www1.online link Taucht auf beim öffnen von browsern
Hallo, wenn ich Ms Edge oder chrome öffne kommt anstatt der gewohnten startseite folgender link: hxxp://www1.online/?w=RD2390, dies kommt nich bei opera. Ich habe mal recherchiert und habe rausgefunden, dass dies adware ist und ich sie gerne entfernen würde... Die Logfiles sind hier: Frst: Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 03-12-2023
durchgeführt von ms2 (Administrator) auf LOUISPC (ASUS System Product Name) (03-12-2023 17:34:31)
Gestartet von C:\Users\ms2\AppData\Local\Temp\scoped_dir3708_475172757\FRST64.exe
Geladene Profile: ms2
Plattform: Microsoft Windows 11 Pro Version 22H2 22621.2715 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: Opera
Start-Modus: Normal
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\SwAgent\ArmourySwAgent.exe
(C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe ->) (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\EpicWebHelper.exe <5>
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe
(C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.UserSessionHelper.exe
(C:\Program Files\WindowsApps\MicrosoftTeams_23306.3309.2530.1346_x64__8wekyb3d8bbwe\msteams.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\119.0.2151.97\msedgewebview2.exe <6>
(C:\Riot Games\Riot Client\RiotClientServices.exe ->) () [Datei ist nicht signiert] C:\Riot Games\Riot Client\RiotClientCrashHandler.exe
(C:\Users\ms2\AppData\Local\Programs\Opera GX\opera.exe ->) (Opera Norway AS -> Opera Software) C:\Users\ms2\AppData\Local\Programs\Opera GX\104.0.4944.80\opera_crashreporter.exe
(cmd.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(DriverStore\FileRepository\u0394471.inf_amd64_f618062c68f63ad7\B394303\atiesrxx.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0394471.inf_amd64_f618062c68f63ad7\B394303\atieclxx.exe
(explorer.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Windows\System32\AMD\ANR\AMDNoiseSuppression.exe
(explorer.exe ->) (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(explorer.exe ->) (Gaijin Network Ltd -> Gaijin) C:\Users\ms2\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <8>
(explorer.exe ->) (Moonsworth, LLC -> Moonsworth LLC) C:\Users\ms2\AppData\Local\Programs\launcher\Lunar Client.exe <8>
(explorer.exe ->) (Opera Software AS -> Opera Software) C:\Users\ms2\AppData\Local\Programs\Opera GX\assistant\browser_assistant.exe <2>
(explorer.exe ->) (Proton AG -> Proton AG) C:\Program Files\Proton\Drive\ProtonDrive.exe
(explorer.exe ->) (Riot Games, Inc. -> Riot Games, Inc.) C:\Program Files\Riot Vanguard\vgtray.exe
(explorer.exe ->) (Riot Games, Inc. -> Riot Games, Inc.) C:\Riot Games\Riot Client\RiotClientServices.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.342\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.342\GoogleCrashHandler64.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Opera Norway AS -> Opera Software) C:\Users\ms2\AppData\Local\Programs\Opera GX\opera.exe <21>
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Program Files\AMD\Performance Profile Client\AUEPDU.exe
(services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0394471.inf_amd64_f618062c68f63ad7\B394303\atiesrxx.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Windows\System32\AsusUpdateCheck.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUS Inc.) C:\Program Files (x86)\ASUS\GameSDK Service\GameSDK.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\2.03.19\AsusFanControlService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\4.02.22\atkexComSvc.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Program Files (x86)\LightingService\LightingService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe
(services.exe ->) (geek software GmbH -> geek software GmbH) C:\Program Files\PDF24\pdf24.exe <2>
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorvd.inf_amd64_4644c24027cfb2ed\RstMwService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\piecomponent.inf_amd64_9bc8a839c751c49e\Intel_PIE_Service.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe <2>
