Search Engine Optimizer hat sich unerwünscht auf den Computer geladen und kann nicht deinstalliert werden

Wolf123 · 24.05.2024, 11:06

Guten Tag,

Ich habe vor kurzem einen Autoklicker bei der Website Chip installiert, wobei noch weitere unerwünschte Dateien mit installiert wurden (ich habe jetzt bei einem anderen post herausgefunden, dass diese Website nicht vertauenswürdig ist) Die meisten dieser Dateien konnte ich mühelos deinstallieren, den Search Enginge Optimizer jedoch nicht. Ich habe mir dann das Programm Malwarebytes herunter geladen und mehrere scans über die letzten Tage gemacht wo immer wieder PuP dateien gefunden wurden.
Jetzt habe ich mir das FRST Tool runter geladen und die Untersuchung gemacht, hier sind die Ergebnisse:

1. FRST
2. Addition
3. SEO (ist ebenfalls mit aufgetaucht)

leider passt jetzt erstmals nur FRST in den Beitrag, ich werde SEO und Addition noch anhängen wenn das erwünscht ist

Vielen Dank für die Hilfe!

Code:

ATTFilter

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 22.05.2024 01
durchgeführt von wolfa (Administrator) auf PC-VON-WOLF (24-05-2024 11:27:23)
Gestartet von C:\Users\wolfa\Downloads\FRST64.exe
Geladene Profile: wolfa
Plattform: Microsoft Windows 11 Pro Version 23H2 22631.3593 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: Chrome
Start-Modus: Normal

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(C:\Program Files (x86)\MSI\One Dragon Center\MSI_Central_Service.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\MSI.CentralServer.exe
(C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.UserSessionHelper.exe
(C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\Malwarebytes.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(C:\Program Files\SteelSeries\GG\apps\engine\SteelSeriesEngine.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\apps\engine\prism\SteelSeriesPrism.exe
(C:\Program Files\SteelSeries\GG\apps\engine\SteelSeriesEngine.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\apps\moments\SteelSeriesSvcLauncher.exe
(C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\apps\engine\SteelSeriesEngine.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <29>
(explorer.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe
(explorer.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTek COMPUTER INC.) C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\4.02.12\atkexComSvc.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Program Files (x86)\LightingService\LightingService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Windows\System32\DriverStore\FileRepository\logi_lamparray_usb.inf_amd64_cdf3ca3c77d5f267\logi_lamparray_service.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\One Dragon Center\Game_Summary\MSI_Companion_Service.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\MSI_Central_Service.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LightKeeperService.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\Mystic_Light_Service.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\One Dragon Center\VoiceControl\VoiceControl_Service.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_84b2c943d6816eb7\Display.NvContainer\NVDisplay.Container.exe <2>
(sihost.exe ->) (1539F157-3B11-4C68-B0C7-6E8113B7B1BD -> ) C:\Program Files\WindowsApps\15191PeakPlayer.NeatOffice_3.4.6.0_x64__y5c4dfz5b21fm\FileWatcher\FileWatcher.exe
(svchost.exe ->) (ASUSTeK Computer Inc. -> ) C:\Program Files\ASUS\KINGSTON_Aac_DRAM\AacKingstonDramHal_x86.exe
(svchost.exe ->) (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files\ASUS\AacExtCard\extensionCardHal_x86.exe
(svchost.exe ->) (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files\ASUS\ASUS_Aac_DRAM\Aac3572DramHal_x86.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2405.1001.5.0_x64__8wekyb3d8bbwe\XboxGameBarWidgets.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2405.1001.5.0_x64__8wekyb3d8bbwe\XboxPcAppFT.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_424.1301.450.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\True Color\MSI.True Color.exe
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\One Dragon Center\VoiceControl\VoiceControlEngine.exe

==================== Registry (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [3023152 2024-03-06] (Riot Games, Inc. -> Riot Games, Inc.)
HKLM\...\Run: [SteelSeriesGG] => C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe [15845712 2024-05-13] (SteelSeries ApS -> SteelSeries ApS)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [748624 2023-10-04] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Beschränkung <==== ACHTUNG
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Beschränkung <==== ACHTUNG
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Beschränkung <==== ACHTUNG
HKU\S-1-5-21-345432855-2133662985-3921909539-1001\...\Run: [Steam] => D:\Launcher\Steam\steam.exe [4379496 2024-05-21] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-345432855-2133662985-3921909539-1001\...\Run: [WallpaperEngine] => D:\Launcher\Steam\steamapps\common\wallpaper_engine\wallpaper64.exe [4060096 2024-02-28] (Skutta Software GmbH -> )
HKU\S-1-5-21-345432855-2133662985-3921909539-1001\...\Run: [Discord] => C:\Users\wolfa\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub)
HKU\S-1-5-21-345432855-2133662985-3921909539-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe [46113536 2024-04-21] (Logitech Inc -> Logitech, Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\125.0.6422.77\Installer\chrmstp.exe [2024-05-22] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] -> 

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {b75d199c-35e6-40b4-a532-f556e4ead4dd} - kein Dateipfad. <==== ACHTUNG
Task: {D1B6EDD8-062B-4820-94AD-00106B7FA879} - System32\Tasks\ASUS\ASUSUpdateTaskMachineCore1d7d58f60fc8ee => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [167384 2021-11-09] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {624208FB-0793-4DCA-9463-8CE34FC92EAD} - System32\Tasks\ASUS\ASUSUpdateTaskMachineUA => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [167384 2021-11-09] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {88066A45-415F-47C8-BF23-47DA15927B24} - System32\Tasks\Google Play Games Notifier => C:\Program Files\Google\Play Games\Bootstrapper.exe [374560 2024-05-10] (Google LLC -> Google LLC)
Task: {69C43E31-DF49-4721-B8C6-34F10576BEA0} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem127.0.6490.0{3CF64835-534C-4712-80C9-D5C518B899B0} => C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe [4785440 2024-05-20] (Google LLC -> Google LLC)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe  (Keine Datei)
Task: {78F7909E-26EE-435B-B034-8FAC36292B6D} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_UpdateInterval => %systemroot%\system32\MusNotification.exe  Display (Keine Datei)
Task: {79874917-735B-4E71-97D9-D00EF7EA293C} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe  /RunOnAC RebootDialog (Keine Datei)
Task: {01C934E2-CFB4-4BEA-BC8E-B0E5483FCFC7} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe  /RunOnBattery RebootDialog (Keine Datei)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe  (Keine Datei)
Task: {0A67D2D0-21BF-48F4-B898-867FF50C37D4} - System32\Tasks\MSI Task Host - Detect_Monitor => C:\Program Files (x86)\MSI\One Dragon Center\MSI.NotifyServer.exe [74528 2020-09-29] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {30E066D7-2EAA-489D-86A8-72DF07A3A44F} - System32\Tasks\MSI Task Host - DisplayID => C:\Program Files (x86)\MSI\One Dragon Center\MSI.NotifyServer.exe [74528 2020-09-29] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {E6D77A08-D5C2-4AB5-AFEA-4267E7D541F5} - System32\Tasks\MSI Task Host - LEDKeeper2_Host => C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LEDKeeper2.exe [1634824 2021-01-14] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {3F183BEA-FEB0-4DF6-A762-423B908EC5F7} - System32\Tasks\MSI Task Host - MSI.True Color => C:\Program Files (x86)\MSI\One Dragon Center\True Color\MSI.True Color.exe [44720 2020-05-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {E2EE1253-0622-4EC1-9C9F-FFE2328C3B3F} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1277480 2024-04-10] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {81CCBB97-03EE-4B28-A5E1-236249991B08} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3347496 2024-04-10] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FB9EF4ED-E969-4C29-96BB-0AC4FB5C8581} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646696 2024-04-10] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler
Task: {F88875D9-732A-4BC0-A2CB-282480FE2681} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2024-04-10] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A07ACB95-B8CD-43E4-BFA9-CF8E5D5D4509} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2024-04-10] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5931AF44-739C-4E39-9540-E987652D569C} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-04-10] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8BCEBCA1-7DDB-4D6A-85C6-3E1FAD3014B4} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-04-10] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6623A06D-AC20-42D3-BADC-B665E804FED4} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-04-10] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {819C6A05-07EB-41EB-A802-FE53F4A9EBC9} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-04-10] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A9DF36C5-C1E9-4EE9-8A3D-BFC692B97E5A} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-345432855-2133662985-3921909539-1001 => C:\Users\wolfa\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe [4165016 2022-09-26] () [Datei ist nicht signiert]
Task: {6CF803F5-8706-4F65-BB6E-34BB139176B0} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-345432855-2133662985-3921909539-1002 => C:\Users\wolfa\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe [4165016 2022-09-26] () [Datei ist nicht signiert]
Task: {0EA20BF7-349A-4D47-82A9-3FC1E4438207} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-345432855-2133662985-3921909539-1001 => C:\Users\wolfa\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe [4165016 2022-09-26] () [Datei ist nicht signiert]
Task: {CCC5977C-0692-47BC-AA57-6BBD7864E6A3} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-345432855-2133662985-3921909539-1002 => C:\Users\wolfa\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe [4165016 2022-09-26] () [Datei ist nicht signiert]
Task: {8C81A537-54F7-4992-BE35-7DF971B7B957} - System32\Tasks\Opera scheduled assistant Autoupdate 1716305849 => C:\Users\wolfa\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe [5727136 2024-05-14] (Opera Norway AS -> Opera Software) -> --scheduledtask --productiscomponent --bypasslauncher --installdir="C:\Users\wolfa\AppData\Local\Programs\Opera\assistant" --producttype=assistant $(Arg0)
Task: {0A9D838C-DB89-4AB2-ABBD-813EAA20A87B} - System32\Tasks\Opera scheduled Autoupdate 1669324322 => C:\Users\wolfa\AppData\Local\Programs\Opera\launcher.exe  --scheduledautoupdate $(Arg0) (Keine Datei)
Task: {C3FEF9A4-39E2-498A-BC44-3C52290C748B} - System32\Tasks\Opera scheduled Autoupdate 1669388655 => C:\Users\wolfa\AppData\Local\Programs\Opera\launcher.exe  --scheduledautoupdate $(Arg0) (Keine Datei)
Task: {31A78D54-4515-4FE8-B956-A0B4A838D4D0} - System32\Tasks\Opera scheduled Autoupdate 1716305847 => C:\Users\wolfa\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe [5727136 2024-05-14] (Opera Norway AS -> Opera Software)
Task: {4ADF82DE-CAA5-46D3-8FCC-8C77DD036E2F} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2369544 2024-05-15] (Overwolf Ltd -> Overwolf LTD) -> C:\Program Files (x86)\Overwolf\/RunningFrom Schedule
Task: {D9DA779A-8F03-4804-9E83-9283DD92AB62} - System32\Tasks\SEO => C:\Users\wolfa\AppData\Roaming\SEO\SEO.exe [11273824 2024-05-21] (BUSINESS CONVERS TRACK S.R.L. -> Business Convers Track S.R.L.) <==== ACHTUNG

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)


==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{9ca833c5-8613-4538-ada9-d4b279dc75d5}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{9ca833c5-8613-4538-ada9-d4b279dc75d5}: [DhcpDomain] localdomain

Edge: 
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\wolfa\AppData\Local\Microsoft\Edge\User Data\Default [2024-05-22]
Edge Extension: (Avira Safe Shopping) - C:\Users\wolfa\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\caiblelclndcckfafdaggpephhgfpoip [2024-05-21]
Edge Extension: (Avira Password Manager) - C:\Users\wolfa\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\emgfgdclgfeldebanedpihppahgngnle [2024-05-21]
Edge Extension: (Google Docs Offline) - C:\Users\wolfa\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-03]
Edge Extension: (Bitcleaner Surfguard) - C:\Users\wolfa\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gidnhakgfijhghmilgiiffidakihnbnb [2024-05-21]
Edge Extension: (Edge relevant text changes) - C:\Users\wolfa\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]
Edge Profile: C:\Users\wolfa\AppData\Local\Microsoft\Edge\User Data\Profile 1 [2021-09-24]
Edge Extension: (Cisco Webex Extension) - C:\Users\wolfa\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\cmihkeafcknlomclapaddfljaeegfbdl [2021-02-23]
Edge HKU\S-1-5-21-345432855-2133662985-3921909539-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [gidnhakgfijhghmilgiiffidakihnbnb]
Edge HKLM-x32\...\Edge\Extension: [caiblelclndcckfafdaggpephhgfpoip]
Edge HKLM-x32\...\Edge\Extension: [emgfgdclgfeldebanedpihppahgngnle]

FireFox:
========
FF Plugin-x32: @java.com/DTPlugin,version=11.391.2 -> C:\Program Files (x86)\Java\jre-1.8\bin\dtplugin\npDeployJava1.dll [2023-10-04] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.391.2 -> C:\Program Files (x86)\Java\jre-1.8\bin\plugin2\npjp2.dll [2023-10-04] (Oracle America, Inc. -> Oracle Corporation)

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\wolfa\AppData\Local\Google\Chrome\User Data\Default [2024-05-24]
CHR Notifications: Default -> hxxps://www.netflix.com
CHR HomePage: Default -> hxxps://www.bing.com?pc=COS2&ptag=D112422-N0330A9E20638FA0&form=CONBDF&conlogo=CT3335159
CHR Extension: (Bitcleaner Surfguard) - C:\Users\wolfa\AppData\Local\Google\Chrome\User Data\Default\Extensions\aeefnonlfngaeblgiipagcfmcakbmmjk [2024-05-21]
CHR Extension: (BetterTTV) - C:\Users\wolfa\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2024-05-02]
CHR Extension: (Honey: Automatische Coupons & Prämien) - C:\Users\wolfa\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmnlcjabgnpnenekpadlanbbkooimhnj [2024-04-05]
CHR Extension: (Avira Password Manager) - C:\Users\wolfa\AppData\Local\Google\Chrome\User Data\Default\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2024-05-21]
CHR Extension: (Avira Safe Shopping) - C:\Users\wolfa\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccbpbkebodcjkknkfkpmfeciinhidaeh [2024-05-21]
CHR Extension: (Avira Browserschutz) - C:\Users\wolfa\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2024-05-21]
CHR Extension: (Google Docs Offline) - C:\Users\wolfa\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-21]
CHR Extension: (AdBlock*– der beste Ad-Blocker) - C:\Users\wolfa\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2024-05-23]
CHR Extension: (Kopieren und Einfügen in Office Online) - C:\Users\wolfa\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifbmcpbgkhlpfcodhjhdbllhiaomkdej [2022-02-12]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\wolfa\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Profile: C:\Users\wolfa\AppData\Local\Google\Chrome\User Data\System Profile [2022-03-20]
CHR HKU\S-1-5-21-345432855-2133662985-3921909539-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [aeefnonlfngaeblgiipagcfmcakbmmjk]
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]

