F8057E4F3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.WinDbg_1.2210.3001.0_x64__8wekyb3d8bbwe\woa\EngHost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{8C3ED1F0-F0C9-4970-990D-EF5CD51C0025}] => (Allow) C:\Program Files\WindowsApps\Microsoft.WinDbg_1.2210.3001.0_x64__8wekyb3d8bbwe\woa\EngHost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{8EC77689-A105-4762-8947-6BE1559E5892}] => (Allow) C:\Program Files\WindowsApps\Microsoft.WinDbg_1.2210.3001.0_x64__8wekyb3d8bbwe\arm64\EngHost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{8CB7A34F-E6D9-487B-9A66-1783D650953E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.WinDbg_1.2210.3001.0_x64__8wekyb3d8bbwe\arm64\EngHost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{6DFE1787-1315-4213-B569-0A461FB092FE}] => (Allow) D:\Steam\steamapps\common\Crusader Kings III\launcher\dowser.exe => Keine Datei
FirewallRules: [{67FB9A01-CB2C-4182-9912-29B78B7DA5EE}] => (Allow) D:\Steam\steamapps\common\Crusader Kings III\launcher\dowser.exe => Keine Datei
FirewallRules: [{D72A8238-8C04-49EA-937F-F46B034A031A}] => (Allow) E:\SteamLibrary\SteamApps\common\Hunt Showdown\hunt.exe (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{3E4A8EE9-BF07-4274-930D-ED9E42EB31D7}] => (Allow) E:\SteamLibrary\SteamApps\common\Hunt Showdown\hunt.exe (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{AE70F28B-8ACB-40D9-A7C7-A78A91757B94}] => (Allow) E:\SteamLibrary\SteamApps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (KRAFTON, Inc. -> KRAFTON, Inc.)
FirewallRules: [{D4E36994-7D5B-41B6-8F02-1DE26ABB9880}] => (Allow) E:\SteamLibrary\SteamApps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (KRAFTON, Inc. -> KRAFTON, Inc.)
FirewallRules: [{532BE0AB-C386-437A-970E-3A8A5EB60210}] => (Allow) E:\SteamLibrary\SteamApps\common\Europa Universalis IV\dowser.exe (Paradox Interactive AB (publ) -> )
FirewallRules: [{2C6EC0D6-2E52-4F92-BD3D-6E7657A49C38}] => (Allow) E:\SteamLibrary\SteamApps\common\Europa Universalis IV\dowser.exe (Paradox Interactive AB (publ) -> )
FirewallRules: [{BBDD9306-D735-46B2-9798-27063826078A}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\Resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [{768242A7-2A59-43F9-8356-242FEB0664F6}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\bmdpaneld.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{649BA29A-562A-4B15-8B0A-C4A243A8846E}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\DaVinciPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{4413C3CC-E43C-4425-9178-004DC31105B4}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\JLCooperPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{5AC881ED-3CE2-4249-97A3-96CCDCE445B1}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\EuphonixPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{015B992A-8905-414B-9926-C160621DD7DA}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\TangentPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{4D5464B4-CABB-4FCC-8B19-417BBC62B3F6}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\ElementsPanelDaemon.exe => Keine Datei
FirewallRules: [{B1B42C7D-C4BB-4925-8B8C-98EF336F6198}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\fuscript.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [{877B8904-0E11-4EE0-ABDD-33A28DCCA0AB}] => (Allow) E:\SteamLibrary\SteamApps\common\Prison Architect\Launcher\dowser.exe (Paradox Interactive AB (publ) -> )
FirewallRules: [{41822CB5-E831-44B8-825C-5B8FD1F15300}] => (Allow) E:\SteamLibrary\SteamApps\common\Prison Architect\Launcher\dowser.exe (Paradox Interactive AB (publ) -> )
FirewallRules: [{AFFAE308-EE96-4868-82BC-BD568B31E8D1}] => (Allow) E:\SteamLibrary\SteamApps\common\Prison Architect\Prison Architect64.exe () [Datei ist nicht signiert]
FirewallRules: [{502340DD-A549-4AA8-A0BE-D893937DDF6B}] => (Allow) E:\SteamLibrary\SteamApps\common\Prison Architect\Prison Architect64.exe () [Datei ist nicht signiert]