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftCorporationII.WindowsSubsystemForLinux_1.2.5.0_x64__8wekyb3d8bbwe\wslservice.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\msiexec.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\NisSrv.exe
(services.exe ->) (Plarium Global LTD -> PlariumPlayClientService) C:\Users\ms2\AppData\Local\PlariumPlay\8.7.0-0.0.1\PlariumPlayClientService\PlariumPlayClientService.exe
(services.exe ->) (TunnelBear (McAfee Canada ULC) -> TunnelBear) C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.exe
(svchost.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Program Files\AMD\Performance Profile Client\AUEPMaster.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Program Files\ASUS\KINGSTON_Aac_DRAM\AacKingstonDramHal_x64.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Program Files\ASUS\KINGSTON_Aac_DRAM\AacKingstonDramHal_x86.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Compputer Inc.) C:\Program Files\ASUS\AacMB\Aac3572MbHal_x86.exe <2>
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe <7>
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files\ASUS\AacExtCard\extensionCardHal_x86.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files\ASUS\ASUS_Aac_DRAM\Aac3572DramHal_x86.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21750.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21750.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.30700.0.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [PDF24] => C:\Program Files\PDF24\pdf24.exe [614584 2023-07-14] (geek software GmbH -> geek software GmbH)
HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [3022640 2023-09-25] (Riot Games, Inc. -> Riot Games, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [748624 2023-06-14] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-284586763-1660449626-2468957795-1003\...\Run: [MicrosoftEdgeAutoLaunch_16576ACA6E63AE54ECD178F14B7317D8] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3896784 2023-11-27] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-284586763-1660449626-2468957795-1003\...\Run: [OpenOffice Updater] => C:\Users\ms2\AppData\Roaming\OpenOffice Updater\Updater.exe [367480 2021-07-28] (Arne Koenig -> ) <==== ACHTUNG
HKU\S-1-5-21-284586763-1660449626-2468957795-1003\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4386664 2023-11-29] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-284586763-1660449626-2468957795-1003\...\Run: [RiotClient] => C:\Riot Games\Riot Client\RiotClientServices.exe [70912472 2023-11-16] (Riot Games, Inc. -> Riot Games, Inc.)
HKU\S-1-5-21-284586763-1660449626-2468957795-1003\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37157328 2023-11-30] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-284586763-1660449626-2468957795-1003\...\Run: [Lunar Client] => C:\Users\ms2\AppData\Local\Programs\launcher\Lunar Client.exe [163279416 2023-11-22] (Moonsworth, LLC -> Moonsworth LLC)
HKU\S-1-5-21-284586763-1660449626-2468957795-1003\...\Run: [AMDNoiseSuppression] => C:\WINDOWS\system32\AMD\ANR\AMDNoiseSuppression.exe [145800 2023-06-14] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
HKU\S-1-5-21-284586763-1660449626-2468957795-1003\...\Run: [Gaijin.Net Updater] => C:\Users\ms2\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [3065544 2023-10-18] (Gaijin Network Ltd -> Gaijin)
HKU\S-1-5-21-284586763-1660449626-2468957795-1003\...\Run: [Opera GX Stable] => C:\Users\ms2\AppData\Local\Programs\Opera GX\launcher.exe [2587040 2023-11-29] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-284586763-1660449626-2468957795-1003\...\Run: [Opera GX Browser Assistant] => C:\Users\ms2\AppData\Local\Programs\Opera GX\assistant\browser_assistant.exe [3291288 2021-02-01] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-284586763-1660449626-2468957795-1003\...\Run: [Salad] => "C:\Program Files\Salad\Salad.exe" --hidden (Keine Datei)
HKU\S-1-5-21-284586763-1660449626-2468957795-1003\...\Run: [Proton Drive] => C:\Program Files\Proton\Drive\ProtonDrive.exe [229799488 2023-11-17] (Proton AG -> Proton AG)