==================== Dienste (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 ArmouryCrateService; C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe [382112 2022-08-19] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.02.12\atkexComSvc.exe [457544 2021-10-21] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S2 asus; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [167384 2021-11-09] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R2 AsusCertService; C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe [313008 2021-10-21] (ASUSTeK Computer Inc. -> ASUSTek COMPUTER INC.)
S3 asusm; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [167384 2021-11-09] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S2 AsusROGLSLService; C:\Program Files (x86)\ASUS\AsusROGLSLService\AsusROGLSLService.exe [652624 2021-11-09] (ASUSTeK Computer Inc. -> ASUS)
S3 battlenet_helpersvc; C:\ProgramData\Battle.net_components\battlenet_helpersvc\AgentHelper.exe [2567304 2024-05-17] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
S3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [14991976 2024-04-17] (Electronic Arts, Inc. -> Electronic Arts)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1135648 2024-02-13] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [954704 2024-04-27] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2023-08-02] (Epic Games Inc. -> Epic Games, Inc.)
S2 GoogleUpdaterInternalService127.0.6490.0; C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe [4785440 2024-05-20] (Google LLC -> Google LLC)
S2 GoogleUpdaterService127.0.6490.0; C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe [4785440 2024-05-20] (Google LLC -> Google LLC)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [11154176 2024-04-21] (Logitech Inc -> Logitech, Inc.)
R2 LightingService; C:\Program Files (x86)\LightingService\LightingService.exe [4799336 2023-09-13] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
R2 LightKeeperService; C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LightKeeperService.exe [86776 2020-12-23] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 logi_lamparray_service; C:\WINDOWS\System32\DriverStore\FileRepository\logi_lamparray_usb.inf_amd64_cdf3ca3c77d5f267\logi_lamparray_service.exe [9893864 2024-04-21] (Logitech Inc -> Logitech, Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8887344 2024-05-22] (Malwarebytes Inc. -> Malwarebytes)
S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [3073888 2024-05-22] (Malwarebytes Inc. -> Malwarebytes)
S3 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\MpDefenderCoreService.exe [1489000 2024-05-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 MSI_Central_Service; C:\Program Files (x86)\MSI\One Dragon Center\MSI_Central_Service.exe [147088 2020-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
R2 MSI_Companion_Service; C:\Program Files (x86)\MSI\One Dragon Center\Game_Summary\MSI_Companion_Service.exe [131568 2021-01-08] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 Mystic_Light_Service; C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\Mystic_Light_Service.exe [35504 2020-07-09] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_84b2c943d6816eb7\Display.NvContainer\NVDisplay.Container.exe [1275440 2024-04-12] (NVIDIA Corporation -> NVIDIA Corporation)
S3 OverwolfUpdater; C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2369544 2024-05-15] (Overwolf Ltd -> Overwolf LTD)
S3 Rockstar Service; D:\Launcher\RockstarService.exe [6291440 2024-04-09] (Rockstar Games, Inc. -> Rockstar Games)
R2 ROG Live Service; C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe [1665648 2023-07-25] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [522184 2024-05-14] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 SteelSeriesGGUpdateServiceProxy; C:\Program Files\SteelSeries\GG\SteelSeriesGGUpdateServiceProxy.exe [1500608 2023-09-18] (SteelSeries ApS -> )
S3 ucldr_battlegrounds_gl; C:\Program Files\Common Files\UNCHEATER\ucldr_battlegrounds_gl.exe [6020336 2022-04-10] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [9614144 2024-03-06] (Riot Games, Inc. -> Riot Games, Inc.)
R2 VoiceControlService; C:\Program Files (x86)\MSI\One Dragon Center\VoiceControl\VoiceControl_Service.exe [32400 2020-07-06] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\NisSrv.exe [3236840 2024-05-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\MsMpEng.exe [133704 2024-05-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 zksvc; C:\Program Files\Common Files\PUBG\zksvc.exe [8971056 2022-04-10] (PUBG CORPORATION -> PUBG Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [55608 2023-06-27] (Apple Inc. -> Apple Inc.)
R1 Asusgio2; C:\WINDOWS\system32\drivers\AsIO2.sys [34384 2021-10-21] (ASUSTeK Computer Inc. -> )
R1 Asusgio3; C:\WINDOWS\system32\drivers\AsIO3.sys [43160 2021-10-21] (ASUSTeK Computer Inc. -> )
S3 atvi-brynhildr; C:\ProgramData\Battle.net_components\brynhildr_odin\brynhildr.sys [2336008 2024-02-17] (Activision Publishing Inc -> Activision Blizzard, Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [532480 2022-11-12] (Microsoft Corporation) [Datei ist nicht signiert]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [184320 2022-11-12] (Microsoft Corporation) [Datei ist nicht signiert]
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [Datei ist nicht signiert]
S1 EneTechIo; C:\WINDOWS\system32\drivers\ene.sys [20992 2020-05-12] (Microsoft Windows Hardware Compatibility Publisher -> )
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [158640 2024-05-22] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [44880 2024-04-08] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [32080 2024-04-08] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [73040 2024-04-08] (Logitech Inc -> Logitech)
R3 logi_lamparray; C:\WINDOWS\System32\DriverStore\FileRepository\logi_lamparray_usb.inf_amd64_cdf3ca3c77d5f267\logi_lamparray.sys [89064 2024-04-21] (Logitech Inc -> Logitech, Inc.)
R2 mbamchameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [223184 2024-05-22] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2024-05-22] (Microsoft Windows Early Launch Anti-Malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\system32\DRIVERS\farflt11.sys [234856 2024-05-22] (Malwarebytes Inc. -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [78400 2024-05-22] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239576 2024-05-22] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [188784 2024-05-22] (Malwarebytes Inc. -> Malwarebytes)
R1 MSIO; C:\WINDOWS\system32\drivers\MsIo64.sys [17424 2020-01-19] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_ea6cec41fc5b2a8b\NvModuleTracker.sys [47240 2024-04-03] (NVIDIA Corporation -> NVIDIA Corporation)
R3 rtcx21; C:\WINDOWS\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_516e5c9b75c49dc2\rtcx21x64.sys [539648 2022-05-06] (Microsoft Windows -> Realtek)
R3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [43456 2023-12-19] (Microsoft Windows Hardware Compatibility Publisher -> SteelSeries ApS)
R3 sshid; C:\WINDOWS\System32\drivers\sshid.sys [44480 2024-03-01] (Microsoft Windows Hardware Compatibility Publisher -> SteelSeries ApS)
R3 SteelSeries_Sonar_VAD; C:\WINDOWS\System32\DriverStore\FileRepository\steelseries-sonar-vad.inf_amd64_da15ab44a6216a8e\SteelSeries-Sonar-VAD.sys [95440 2023-03-17] (SteelSeries ApS -> Windows (R) Win 7 DDK provider)
R1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [21861160 2024-02-22] (Riot Games, Inc. -> Riot Games, Inc.)
R3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [21056 2024-05-17] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [601496 2024-05-17] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105880 2024-05-17] (Microsoft Windows -> Microsoft Corporation)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [1431256 2022-04-10] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
S3 qeeyoupacket; \??\C:\Users\wolfa\AppData\Local\LagoFast\processFilter8.sys [X]
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat (erstellte) (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2024-05-24 11:27 - 2024-05-24 11:27 - 000032702 _____ C:\Users\wolfa\Downloads\FRST.txt
2024-05-24 11:27 - 2024-05-24 11:27 - 000000000 ____D C:\FRST
2024-05-24 11:26 - 2024-05-24 11:26 - 002395136 _____ (Farbar) C:\Users\wolfa\Downloads\FRST64.exe
2024-05-23 09:25 - 2024-05-23 09:25 - 000306114 _____ C:\Users\wolfa\Downloads\1704802135744-5.-pk---vorlagen-f-r-die-schriftliche-ausarbeitung 2 1.pdf
2024-05-22 18:03 - 2024-05-22 18:03 - 000289071 _____ C:\Users\wolfa\Downloads\837b4836-fdf0-41e9-823e-54d47f1fcb5a.pdf
2024-05-22 17:52 - 2024-05-22 17:52 - 000018305 _____ C:\Users\wolfa\Downloads\1704802135744-5.-pk---vorlagen-f-r-die-schriftliche-ausarbeitung  3.odt
2024-05-22 15:08 - 2024-05-22 15:08 - 000758838 _____ C:\WINDOWS\system32\perfh007.dat
2024-05-22 15:08 - 2024-05-22 15:08 - 000157058 _____ C:\WINDOWS\system32\perfc007.dat
2024-05-22 15:02 - 2024-05-22 15:02 - 000234856 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt11.sys
2024-05-22 15:02 - 2024-05-22 15:02 - 000188784 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2024-05-22 12:53 - 2024-03-26 21:11 - 000059928 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2024-05-22 12:53 - 2024-03-26 19:21 - 000060240 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2024-05-22 11:57 - 2024-05-24 11:16 - 000000000 ____D C:\Users\wolfa\AppData\Local\Malwarebytes
2024-05-22 11:57 - 2024-05-22 11:57 - 000002100 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2024-05-22 11:57 - 2024-05-22 11:57 - 000002088 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2024-05-22 11:56 - 2024-05-22 11:56 - 000000000 ____D C:\ProgramData\Malwarebytes
2024-05-22 11:56 - 2024-05-22 11:56 - 000000000 ____D C:\Program Files\Malwarebytes
2024-05-22 11:54 - 2024-05-22 11:54 - 002589624 _____ (Malwarebytes) C:\Users\wolfa\Downloads\MBSetup.exe
2024-05-22 11:45 - 2024-05-22 11:45 - 008730176 _____ (Google LLC) C:\Users\wolfa\Downloads\ChromeSetup.exe
2024-05-22 11:45 - 2024-05-22 11:45 - 000002246 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-05-22 11:45 - 2024-05-22 11:45 - 000002205 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2024-05-21 17:50 - 2024-05-21 17:50 - 000003534 _____ C:\WINDOWS\system32\Tasks\SEO
2024-05-21 17:45 - 2024-05-21 17:45 - 000000000 ____D C:\Users\Public\Security Sessions
2024-05-21 17:44 - 2024-05-21 17:44 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avira
2024-05-21 17:43 - 2024-05-21 17:43 - 000000000 ____D C:\WINDOWS\SysWOW64\statReporter
2024-05-21 17:43 - 2024-05-21 17:43 - 000000000 ____D C:\Users\wolfa\AppData\Local\AviraWebView2Cache
2024-05-21 17:42 - 2024-05-21 17:44 - 000130096 _____ C:\WINDOWS\system32\rtp.db
2024-05-21 17:42 - 2024-05-21 17:42 - 000000000 ____D C:\Users\wolfa\AppData\Local\Avira
2024-05-21 17:39 - 2024-05-24 11:20 - 000000000 ____D C:\Users\wolfa\AppData\Roaming\SEO
2024-05-21 17:37 - 2024-05-21 17:37 - 000004528 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1716305849
2024-05-21 17:37 - 2024-05-21 17:37 - 000004268 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1716305847
2024-05-21 10:22 - 2024-05-21 10:22 - 000000000 ____D C:\Users\wolfa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Play Games
2024-05-20 20:01 - 2024-05-22 17:46 - 000022087 _____ C:\Users\wolfa\Downloads\1704802135744-5.-pk---vorlagen-f-r-die-schriftliche-ausarbeitung.odt
2024-05-20 19:36 - 2024-05-20 19:36 - 002183675 _____ C:\Users\wolfa\Downloads\interne handreichung 5. pk[1] (2).pdf
2024-05-20 19:35 - 2024-05-20 19:35 - 002183675 _____ C:\Users\wolfa\Downloads\interne handreichung 5. pk[1] (1).pdf
2024-05-20 19:33 - 2024-05-20 19:33 - 002183675 _____ C:\Users\wolfa\Downloads\interne handreichung 5. pk[1].pdf
2024-05-20 13:27 - 2024-05-24 11:18 - 000000000 ____D C:\Users\wolfa\AppData\Roaming\Badlion Client
2024-05-20 13:27 - 2024-05-20 13:27 - 000002394 _____ C:\Users\wolfa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Badlion Client.lnk
2024-05-20 13:27 - 2024-05-20 13:27 - 000002386 _____ C:\Users\wolfa\Desktop\Badlion Client.lnk
2024-05-20 13:27 - 2024-05-20 13:27 - 000000000 ____D C:\Users\wolfa\AppData\Local\@badlionnative-desktop-updater
2024-05-20 13:26 - 2024-05-20 13:26 - 111067728 _____ (Badlion) C:\Users\wolfa\Downloads\Badlion Client Setup 4.3.0.exe
2024-05-20 13:06 - 2024-05-20 12:55 - 016367913 _____ C:\Users\wolfa\Desktop\DistantHorizons-fabric-2.0.4-a-dev-1.20.6.jar
2024-05-20 13:06 - 2024-05-20 12:55 - 002698708 _____ C:\Users\wolfa\Desktop\iris-1.7.0+mc1.20.6.jar
2024-05-20 13:06 - 2024-05-20 12:55 - 002225556 _____ C:\Users\wolfa\Desktop\fabric-api-0.98.0+1.20.6.jar
2024-05-20 13:06 - 2024-05-20 12:55 - 000964688 _____ C:\Users\wolfa\Desktop\sodium-fabric-0.5.8+mc1.20.6.jar
2024-05-20 12:55 - 2024-05-20 12:55 - 000000000 ____D C:\Users\wolfa\AppData\Roaming\.iris-installer
2024-05-20 12:54 - 2024-05-20 12:54 - 001650021 _____ C:\Users\wolfa\Downloads\Iris-Installer-3.2.0.jar
2024-05-17 18:30 - 2024-05-17 18:31 - 007446757 _____ C:\Users\wolfa\Downloads\OptiFine_1.20.6-rc1_HD_K_J2_pre23.jar
2024-05-17 17:39 - 2024-05-17 17:39 - 002424887 _____ C:\Users\wolfa\Downloads\Fullbright.zip
2024-05-17 17:36 - 2024-05-17 17:37 - 007232045 _____ C:\Users\wolfa\Downloads\OptiFine_1.20.4_HD_U_I7.jar
2024-05-15 16:14 - 2024-05-15 16:14 - 000612786 _____ C:\Users\wolfa\Downloads\optifabric-1.14.3.jar
2024-05-15 16:12 - 2024-05-15 16:12 - 016259740 _____ C:\Users\wolfa\Downloads\DistantHorizons-2.0.1-a-1.20.1.jar
2024-05-15 15:09 - 2024-05-15 15:09 - 000660063 _____ C:\Users\wolfa\Downloads\Population infographics poster.pptx
2024-05-15 15:00 - 2024-05-15 15:00 - 014557648 _____ C:\Users\wolfa\Downloads\Layouts-Template-lourrutiappt.zip
2024-05-14 19:50 - 2024-05-14 19:52 - 000000000 ___HD C:\$WinREAgent
2024-05-01 15:55 - 2024-05-01 15:55 - 000175106 _____ C:\Users\wolfa\Downloads\DB_Ticket_510130214751.pdf
2024-04-29 22:44 - 2024-04-29 22:44 - 000000000 ____D C:\Users\wolfa\AppData\LocalLow\Landfall Games

==================== Ein Monat (geänderte) ==================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2024-05-24 11:18 - 2020-12-02 20:30 - 000000000 ____D C:\Users\wolfa\AppData\Roaming\discord
2024-05-24 11:10 - 2024-02-16 14:56 - 000267768 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy_4.dll
2024-05-24 11:10 - 2022-10-21 15:46 - 000108024 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe
2024-05-24 11:10 - 2022-10-21 15:46 - 000075256 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe
2024-05-24 11:10 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps
2024-05-24 11:10 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-05-24 11:10 - 2021-11-19 21:35 - 000206328 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2024-05-24 11:10 - 2020-12-06 09:16 - 002729464 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2024-05-24 11:10 - 2020-12-06 09:16 - 000722424 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2024-05-24 11:10 - 2020-12-06 09:16 - 000218616 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2024-05-24 11:10 - 2020-12-06 09:16 - 000144888 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2024-05-24 11:07 - 2020-12-02 19:14 - 000000000 ____D C:\ProgramData\Packages
2024-05-24 11:05 - 2020-12-02 19:28 - 000000000 ____D C:\Users\wolfa\AppData\Roaming\.minecraft
2024-05-24 11:01 - 2024-04-08 21:16 - 000000000 ____D C:\Users\wolfa\AppData\Local\LGHUB
2024-05-24 11:01 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-05-24 11:01 - 2021-02-09 09:20 - 000000000 ____D C:\ProgramData\NVIDIA
2024-05-24 11:01 - 2020-12-02 20:30 - 000000000 ____D C:\Users\wolfa\AppData\Local\Discord
2024-05-24 11:00 - 2022-11-12 14:30 - 000003756 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-05-24 11:00 - 2022-11-12 14:30 - 000003632 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-05-24 00:41 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-05-23 18:58 - 2022-11-12 14:26 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-05-23 13:36 - 2022-11-12 14:10 - 000000000 ____D C:\Users\wolfa
2024-05-23 13:31 - 2022-08-19 00:53 - 000000228 _____ C:\SetMatrixLEDScript.xml
2024-05-23 13:31 - 2022-08-19 00:53 - 000000200 _____ C:\QueryAllDevice.xml
2024-05-23 13:31 - 2022-08-19 00:16 - 000004918 _____ C:\GetDeviceStatus.xml
2024-05-23 13:31 - 2022-08-19 00:16 - 000000066 _____ C:\GetDeviceCap.xml
2024-05-22 18:38 - 2021-12-12 22:35 - 000000000 ____D C:\SteamLibrary
2024-05-22 18:15 - 2021-10-31 13:12 - 000000000 ____D C:\Users\wolfa\AppData\Local\CrashDumps
2024-05-22 16:22 - 2020-12-02 20:37 - 000000000 ____D C:\Users\wolfa\AppData\Local\D3DSCache
2024-05-22 15:08 - 2022-11-12 14:28 - 001754660 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-05-22 15:08 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF
2024-05-22 15:04 - 2021-04-18 18:55 - 000000001 _____ C:\WINDOWS\vgkbootstatus.dat
2024-05-22 15:01 - 2022-11-12 14:30 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-05-22 15:01 - 2022-05-07 07:17 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2024-05-22 15:01 - 2019-12-07 09:05 - 000012288 ___SH C:\DumpStack.log.tmp
2024-05-22 12:53 - 2022-11-12 14:30 - 000004308 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-05-22 12:53 - 2022-11-12 14:30 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-05-22 12:53 - 2022-11-12 14:30 - 000003940 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-05-22 12:53 - 2022-11-12 14:30 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-05-22 12:53 - 2022-11-12 14:30 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-05-22 12:53 - 2022-11-12 14:30 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-05-22 12:53 - 2022-11-12 14:30 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-05-22 12:53 - 2022-11-12 14:30 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-05-22 12:53 - 2022-11-12 14:30 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-05-22 12:53 - 2021-07-08 15:02 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2024-05-22 12:53 - 2020-12-02 19:14 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2024-05-22 12:53 - 2020-12-02 19:14 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2024-05-22 12:17 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate
2024-05-22 12:02 - 2023-12-20 18:52 - 000001607 _____ C:\WINDOWS\system32\config\VSMIDK
2024-05-22 12:01 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources
2024-05-22 12:00 - 2022-11-25 17:03 - 000000000 ____D C:\Users\wolfa\AppData\Roaming\stubinstaller
2024-05-22 11:56 - 2024-04-08 21:16 - 000000000 ____D C:\Users\wolfa\AppData\Roaming\G HUB
2024-05-22 11:56 - 2022-05-07 07:24 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-05-22 01:04 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-05-21 17:48 - 2022-11-12 14:26 - 000295504 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-05-21 17:46 - 2023-06-29 20:01 - 000000000 ____D C:\Users\wolfa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LagoFast
2024-05-21 17:45 - 2022-09-13 16:47 - 000000000 ____D C:\Users\wolfa\AppData\Roaming\Opera Software
2024-05-20 13:15 - 2021-11-30 16:40 - 000000000 ____D C:\Users\wolfa\AppData\Local\Overwolf
2024-05-20 13:08 - 2023-07-09 17:26 - 000000000 ____D C:\Program Files (x86)\Overwolf
2024-05-18 22:27 - 2022-05-07 12:35 - 000000000 ____D C:\Users\wolfa\AppData\Roaming\steelseries-gg-client
2024-05-17 12:31 - 2022-10-31 13:06 - 000000000 ____D C:\Users\wolfa\AppData\Local\Battle.net
2024-05-17 12:17 - 2020-12-02 19:00 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2024-05-16 18:51 - 2024-02-16 14:56 - 000267784 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy_4.dll.0
2024-05-16 18:51 - 2020-12-06 09:16 - 000722440 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll.0
2024-05-14 20:31 - 2023-10-12 22:34 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2024-05-14 20:31 - 2022-05-07 12:39 - 000000000 __SHD C:\WINDOWS\BitLockerDiscoveryVolumeContents
2024-05-14 20:31 - 2022-05-07 12:39 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2024-05-14 20:31 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2024-05-14 20:31 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2024-05-14 20:31 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\system32\UNP
2024-05-14 20:31 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\system32\F12
2024-05-14 20:31 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2024-05-14 20:31 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\PrintDialog
2024-05-14 20:31 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-05-14 20:31 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\UUS
2024-05-14 20:31 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2024-05-14 20:31 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2024-05-14 20:31 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2024-05-14 20:31 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemApps
2024-05-14 20:31 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2024-05-14 20:31 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2024-05-14 20:31 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2024-05-14 20:31 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2024-05-14 20:31 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2024-05-14 20:31 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\setup
2024-05-14 20:31 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2024-05-14 20:31 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-05-14 20:31 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\migwiz
2024-05-14 20:31 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2024-05-14 20:31 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Dism
2024-05-14 20:31 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-05-14 20:31 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-05-14 20:31 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2024-05-14 20:31 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2024-05-14 20:31 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\BrowserCore
2024-05-14 20:31 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-05-14 20:31 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\servicing
2024-05-14 19:55 - 2022-11-12 14:28 - 003214336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-05-14 19:40 - 2020-12-07 18:31 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-05-14 19:39 - 2020-12-07 18:31 - 196465576 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-05-08 21:13 - 2021-07-10 01:17 - 000000000 ____D C:\Users\wolfa\AppData\Local\Athena
2024-05-08 21:12 - 2022-06-21 20:46 - 000000000 ____D C:\Users\wolfa\AppData\Roaming\EasyAntiCheat
2024-05-08 14:06 - 2020-12-02 19:25 - 000000000 ____D C:\Users\wolfa\AppData\Local\Steam
2024-04-29 22:43 - 2020-12-06 09:47 - 000000000 ____D C:\Users\wolfa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2024-04-28 16:11 - 2022-03-06 16:06 - 000000000 ____D C:\ProgramData\Battle.net_components
2024-04-28 16:06 - 2022-10-31 13:05 - 000000000 ____D C:\Program Files (x86)\Battle.net
2024-04-27 20:59 - 2024-03-25 13:37 - 000000000 ____D C:\ProgramData\EA Desktop
2024-04-27 20:46 - 2021-11-29 19:40 - 000000000 ____D C:\Users\wolfa\AppData\Local\Ubisoft Game Launcher
2024-04-27 19:38 - 2022-01-27 19:55 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat_EOS