FirewallRules: [{A6CD14C9-E443-488F-9FA1-83DDD3799821}] => (Allow) C:\Program Files (x86)\AOMEI\AOMEI Backupper\7.1.2\ABService.exe => Keine Datei
FirewallRules: [{AB91B934-6773-4B1E-82BD-FD2B2E57B0AC}] => (Allow) C:\Program Files (x86)\AOMEI\AOMEI Backupper\7.1.2\ABService.exe => Keine Datei
FirewallRules: [{53E61BA7-A6C6-4B0F-9A6D-EBD2E994016C}] => (Allow) E:\SteamLibrary\SteamApps\common\3DMark\bin\x86\3DMark.exe => Keine Datei
FirewallRules: [{5856F609-6D73-46D6-AD68-A9772811CC00}] => (Allow) E:\SteamLibrary\SteamApps\common\3DMark\bin\x86\3DMark.exe => Keine Datei
FirewallRules: [{98A934CF-C064-448D-8555-F87C49DD3721}] => (Allow) E:\SteamLibrary\SteamApps\common\sandstorm\InsurgencyEAC.exe (EasyAntiCheat Oy -> Epic Games, Inc.)
FirewallRules: [{1401A332-B4ED-42DB-AC90-4E5AAEE487AB}] => (Allow) E:\SteamLibrary\SteamApps\common\sandstorm\InsurgencyEAC.exe (EasyAntiCheat Oy -> Epic Games, Inc.)
FirewallRules: [{D65BAF13-67FF-498E-B7F1-13EF4A8BDF74}] => (Allow) E:\SteamLibrary\SteamApps\common\sandstorm\Insurgency.exe (New World Interactive LLC -> Epic Games, Inc.)
FirewallRules: [{8FC248BC-F69C-4799-9099-73DF536F1E17}] => (Allow) E:\SteamLibrary\SteamApps\common\sandstorm\Insurgency.exe (New World Interactive LLC -> Epic Games, Inc.)
FirewallRules: [{CCA16149-4A64-4015-B5D8-62421A8BBEEF}] => (Allow) E:\SteamLibrary\SteamApps\common\Dying Light\DyingLightGame.exe (Techland S.A. -> Techland)
FirewallRules: [{52B93AB2-4D2E-4A97-9B38-40665898EEF5}] => (Allow) E:\SteamLibrary\SteamApps\common\Dying Light\DyingLightGame.exe (Techland S.A. -> Techland)
FirewallRules: [{80F395EA-9BAF-4B49-90E2-9F4D6090FED8}] => (Allow) E:\SteamLibrary\SteamApps\common\Dying Light\DevTools\DyingLightPlayer.exe (Techland S.A. -> Techland)
FirewallRules: [{54C8871C-8F3B-4E85-8B72-407D107720A0}] => (Allow) E:\SteamLibrary\SteamApps\common\Dying Light\DevTools\DyingLightPlayer.exe (Techland S.A. -> Techland)
FirewallRules: [{01845F72-22CF-486F-80DF-153B87B64B3F}] => (Allow) E:\SteamLibrary\SteamApps\common\Victoria 3\launcher\dowser.exe (Paradox Interactive AB (publ) -> )
FirewallRules: [{BE6AA145-5130-4619-827A-D86AFC4DC3EE}] => (Allow) E:\SteamLibrary\SteamApps\common\Victoria 3\launcher\dowser.exe (Paradox Interactive AB (publ) -> )
FirewallRules: [{F59FA47E-2DBF-4134-908A-40B74170C681}] => (Allow) E:\SteamLibrary\SteamApps\common\Grand Theft Auto IV\GTAIV\PlayGTAIV.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{6B0BE545-AEBD-4345-B8C0-5CF6D0D5FD64}] => (Allow) E:\SteamLibrary\SteamApps\common\Grand Theft Auto IV\GTAIV\PlayGTAIV.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{D38FA438-2E9A-47C2-AD6D-EA7BDA8570B8}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{7046C984-4992-4A58-8239-0D4A670C8D26}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{E50CEA39-EAC1-4CD8-8150-50EE18C40200}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{39599D37-8A89-4742-818F-FB8F6EBD6A00}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{380A29C1-04B3-4468-95C0-E7DE3328BC94}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{20C0259D-6F84-41E3-8B76-C6CFB7F801FB}] => (Allow) E:\SteamLibrary\SteamApps\common\Crusader Kings III\launcher\dowser.exe (Paradox Interactive AB (publ) -> )
FirewallRules: [{DDAECC16-B451-45FD-8D9C-F87EDAFF6D27}] => (Allow) E:\SteamLibrary\SteamApps\common\Crusader Kings III\launcher\dowser.exe (Paradox Interactive AB (publ) -> )
FirewallRules: [{5A6FD5AF-82CB-48F0-B6B5-1F0C33497504}] => (Allow) E:\SteamLibrary\SteamApps\common\3DMark\bin\x64\3DMark.exe (Underwriters Laboratories Inc. -> )
FirewallRules: [{9299D664-AC57-450D-A99B-6BC90FF16E8E}] => (Allow) E:\SteamLibrary\SteamApps\common\3DMark\bin\x64\3DMark.exe (Underwriters Laboratories Inc. -> )
FirewallRules: [{48C10F91-E6CB-49CE-B34F-C6ADB09B548A}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe (The qBittorrent Project) [Datei ist nicht signiert]
FirewallRules: [{1E1AC652-E774-4189-BFD6-5A9641658783}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe (The qBittorrent Project) [Datei ist nicht signiert]