HKU\S-1-5-21-284586763-1660449626-2468957795-1003\...\Run: [Discord] => C:\Users\ms2\AppData\Local\Discord\Update.exe [1525024 2023-11-13] (Discord Inc. -> GitHub)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\119.0.6045.200\Installer\chrmstp.exe [2023-11-30] (Google LLC -> Google LLC)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {E678B0FA-C123-499D-8323-AB6432818C1B} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1030584 2023-07-25] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {63CEF586-9739-4BB9-A84B-7CE1BADD9973} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\BIN64\InstallManagerApp.exe [1030584 2023-07-25] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {2C09E5BC-54BB-4512-89A0-5F46A9D59A2D} - System32\Tasks\ASUS\AcPowerNotification => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe [309608 2022-09-27] (ASUSTeK COMPUTER INC. -> ASUS)
Task: {CCA3BBCD-06B9-4456-ADF7-9A389CE8E715} - System32\Tasks\ASUS\ArmourySocketServer => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe [1858920 2022-09-27] (ASUSTeK COMPUTER INC. -> ASUS)
Task: {C2050D46-D955-4ED8-8481-2A0D88CEC236} - System32\Tasks\ASUS\ASUSUpdateTaskMachineCore1d8fdd2b1b31fcc => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [153112 2022-11-21] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
Task: {E8D2F5DD-2A26-4E92-B7DD-3B75B3950102} - System32\Tasks\ASUS\ASUSUpdateTaskMachineUA => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [153112 2022-11-21] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
Task: {31E2B7DB-9D83-46F0-8445-00CCC986FE78} - System32\Tasks\ASUS\Framework Service => C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe [43797544 2022-09-01] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
Task: {76D05108-9BB3-44F4-A3F9-A9D9D48C8655} - System32\Tasks\ASUS\NoiseCancelingEngine => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\MBLedSDK\NoiseCancelingEngine.exe [1254760 2022-09-29] (ASUSTeK COMPUTER INC. -> ASUS)
Task: {33B2EEC4-8BDA-4B1D-A794-C4DD39CFA032} - System32\Tasks\ASUS\P508PowerAgent_sdk => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ShareFromArmouryIII\Mouse\ROG STRIX CARRY\P508PowerAgent.exe (Keine Datei)
Task: {5BDF29E5-AA6C-4F63-B791-D21558FB8606} - System32\Tasks\Google Play Games Notifier => C:\Program Files\Google\Play Games\Bootstrapper.exe [374560 2023-12-01] (Google LLC -> Google LLC)
Task: {E50EEF0C-D732-44A8-BA6B-2DF98F4576F5} - System32\Tasks\GoogleUpdateTaskMachineCore{D672E439-F1E2-44E3-A75B-92E316BA8AA7} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162072 2023-09-10] (Google LLC -> Google LLC)
Task: {4E85A433-05A0-46D5-A527-B91FF68DCB01} - System32\Tasks\GoogleUpdateTaskMachineUA{00639AE7-C734-477C-A2CD-9A2A5285241D} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162072 2023-09-10] (Google LLC -> Google LLC)
Task: {6694688C-D929-4ED9-A018-C88AF8386809} - System32\Tasks\Microsoft\Windows\ConsentUX\UnifiedConsent\UnifiedConsentSyncTask => {82aa0895-198a-4c1b-b2d1-c16894218afb} C:\WINDOWS\System32\unifiedconsent.dll [311296 2023-11-17] (Microsoft Windows -> Microsoft Corporation)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Keine Datei)
Task: {5B0AF074-382B-45A6-B817-F4CA3ABA87CB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {AFEFA4C8-0156-438E-A0C6-860E49A679FA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {FF4FC96E-03DE-4DF4-947B-A806F6E9D0B6} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {42043FE9-F878-433C-B41D-E83BC6BA8E3E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7B920AAF-8814-4E07-8C7E-1376B480CDC8} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1030584 2023-07-25] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {9C327D94-63D4-4B16-AD93-C92265DC962B} - System32\Tasks\Opera GX scheduled assistant Autoupdate 1696001942 => C:\Users\ms2\AppData\Local\Programs\Opera GX\launcher.exe [2587040 2023-11-29] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\ms2\AppData\Local\Programs\Opera GX\assistant" $(Arg0)
Task: {6626918D-3D6E-4DD7-90F0-B25750CA7525} - System32\Tasks\Opera GX scheduled Autoupdate 1695742696 => C:\Users\ms2\AppData\Local\Programs\Opera GX\launcher.exe [2587040 2023-11-29] (Opera Norway AS -> Opera Software)