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========

2022-06-13 06:27 - 2022-06-19 20:54 - 000001656 _____ () C:\Users\wolfa\AppData\Roaming\coolcam.ini
2021-09-17 20:40 - 2022-09-01 16:21 - 000007602 _____ () C:\Users\wolfa\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

==================== Ende von FRST.txt ========================

Wolf123 · 24.05.2024, 11:15

Hier noch Addition:

Code:

ATTFilter

Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 22.05.2024 01
durchgeführt von wolfa (24-05-2024 11:28:33)
Gestartet von C:\Users\wolfa\Downloads
Microsoft Windows 11 Pro Version 23H2 22631.3593 (X64) (2022-11-12 12:30:32)
Start-Modus: Normal
==========================================================


==================== Konten: =============================


(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

Administrator (S-1-5-21-345432855-2133662985-3921909539-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-345432855-2133662985-3921909539-503 - Limited - Disabled)
Gast (S-1-5-21-345432855-2133662985-3921909539-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-345432855-2133662985-3921909539-504 - Limited - Disabled)
wolfa (S-1-5-21-345432855-2133662985-3921909539-1001 - Administrator - Enabled) => C:\Users\wolfa

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Malwarebytes (Enabled - Up to date) {0D452135-A081-B000-D6B6-132E52638543}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

AMD Ryzen Master SDK (HKLM\...\{DBD50508-5F75-416B-995D-C42433A00944}) (Version: 2.7.0.1725 - Advanced Micro Devices, Inc.)
ARMOURY CRATE Lite Service (HKLM\...\{EF3944FF-2501-4568-B15C-5701E726719E}) (Version: 5.2.10 - ASUS)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.14 - Michael Tippach)
ASUS AURA Extension Card HAL (HKLM\...\{237E1CAC-1708-4940-AC34-DF15C079AB70}) (Version: 1.1.0.13 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Extension Card HAL (HKLM-x32\...\{c398adfb-d090-4897-8845-baca53f7ecde}) (Version: 1.1.0.13 - ASUSTeK COMPUTER INC.) Hidden
ASUS Aura SDK (HKLM\...\{CF8E6E00-9C03-4440-81C0-21FACB921A6B}) (Version: 3.04.39 - ASUSTek COMPUTER INC.) Hidden
ASUS AURA VGA Component (HKLM\...\{71BB96A6-EAC4-45AE-A17D-D3ED43FF1D14}) (Version: 0.0.4.3 - ASUSTek COMPUTER INC. ) Hidden
ASUS AURA VGA Component (HKLM-x32\...\{7a0d5159-cb5e-4f66-91f8-bab46f864f14}) (Version: 0.0.4.3 - ASUSTek COMPUTER INC. ) Hidden
ASUS Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.107.113 - ASUSTeK Computer Inc.) Hidden
AURA DRAM Component (HKLM\...\{9AFE5429-866B-457D-A864-80BCF7672EE8}) (Version: 1.1.16 - ASUS) Hidden
AURA DRAM Component (HKLM-x32\...\{41a78792-5489-400c-a567-b78d40b8c878}) (Version: 1.1.16 - ASUS) Hidden
AURA lighting effect add-on (HKLM-x32\...\{1E2EA04B-FCA7-457E-B6F4-F33E1858E859}) (Version: 0.0.18 - ASUS)
AURA lighting effect add-on x64 (HKLM\...\{C5A4A164-4428-4931-B728-96EEF0FA3C44}) (Version: 0.0.18 - ASUS)
AURA Service (HKLM-x32\...\{0fcadbd2-1a6a-4a4a-a56d-fc7163d9b3fa}) (Version: 3.07.25 - ASUSTeK Computer Inc.)
AURA Service (HKLM-x32\...\{56EEEF7D-0AE3-401A-898B-581719D005AE}) (Version: 3.07.25 - ASUSTeK Computer Inc.) Hidden
AutoHotkey (HKLM\...\AutoHotkey) (Version: 2.0.11 - AutoHotkey Foundation LLC)
Badlion Client (HKU\S-1-5-21-345432855-2133662985-3921909539-1001\...\1de14785-dd8c-5cd2-aae8-d4a376f81d78) (Version: 4.3.0 - Badlion)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Blackmagic RAW Common Components (HKLM\...\{F4268583-A17F-43C8-AAAE-57CCA111273C}) (Version: 3.6.1 - Blackmagic Design)
Core Epic Installer (HKLM-x32\...\{531451dd-91d4-4b27-a171-1b9c7f325969}) (Version: 1.3.0.0 - Manticore Games) Hidden
CurseForge (HKU\S-1-5-21-345432855-2133662985-3921909539-1001\...\Overwolf_cchhcaiapeikjbdbpfplgmpobbcdkdaphclbmkbj) (Version: 1.251.0.1 - Overwolf app)
DaVinci Resolve (HKLM\...\{3AF5FB42-AA97-4582-B73C-8185234B7FFC}) (Version: 18.6.50007 - Blackmagic Design)
DaVinci Resolve Control Panels (HKLM\...\{D1ACF467-9FB4-45DA-942F-A19452E70A3F}) (Version: 2.0.7.0 - Blackmagic Design)
Discord (HKU\S-1-5-21-345432855-2133662985-3921909539-1001\...\Discord) (Version: 0.0.309 - Discord Inc.)
EA app (HKLM\...\{C2622085-ABD2-49E5-8AB9-D3D6A642C091}) (Version: 13.180.0.5693 - Electronic Arts) Hidden
EA app (HKLM-x32\...\{9b664098-4fe0-42aa-93ef-5b93a3c4fac5}) (Version: 13.180.0.5693 - Electronic Arts)
ENE RGB HAL (HKLM\...\{E050E98C-5524-4AFB-9E53-97700BEF2C02}) (Version: 1.1.37.0 - Ene Tech.) Hidden
ENE RGB HAL (HKLM-x32\...\{413fe4b8-1352-4234-a775-ff2f04ad9042}) (Version: 1.1.37.0 - Ene Tech.) Hidden
ENE_DRAM_RGB_AIO (HKLM\...\{1745D314-9077-46C9-8562-1C62BAE189B7}) (Version: 1.0.0.10 - Ene Tech.) Hidden
ENE_DRAM_RGB_AIO (HKLM-x32\...\{52d1d7de-19c3-4f83-97bb-f9435dc84c5b}) (Version: 1.0.0.10 - Ene Tech.) Hidden
ENE_EHD_M2_HAL (HKLM\...\{37A48B7F-D4EA-4863-844E-A284E2AA3C5D}) (Version: 1.0.9.1 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_M2_HAL (HKLM-x32\...\{bf1d7028-d935-477f-b5b2-053062f9b527}) (Version: 1.0.9.1 - ENE TECHNOLOGY INC.) Hidden
ENE_MousePad_HAL (HKLM\...\{9E97178A-ADB8-4778-BE60-7E28E2A72721}) (Version: 1.0.1.2 - ENE TECHNOLOGY INC.) Hidden
ENE_MousePad_HAL (HKLM-x32\...\{0c535d48-a3ba-4f7d-a1e2-10a941313631}) (Version: 1.0.1.2 - ENE TECHNOLOGY INC.) Hidden
ENE_X-JMI_HAL (HKLM\...\{2B8E611F-0B51-4FAC-87BB-AF50D82E7DDA}) (Version: 1.0.5.1 - ENE Tech) Hidden
ENE_X-JMI_HAL (HKLM-x32\...\{50ec3a07-291b-463e-be86-487eb8cbb71c}) (Version: 1.0.5.1 - ENE Tech) Hidden
Epic Games Launcher (HKLM-x32\...\{E0419FB0-0C46-4F07-9D5B-2FD78A8C45ED}) (Version: 1.3.0.0 - Epic Games, Inc.)
Epic Online Services (HKLM-x32\...\{57A956AB-4BCC-45C6-9B40-957E4E125568}) (Version: 2.0.44.0 - Epic Games, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 125.0.6422.77 - Google LLC)
Google Play Spiele (Beta) (HKLM\...\GooglePlayGames) (Version: 24.4.932.3 - Google LLC)
Java 8 Update 391 (HKLM-x32\...\{71324AE4-039E-4CA4-87B4-2F32180391F0}) (Version: 8.0.3910.13 - Oracle Corporation)
Java(TM) SE Development Kit 17.0.9 (64-bit) (HKLM\...\{7CD8D9DB-19F2-57B0-8F04-99DA5B3C62D4}) (Version: 17.0.9.0 - Oracle Corporation)
Kingston AURA DRAM Component (HKLM\...\{965CDF5F-901C-476F-B3A8-7396701B1129}) (Version: 1.1.12 - KINGSTON COMPONENTS INC.) Hidden
Kingston AURA DRAM Component (HKLM-x32\...\{2237a879-7fa4-4e21-ae3b-00f6a649b9d9}) (Version: 1.1.12 - KINGSTON COMPONENTS INC.) Hidden
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: 2024.3.553733 - Logitech)
Malwarebytes version 5.1.4.112 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 5.1.4.112 - Malwarebytes)
Microsoft Edge WebView2-Laufzeit (HKLM-x32\...\Microsoft EdgeWebView) (Version: 125.0.2535.51 - Microsoft Corporation)
Microsoft GameInput (HKLM-x32\...\{1F2B6AF3-C260-8666-5950-E3FEDBC851D6}) (Version: 10.1.22621.3036 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-345432855-2133662985-3921909539-1001\...\OneDriveSetup.exe) (Version: 22.181.0828.0002 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{C6FD611E-7EFE-488C-A0E0-974C09EF6473}) (Version: 5.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.38.33135 (HKLM-x32\...\{c649ede4-f16a-4486-a117-dcc2f2a35165}) (Version: 14.38.33135.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.38.33135 (HKLM-x32\...\{46c3b171-c15c-4137-8e1d-67eeb2985b44}) (Version: 14.38.33135.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.38.33135 (HKLM\...\{19AFE054-CA83-45D5-A9DB-4108EF4BD391}) (Version: 14.38.33135 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.38.33135 (HKLM\...\{AA0C8AB5-7297-4D46-A0D9-08096FE59E46}) (Version: 14.38.33135 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.38.33135 (HKLM-x32\...\{9C19C103-7DB1-44D1-A039-2C076A633A38}) (Version: 14.38.33135 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.38.33135 (HKLM-x32\...\{286DC39B-5FB7-4AFF-9DD4-22DB47664CD7}) (Version: 14.38.33135 - Microsoft Corporation) Hidden
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Minecraft Launcher (HKLM-x32\...\{836613A9-879F-427F-8522-52B357801273}) (Version: 1.0.0.0 - Mojang)
MSI SDK (HKLM-x32\...\{EE7D557C-3AE7-4348-8DCA-3A89790D0002}}_is1) (Version: 2.2021.0118.01 - MSI)
NVIDIA FrameView SDK 1.3.8513.32290073 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8513.32290073 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.28.0.412 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.28.0.412 - NVIDIA Corporation)
NVIDIA Grafiktreiber 552.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 552.22 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.40.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.40.14 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
NVIDIA USBC Driver 1.50.831.832 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_USBC) (Version: 1.50.831.832 - NVIDIA Corporation)
OpenIV (HKU\S-1-5-21-345432855-2133662985-3921909539-1001\...\OpenIV) (Version: 4.0.1.1452 - .black/OpenIV Team)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.250.1.1 - Overwolf Ltd.)
Patriot Viper DRAM RGB (HKLM\...\{1F9C282E-CCB4-4D8E-A5CB-7B74DFCD8C95}) (Version: 1.0.9.2 - Patriot Memory) Hidden
Patriot Viper DRAM RGB (HKLM-x32\...\{fdc098ce-d76c-4e2e-a0a6-01a24e9a1f7d}) (Version: 1.0.9.2 - Patriot Memory)
Patriot Viper M2 SSD RGB (HKLM\...\{8B4C0A3D-C135-4E1F-98D8-3926494B4D61}) (Version: 1.0.6.4 - Patriot Memory) Hidden
Patriot Viper M2 SSD RGB (HKLM-x32\...\{3c403389-0bc5-4298-bebf-09de0c0b745d}) (Version: 1.0.6.4 - Patriot Memory)
PHISON HAL (HKLM\...\{966E33F0-6786-4B38-AA29-C1B3F6C1955D}) (Version: 1.0.9.0 - PHISON Electronics Corp.) Hidden
PHISON HAL (HKLM-x32\...\{549da357-1b81-456b-83f2-dcc47c41dfff}) (Version: 1.0.9.0 - PHISON Electronics Corp.) Hidden
Riot Vanguard (HKLM\...\Riot Vanguard) (Version:  - Riot Games, Inc.)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.87.1898 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.3.0.2 - Rockstar Games)
ROG Live Service (HKLM\...\{2D87BFB6-C184-4A59-9BBE-3E20CE797631}) (Version: 2.1.5.0 - ASUSTek COMPUTER INC.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SteelSeries GG 62.0.0 (HKLM\...\SteelSeries GG) (Version: 62.0.0 - SteelSeries ApS)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 139.2.10843 - Ubisoft)
UE4 Prerequisites (x64) (HKLM\...\{1729B0A9-0490-418B-A565-89B4D5BC8F2D}) (Version: 1.2.0.0 - Epic Games, Inc.) Hidden
Universal Holtek RGB DRAM (HKLM\...\{826388E4-E31F-4514-948B-3BB954FB3EAF}) (Version: 1.0.0.2 - PD) Hidden
Universal Holtek RGB DRAM (HKLM-x32\...\{6870588f-9f28-488b-a169-cf548ad6b393}) (Version: 1.0.0.2 - PD)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{82BD0A1C-815F-487F-9AE7-CE73DA413CFF}) (Version: 4.91.0.0 - Microsoft Corporation)
VALORANT (HKU\S-1-5-21-345432855-2133662985-3921909539-1001\...\Riot Game valorant.live) (Version:  - Riot Games, Inc)
WD_BLACK AN1500 (HKLM\...\{085E2365-0A70-4230-B664-02D5E4FE7E9C}) (Version: 1.0.14.0 - ENE TECHNOLOGY INC.) Hidden
WD_BLACK AN1500 (HKLM-x32\...\{e42c5874-37b0-4977-9e8d-70bf006e1f76}) (Version: 1.0.14.0 - ENE TECHNOLOGY INC.) Hidden
WD_BLACK D50 (HKLM\...\{BDE43F26-5917-44F8-B86A-F1D9A6B80B32}) (Version: 1.0.9.0 - ENE TECHNOLOGY INC.) Hidden
WD_BLACK D50 (HKLM-x32\...\{a1d1ba00-92b7-4a99-8ebd-65b25c0e9e44}) (Version: 1.0.9.0 - ENE TECHNOLOGY INC.) Hidden
Windows*11-Installationsassistent (HKLM-x32\...\{115DF11E-4B4C-4EA9-9A79-00DB0C7EF02D}) (Version: 1.4.19041.2063 - Microsoft Corporation)
Windows-PC-Integritätsprüfung (HKLM\...\{B3956CF3-F6C5-4567-AC38-1FD4432B319C}) (Version: 3.6.2204.08001 - Microsoft Corporation)
WinRAR 6.00 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 6.00.0 - win.rar GmbH)
Zoom (HKU\S-1-5-21-345432855-2133662985-3921909539-1001\...\ZoomUMX) (Version: 5.17.1 (28914) - Zoom Video Communications, Inc.)