FirewallRules: [{DE9C777D-22D7-401E-B51E-A731A00D5023}] => (Allow) E:\SteamLibrary\SteamApps\common\Skyrim Special Edition\SkyrimSELauncher.exe (Bethesda Softworks) [Datei ist nicht signiert]
FirewallRules: [{8267CDAF-B327-4DB1-82A1-27AEBC697DE2}] => (Allow) E:\SteamLibrary\SteamApps\common\Skyrim Special Edition\SkyrimSELauncher.exe (Bethesda Softworks) [Datei ist nicht signiert]
FirewallRules: [{6C26F162-B653-4497-B685-1C1E55EAC86B}] => (Allow) E:\SteamLibrary\SteamApps\common\skyrim\skse_steam_boot.exe () [Datei ist nicht signiert]
FirewallRules: [{CA8EED05-375F-4CE7-A702-9F1326989211}] => (Allow) E:\SteamLibrary\SteamApps\common\skyrim\skse_steam_boot.exe () [Datei ist nicht signiert]
FirewallRules: [{B3787163-793A-420A-964C-10A056D884CA}] => (Allow) C:\Program Files (x86)\AOMEI\AOMEI Backupper\7.2.1\ABService.exe (AOMEI International Network Limited -> AOMEI International Network Limited)
FirewallRules: [{8B253EA3-43EC-4576-9009-65E3B217D46E}] => (Allow) C:\Program Files (x86)\AOMEI\AOMEI Backupper\7.2.1\ABService.exe (AOMEI International Network Limited -> AOMEI International Network Limited)
FirewallRules: [{61BA74A5-CAAE-4205-8A14-2B881E1F5D9E}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{E34CE396-3038-489F-BA6D-1FE6F2F4B8F3}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{85783CC0-CA5F-48CB-9AE9-AF251C27C524}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{02A0AD82-1395-449E-BAB5-16C31B651236}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{7E348D2B-F1EE-4535-8E50-3FC092A2AD2E}] => (Allow) C:\Program Files\WindowsApps\91750D7E.Slack_4.32.122.0_x64__8she8kybcnzg4\app\Slack.exe (B25A2379-D5D0-455B-826A-BFFC7EBB5713 -> Slack Technologies Inc.)
FirewallRules: [{B436316F-DAC9-435C-B004-2163A733CE0E}] => (Allow) C:\Program Files\WindowsApps\91750D7E.Slack_4.32.122.0_x64__8she8kybcnzg4\app\Slack.exe (B25A2379-D5D0-455B-826A-BFFC7EBB5713 -> Slack Technologies Inc.)
FirewallRules: [{3831948D-F0B0-4792-B61E-E7BD13C14799}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{6B6381BA-CB6E-4C98-8F7A-E995EC3DE0FF}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{7585A028-6B70-4B8F-BE08-EA804BBC88F8}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{5D789EE2-07D0-4010-ACA2-C7719B99BAA6}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{4599AB78-E108-4788-B9D1-7CE5DFC5828D}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{9F9738B6-B0CF-4037-B82E-2E746E597A96}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALaunchHelper.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{46141E1F-1093-46EA-B8E3-81C4C00A95CD}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3206.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A999AADE-0884-47E8-9C70-82BF52403BC0}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3206.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E7DD1FCF-9436-4034-A2C3-5E5925A20A3C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3206.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{67AD9D09-AD62-473E-BF65-CF2307143ACB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3206.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{9545AB56-58A0-4954-979D-1683CC5BE730}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{8F5BD66D-1C65-4F66-8E02-253669D93364}] => (Allow) E:\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed Origins\ACOrigins_plus.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{7849FB62-3A76-4301-BCC5-457F22BD9EEA}] => (Allow) E:\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed Origins\ACOrigins_plus.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{8C815432-B255-4C8E-BC63-E3AC5FC2EB37}] => (Allow) E:\EA Games\FIFA 23\EAAntiCheat.GameServiceLauncher.exe (Electronic Arts, Inc. -> )
FirewallRules: [{8FA0D08A-ED95-4D21-88F6-5E905591F645}] => (Allow) E:\EA Games\FIFA 23\EAAntiCheat.GameServiceLauncher.exe (Electronic Arts, Inc. -> )