Task: {20836944-1E40-46E2-A1FF-D271ED6188EB} - System32\Tasks\Opera scheduled Autoupdate 1694340990 => C:\Users\ms2\AppData\Local\Programs\Opera\launcher.exe [2742688 2023-09-07] (Opera Norway AS -> Opera Software)
Task: {004EE073-2232-4358-B34D-BAE8DF8E9BF7} - System32\Tasks\StartAUEP => C:\Program Files\AMD\Performance Profile Client\AUEPMaster.exe [728504 2023-07-25] (Advanced Micro Devices Inc. -> AMD)
Task: {A52CDC57-DE5E-4E0B-B99B-2BA51F1E1F85} - System32\Tasks\StartCNBM => C:\Program Files\AMD\CNext\CNext\cncmd.exe [60344 2023-07-25] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.179.1
Tcpip\..\Interfaces\{0da92e7e-0c4d-4b49-8e00-43ee92f08940}: [DhcpNameServer] 192.168.195.1
Tcpip\..\Interfaces\{21b3e139-7aa6-4fa0-92cc-7d4ed6d9696c}: [DhcpNameServer] 192.168.179.1
Tcpip\..\Interfaces\{a230d696-ea94-4d58-a2d0-3bca64a9b8ae}: [NameServer] 172.17.3.1
Tcpip\..\Interfaces\{accf87cf-66f9-4989-99db-6a8a0893804d}: [DhcpNameServer] 192.168.195.1
Tcpip\..\Interfaces\{e048fd0c-6878-42d1-b510-298d17b677ae}: [DhcpNameServer] 192.168.195.1
Tcpip\..\Interfaces\{fc47ce8f-927d-4a2f-b1e1-99e1d95d0114}: [DhcpNameServer] 192.168.195.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\ms2\AppData\Local\Microsoft\Edge\User Data\Default [2023-12-03]
Edge Extension: (Google Docs Offline) - C:\Users\ms2\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-18]
Edge Extension: (SaveFrom.net Helfer) - C:\Users\ms2\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hndfjogdceachkbgioglehonpejcdhem [2023-11-22]
Edge Extension: (Edge relevant text changes) - C:\Users\ms2\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-11-22]
Edge Profile: C:\Users\ms2\AppData\Local\Microsoft\Edge\User Data\Profile 1 [2023-11-28]
Edge Extension: (Google Docs Offline) - C:\Users\ms2\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-11]
Edge Extension: (Edge relevant text changes) - C:\Users\ms2\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-11-22]
Edge Profile: C:\Users\ms2\AppData\Local\Microsoft\Edge\User Data\Profile 2 [2023-11-22]
Edge Extension: (Google Docs Offline) - C:\Users\ms2\AppData\Local\Microsoft\Edge\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-11]
Edge Extension: (Edge relevant text changes) - C:\Users\ms2\AppData\Local\Microsoft\Edge\User Data\Profile 2\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-16]
Edge Profile: C:\Users\ms2\AppData\Local\Microsoft\Edge\User Data\Profile 3 [2023-11-28]
Edge Extension: (Google Docs Offline) - C:\Users\ms2\AppData\Local\Microsoft\Edge\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-11-28]
Edge Extension: (Edge relevant text changes) - C:\Users\ms2\AppData\Local\Microsoft\Edge\User Data\Profile 3\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-11-28]
FireFox:
========
FF Plugin-x32: @java.com/DTPlugin,version=11.381.2 -> C:\Program Files (x86)\Java\jre-1.8\bin\dtplugin\npDeployJava1.dll [2023-06-14] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.381.2 -> C:\Program Files (x86)\Java\jre-1.8\bin\plugin2\npjp2.dll [2023-06-14] (Oracle America, Inc. -> Oracle Corporation)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\ms2\AppData\Local\Google\Chrome\User Data\Default [2023-12-03]
CHR Notifications: Default -> hxxps://aternos.org
CHR Extension: (Tampermonkey) - C:\Users\ms2\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2023-09-10]
CHR Extension: (Google Docs Offline) - C:\Users\ms2\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-17]
CHR Extension: (AdBlock*– der beste Ad-Blocker) - C:\Users\ms2\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2023-11-28]
CHR Extension: (Kahoot Answer Bot) - C:\Users\ms2\AppData\Local\Google\Chrome\User Data\Default\Extensions\jgbgmifojhbloieihaghbncneibcckhc [2023-11-30]
CHR Extension: (Violentmonkey) - C:\Users\ms2\AppData\Local\Google\Chrome\User Data\Default\Extensions\jinjaccalgkegednnccohejagnlnfdag [2023-11-02]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\ms2\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-09-10]
CHR Extension: (SiteBlock) - C:\Users\ms2\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfglnpdpgmecffbejlfgpnebopinlclj [2023-09-10]