Packages:
=========

AURA Creator -> C:\Program Files\WindowsApps\B9ECED6F.AURACreator_3.8.6.0_x64__qmba6cd70vzyy [2024-05-09] (ASUSTeK COMPUTER INC.)
DragonCenter -> C:\Program Files\WindowsApps\9426MICRO-STARINTERNATION.DragonCenter_2.0.121.0_x64__kzh8wxbdkxb8p [2023-10-28] (MICRO-STAR INTERNATIONAL CO., LTD) [Startup Task]
Fotos-Add-On -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2022-10-03] (Microsoft Corporation)
Grounded -> C:\Program Files\WindowsApps\Microsoft.Maine_2.4.168.0_x64__8wekyb3d8bbwe [2024-05-14] (Microsoft Studios)
Media Engine-Add-On für Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2022-09-16] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2021-03-29] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2021-03-29] (Microsoft Corporation) [MS Ad]
Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_53.21110.548.0_x64__8wekyb3d8bbwe [2024-03-08] (Microsoft Corporation)
Microsoft.BingSearch -> C:\Program Files\WindowsApps\Microsoft.BingSearch_1.0.91.0_x64__8wekyb3d8bbwe [2024-04-12] (Microsoft Corporation)
Minecraft Dungeons -> C:\Program Files\WindowsApps\Microsoft.Lovika_1.17.0.0_x64__8wekyb3d8bbwe [2022-11-30] (Microsoft Studios)
Minecraft Launcher -> C:\Program Files\WindowsApps\Microsoft.4297127D64EC6_1.7.2.0_x64__8wekyb3d8bbwe [2024-02-17] (Microsoft Studios)
Neat Office - DOCX, XLSX & PDF App -> C:\Program Files\WindowsApps\15191PeakPlayer.NeatOffice_3.4.6.0_x64__y5c4dfz5b21fm [2024-04-03] (Any DVD &amp; Office App) [Startup Task]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.966.0_x64__56jybvy8sckqj [2024-04-23] (NVIDIA Corp.)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.237.701.0_x64__zpdnekdrzrea0 [2024-05-09] (Spotify AB) [Startup Task]
TranslucentTB -> C:\Program Files\WindowsApps\28017CharlesMilette.TranslucentTB_2024.1.0.0_x64__v826wp6bftszj [2024-04-03] (Charles Milette) [Startup Task]
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2419.11.0_x64__cv1g1gvanyjgm [2024-05-18] (WhatsApp Inc.) [Startup Task]
Windows Feature Experience Pack -> C:\WINDOWS\SystemApps\MicrosoftWindows.Client.LKG_cw5n1h2txyewy [2024-05-14] (Microsoft Windows)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-345432855-2133662985-3921909539-1001_Classes\CLSID\{6a27a1a9-7be8-1491-04ca-ee68a211c258}\localserver32 -> C:\Program Files\Google\Play Games\current\service\Service.exe (Google LLC -> Google LLC)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [ContextMenu] -> {ee10d625-cc60-30a4-b3df-4b349785be6b} => C:\Program Files (x86)\Avira\Security\Antivirus.ContextMenu\Antivirus.ContextMenu.DLL -> Keine Datei
ContextMenuHandlers3: [ContextMenu] -> {ee10d625-cc60-30a4-b3df-4b349785be6b} => C:\Program Files (x86)\Avira\Security\Antivirus.ContextMenu\Antivirus.ContextMenu.DLL -> Keine Datei
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2024-05-22] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_84b2c943d6816eb7\nvshext.dll [2024-04-12] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2024-05-22] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Nicht auf der Ausnahmeliste) ====================

==================== Verknüpfungen & WMI ========================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

ShortcutWithArgument: C:\Users\wolfa\Downloads\Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Default"

==================== Geladene Module (Nicht auf der Ausnahmeliste) =============


==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)

AlternateDataStreams: C:\ProgramData\DeviceList.xml:2838F9B016 [5154]
AlternateDataStreams: C:\ProgramData\DisplaySessionContainer1.log:F107EE40EF [5154]
AlternateDataStreams: C:\ProgramData\DisplaySessionContainer1.log_backup1:2DD1EC5C91 [5154]
AlternateDataStreams: C:\ProgramData\DisplaySessionContainer10.log:CCC93B07B0 [5154]
AlternateDataStreams: C:\ProgramData\DisplaySessionContainer10.log_backup1:AD433BF298 [5154]
AlternateDataStreams: C:\ProgramData\DisplaySessionContainer11.log:72C8986B20 [5154]
AlternateDataStreams: C:\ProgramData\DisplaySessionContainer11.log_backup1:97A90964FA [5154]
AlternateDataStreams: C:\ProgramData\DisplaySessionContainer12.log:C40F6B9209 [5154]
AlternateDataStreams: C:\ProgramData\DisplaySessionContainer12.log_backup1:7CC29836A6 [5154]
AlternateDataStreams: C:\ProgramData\DisplaySessionContainer13.log:AE3C879266 [5154]
AlternateDataStreams: C:\ProgramData\DisplaySessionContainer14.log:DE1448F4D7 [5154]
AlternateDataStreams: C:\ProgramData\DisplaySessionContainer14.log_backup1:D61270D3FD [5154]
AlternateDataStreams: C:\ProgramData\DisplaySessionContainer15.log:16B67B15CB [5154]
AlternateDataStreams: C:\ProgramData\DisplaySessionContainer15.log_backup1:1F4CC1D50C [5154]
AlternateDataStreams: C:\ProgramData\DisplaySessionContainer16.log:2B192A174C [5154]
AlternateDataStreams: C:\ProgramData\DisplaySessionContainer17.log:3D6CA1C7DE [5154]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\desktop.ini:B1DA6C571C [5154]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ahk2Exe.lnk:0676F50C01 [5154]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoHotkey Dash.lnk:B4B3884CBE [5154]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoHotkey Window Spy.lnk:88F1223DAF [5154]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\desktop.ini:41964AA945 [5154]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk:BE32D07BC5 [5154]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk:F20EF51E1F [5154]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shotcut.lnk:6762EAF92B [5154]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [6190]
AlternateDataStreams: C:\Users\wolfa\Downloads\FRST64.exe:MBAM.Zone.Identifier [193]

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================

==================== Internet Explorer (Nicht auf der Ausnahmeliste) ==========

BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre-1.8\bin\ssv.dll [2023-10-04] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre-1.8\bin\jp2ssv.dll [2023-10-04] (Oracle America, Inc. -> Oracle Corporation)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)

IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\.DEFAULT\...\webcompanion.com -> hxxp://webcompanion.com
IE trusted site: HKU\S-1-5-21-345432855-2133662985-3921909539-1001\...\localhost -> localhost