==================== Wiederherstellungspunkte =========================

19-06-2023 18:59:45 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610

==================== Fehlerhafte Geräte im Gerätemanager ============

Name: TeamViewer VPN Adapter
Description: TeamViewer VPN Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TeamViewer Germany GmbH
Service: teamviewervpn
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: NVIDIA High Definition Audio
Description: NVIDIA High Definition Audio
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: NVIDIA
Service: NVHDA
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Fehlereinträge in der Ereignisanzeige: ========================

Applikationsfehler:
==================
Error: (06/21/2023 01:16:34 PM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Das Sicherheitscenter konnte den Aufrufer nicht überprüfen. Der Fehler %1 ist aufgetreten.

Error: (06/20/2023 04:08:49 PM) (Source: Firefox Default Browser Agent) (EventID: 2) (User: )
Description: Event-ID 2

Error: (06/19/2023 06:54:19 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: GalaxyClientService.exe, Version: 2.0.58.4, Zeitstempel: 0x63d12374
Name des fehlerhaften Moduls: PocoNet.dll, Version: 1.12.2.0, Zeitstempel: 0x634404e3
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00015e49
ID des fehlerhaften Prozesses: 0x7f0
Startzeit der fehlerhaften Anwendung: 0x01d9a2cead3c80b6
Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe
Pfad des fehlerhaften Moduls: C:\Program Files (x86)\GOG Galaxy\PocoNet.dll
Berichtskennung: c1e790e5-64f7-4051-b7b2-9a7819b4d44d
Vollständiger Name des fehlerhaften Pakets: 
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (06/19/2023 06:54:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: GalaxyClientService.exe, Version: 2.0.58.4, Zeitstempel: 0x63d12374
Name des fehlerhaften Moduls: PocoNet.dll, Version: 1.12.2.0, Zeitstempel: 0x634404e3
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00015e49
ID des fehlerhaften Prozesses: 0x1a30
Startzeit der fehlerhaften Anwendung: 0x01d9a2ceab1e2be7
Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe
Pfad des fehlerhaften Moduls: C:\Program Files (x86)\GOG Galaxy\PocoNet.dll
Berichtskennung: 76acefe7-a2d5-4e1a-81f0-c9787f605b2a
Vollständiger Name des fehlerhaften Pakets: 
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (06/19/2023 06:47:31 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: cpuz.exe, Version: 2.0.6.0, Zeitstempel: 0x64706845
Name des fehlerhaften Moduls: cpuz.exe, Version: 2.0.6.0, Zeitstempel: 0x64706845
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000001740bb
ID des fehlerhaften Prozesses: 0x41a4
Startzeit der fehlerhaften Anwendung: 0x01d9a2cdb3738787
Pfad der fehlerhaften Anwendung: C:\Program Files\CPUID\CPU-Z\cpuz.exe
Pfad des fehlerhaften Moduls: C:\Program Files\CPUID\CPU-Z\cpuz.exe
Berichtskennung: 30e39986-c201-4803-a0b6-977cea700204
Vollständiger Name des fehlerhaften Pakets: 
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (06/19/2023 04:08:49 PM) (Source: Firefox Default Browser Agent) (EventID: 2) (User: )
Description: Event-ID 2