==================== Hosts Inhalt: =========================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2019-03-19 06:49 - 2019-03-19 06:49 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Andere Bereiche ===========================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-345432855-2133662985-3921909539-1001\Control Panel\Desktop\\Wallpaper -> 
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
 ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "Riot Vanguard"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKU\S-1-5-21-345432855-2133662985-3921909539-1001\...\StartupApproved\Run: => "CiscoMeetingDaemon"
HKU\S-1-5-21-345432855-2133662985-3921909539-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-345432855-2133662985-3921909539-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-345432855-2133662985-3921909539-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-345432855-2133662985-3921909539-1001\...\StartupApproved\Run: => "WallpaperEngine"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [UDP Query User{ABDDDEAF-3031-48F2-9F02-9E8106AF3F9B}C:\users\wolfa\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Allow) C:\users\wolfa\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe
FirewallRules: [TCP Query User{2B25A852-CF65-45FC-8E18-78DFA48BD2D0}C:\users\wolfa\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Allow) C:\users\wolfa\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe
FirewallRules: [UDP Query User{53FC3A6A-EBDC-4179-90A9-2DD6E2A54F80}C:\xboxgames\grounded\content\maine\binaries\wingdk\maine-wingdk-shipping.exe] => (Allow) C:\xboxgames\grounded\content\maine\binaries\wingdk\maine-wingdk-shipping.exe (Zugriff verweigert)  [Datei ist nicht signiert]
FirewallRules: [TCP Query User{88341655-68F0-4B0F-8D20-84E33A4C5436}C:\xboxgames\grounded\content\maine\binaries\wingdk\maine-wingdk-shipping.exe] => (Allow) C:\xboxgames\grounded\content\maine\binaries\wingdk\maine-wingdk-shipping.exe (Zugriff verweigert)  [Datei ist nicht signiert]
FirewallRules: [UDP Query User{CCF0118C-266D-4C4D-8445-6A4880738C42}D:\games\halo\halo infinite\content\haloinfinite.exe] => (Allow) D:\games\halo\halo infinite\content\haloinfinite.exe => Keine Datei
FirewallRules: [TCP Query User{316CDA84-2999-4153-9761-F94CF56FA620}D:\games\halo\halo infinite\content\haloinfinite.exe] => (Allow) D:\games\halo\halo infinite\content\haloinfinite.exe => Keine Datei
FirewallRules: [{61A05936-B93A-4969-B3D8-9F0664365D53}] => (Allow) D:\Launcher\Steam\steamapps\common\wallpaper_engine\bin\diagnostics32.exe (Skutta Software GmbH -> )
FirewallRules: [{4DEA8729-A154-42A5-B0BC-791BC6035EA4}] => (Allow) D:\Launcher\Steam\steamapps\common\wallpaper_engine\bin\diagnostics32.exe (Skutta Software GmbH -> )
FirewallRules: [UDP Query User{98B529F6-E3B8-4D84-A757-92A1D1B9BD29}D:\launcher\steam\steamapps\common\the cycle\prospect\binaries\win64\prospect-win64-shipping.exe] => (Allow) D:\launcher\steam\steamapps\common\the cycle\prospect\binaries\win64\prospect-win64-shipping.exe => Keine Datei
FirewallRules: [TCP Query User{B514D818-E537-460F-B94A-81225F084FFA}D:\launcher\steam\steamapps\common\the cycle\prospect\binaries\win64\prospect-win64-shipping.exe] => (Allow) D:\launcher\steam\steamapps\common\the cycle\prospect\binaries\win64\prospect-win64-shipping.exe => Keine Datei
FirewallRules: [{9D7E6BFA-13BE-4757-ADEC-7B9768974246}] => (Allow) D:\Launcher\Steam\steamapps\common\The Cycle\Prospect\Binaries\Win64\Prospect-Win64-Shipping.exe => Keine Datei
FirewallRules: [{CA17D273-03D8-464D-85ED-A84ADE16DD39}] => (Allow) D:\Launcher\Steam\steamapps\common\The Cycle\Prospect\Binaries\Win64\Prospect-Win64-Shipping.exe => Keine Datei
FirewallRules: [{85A2BBFE-2A6E-44A7-8AF8-5EDB735F5E52}] => (Allow) D:\Launcher\Steam\steamapps\common\The Cycle\Prospect\Binaries\Win64\Prospect-Win64-Shipping.exe => Keine Datei
FirewallRules: [{E72552AB-FEDB-4E7D-A99D-EAA1F87B384A}] => (Allow) D:\Launcher\Steam\steamapps\common\The Cycle\Prospect\Binaries\Win64\Prospect-Win64-Shipping.exe => Keine Datei
FirewallRules: [UDP Query User{1BBA895A-EE98-4434-85D9-1D1FDE2DE3D3}D:\launcher\steam\steamapps\common\destiny 2\destiny2.exe] => (Allow) D:\launcher\steam\steamapps\common\destiny 2\destiny2.exe => Keine Datei
FirewallRules: [TCP Query User{FCFC2EBA-BA44-4A4D-B6B5-69780F384E90}D:\launcher\steam\steamapps\common\destiny 2\destiny2.exe] => (Allow) D:\launcher\steam\steamapps\common\destiny 2\destiny2.exe => Keine Datei
FirewallRules: [UDP Query User{9535CF78-A86D-4270-A6C8-87BFF9BC8A51}C:\users\wolfa\onedrive\desktop\fivem\fivem.app\data\cache\subprocess\fivem_b2545_gtaprocess.exe] => (Allow) C:\users\wolfa\onedrive\desktop\fivem\fivem.app\data\cache\subprocess\fivem_b2545_gtaprocess.exe => Keine Datei
FirewallRules: [TCP Query User{57FE16F5-24E4-4FAE-B193-5FCEEA53D629}C:\users\wolfa\onedrive\desktop\fivem\fivem.app\data\cache\subprocess\fivem_b2545_gtaprocess.exe] => (Allow) C:\users\wolfa\onedrive\desktop\fivem\fivem.app\data\cache\subprocess\fivem_b2545_gtaprocess.exe => Keine Datei
FirewallRules: [UDP Query User{5FA271F7-8324-4AD5-99B2-E96BFE5191F2}D:\launcher\steam\steamapps\common\terraria\terrariaserver.exe] => (Allow) D:\launcher\steam\steamapps\common\terraria\terrariaserver.exe => Keine Datei
FirewallRules: [TCP Query User{9F3330A6-AA98-4EF0-86F9-134B1E4FA862}D:\launcher\steam\steamapps\common\terraria\terrariaserver.exe] => (Allow) D:\launcher\steam\steamapps\common\terraria\terrariaserver.exe => Keine Datei
FirewallRules: [UDP Query User{E41869D4-D5D5-4D4F-9D16-0273641AE345}D:\launcher\minecraft launcher\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Allow) D:\launcher\minecraft launcher\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe => Keine Datei
FirewallRules: [TCP Query User{B64278C8-DB0C-4217-B750-AB55981F58D0}D:\launcher\minecraft launcher\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Allow) D:\launcher\minecraft launcher\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe => Keine Datei
FirewallRules: [UDP Query User{A876A2B9-F292-49B6-B89A-F0E0637D5A0F}D:\launcher\steam\steamapps\common\titanfall2\titanfall2.exe] => (Allow) D:\launcher\steam\steamapps\common\titanfall2\titanfall2.exe => Keine Datei
FirewallRules: [TCP Query User{FFA07A43-92A6-4555-9899-5CAEFF17E872}D:\launcher\steam\steamapps\common\titanfall2\titanfall2.exe] => (Allow) D:\launcher\steam\steamapps\common\titanfall2\titanfall2.exe => Keine Datei
FirewallRules: [UDP Query User{B53C370A-DFD4-4327-BA14-A286F711AE10}C:\users\wolfa\appdata\local\discord\app-1.0.9004\discord.exe] => (Allow) C:\users\wolfa\appdata\local\discord\app-1.0.9004\discord.exe => Keine Datei
FirewallRules: [TCP Query User{CF2B5140-CC6A-4E4F-873C-C55D4D09B52A}C:\users\wolfa\appdata\local\discord\app-1.0.9004\discord.exe] => (Allow) C:\users\wolfa\appdata\local\discord\app-1.0.9004\discord.exe => Keine Datei
FirewallRules: [{ABDA9D1E-2C2C-4D2C-9863-554D61FAB2FF}] => (Allow) D:\Launcher\Steam\steamapps\common\Among Us\Among Us.exe () [Datei ist nicht signiert]
FirewallRules: [{48DA425D-C867-4B41-AF7C-FAD6CDC89453}] => (Allow) D:\Launcher\Steam\steamapps\common\Among Us\Among Us.exe () [Datei ist nicht signiert]
FirewallRules: [UDP Query User{8E16A41D-D758-4A69-9C1B-3E53B5F049A1}D:\launcher\minecraft launcher\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe] => (Allow) D:\launcher\minecraft launcher\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe => Keine Datei
FirewallRules: [TCP Query User{ED9FF5A8-DB33-408E-9CEA-93A1CA25F444}D:\launcher\minecraft launcher\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe] => (Allow) D:\launcher\minecraft launcher\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe => Keine Datei
FirewallRules: [{6554231D-5388-4EFB-9E24-8836234A16E7}] => (Allow) C:\Program Files\BlueStacks_nxt\HD-Player.exe => Keine Datei
FirewallRules: [{BB60C255-369A-4F1B-B840-E2D171C47066}] => (Allow) C:\Program Files (x86)\BlueStacks X\Cloud Game.exe => Keine Datei
FirewallRules: [{C558684E-000B-4957-A256-E937E4286231}] => (Allow) C:\Program Files (x86)\BlueStacks X\BlueStacksWeb.exe => Keine Datei
FirewallRules: [UDP Query User{984E361B-AB04-42D0-BB8C-8326B2129500}D:\games\cod\call of duty modern warfare\modernwarfare.exe] => (Allow) D:\games\cod\call of duty modern warfare\modernwarfare.exe => Keine Datei
FirewallRules: [TCP Query User{2E0AA7A0-C5F8-4129-A6CE-155387AD96AA}D:\games\cod\call of duty modern warfare\modernwarfare.exe] => (Allow) D:\games\cod\call of duty modern warfare\modernwarfare.exe => Keine Datei
FirewallRules: [UDP Query User{219D79D0-220D-4EF1-B046-0FCC7990187B}D:\launcher\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) D:\launcher\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{014CFF3A-EAF1-4512-961B-7935BD288B55}D:\launcher\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) D:\launcher\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{C55E7BAF-B625-446B-8124-DD44B0EFED5B}D:\launcher\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\launcher\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe => Keine Datei
FirewallRules: [TCP Query User{CB29B138-9256-4778-926B-4ECE6DEEFF45}D:\launcher\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\launcher\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe => Keine Datei
FirewallRules: [UDP Query User{FC75422E-36DA-454D-9CBA-E7F05AA8AAAA}C:\users\wolfa\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe] => (Allow) C:\users\wolfa\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe
FirewallRules: [TCP Query User{6A634A5A-DF09-4C03-A261-A3FDD6A29FED}C:\users\wolfa\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe] => (Allow) C:\users\wolfa\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe
FirewallRules: [UDP Query User{6C14BBC7-8674-4776-A8D3-C71EFFC2FE81}D:\games\gtav\grand theft auto v\gta5.exe] => (Allow) D:\games\gtav\grand theft auto v\gta5.exe => Keine Datei
FirewallRules: [TCP Query User{390DA83C-BC8D-4DEA-8405-C1974B02BA10}D:\games\gtav\grand theft auto v\gta5.exe] => (Allow) D:\games\gtav\grand theft auto v\gta5.exe => Keine Datei
FirewallRules: [UDP Query User{14905B84-2EDB-46E4-A038-D6EBB1660562}D:\games\fortnite\fortnite\engine\binaries\win64\epicwebhelper.exe] => (Allow) D:\games\fortnite\fortnite\engine\binaries\win64\epicwebhelper.exe => Keine Datei
FirewallRules: [TCP Query User{C7BD4C2C-5623-42F9-8CD9-FA90D1AB167D}D:\games\fortnite\fortnite\engine\binaries\win64\epicwebhelper.exe] => (Allow) D:\games\fortnite\fortnite\engine\binaries\win64\epicwebhelper.exe => Keine Datei
FirewallRules: [{EA40C344-EAD9-45FB-8FED-E3A5B880B5C7}] => (Allow) D:\Launcher\Steam\steamapps\common\Brawlhalla\Brawlhalla.exe (UBISOFT ENTERTAINMENT INC. -> Blue Mammoth Games)
FirewallRules: [{49FD43A0-85CF-48F3-B85A-B54B6C6EDBE7}] => (Allow) D:\Launcher\Steam\steamapps\common\Brawlhalla\Brawlhalla.exe (UBISOFT ENTERTAINMENT INC. -> Blue Mammoth Games)
FirewallRules: [{DA1C34D3-A255-4836-AE29-17E3F021E42C}] => (Allow) D:\Launcher\Steam\steamapps\common\Splitgate\PortalWars\Binaries\Win64\PortalWars-Win64-Shipping.exe => Keine Datei
FirewallRules: [{12EC9089-B611-4CEF-AC9C-CE4E179ADEFE}] => (Allow) D:\Launcher\Steam\steamapps\common\Splitgate\PortalWars\Binaries\Win64\PortalWars-Win64-Shipping.exe => Keine Datei
FirewallRules: [{4FCD77D1-BF63-4BC7-8835-5F68D6FCC0CE}] => (Allow) D:\Launcher\Steam\steamapps\common\Aim Lab\AimLab_tb.exe () [Datei ist nicht signiert]
FirewallRules: [{B6D9806E-9E55-44EB-AA7F-F2ABD55854BA}] => (Allow) D:\Launcher\Steam\steamapps\common\Aim Lab\AimLab_tb.exe () [Datei ist nicht signiert]
FirewallRules: [{B892BBF8-EC16-47FD-A0D4-4F605464B394}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{9695F0A7-5834-41F1-841A-6AD07B58A373}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [UDP Query User{2D1F8CFF-932E-4612-9572-767FAE1A9259}D:\games\fortnite\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Block) D:\games\fortnite\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => Keine Datei
FirewallRules: [TCP Query User{A85B93B8-1343-4AA6-91A9-603B9AB0CB89}D:\games\fortnite\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Block) D:\games\fortnite\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => Keine Datei
FirewallRules: [{6AC74BB7-D938-4D61-8192-63E8359E2403}] => (Allow) D:\Launcher\Steam\steamapps\common\wallpaper_engine\launcher.exe (Skutta Software GmbH -> )
FirewallRules: [{DD637E0A-3A23-41E0-A366-4D244F346557}] => (Allow) D:\Launcher\Steam\steamapps\common\wallpaper_engine\launcher.exe (Skutta Software GmbH -> )
FirewallRules: [{344F1E66-CFCA-4F04-9E9D-D9000A936E31}] => (Allow) D:\Launcher\Steam\steamapps\common\Apex Legends\EasyAntiCheat_launcher.exe => Keine Datei
FirewallRules: [{78DEB374-496B-479F-8713-78B116A84477}] => (Allow) D:\Launcher\Steam\steamapps\common\Apex Legends\EasyAntiCheat_launcher.exe => Keine Datei
FirewallRules: [{D9B24416-EDE3-42B8-900D-E919E494A7DD}] => (Allow) D:\Launcher\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe => Keine Datei
FirewallRules: [{F051CC74-F8F0-48EB-8B95-51199ED82069}] => (Allow) D:\Launcher\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe => Keine Datei
FirewallRules: [{A776336B-4945-4451-A3D9-C1A87364F220}] => (Allow) D:\Launcher\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{D7629398-D9DC-402C-9CA3-30671EC67A3D}] => (Allow) D:\Launcher\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{7369F621-5ADC-45F5-B1A2-B504C924EAFF}] => (Allow) D:\Launcher\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{44ADA738-128D-4441-8F43-1AFC972217F1}] => (Allow) D:\Launcher\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{0E2ED0EB-123D-4F7E-AD2C-6EC5D40BB3D4}] => (Allow) C:\Program Files (x86)\Steam]\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe => Keine Datei
FirewallRules: [{01F8751C-F99D-4888-AC84-B795BF3E2CD1}] => (Allow) C:\Program Files (x86)\Steam]\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe => Keine Datei
FirewallRules: [{943AFC5B-7A30-4102-A054-606936871384}] => (Allow) C:\Program Files (x86)\Steam]\steamapps\common\For Honor\forhonor.exe => Keine Datei
FirewallRules: [{E89F7351-8F53-4DF7-9019-32FE24AF991B}] => (Allow) C:\Program Files (x86)\Steam]\steamapps\common\For Honor\forhonor.exe => Keine Datei
FirewallRules: [{ADA56B3C-2289-476F-8F12-380C617DFD62}] => (Allow) C:\Program Files (x86)\Steam]\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_Vulkan.exe => Keine Datei
FirewallRules: [{99317686-1372-4F1C-84AC-CDA4D639ACC5}] => (Allow) C:\Program Files (x86)\Steam]\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_Vulkan.exe => Keine Datei
FirewallRules: [{7FBDC948-5EDC-4991-B417-95BF24E1D614}] => (Allow) C:\Program Files (x86)\Steam]\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix.exe => Keine Datei
FirewallRules: [{BFC4786B-3BE3-4D0A-AF5B-BE1DFFF85BB9}] => (Allow) C:\Program Files (x86)\Steam]\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix.exe => Keine Datei
FirewallRules: [{976C37DE-6AE6-4CF3-AFFF-3CBF1B9A202E}] => (Allow) C:\Program Files (x86)\Steam]\steamapps\common\PICO_PARK_ONLINE\pico_park.exe => Keine Datei
FirewallRules: [{4648AF27-6571-4AFB-A362-B48E5D81F57B}] => (Allow) C:\Program Files (x86)\Steam]\steamapps\common\PICO_PARK_ONLINE\pico_park.exe => Keine Datei
FirewallRules: [{41FA7EDA-542E-4A18-B9BE-06D8CF6565B4}] => (Allow) C:\Program Files (x86)\Steam]\steamapps\common\ForzaHorizon5\ForzaHorizon5.exe => Keine Datei
FirewallRules: [{EE42ED7D-BCFA-4DC4-9FCF-42FDF7B34FD3}] => (Allow) C:\Program Files (x86)\Steam]\steamapps\common\ForzaHorizon5\ForzaHorizon5.exe => Keine Datei
FirewallRules: [UDP Query User{DE399059-1F3D-44DC-B7E4-A84A3CB72005}C:\riot games\riot client\riotclientservices.exe] => (Allow) C:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [TCP Query User{EEDEF783-5191-476B-B1C6-1B62A396DDD6}C:\riot games\riot client\riotclientservices.exe] => (Allow) C:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [{7F825558-D303-496F-890B-6D7C04BF1364}] => (Allow) C:\Program Files (x86)\Steam]\steamapps\common\Valheim\valheim.exe => Keine Datei
FirewallRules: [{082F7552-F89D-4609-87B5-EF3C262C6013}] => (Allow) C:\Program Files (x86)\Steam]\steamapps\common\Valheim\valheim.exe => Keine Datei
FirewallRules: [{580F2F3C-8F8E-4278-B6EE-C652A0642CA1}] => (Allow) C:\Program Files (x86)\Steam]\steamapps\common\Counter-Strike Global Offensive\csgo.exe => Keine Datei
FirewallRules: [{4C6FCA74-EF63-4E77-AB44-FC495A2AFF9C}] => (Allow) C:\Program Files (x86)\Steam]\steamapps\common\Counter-Strike Global Offensive\csgo.exe => Keine Datei
FirewallRules: [UDP Query User{0D2A4D04-0CFE-4AB8-9E75-53C764F69E5C}C:\program files\rockstar games\grand theft auto v\gta5.exe] => (Allow) C:\program files\rockstar games\grand theft auto v\gta5.exe => Keine Datei
FirewallRules: [TCP Query User{1A760777-23BD-4F2B-B09A-9B0A2C30451F}C:\program files\rockstar games\grand theft auto v\gta5.exe] => (Allow) C:\program files\rockstar games\grand theft auto v\gta5.exe => Keine Datei
FirewallRules: [{6C0E88A2-C223-44DC-A01E-AAD417137F72}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E363D2B6-84B9-4435-A094-6ED144C625E9}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{74F4327C-E362-4C7B-9BB6-52DADA9FAE74}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{35B45762-6ACF-4DA0-A976-46B0CC919C95}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [UDP Query User{62E6711B-40A1-48EB-AFCD-D1456C3BD4B0}C:\program files (x86)\minecraft launcher\runtime\java-runtime-alpha\windows-x64\java-runtime-alpha\bin\javaw.exe] => (Block) C:\program files (x86)\minecraft launcher\runtime\java-runtime-alpha\windows-x64\java-runtime-alpha\bin\javaw.exe => Keine Datei
FirewallRules: [TCP Query User{7B2AB61A-7343-474D-B8A5-3EDE05FC7F45}C:\program files (x86)\minecraft launcher\runtime\java-runtime-alpha\windows-x64\java-runtime-alpha\bin\javaw.exe] => (Block) C:\program files (x86)\minecraft launcher\runtime\java-runtime-alpha\windows-x64\java-runtime-alpha\bin\javaw.exe => Keine Datei
FirewallRules: [UDP Query User{69613090-F1C1-4D1A-BA1C-9EFDA976DB8D}C:\program files\epic games\dauntless\archon\binaries\win64\dauntless-win64-shipping.exe] => (Allow) C:\program files\epic games\dauntless\archon\binaries\win64\dauntless-win64-shipping.exe => Keine Datei
FirewallRules: [TCP Query User{1840541D-3C5A-4FA6-A7DF-5D46D0737BCC}C:\program files\epic games\dauntless\archon\binaries\win64\dauntless-win64-shipping.exe] => (Allow) C:\program files\epic games\dauntless\archon\binaries\win64\dauntless-win64-shipping.exe => Keine Datei
FirewallRules: [{00D78D5D-66E0-4531-B0D1-6D6AC8288DA1}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe => Keine Datei
FirewallRules: [{9288F50D-A4A7-403D-AFDA-D1F9F55D045E}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe => Keine Datei
FirewallRules: [{0A30CACE-AB63-4F7C-9524-A78C0E0F9FF5}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe => Keine Datei
FirewallRules: [{008A4AEF-1A26-44EB-B6D9-FB70824644F9}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe => Keine Datei
FirewallRules: [{3085E359-9614-4B34-B8F0-7ABE4FD1C869}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe => Keine Datei
FirewallRules: [{E257E045-B4B6-4475-B227-DE9B3970CDA8}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe => Keine Datei
FirewallRules: [{8F376CC8-B9D6-48CA-9A7B-D13E45C84056}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe => Keine Datei
FirewallRules: [{1B5395D3-A1B9-47BA-B885-601ECC914BD7}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe => Keine Datei
FirewallRules: [{9CFC206C-C4A4-4622-A563-CFE37F6C4905}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Keine Datei
FirewallRules: [{9CD0B5B4-98B8-46B8-9EEA-0E3CAFD26F8C}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Keine Datei
FirewallRules: [TCP Query User{0E623E8E-9BD6-4B31-832F-3390ACC3589F}C:\users\wolfa\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\wolfa\appdata\roaming\spotify\spotify.exe => Keine Datei
FirewallRules: [UDP Query User{A7092C63-7E1F-4484-AD0A-D5AD6247AFE8}C:\users\wolfa\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\wolfa\appdata\roaming\spotify\spotify.exe => Keine Datei
FirewallRules: [{08D8C2F8-E940-4377-8D47-0878C9ABF1C5}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => Keine Datei
FirewallRules: [{BC7B5352-722B-4500-889A-862B262510E0}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => Keine Datei
FirewallRules: [TCP Query User{BA147D08-96C1-42B7-80AA-FF8917A12DAE}C:\programdata\badlionclient\jre\bin\javaw.exe] => (Allow) C:\programdata\badlionclient\jre\bin\javaw.exe
FirewallRules: [UDP Query User{75BEF0AC-044F-464E-BC0A-8A2CBF4F05BE}C:\programdata\badlionclient\jre\bin\javaw.exe] => (Allow) C:\programdata\badlionclient\jre\bin\javaw.exe
FirewallRules: [{502EBC3C-6B12-49BD-9BE6-6DA141B695F4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Among Us\Among Us.exe => Keine Datei
FirewallRules: [{DF10A683-E601-44DD-B7C8-1D32D7A31EB7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Among Us\Among Us.exe => Keine Datei
FirewallRules: [{DF0BB0AA-A138-453A-82C4-D893949C4258}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Modern Warfare 3\iw5sp.exe => Keine Datei
FirewallRules: [{B7668F7A-BCB3-44DB-B2D2-775DE24E42A8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Modern Warfare 3\iw5sp.exe => Keine Datei
FirewallRules: [{6A47657C-C2AB-499E-9B90-0F8DF6C2BD9C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Modern Warfare 3\iw5mp.exe => Keine Datei
FirewallRules: [{2AD11E80-32E9-40EA-903B-41C3B38E7F31}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Modern Warfare 3\iw5mp.exe => Keine Datei
FirewallRules: [TCP Query User{2974E2C9-BBC9-4683-90C0-76800128A316}C:\program files\epic games\roguecompany\roguecompany\binaries\win64\roguecompany.exe] => (Allow) C:\program files\epic games\roguecompany\roguecompany\binaries\win64\roguecompany.exe => Keine Datei
FirewallRules: [UDP Query User{D0F1189A-C931-45C7-9032-EB899C80AD44}C:\program files\epic games\roguecompany\roguecompany\binaries\win64\roguecompany.exe] => (Allow) C:\program files\epic games\roguecompany\roguecompany\binaries\win64\roguecompany.exe => Keine Datei
FirewallRules: [TCP Query User{9FA4015C-0133-4DD2-BDA6-01B95F7E6926}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => Keine Datei
FirewallRules: [UDP Query User{27C987D4-B52E-4E85-8229-77102ED5B0B5}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => Keine Datei
FirewallRules: [TCP Query User{11D08F89-6526-48CA-B3E0-996212A3C6D0}C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe => Keine Datei
FirewallRules: [UDP Query User{6ADCEC29-2086-4F4C-A020-6D4D283645E2}C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe => Keine Datei
FirewallRules: [TCP Query User{6D0ABFFF-0D2B-432A-BD07-3EFDE02336D7}C:\program files (x86)\call of duty modern warfare\modernwarfare.exe] => (Allow) C:\program files (x86)\call of duty modern warfare\modernwarfare.exe => Keine Datei
FirewallRules: [UDP Query User{5C6B9D1D-B711-47A0-A23E-4AD3F96A3089}C:\program files (x86)\call of duty modern warfare\modernwarfare.exe] => (Allow) C:\program files (x86)\call of duty modern warfare\modernwarfare.exe => Keine Datei
FirewallRules: [{C03ED868-E208-4EBC-9068-8345DF5ECAE7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\American Truck Simulator\bin\win_x64\amtrucks.exe => Keine Datei
FirewallRules: [{430F6CEC-104F-4A60-AD2C-3C1BE8DDF5E3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\American Truck Simulator\bin\win_x64\amtrucks.exe => Keine Datei
FirewallRules: [{2DB92657-6E8C-4EEB-A4C1-C0E3278D2C76}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Brawlhalla\Brawlhalla.exe => Keine Datei
FirewallRules: [{4D2B695E-CAE6-4CB9-A368-31E1A627A4A7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Brawlhalla\Brawlhalla.exe => Keine Datei
FirewallRules: [{64EDCF19-730A-4915-B704-64AA1C19B395}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe => Keine Datei
FirewallRules: [{9A8FAC90-625A-4BA1-9CC9-A497A4FF9D15}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe => Keine Datei
FirewallRules: [{CD7C1AAF-BF4F-4CC2-9FAE-336440D6D028}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fall Guys\FallGuys_client.exe => Keine Datei
FirewallRules: [{B7585157-5105-4DE4-80E6-5B561FCE6AEA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fall Guys\FallGuys_client.exe => Keine Datei
FirewallRules: [{5EC90A1F-AF8C-487C-9A18-844BDA8E6E53}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fall Guys\FallGuys_client_game.exe => Keine Datei
FirewallRules: [{2482A1C9-D9A1-4F96-839B-4DB481C5E0EF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fall Guys\FallGuys_client_game.exe => Keine Datei
FirewallRules: [{24A7707D-4943-45CA-9CE1-E9A24564667E}] => (Allow) C:\Program Files (x86)\Steam]\Steam.exe => Keine Datei
FirewallRules: [{DCCDA241-3E4D-4AF3-BAD8-BC0663618DFE}] => (Allow) C:\Program Files (x86)\Steam]\Steam.exe => Keine Datei
FirewallRules: [{9A5692E7-6489-44EC-B3EC-DC5EBA9CC2DF}] => (Allow) C:\Program Files (x86)\Steam]\bin\cef\cef.win7x64\steamwebhelper.exe => Keine Datei
FirewallRules: [{23AE8765-BC56-4EE5-B6BF-B5004931038D}] => (Allow) C:\Program Files (x86)\Steam]\bin\cef\cef.win7x64\steamwebhelper.exe => Keine Datei
FirewallRules: [TCP Query User{3E0BAE64-65F3-4649-A39D-6CA05F8786FF}C:\program files (x86)\minecraft launcher\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe => Keine Datei
FirewallRules: [UDP Query User{14AEB7BC-4FB3-4158-90DE-D375B5AA2C35}C:\program files (x86)\minecraft launcher\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe => Keine Datei
FirewallRules: [TCP Query User{614E6897-2032-4CB8-A28D-78EB5028506E}C:\users\wolfa\appdata\roaming\twitch\bin\electron\twitchui.exe] => (Allow) C:\users\wolfa\appdata\roaming\twitch\bin\electron\twitchui.exe => Keine Datei
FirewallRules: [UDP Query User{7744BFF4-9597-4C26-B90A-4A7CB1EC9867}C:\users\wolfa\appdata\roaming\twitch\bin\electron\twitchui.exe] => (Allow) C:\users\wolfa\appdata\roaming\twitch\bin\electron\twitchui.exe => Keine Datei
FirewallRules: [TCP Query User{31DA92E8-C518-4696-BC16-131789E1F5A7}C:\users\wolfa\downloads\anydesk.exe] => (Block) C:\users\wolfa\downloads\anydesk.exe => Keine Datei
FirewallRules: [UDP Query User{D711A7BB-CDB1-4920-97DB-B0A2C5BF9F56}C:\users\wolfa\downloads\anydesk.exe] => (Block) C:\users\wolfa\downloads\anydesk.exe => Keine Datei
FirewallRules: [{865C24FD-24B9-41DE-A9C8-8F46481F98A8}] => (Allow) C:\Users\wolfa\AppData\Local\Programs\Opera\93.0.4585.21\opera.exe => Keine Datei
FirewallRules: [{250876F9-E7A4-48B3-98C2-72545B6CD669}] => (Allow) C:\Users\wolfa\AppData\Local\Programs\Opera\93.0.4585.21_0\opera.exe => Keine Datei
FirewallRules: [TCP Query User{36664261-8D43-400B-A463-67BE463740F3}D:\call of duty\_retail_\cod.exe] => (Allow) D:\call of duty\_retail_\cod.exe => Keine Datei
FirewallRules: [UDP Query User{FFAEEA38-0EA0-459E-B740-FC65C5743B76}D:\call of duty\_retail_\cod.exe] => (Allow) D:\call of duty\_retail_\cod.exe => Keine Datei
FirewallRules: [TCP Query User{340E07C8-6857-46BB-B7B4-15F8B23E4F65}C:\riot games\valorant\live\shootergame\binaries\win64\valorant-win64-shipping.exe] => (Allow) C:\riot games\valorant\live\shootergame\binaries\win64\valorant-win64-shipping.exe (Riot Games, Inc. -> Riot Games)
FirewallRules: [UDP Query User{0D05C01C-7C1D-467B-9156-C08BA0D8F8C0}C:\riot games\valorant\live\shootergame\binaries\win64\valorant-win64-shipping.exe] => (Allow) C:\riot games\valorant\live\shootergame\binaries\win64\valorant-win64-shipping.exe (Riot Games, Inc. -> Riot Games)
FirewallRules: [TCP Query User{BB10221A-82AB-4247-8745-1D05C0571B52}D:\overwatch\_retail_\overwatch.exe] => (Allow) D:\overwatch\_retail_\overwatch.exe => Keine Datei
FirewallRules: [UDP Query User{A2124ECD-76E6-44C1-84F7-CF00857DAF30}D:\overwatch\_retail_\overwatch.exe] => (Allow) D:\overwatch\_retail_\overwatch.exe => Keine Datei
FirewallRules: [TCP Query User{C0807F7F-3562-4B24-AFA1-9A7872A7B891}D:\launcher\steam\steamapps\common\satisfactory\engine\binaries\win64\factorygame-win64-shipping.exe] => (Allow) D:\launcher\steam\steamapps\common\satisfactory\engine\binaries\win64\factorygame-win64-shipping.exe => Keine Datei
FirewallRules: [UDP Query User{71E034B8-5A4D-45EB-B01F-305C85DFA502}D:\launcher\steam\steamapps\common\satisfactory\engine\binaries\win64\factorygame-win64-shipping.exe] => (Allow) D:\launcher\steam\steamapps\common\satisfactory\engine\binaries\win64\factorygame-win64-shipping.exe => Keine Datei
FirewallRules: [TCP Query User{D84D8999-DD5A-4CCD-8DBB-1A45D7F3E97E}C:\users\wolfa\appdata\local\ubisoft\r6siege\y8s1.2.0.2_c7552350_d1607462_s51248_55217154\1345984380\rainbowsix.exe] => (Allow) C:\users\wolfa\appdata\local\ubisoft\r6siege\y8s1.2.0.2_c7552350_d1607462_s51248_55217154\1345984380\rainbowsix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [UDP Query User{E91B7B05-4F50-45E2-AD2A-2DAF8A1E8DC1}C:\users\wolfa\appdata\local\ubisoft\r6siege\y8s1.2.0.2_c7552350_d1607462_s51248_55217154\1345984380\rainbowsix.exe] => (Allow) C:\users\wolfa\appdata\local\ubisoft\r6siege\y8s1.2.0.2_c7552350_d1607462_s51248_55217154\1345984380\rainbowsix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{A303956E-B26C-4F3F-854F-0CF54C0C222C}] => (Allow) C:\Program Files (x86)\LagoFast\LagoFast.exe => Keine Datei
FirewallRules: [{1D91F5BF-C683-4076-8D07-414B8F961ABF}] => (Allow) C:\Program Files (x86)\LagoFast\LagoFast.exe => Keine Datei
FirewallRules: [TCP Query User{986BAE59-3DD8-4E73-B1F0-A22F6F5D9B8A}C:\users\wolfa\curseforge\minecraft\install\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Allow) C:\users\wolfa\curseforge\minecraft\install\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe
FirewallRules: [UDP Query User{CDD3CFB5-8C5C-48E3-BB99-098152C832B4}C:\users\wolfa\curseforge\minecraft\install\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Allow) C:\users\wolfa\curseforge\minecraft\install\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe
FirewallRules: [TCP Query User{2CAD4D5A-B728-48DB-BF36-455BD91D273F}D:\launcher\grand theft auto v\gta5.exe] => (Allow) D:\launcher\grand theft auto v\gta5.exe => Keine Datei
FirewallRules: [UDP Query User{9E0578CA-373E-4F53-83F7-62111A5F268B}D:\launcher\grand theft auto v\gta5.exe] => (Allow) D:\launcher\grand theft auto v\gta5.exe => Keine Datei
FirewallRules: [TCP Query User{F01F1F15-D5FF-4EE9-9208-4D1CCFB730CC}C:\users\wolfa\downloads\java\bin\javaw.exe] => (Allow) C:\users\wolfa\downloads\java\bin\javaw.exe => Keine Datei
FirewallRules: [UDP Query User{B691E886-22FB-427C-ADD2-EEA37D5D9116}C:\users\wolfa\downloads\java\bin\javaw.exe] => (Allow) C:\users\wolfa\downloads\java\bin\javaw.exe => Keine Datei
FirewallRules: [TCP Query User{7BA06D4B-6B3B-4DD8-A9BC-E163A9C3A2DA}C:\users\wolfa\appdata\roaming\.technic\runtimes\jre-legacy\bin\javaw.exe] => (Allow) C:\users\wolfa\appdata\roaming\.technic\runtimes\jre-legacy\bin\javaw.exe
FirewallRules: [UDP Query User{55C044E5-7C55-4DF5-9109-9B04156F4A24}C:\users\wolfa\appdata\roaming\.technic\runtimes\jre-legacy\bin\javaw.exe] => (Allow) C:\users\wolfa\appdata\roaming\.technic\runtimes\jre-legacy\bin\javaw.exe
FirewallRules: [TCP Query User{9CC2B088-8E71-4AFE-8EF0-C22B3895E2B8}C:\users\wolfa\appdata\local\discord\app-1.0.9016\discord.exe] => (Allow) C:\users\wolfa\appdata\local\discord\app-1.0.9016\discord.exe => Keine Datei
FirewallRules: [UDP Query User{D09865D8-994C-4E7C-BF4A-5097BC5A445A}C:\users\wolfa\appdata\local\discord\app-1.0.9016\discord.exe] => (Allow) C:\users\wolfa\appdata\local\discord\app-1.0.9016\discord.exe => Keine Datei
FirewallRules: [{F67D56E1-3245-4E5A-91A3-EFAE15288AE8}] => (Allow) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
FirewallRules: [{9FB32A16-43CC-41F1-B0BB-3A4A9624870F}] => (Allow) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
FirewallRules: [{623CC300-4D15-4FE3-8D07-2D6FE4CAA059}] => (Allow) D:\Launcher\Steam\steamapps\common\Rust\Rust.exe (EasyAntiCheat Oy -> Epic Games, Inc.)
FirewallRules: [{B5FBD03A-D2C4-4835-A710-EAC539C3069A}] => (Allow) D:\Launcher\Steam\steamapps\common\Rust\Rust.exe (EasyAntiCheat Oy -> Epic Games, Inc.)
FirewallRules: [TCP Query User{546DF632-4BEE-4FFB-A6A3-6BF601505255}D:\launcher\steam\steamapps\common\counter-strike global offensive\game\bin\win64\cs2.exe] => (Allow) D:\launcher\steam\steamapps\common\counter-strike global offensive\game\bin\win64\cs2.exe (Valve Corp. -> )
FirewallRules: [UDP Query User{A4B1272B-36FD-402E-A38E-CA6EBFAF29E3}D:\launcher\steam\steamapps\common\counter-strike global offensive\game\bin\win64\cs2.exe] => (Allow) D:\launcher\steam\steamapps\common\counter-strike global offensive\game\bin\win64\cs2.exe (Valve Corp. -> )
FirewallRules: [TCP Query User{12AA00D5-2C33-45D2-AAB6-21E116DAF58F}D:\launcher\steam\steamapps\common\the finals playtest\discovery\binaries\win64\discovery.exe] => (Allow) D:\launcher\steam\steamapps\common\the finals playtest\discovery\binaries\win64\discovery.exe => Keine Datei
FirewallRules: [UDP Query User{3636FA88-1F99-438B-9262-B75C8E928EC2}D:\launcher\steam\steamapps\common\the finals playtest\discovery\binaries\win64\discovery.exe] => (Allow) D:\launcher\steam\steamapps\common\the finals playtest\discovery\binaries\win64\discovery.exe => Keine Datei
FirewallRules: [TCP Query User{B57928F8-F155-46A9-9208-3E50C66A45C5}C:\users\wolfa\curseforge\minecraft\install\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Block) C:\users\wolfa\curseforge\minecraft\install\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe
FirewallRules: [UDP Query User{0C87DBD2-0D8D-4C67-8CB3-640ADC491874}C:\users\wolfa\curseforge\minecraft\install\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Block) C:\users\wolfa\curseforge\minecraft\install\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe
FirewallRules: [TCP Query User{7B2CF9A0-706A-4647-8D8E-FC97D37BAF5B}C:\program files\java\jdk-17\bin\java.exe] => (Allow) C:\program files\java\jdk-17\bin\java.exe
FirewallRules: [UDP Query User{2EAE736E-1BD3-4552-BF02-E9C9B7E0F306}C:\program files\java\jdk-17\bin\java.exe] => (Allow) C:\program files\java\jdk-17\bin\java.exe
FirewallRules: [TCP Query User{89915BAD-501C-48EB-953C-56E956887650}C:\program files\java\jdk-17\bin\javaw.exe] => (Allow) C:\program files\java\jdk-17\bin\javaw.exe
FirewallRules: [UDP Query User{335F3191-E355-4B3E-BAC8-F806F4D681DD}C:\program files\java\jdk-17\bin\javaw.exe] => (Allow) C:\program files\java\jdk-17\bin\javaw.exe
FirewallRules: [{680FB291-2A4E-4667-9067-2F5CB87D81B4}] => (Allow) C:\SteamLibrary\steamapps\common\Sea of Thieves\Athena\Binaries\Win64\SoTGame.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{22D2D751-BEC5-4CA5-9C28-384FA3A22D51}] => (Allow) C:\SteamLibrary\steamapps\common\Sea of Thieves\Athena\Binaries\Win64\SoTGame.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{66B983A6-A6B2-454C-9BDD-50CF3BA46820}] => (Allow) D:\Launcher\Steam\steamapps\common\The Finals\Discovery.exe (Embark Studios AB -> )
FirewallRules: [{0C400DD0-652E-474F-B842-7764002CCDB5}] => (Allow) D:\Launcher\Steam\steamapps\common\The Finals\Discovery.exe (Embark Studios AB -> )
FirewallRules: [TCP Query User{A6FE1627-A199-4947-9F6B-943EE95F2D7D}D:\launcher\steam\steamapps\common\the finals\discovery\binaries\win64\discovery.exe] => (Block) D:\launcher\steam\steamapps\common\the finals\discovery\binaries\win64\discovery.exe (Embark Studios AB -> Embark Studios AB)
FirewallRules: [UDP Query User{DEE23B3E-805B-4DE5-83AA-F988E035068B}D:\launcher\steam\steamapps\common\the finals\discovery\binaries\win64\discovery.exe] => (Block) D:\launcher\steam\steamapps\common\the finals\discovery\binaries\win64\discovery.exe (Embark Studios AB -> Embark Studios AB)
FirewallRules: [TCP Query User{D161A0E5-EEA0-4D58-86DE-3262773F0172}C:\users\wolfa\appdata\local\ubisoft\r6siege\rainbowsix.exe] => (Allow) C:\users\wolfa\appdata\local\ubisoft\r6siege\rainbowsix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [UDP Query User{0785D7DB-1132-4D9C-B577-0575B1429719}C:\users\wolfa\appdata\local\ubisoft\r6siege\rainbowsix.exe] => (Allow) C:\users\wolfa\appdata\local\ubisoft\r6siege\rainbowsix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [TCP Query User{7A671BA3-2FB1-43B1-8D60-125394064B17}C:\users\wolfa\appdata\local\ubisoft\r6siege\y8s4.1.1_c7979784_d1855302_s55631_65239726\3263248425\rainbowsix.exe] => (Allow) C:\users\wolfa\appdata\local\ubisoft\r6siege\y8s4.1.1_c7979784_d1855302_s55631_65239726\3263248425\rainbowsix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [UDP Query User{745EF74D-9ABB-4F56-A56D-D0EDC34CDE12}C:\users\wolfa\appdata\local\ubisoft\r6siege\y8s4.1.1_c7979784_d1855302_s55631_65239726\3263248425\rainbowsix.exe] => (Allow) C:\users\wolfa\appdata\local\ubisoft\r6siege\y8s4.1.1_c7979784_d1855302_s55631_65239726\3263248425\rainbowsix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{F13A89D7-FB95-466B-A242-36AB450C54E3}] => (Allow) C:\Users\wolfa\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{8A9CD8D3-0C7C-4553-8507-E6DAC763583D}] => (Allow) C:\Users\wolfa\AppData\Roaming\Zoom\bin\airhost.exe => Keine Datei
FirewallRules: [{D38CA4F9-8244-4E36-826E-FC104697A23A}] => (Allow) C:\Users\wolfa\AppData\Roaming\Zoom\bin\airhost.exe => Keine Datei
FirewallRules: [{1EC75F7E-13D9-43E3-8AA3-84E1C750BAAF}] => (Allow) C:\SteamLibrary\steamapps\common\Sons Of The Forest\SonsOfTheForest.exe () [Datei ist nicht signiert]
FirewallRules: [{4C82A3F1-26B6-4079-BC11-FC0D9D88CD90}] => (Allow) C:\SteamLibrary\steamapps\common\Sons Of The Forest\SonsOfTheForest.exe () [Datei ist nicht signiert]
FirewallRules: [{5FF82EF6-7429-4517-9112-CA083D6F4457}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\Resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [{A24AA815-61F2-4B21-852E-FBFDF785F0AC}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\bmdpaneld.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{CAFF7E27-E815-4D30-B840-8114D772EC6C}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\DaVinciPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{B3814729-7154-4109-BDB4-80B21774186E}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\JLCooperPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{5FD8E7F1-1DE6-4F85-9855-9FF1ED8EB0FE}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\EuphonixPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{2D7D0673-318E-4FC4-9375-8661C626843A}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\TangentPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{B628520A-7EA4-40EF-9325-E4A6283716CF}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\ElementsPanelDaemon.exe => Keine Datei
FirewallRules: [{A38FE231-F10C-4A31-BF91-BB7F00113DC7}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\fuscript.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [TCP Query User{1096CB13-14CC-4B1E-A4A3-1867D6618918}C:\program files\blackmagic design\davinci resolve\resolve.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [UDP Query User{4D587829-8C3B-4356-962E-92167BB84FC5}C:\program files\blackmagic design\davinci resolve\resolve.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [TCP Query User{446AC06C-9A48-4DE4-9D85-9A4B764202CD}C:\riot games\riot client\riotclientelectron\riot client.exe] => (Allow) C:\riot games\riot client\riotclientelectron\riot client.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [UDP Query User{0AB03479-BEF5-4EF1-A81C-9DC37A28CF71}C:\riot games\riot client\riotclientelectron\riot client.exe] => (Allow) C:\riot games\riot client\riotclientelectron\riot client.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [TCP Query User{6EC2DEEC-0D59-45D6-A287-A360A4B57A1F}D:\call of duty modern warfare\modernwarfare.exe] => (Allow) D:\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [UDP Query User{B09808C5-EA2A-4CAD-B425-D9ABCD6DFE04}D:\call of duty modern warfare\modernwarfare.exe] => (Allow) D:\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [{8CDEAC0D-75BD-4C16-9FBE-AC54F92DC33D}] => (Allow) D:\Launcher\Steam\steamapps\common\Fall Guys\FallGuys_client.exe () [Datei ist nicht signiert]
FirewallRules: [{B52955CA-D703-4DB6-90AE-CFC224BA787F}] => (Allow) D:\Launcher\Steam\steamapps\common\Fall Guys\FallGuys_client.exe () [Datei ist nicht signiert]
FirewallRules: [{24823128-F589-487A-A947-F67376D57CD0}] => (Allow) D:\Launcher\Steam\steamapps\common\Pixel Gun 3D PC Edition\Pixel Gun 3D.exe () [Datei ist nicht signiert]
FirewallRules: [{594398DB-1B62-4C8A-8431-8A3FBB4D3AC0}] => (Allow) D:\Launcher\Steam\steamapps\common\Pixel Gun 3D PC Edition\Pixel Gun 3D.exe () [Datei ist nicht signiert]
FirewallRules: [{ADC414A2-0F72-4D6E-AB54-15876B198730}] => (Allow) D:\Launcher\Steam\steamapps\common\Valheim\valheim.exe () [Datei ist nicht signiert]
FirewallRules: [{ED64FD77-F17D-4CF4-9A0F-7BC87CFA9634}] => (Allow) D:\Launcher\Steam\steamapps\common\Valheim\valheim.exe () [Datei ist nicht signiert]
FirewallRules: [{E770D61E-C989-49A9-8226-89D3A0ADE099}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{BB36CA43-E2EB-4197-A905-98E0DC9E3BDB}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{3D3728C0-5D5C-496B-B11E-E7C5CACB9E8F}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{8A11F4AD-D0D0-4795-97D7-8E9B92C74BE8}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{28E44284-A55B-4157-9351-B01B46574AB9}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{145681DC-5605-4E80-B504-853BDF5DD042}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{71BCDB6D-EE4B-4127-845C-78BE9204E0E6}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{71969C25-6125-4555-9FAF-5A1E5697B2F7}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{F8DF6B05-F406-474D-A2D5-075C8B523EC8}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{F9B689FF-19F1-4A0D-B202-AB2E849F6211}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{32EC3C0B-16F4-4982-8D0D-BE9C494B1852}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALaunchHelper.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{5E7868A1-4AA0-4F8C-A3F7-1573ED780C0D}] => (Allow) D:\Launcher\Steam\steamapps\common\Content Warning\Content Warning.exe () [Datei ist nicht signiert]
FirewallRules: [{A4F57503-6E1C-488C-B283-114AD8A7A2B9}] => (Allow) D:\Launcher\Steam\steamapps\common\Content Warning\Content Warning.exe () [Datei ist nicht signiert]
FirewallRules: [{37D327F5-0897-4517-810F-6698D2EB228B}] => (Allow) D:\Launcher\Steam\steamapps\common\Call of Duty HQ\bootstrapper.exe (Activision Publishing Inc -> )
FirewallRules: [{58996635-4548-4F2B-B207-BECEF617788C}] => (Allow) D:\Launcher\Steam\steamapps\common\Call of Duty HQ\bootstrapper.exe (Activision Publishing Inc -> )
FirewallRules: [{C90286A2-E9C6-4AA2-B779-262B1CA3CD10}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.237.701.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{31834145-A5A7-4386-92D0-C8951A7D99D5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.237.701.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{BF7DB844-2F1F-4EF6-BB99-134519BFE66F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.237.701.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{E71EA581-4E39-4AA6-B3AD-7DF10DE8BB66}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.237.701.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{B962F065-B7D3-4250-B2E4-F3834D63EF1B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.237.701.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{73CA0DB7-0BB8-40AE-9DF2-0593C2C42027}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.237.701.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{03BCC498-D05E-4624-B814-FFCC7BC9FC60}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.237.701.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{77664FB1-E357-47F3-8875-4926AFD46CF0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.237.701.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{911A3337-BF83-475C-ACF3-0CFC404AE6A2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.237.701.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{8F808C0D-2D77-49DA-85F1-56364AA8CA66}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.237.701.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{305D0F03-E67E-4F7B-9A15-F7C0A4F4FB7B}] => (Allow) C:\Program Files\Google\Play Games\current\emulator\crosvm.exe (Google LLC -> )
FirewallRules: [{960FC8ED-564A-4C2A-A74F-7905C2529CC9}] => (Allow) C:\Program Files\Google\Play Games\current\emulator\crosvm.exe (Google LLC -> )
FirewallRules: [TCP Query User{1F5AB9A7-FF78-46D9-95CC-68FFA8CC1CD2}C:\users\wolfa\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-delta\windows-x64\java-runtime-delta\bin\javaw.exe] => (Allow) C:\users\wolfa\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-delta\windows-x64\java-runtime-delta\bin\javaw.exe
FirewallRules: [UDP Query User{BF33AABC-4BFB-4868-A029-9FD541FC5974}C:\users\wolfa\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-delta\windows-x64\java-runtime-delta\bin\javaw.exe] => (Allow) C:\users\wolfa\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-delta\windows-x64\java-runtime-delta\bin\javaw.exe
FirewallRules: [{CF2EAD16-679B-48D0-99BD-9C11A59E4454}] => (Allow) C:\Program Files (x86)\Overwolf\0.248.120.19\OverwolfBrowser.exe => Keine Datei
FirewallRules: [{AE8DA6B4-2030-4D04-BC86-36651F163291}] => (Allow) C:\Program Files (x86)\Overwolf\0.248.120.19\OverwolfBrowser.exe => Keine Datei
FirewallRules: [{8CD24934-2A21-4916-AA7C-E49E7E0DAEDE}] => (Block) C:\Program Files (x86)\Overwolf\0.248.120.19\OverwolfBrowser.exe => Keine Datei
FirewallRules: [{D7876D68-F88D-43FD-B6CF-493F8ECB6A5F}] => (Block) C:\Program Files (x86)\Overwolf\0.248.120.19\OverwolfBrowser.exe => Keine Datei
FirewallRules: [{0E3FDB18-441B-47A3-98ED-58C4AF61B6B4}] => (Allow) C:\Program Files (x86)\Overwolf\0.250.1.1\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{093831A3-F72C-4571-A575-4813E56D5A02}] => (Allow) C:\Program Files (x86)\Overwolf\0.250.1.1\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [TCP Query User{12345B22-FC43-42C9-B80E-1C36D1D75857}C:\users\wolfa\appdata\local\programs\badlion client\badlion client.exe] => (Allow) C:\users\wolfa\appdata\local\programs\badlion client\badlion client.exe (ESL Gaming Online, Inc. -> Badlion)
FirewallRules: [UDP Query User{804CC3D0-BC81-48B3-9FBA-5F7CBAFFC8DB}C:\users\wolfa\appdata\local\programs\badlion client\badlion client.exe] => (Allow) C:\users\wolfa\appdata\local\programs\badlion client\badlion client.exe (ESL Gaming Online, Inc. -> Badlion)
FirewallRules: [TCP Query User{C61D7509-1AAF-44E4-AA32-BB7A8E6AC1FF}C:\users\wolfa\appdata\roaming\badlion client\data\jdk-21.0.2\bin\javaw.exe] => (Block) C:\users\wolfa\appdata\roaming\badlion client\data\jdk-21.0.2\bin\javaw.exe
FirewallRules: [UDP Query User{54649FCB-7AF1-48AA-B170-1AA7D52F88E4}C:\users\wolfa\appdata\roaming\badlion client\data\jdk-21.0.2\bin\javaw.exe] => (Block) C:\users\wolfa\appdata\roaming\badlion client\data\jdk-21.0.2\bin\javaw.exe
FirewallRules: [{0CA3B65C-F8D6-4967-A1B5-AAE8BB457B47}] => (Allow) C:\Users\wolfa\AppData\Local\Programs\Opera\opera.exe => Keine Datei
FirewallRules: [{3919B027-2377-46FC-A399-F9CFF25C7936}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.51\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{301F895C-ABE5-49ED-A6A3-92BDE43723B0}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{6A5796B6-7417-4AA8-81D8-017C7BCDB309}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D63A13F9-3419-4D06-97C4-F331B8F788A2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{C73F1D10-BCE8-4D32-9B4C-3B0278A29005}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{7B69775E-4436-4FAF-8871-EDA274163433}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{84F0184C-2C06-470F-988B-C2E47FD8C8DC}] => (Allow) LPort=32682