Error: (06/15/2023 04:08:48 PM) (Source: Firefox Default Browser Agent) (EventID: 2) (User: )
Description: Event-ID 2

Error: (06/14/2023 04:08:49 PM) (Source: Firefox Default Browser Agent) (EventID: 2) (User: )
Description: Event-ID 2


Systemfehler:
=============
Error: (06/21/2023 01:36:41 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel(R) Content Protection HDCP Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (06/21/2023 01:36:41 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel(R) Graphics Command Center Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (06/21/2023 01:36:41 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel(R) Management Engine WMI Provider Registration" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (06/21/2023 01:36:41 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "NVIDIA Display Container LS" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 6000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (06/21/2023 01:36:41 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel(R) Dynamic Application Loader Host Interface Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (06/21/2023 01:36:41 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel(R) Storage Middleware Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (06/21/2023 01:36:41 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel(R) HD Graphics Control Panel Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (06/21/2023 01:21:03 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel(R) Content Protection HDCP Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.


Windows Defender:
================
Date: 2023-06-15 22:08:20
Description: 
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {1274EA3E-97BB-4954-87B0-CFFC22FEF5F8}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM

Date: 2023-06-12 16:55:15
Description: 
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {C55F74A5-8B43-40E6-9D48-2E0E2FE42994}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM

Date: 2023-06-04 12:33:08
Description: 
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {477234A8-0FAD-4B35-A281-53E808D4418D}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM

Date: 2023-06-02 17:08:46
Description: 
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {B3C3BCC6-156B-4150-8F9B-5460E44AD917}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM

Date: 2023-06-02 16:08:14
Description: 
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {EECE9859-5BC2-4F67-A739-ED756FE32DB2}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Event[0]:

Date: 2023-06-14 20:22:40
Description: 
Fehler des Microsoft Defender Antivirus-Echtzeitschutz-Features.
Feature: Bei Zugriff
Fehlercode: 0x8007043c
Fehlerbeschreibung: Der Dienst kann nicht im abgesicherten Modus gestartet werden. 
Ursache: Die Antischadsoft-Sicherheitsfunktion wurde aus unbekanntem Grund beendet. Möglicherweise kann das Problem durch einen Neustart des Diensts behoben werden.

Date: 2023-06-14 19:57:31
Description: 
Fehler des Microsoft Defender Antivirus-Echtzeitschutz-Features.
Feature: Bei Zugriff
Fehlercode: 0x8007043c
Fehlerbeschreibung: Der Dienst kann nicht im abgesicherten Modus gestartet werden. 
Ursache: Die Antischadsoft-Sicherheitsfunktion wurde aus unbekanntem Grund beendet. Möglicherweise kann das Problem durch einen Neustart des Diensts behoben werden.

Date: 2023-06-09 16:24:05
Description: 
Fehler des Microsoft Defender Antivirus-Echtzeitschutz-Features.
Feature: Bei Zugriff
Fehlercode: 0x8007043c
Fehlerbeschreibung: Der Dienst kann nicht im abgesicherten Modus gestartet werden. 
Ursache: Die Antischadsoft-Sicherheitsfunktion wurde aus unbekanntem Grund beendet. Möglicherweise kann das Problem durch einen Neustart des Diensts behoben werden.

Date: 2023-02-13 18:56:46
Description: 
Microsoft Defender Antivirus Modul wurde aufgrund eines unerwarteten Fehlers beendet.
Fehlertyp:  Absturz
Ausnahmecode:  0xc0000005
Ressource:  
Modulcode:  %7

CodeIntegrity:
===============
Date: 2023-06-21 13:42:25
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume6\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume6\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_3ea756ac68d34d21\igd10iumd64.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2023-06-21 13:16:34
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume6\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume6\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Windows signing level requirements.