==================== Wiederherstellungspunkte =========================

16-05-2024 18:49:10 Windows Update
20-05-2024 13:45:04 Windows Update
22-05-2024 01:04:24 Windows Modules Installer

==================== Fehlerhafte Geräte im Gerätemanager ============


==================== Fehlereinträge in der Ereignisanzeige: ========================

Applikationsfehler:
==================
Error: (05/24/2024 11:04:08 AM) (Source: Application Hang) (EventID: 1002) (User: NT-AUTORITÄT)
Description: Das Programm javaw.exe Version 21.0.2.0 hat aufgehört mit Windows zu interagieren und wurde geschlossen. Weitere Informationen zum Problem finden Sie im Problemverlauf in der Systemsteuerung „Sicherheit und Wartung“.

Error: (05/22/2024 06:16:57 PM) (Source: Application Hang) (EventID: 1002) (User: NT-AUTORITÄT)
Description: Das Programm javaw.exe Version 21.0.2.0 hat aufgehört mit Windows zu interagieren und wurde geschlossen. Weitere Informationen zum Problem finden Sie im Problemverlauf in der Systemsteuerung „Sicherheit und Wartung“.

Error: (05/22/2024 06:15:48 PM) (Source: Application Error) (EventID: 1000) (User: PC-VON-WOLF)
Description: Name der fehlerhaften Anwendung: javaw.exe, Version: 21.0.2.0, Zeitstempel: 0x07257f87
Name des fehlerhaften Moduls: badlion_js.dll, Version: 0.0.0.0, Zeitstempel: 0x6641b71b
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000059ca46
ID des fehlerhaften Prozesses: 0x0x2a08
Startzeit der fehlerhaften Anwendung: 0x0x1daac634cc1a31f
Pfad der fehlerhaften Anwendung: C:\Users\wolfa\AppData\Roaming\Badlion Client\Data\jdk-21.0.2\bin\javaw.exe
Pfad des fehlerhaften Moduls: C:\Users\wolfa\AppData\Local\Programs\Badlion Client\native-modules\badlion_js.dll
Berichtskennung: d6e29152-ea46-4957-af51-f46086cb0022
Vollständiger Name des fehlerhaften Pakets: 
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (05/22/2024 03:06:32 PM) (Source: Application Hang) (EventID: 1002) (User: NT-AUTORITÄT)
Description: Das Programm javaw.exe Version 21.0.2.0 hat aufgehört mit Windows zu interagieren und wurde geschlossen. Weitere Informationen zum Problem finden Sie im Problemverlauf in der Systemsteuerung „Sicherheit und Wartung“.

Error: (05/22/2024 03:02:09 PM) (Source: CertEnroll) (EventID: 86) (User: NT-AUTORITÄT)
Description: Fehler bei der Initialisierung der SCEP-Zertifikatregistrierung für WORKGROUP\PC-VON-WOLF$ über https://AMD-KeyId-907d65e9b562315997dd5ad086b2b7598957b92c.microsoftaik.azure.net/templates/Aik/scep:

GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-907d65e9b562315997dd5ad086b2b7598957b92c.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Wed, 22 May 2024 13:02:08 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 2bb59e82-f96b-49fe-9331-da8aa7bc5f14

Methode: GET(219ms)
Phase: GetCACaps
Nicht gefunden (404). 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)

Error: (05/22/2024 03:02:08 PM) (Source: CertEnroll) (EventID: 86) (User: NT-AUTORITÄT)
Description: Fehler bei der Initialisierung der SCEP-Zertifikatregistrierung für Lokales System über https://AMD-KeyId-907d65e9b562315997dd5ad086b2b7598957b92c.microsoftaik.azure.net/templates/Aik/scep:

GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-907d65e9b562315997dd5ad086b2b7598957b92c.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Wed, 22 May 2024 13:02:07 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 9b0f0b6a-dc63-4900-965c-b8dddda6351f

Methode: GET(906ms)
Phase: GetCACaps
Nicht gefunden (404). 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)

Error: (05/22/2024 03:01:11 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volumenschattenkopie-Dienst-Informationen: Der COM-Server mit CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} und dem Namen "CEventSystem" kann nicht gestartet werden. [0x8007045b, Der Computer wird heruntergefahren.]

Error: (05/22/2024 03:00:52 PM) (Source: Application Hang) (EventID: 1002) (User: NT-AUTORITÄT)
Description: Das Programm javaw.exe Version 21.0.2.0 hat aufgehört mit Windows zu interagieren und wurde geschlossen. Weitere Informationen zum Problem finden Sie im Problemverlauf in der Systemsteuerung „Sicherheit und Wartung“.


Systemfehler:
=============
Error: (05/24/2024 11:10:29 AM) (Source: DCOM) (EventID: 10005) (User: NT-AUTORITÄT)
Description: Fehler "87" in DCOM, als der Dienst "GamingServices" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden:
{D529741A-1BF1-4D1E-9976-35089622E758}

Error: (05/24/2024 11:10:29 AM) (Source: DCOM) (EventID: 10005) (User: NT-AUTORITÄT)
Description: Fehler "87" in DCOM, als der Dienst "GamingServices" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden:
{3E8C9ABE-9226-4609-BF5B-60288A391DEE}

Error: (05/24/2024 11:10:28 AM) (Source: DCOM) (EventID: 10005) (User: NT-AUTORITÄT)
Description: Fehler "87" in DCOM, als der Dienst "GamingServices" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden:
{D529741A-1BF1-4D1E-9976-35089622E758}

Error: (05/24/2024 11:10:28 AM) (Source: DCOM) (EventID: 10005) (User: NT-AUTORITÄT)
Description: Fehler "87" in DCOM, als der Dienst "GamingServices" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden:
{3E8C9ABE-9226-4609-BF5B-60288A391DEE}

Error: (05/22/2024 09:51:52 PM) (Source: DCOM) (EventID: 10005) (User: PC-VON-WOLF)
Description: Fehler "1053" in DCOM, als der Dienst "BcastDVRUserService_3f511" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden:
Windows.Media.Capture.Internal.AppCaptureShell

Error: (05/22/2024 09:51:52 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "BcastDVRUserService_3f511" wurde aufgrund folgenden Fehlers nicht gestartet: 
Der Dienst antwortete nicht rechtzeitig auf die Start- oder Steuerungsanforderung.

Error: (05/22/2024 09:51:52 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst BcastDVRUserService_3f511 erreicht.

Error: (05/22/2024 03:04:05 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Google Update-Dienst (gupdate)" wurde aufgrund folgenden Fehlers nicht gestartet: 
Der Dienst antwortete nicht rechtzeitig auf die Start- oder Steuerungsanforderung.


Windows Defender:
================
Date: 2024-05-20 12:37:05
Description: 
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {01144887-F91A-4327-BCAB-BFFA543728D2}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM 

Date: 2024-05-19 15:20:42
Description: 
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {711BF174-7E97-4EF5-AEC8-9E4386E2F9DB}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM 

Date: 2024-05-18 17:08:56
Description: 
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {91772A90-8A19-4C3D-80EF-0220801F5423}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM 

Date: 2024-05-14 19:33:09
Description: 
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {E74763D0-DBFD-4259-BC51-836E49D98908}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM 

Date: 2024-05-12 13:21:13
Description: 
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {1901322D-412D-4175-9DAB-CF4EF545E4B6}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM 
Event[0]

Date: 2024-05-22 15:01:12
Description: 
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Security Intelligence aufgetreten. Es wird versucht, zu einer vorherigen Version zurückzukehren.
Security Intelligence versucht: Sicherung
Fehlercode: 0x80004004
Fehlerbeschreibung: Vorgang abgebrochen 
Security Intelligence-Version: 1.411.278.0;1.411.278.0
Modulversion: 1.1.24040.1 

Date: 2024-05-22 15:01:12
Description: 
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Security Intelligence aufgetreten. Es wird versucht, zu einer vorherigen Version zurückzukehren.
Security Intelligence versucht: Aktuell
Fehlercode: 0x80501102
Fehlerbeschreibung: Unerwartetes Problem. Installieren Sie bei Bedarf verfügbare Updates, und starten Sie das Programm dann erneut. Informationen zum Installieren von Updates finden Sie unter "Hilfe und Support". 
Security Intelligence-Version: 1.411.278.0;1.411.278.0
Modulversion: 1.1.24040.1 

Date: 2024-05-22 12:01:59
Description: 
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Security Intelligence aufgetreten. Es wird versucht, zu einer vorherigen Version zurückzukehren.
Security Intelligence versucht: Sicherung
Fehlercode: 0x80004004
Fehlerbeschreibung: Vorgang abgebrochen 
Security Intelligence-Version: 1.411.278.0;1.411.278.0
Modulversion: 1.1.24040.1 

Date: 2024-05-22 12:01:59
Description: 
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Security Intelligence aufgetreten. Es wird versucht, zu einer vorherigen Version zurückzukehren.
Security Intelligence versucht: Aktuell
Fehlercode: 0x80501102
Fehlerbeschreibung: Unerwartetes Problem. Installieren Sie bei Bedarf verfügbare Updates, und starten Sie das Programm dann erneut. Informationen zum Installieren von Updates finden Sie unter "Hilfe und Support". 
Security Intelligence-Version: 1.411.280.0;1.411.280.0
Modulversion: 1.1.24040.1 

Date: 2024-04-12 19:00:18
Description: 
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Security Intelligence aufgetreten. Es wird versucht, zu einer vorherigen Version zurückzukehren.
Security Intelligence versucht: Aktuell
Fehlercode: 0x80501102
Fehlerbeschreibung: Unerwartetes Problem. Installieren Sie bei Bedarf verfügbare Updates, und starten Sie das Programm dann erneut. Informationen zum Installieren von Updates finden Sie unter "Hilfe und Support". 
Security Intelligence-Version: 1.409.220.0;1.409.220.0
Modulversion: 1.1.24030.4 

CodeIntegrity:
===============
Date: 2024-05-24 11:29:05
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements. 


==================== Speicherinformationen =========================== 

BIOS: American Megatrends Inc. P3.90 07/07/2020
Hauptplatine: ASRock B450M-HDV R4.0
Prozessor: AMD Ryzen 3 3100 4-Core Processor 
Prozentuale Nutzung des RAM: 23%
Installierter physikalischer RAM: 32697.64 MB
Verfügbarer physikalischer RAM: 24985.74 MB
Summe virtueller Speicher: 34745.64 MB
Verfügbarer virtueller Speicher: 25881.63 MB

==================== Laufwerke ================================

Drive c: (0,5 TB ) (Fixed) (Total:464.97 GB) (Free:31.72 GB) (Model: CT500P2SSD8) NTFS
Drive d: (1 TB) (Fixed) (Total:931.51 GB) (Free:189.77 GB) (Model: SanDisk SDSSDH3 1T00) NTFS

\\?\Volume{97d94a9f-3b15-4949-aff6-bba98913b1e8}\ () (Fixed) (Total:0.67 GB) (Free:0.08 GB) NTFS
\\?\Volume{6b88454e-2999-42a9-b0f2-c030363fe1c9}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partitionstabelle ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 955F76D3)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==========================================================
Disk: 1 (Protective MBR) (Size: 465.8 GB) (Disk ID: 00000000)

Partition: GPT.

==================== Ende von Addition.txt =======================

Und SEO: falls das überhaupt hilfreich ist:

Code:

ATTFilter

[IN]
SC=0
AS=1
CH=0
FF=0
MA=1
MI=2
UR=1
MB=1
SR=0
WN=1
WM=1
WQ=1

M-K-D-B · 27.05.2024, 21:08

Mein Name ist Matthias und ich werde dir bei der Analyse und Bereinigung deines Systems helfen.

Wir beginnen mit einer Reparatur mit FRST.
Das dauert ein paar Minuten.

Schritt 1
WARNUNG AN ALLE MITLESER !!!
Dieses FRST-Skript ist ausschließlich für diesen Nutzer gedacht und sollte niemals 1:1 für ein anderes System verwendet werden!

Speichere deine Arbeiten und schließe alle offenen Programme, damit keine Daten verloren gehen.

Kopiere den gesamten Inhalt der folgenden Code-Box wie folgt:
Markiere den gesamten Inhalt der folgenden Code-Box mit der Maus und kopiere ihn (gleichzeitiges Drücken der beiden Tasten "STRG" + "C"):

Code:

ATTFilter

Start::
CreateRestorePoint:
CloseProcesses:
IE trusted site: HKU\.DEFAULT\...\webcompanion.com -> hxxp://webcompanion.com
AlternateDataStreams: C:\ProgramData\DeviceList.xml:2838F9B016 [5154]
AlternateDataStreams: C:\ProgramData\DisplaySessionContainer1.log:F107EE40EF [5154]
AlternateDataStreams: C:\ProgramData\DisplaySessionContainer1.log_backup1:2DD1EC5C91 [5154]
AlternateDataStreams: C:\ProgramData\DisplaySessionContainer10.log:CCC93B07B0 [5154]
AlternateDataStreams: C:\ProgramData\DisplaySessionContainer10.log_backup1:AD433BF298 [5154]
AlternateDataStreams: C:\ProgramData\DisplaySessionContainer11.log:72C8986B20 [5154]
AlternateDataStreams: C:\ProgramData\DisplaySessionContainer11.log_backup1:97A90964FA [5154]
AlternateDataStreams: C:\ProgramData\DisplaySessionContainer12.log:C40F6B9209 [5154]
AlternateDataStreams: C:\ProgramData\DisplaySessionContainer12.log_backup1:7CC29836A6 [5154]
AlternateDataStreams: C:\ProgramData\DisplaySessionContainer13.log:AE3C879266 [5154]
AlternateDataStreams: C:\ProgramData\DisplaySessionContainer14.log:DE1448F4D7 [5154]
AlternateDataStreams: C:\ProgramData\DisplaySessionContainer14.log_backup1:D61270D3FD [5154]
AlternateDataStreams: C:\ProgramData\DisplaySessionContainer15.log:16B67B15CB [5154]
AlternateDataStreams: C:\ProgramData\DisplaySessionContainer15.log_backup1:1F4CC1D50C [5154]
AlternateDataStreams: C:\ProgramData\DisplaySessionContainer16.log:2B192A174C [5154]
AlternateDataStreams: C:\ProgramData\DisplaySessionContainer17.log:3D6CA1C7DE [5154]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\desktop.ini:B1DA6C571C [5154]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ahk2Exe.lnk:0676F50C01 [5154]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoHotkey Dash.lnk:B4B3884CBE [5154]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoHotkey Window Spy.lnk:88F1223DAF [5154]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\desktop.ini:41964AA945 [5154]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk:BE32D07BC5 [5154]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk:F20EF51E1F [5154]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shotcut.lnk:6762EAF92B [5154]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [6190]
AlternateDataStreams: C:\Users\wolfa\Downloads\FRST64.exe:MBAM.Zone.Identifier [193]
ContextMenuHandlers2: [ContextMenu] -> {ee10d625-cc60-30a4-b3df-4b349785be6b} => C:\Program Files (x86)\Avira\Security\Antivirus.ContextMenu\Antivirus.ContextMenu.DLL -> Keine Datei
ContextMenuHandlers3: [ContextMenu] -> {ee10d625-cc60-30a4-b3df-4b349785be6b} => C:\Program Files (x86)\Avira\Security\Antivirus.ContextMenu\Antivirus.ContextMenu.DLL -> Keine Datei
2024-05-21 17:50 - 2024-05-21 17:50 - 000003534 _____ C:\WINDOWS\system32\Tasks\SEO
2024-05-21 17:45 - 2024-05-21 17:45 - 000000000 ____D C:\Users\Public\Security Sessions
2024-05-21 17:44 - 2024-05-21 17:44 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avira
2024-05-21 17:43 - 2024-05-21 17:43 - 000000000 ____D C:\WINDOWS\SysWOW64\statReporter
2024-05-21 17:43 - 2024-05-21 17:43 - 000000000 ____D C:\Users\wolfa\AppData\Local\AviraWebView2Cache
2024-05-21 17:42 - 2024-05-21 17:44 - 000130096 _____ C:\WINDOWS\system32\rtp.db
2024-05-21 17:42 - 2024-05-21 17:42 - 000000000 ____D C:\Users\wolfa\AppData\Local\Avira
2024-05-21 17:39 - 2024-05-24 11:20 - 000000000 ____D C:\Users\wolfa\AppData\Roaming\SEO
2024-05-21 17:37 - 2024-05-21 17:37 - 000004528 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1716305849
2024-05-21 17:37 - 2024-05-21 17:37 - 000004268 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1716305847
C:\Users\wolfa\AppData\Roaming\Opera Software
S3 qeeyoupacket; \??\C:\Users\wolfa\AppData\Local\LagoFast\processFilter8.sys [X]
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
CHR HKU\S-1-5-21-345432855-2133662985-3921909539-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [aeefnonlfngaeblgiipagcfmcakbmmjk]
C:\Users\wolfa\AppData\Local\Google\Chrome\User Data\Default\Extensions\aeefnonlfngaeblgiipagcfmcakbmmjk
CHR Notifications: Default -> hxxps://www.netflix.com
CHR HomePage: Default -> hxxps://www.bing.com?pc=COS2&ptag=D112422-N0330A9E20638FA0&form=CONBDF&conlogo=CT3335159
Edge HKU\S-1-5-21-345432855-2133662985-3921909539-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [gidnhakgfijhghmilgiiffidakihnbnb]
C:\Users\wolfa\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gidnhakgfijhghmilgiiffidakihnbnb
Task: {D9DA779A-8F03-4804-9E83-9283DD92AB62} - System32\Tasks\SEO => C:\Users\wolfa\AppData\Roaming\SEO\SEO.exe [11273824 2024-05-21] (BUSINESS CONVERS TRACK S.R.L. -> Business Convers Track S.R.L.) <==== ACHTUNG
C:\Users\wolfa\AppData\Roaming\SEO
Task: {8C81A537-54F7-4992-BE35-7DF971B7B957} - System32\Tasks\Opera scheduled assistant Autoupdate 1716305849 => C:\Users\wolfa\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe [5727136 2024-05-14] (Opera Norway AS -> Opera Software) -> --scheduledtask --productiscomponent --bypasslauncher --installdir="C:\Users\wolfa\AppData\Local\Programs\Opera\assistant" --producttype=assistant $(Arg0)
Task: {0A9D838C-DB89-4AB2-ABBD-813EAA20A87B} - System32\Tasks\Opera scheduled Autoupdate 1669324322 => C:\Users\wolfa\AppData\Local\Programs\Opera\launcher.exe  --scheduledautoupdate $(Arg0) (Keine Datei)
Task: {C3FEF9A4-39E2-498A-BC44-3C52290C748B} - System32\Tasks\Opera scheduled Autoupdate 1669388655 => C:\Users\wolfa\AppData\Local\Programs\Opera\launcher.exe  --scheduledautoupdate $(Arg0) (Keine Datei)
Task: {31A78D54-4515-4FE8-B956-A0B4A838D4D0} - System32\Tasks\Opera scheduled Autoupdate 1716305847 => C:\Users\wolfa\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe [5727136 2024-05-14] (Opera Norway AS -> Opera Software)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe  (Keine Datei)
Task: {78F7909E-26EE-435B-B034-8FAC36292B6D} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_UpdateInterval => %systemroot%\system32\MusNotification.exe  Display (Keine Datei)
Task: {79874917-735B-4E71-97D9-D00EF7EA293C} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe  /RunOnAC RebootDialog (Keine Datei)
Task: {01C934E2-CFB4-4BEA-BC8E-B0E5483FCFC7} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe  /RunOnBattery RebootDialog (Keine Datei)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe  (Keine Datei)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] -> 
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Beschränkung <==== ACHTUNG
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Beschränkung <==== ACHTUNG
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Beschränkung <==== ACHTUNG
CMD: netsh winsock reset
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh winhttp reset proxy
CMD: Bitsadmin /Reset /Allusers
CMD: Winmgmt /salvagerepository 
CMD: Winmgmt /verifyrepository
CMD: "%WINDIR%\SYSTEM32\lodctr.exe" /R
CMD: "%WINDIR%\SysWOW64\lodctr.exe" /R
CMD: "%WINDIR%\SYSTEM32\lodctr.exe" /R
CMD: "%WINDIR%\SysWOW64\lodctr.exe" /R
Hosts:
RemoveProxy:
EmptyTemp:
End::

Starte nun FRST und klicke direkt auf den Button Reparieren.
Wichtig: Du brauchst den Inhalt der Code-Box nirgends einfügen, da sich FRST den Code aus der Zwischenablage holt!

Wichtig:
- Bitte gedulde dich, sobald du die Reparatur gestartet hast. Je nach Art und Umfang der notwendigen Reparaturen kann dies einige Minuten dauern.
  Eventuell erhältst du während der Reparatur auch die Information "keine Rückmeldung" von FRST. Das ist normal, du musst nichts weiter tun, nur warten.
- Mit dieser Reparatur werden alle temporären Dateien/Browserdaten sowie der Papierkorb gelöscht.
- Mit dieser Reparatur werden die Windows Firewall-Einstellungen zurückgesetzt. Du wirst möglicherweise später aufgefordert, legitimen Programmen eine Erlaubnis/Ausnahme für die Firewall zu erteilen. Dies solltest du dann erlauben/zulassen.
Das Tool führt die gewünschten Schritte aus und erstellt eine fixlog.txt im selben Verzeichnis, in dem sich FRST befindet.
Gegebenenfalls muss dein Rechner neu gestartet werden.
Poste mir den Inhalt der fixlog.txt mit deiner nächsten Antwort.

M-K-D-B · 31.05.2024, 11:26

Fehlende Rückmeldung
Dieses Thema wurde aus unseren Abos gelöscht. Somit bekommen wir keine Benachrichtigung über neue Antworten.
Solltest Du das Thema erneut brauchen, schicke uns bitte eine Erinnerung inklusive Link zum Thema.

Hinweis: Das Verschwinden der Symptome bedeutet nicht, dass Dein Rechner schon sauber ist.

Alle anderen bitte hier klicken und ein eigenes Thema erstellen!

Search Engine Optimizer hat sich unerwünscht auf den Computer geladen und kann nicht deinstalliert werden

Log-Analyse und Auswertung: Search Engine Optimizer hat sich unerwünscht auf den Computer geladen und kann nicht deinstalliert werden