==================== Speicherinformationen =========================== 

BIOS: American Megatrends International, LLC. P2.30 10/22/2021
Hauptplatine: ASRock B560 Pro4
Prozessor: 11th Gen Intel(R) Core(TM) i7-11700 @ 2.50GHz
Prozentuale Nutzung des RAM: 22%
Installierter physikalischer RAM: 32551.16 MB
Verfügbarer physikalischer RAM: 25135.39 MB
Summe virtueller Speicher: 65319.16 MB
Verfügbarer virtueller Speicher: 54027.35 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:231.67 GB) (Free:137.2 GB) (Model: Samsung SSD 850 EVO 250GB) NTFS
Drive d: (Persönliches) (Fixed) (Total:931.5 GB) (Free:762.41 GB) (Model: CT1000MX500SSD1) NTFS
Drive e: (Spiele & Anwendungen) (Fixed) (Total:1863.01 GB) (Free:985.78 GB) (Model: SanDisk SDSSDH3 2T00) NTFS
Drive f: (Blender) (Fixed) (Total:465.75 GB) (Free:427.02 GB) (Model: KIOXIA-EXCERIA SSD) NTFS

\\?\Volume{3b907040-081e-4982-ac5d-49f1d29e3c74}\ () (Fixed) (Total:0.56 GB) (Free:0.08 GB) NTFS
\\?\Volume{8457cda8-d830-11eb-b66b-f6bc2a611a0f}\ () (Fixed) (Total:0.56 GB) (Free:0.09 GB) NTFS
\\?\Volume{8457cda7-d830-11eb-b66b-f6bc2a611a0f}\ () (Fixed) (Total:0.09 GB) (Free:0.05 GB) FAT32

==================== MBR & Partitionstabelle ====================

==================== Ende von Addition.txt =======================
         
__________________


Alt 21.06.2023, 13:29   #3
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
PUP.Optional.WebProtector im AdwCleaner - Standard

PUP.Optional.WebProtector im AdwCleaner



Hi, wozu überhaupt Chrome?
In Window ist ein chromebasierter Browser doch schon eingebaut --> Microsoft Edge
Und dann hast du auch noch Mozilla Firefox.
Warum installiert ihr User da draußen euch (fast) alle Browser?! Ich würde es gerne mal verstehen.
__________________
__________________

Alt 21.06.2023, 13:36   #4
FabToGo
 
PUP.Optional.WebProtector im AdwCleaner - Standard

PUP.Optional.WebProtector im AdwCleaner



Hi, nunja, weil zum einen die RTX super resolution aktuell noch nicht in Firefox nutzbar ist und zum anderen aus Gewohnheit. Aber ist das hierfür relevant?

Alt 21.06.2023, 14:17   #5
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
PUP.Optional.WebProtector im AdwCleaner - Standard

PUP.Optional.WebProtector im AdwCleaner



Ja. Du hast Chrome installiert. Der ist Teil deines Problems!
Und grundsätzlich ist es immer eine schlechte Idee alles Mögliche ins System zu klatschen. Man installiert nur das, was auch wirklich gebraucht wird.

In Edge geht das siehe https://www.netzwelt.de/news/214732-...rome-edge.html

__________________
Logfiles bitte immer in CODE-Tags posten

Alt 21.06.2023, 17:17   #6
FabToGo
 
PUP.Optional.WebProtector im AdwCleaner - Standard

PUP.Optional.WebProtector im AdwCleaner



Jau, hast mich überzeugt!
Hab Chrome runtergeworfen, alles Dazugehörige entfernt. AdwCleaner meldet nix mehr.

Danke dir für's Augenöffnen! Hatte eigentlich konsequent die letzten 10 Jahre ausschließlich Firefox. War etwas in Versuchung geraten durch ein oder andere Bequemlichkeiten. Lass ich nun. Damit kann die Anfrage hier gerne auch gelöscht werden!

Danke dir!

Alt 21.06.2023, 21:02   #7
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
PUP.Optional.WebProtector im AdwCleaner - Standard

PUP.Optional.WebProtector im AdwCleaner



Kontrollscans mit MBAM und RK
Poste nach Abschluss der beiden Scans die Logs in CODE-Tags.
__________________
Logfiles bitte immer in CODE-Tags posten

Alt 21.06.2023, 21:39   #8
FabToGo
 
PUP.Optional.WebProtector im AdwCleaner - Standard

PUP.Optional.WebProtector im AdwCleaner



Beide hatten keinerlei Erkennungen.

Alt 21.06.2023, 22:02   #9
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
PUP.Optional.WebProtector im AdwCleaner - Standard

PUP.Optional.WebProtector im AdwCleaner



Dann wären wir durch!

Wenn Du möchtest, kannst Du das Forum mit einer kleinen Spende unterstützen.

Abschließend unbedingt unsere Sicherheitsmaßnahmen lesen und umsetzen - beides ist in folgendem Lesestoff verlinkt:

__________________
Logfiles bitte immer in CODE-Tags posten

Alt 23.06.2023, 21:45   #10
M-K-D-B
/// TB-Ausbilder
 
PUP.Optional.WebProtector im AdwCleaner - Standard

PUP.Optional.WebProtector im AdwCleaner



Wir sind froh, dass wir helfen konnten

Dieses Thema scheint erledigt und wird aus unseren Abos gelöscht. Solltest Du das Thema erneut brauchen, schicke uns bitte eine Erinnerung inklusive Link zum Thema.

Jeder andere bitte hier klicken und ein eigenes Thema erstellen.

Thema geschlossen

Themen zu PUP.Optional.WebProtector im AdwCleaner
admins, arbeit, beitrag, code, detected, dickes, dll, ergebnis, files, firefox, folge, folgende, hosts, malwarebytes, mögliche, registry, riesig, schonmal, services, shortcuts, software, start, versucht, windows, wmi




Ähnliche Themen: PUP.Optional.WebProtector im AdwCleaner


  1. Fund PUP.Optional.Booking - Malwarebytes AdwCleaner 8.0.6.0,
    Plagegeister aller Art und deren Bekämpfung - 02.07.2020 (4)
  2. AdwCleaner meldet Fund: PUP.Optional.SearchBox DS
    Plagegeister aller Art und deren Bekämpfung - 14.03.2020 (3)
  3. PUP.Optional.Legacy von ADWCleaner festgestellt
    Log-Analyse und Auswertung - 04.08.2019 (16)
  4. ADWcleaner beseitigt PUP.Optional.Legacy nicht
    Plagegeister aller Art und deren Bekämpfung - 14.10.2018 (12)
  5. adwcleaner Fund (PUP.Optional.Legacy) nach Installation von G DATA Total Security
    Antiviren-, Firewall- und andere Schutzprogramme - 21.08.2018 (27)
  6. adwcleaner Fund (PUP.Optional.Legacy) nach Installation von G DATA Total Security
    Mülltonne - 16.08.2018 (0)
  7. PUP.optional.Legacy - AdwCleaner entfernt die Einträge nicht
    Plagegeister aller Art und deren Bekämpfung - 26.07.2018 (0)
  8. Windows 7: ADWCleaner löscht PUP.Optional.Legacy nicht
    Log-Analyse und Auswertung - 09.07.2018 (17)
  9. AdwCleaner Scan findet PUP.Optional.StratFenster in der Registry
    Log-Analyse und Auswertung - 06.03.2018 (4)
  10. Malwarebytes findet PUP.Optional.Trovi, AdwCleaner findet PUP.Optional.Legacy, beides nicht entfernbar
    Plagegeister aller Art und deren Bekämpfung - 25.11.2017 (22)
  11. CPU hoch Adwcleaner hängt Löschung caught unknown Registry gefunden Pop Optional
    Log-Analyse und Auswertung - 23.11.2017 (18)
  12. AdwCleaner findet PUP.Optional.ByteFence
    Plagegeister aller Art und deren Bekämpfung - 12.11.2017 (9)
  13. Adwcleaner hängt Löschung caught unknown Pop Optional gefunden Registry CPU
    Mülltonne - 31.10.2017 (0)
  14. Adwcleaner hängt Löschung caught unknown Pop Optional gefunden Registry CPU
    Mülltonne - 31.10.2017 (0)
  15. Adwcleaner hängt Löschung caught unknown Pop Optional gefunden Registry CPU
    Mülltonne - 31.10.2017 (0)
  16. Adwcleaner hängt Löschung caught unknown Pop Optional gefunden Registry
    Mülltonne - 30.10.2017 (18)
  17. Malwarebytes und AdwCleaner finden Pup.optional
    Log-Analyse und Auswertung - 09.10.2013 (13)

Zum Thema PUP.Optional.WebProtector im AdwCleaner - Hallo liebes Trojaner-Board und insbesondere dessen Admins! Ich habe nun schon alles Mögliche versucht, aber bekomme im AdwCleaner immer und immer wieder ein Ergebnis "PUP.Optional.WebProtector" bzw. "Chrome-Erweiterung" mit der Bezeichnung - PUP.Optional.WebProtector im AdwCleaner...
Archiv
Du betrachtest: PUP.Optional.WebProtector im AdwCleaner auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.