CHR Profile: C:\Users\ms2\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-11-28]
CHR Profile: C:\Users\ms2\AppData\Local\Google\Chrome\User Data\Profile 1 [2023-12-02]
CHR Notifications: Profile 1 -> hxxps://mail.google.com
CHR Extension: (OrangeMonkey) - C:\Users\ms2\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ekmeppjgajofkpiofbebgcbohbmfldaf [2023-10-31]
CHR Extension: (Google Docs Offline) - C:\Users\ms2\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-29]
CHR Extension: (Hola VPN - The Website Unblocker) - C:\Users\ms2\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2023-12-01]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\ms2\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-09-29]
CHR Profile: C:\Users\ms2\AppData\Local\Google\Chrome\User Data\System Profile [2023-10-13]
Opera:
=======
OPR DefaultProfile: Opera Stable
OPR Profile: C:\Users\ms2\AppData\Roaming\Opera Software\Opera Stable [2023-09-10]
OPR DefaultSearchURL: Opera Stable -> hxxps://opera.com
StartMenuInternet: (HKU\S-1-5-21-284586763-1660449626-2468957795-1003) Opera GXStable - "C:\Users\ms2\AppData\Local\Programs\Opera GX\Launcher.exe"
==================== Dienste (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 ArmouryCrateService; C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe [394864 2022-09-27] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.02.22\atkexComSvc.exe [894824 2022-10-31] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
S2 asus; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [153112 2022-11-21] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
R2 AsusCertService; C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe [558104 2022-05-19] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\2.03.19\AsusFanControlService.exe [1722216 2022-11-01] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
S3 asusm; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [153112 2022-11-21] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
R2 AsusUpdateCheck; C:\WINDOWS\System32\AsusUpdateCheck.exe [1217488 2023-12-03] (ASUSTeK COMPUTER INC. -> )
R2 AUEPLauncher; C:\Program Files\AMD\CIM\..\Performance Profile Client\AUEPDU.exe [527800 ] (Advanced Micro Devices Inc. -> AMD)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [15772456 2023-11-23] (BattlEye Innovations e.K. -> )
S3 CloudBackupRestoreSvc; C:\WINDOWS\System32\CloudRestoreLauncher.dll [1355776 2023-11-17] (Microsoft Windows -> Microsoft Corporation)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [955816 2023-09-26] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2023-05-01] (Epic Games Inc. -> Epic Games, Inc.)
R2 GameSDK Service; C:\Program Files (x86)\ASUS\GameSDK Service\GameSDK.exe [397544 2022-05-31] (ASUSTeK COMPUTER INC. -> ASUS Inc.)
R2 LightingService; C:\Program Files (x86)\LightingService\LightingService.exe [4799336 2023-09-13] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
R2 PDF24; C:\Program Files\PDF24\pdf24.exe [614584 2023-07-14] (geek software GmbH -> geek software GmbH)
R2 Plarium Play Client Service; C:\Users\ms2\AppData\Local\PlariumPlay\8.7.0-0.0.1\PlariumPlayClientService\PlariumPlayClientService.exe [200520 2023-10-09] (Plarium Global LTD -> PlariumPlayClientService)
S3 ProtonVPN Service; C:\Program Files\Proton\VPN\v3.2.7\ProtonVPNService.exe [471896 2023-11-03] (Proton AG -> ProtonVPN)
S3 ProtonVPN WireGuard; C:\Program Files\Proton\VPN\v3.2.7\ProtonVPN.WireGuardService.exe [471384 2023-11-03] (Proton AG -> ProtonVPN)
R2 ROG Live Service; C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe [1665648 2023-07-25] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [534584 2023-11-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 TunnelBearMaintenance; C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.exe [142864 2023-08-30] (TunnelBear (McAfee Canada ULC) -> TunnelBear)
S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [9402904 2023-09-25] (Riot Games, Inc. -> Riot Games, Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\NisSrv.exe [3121120 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MsMpEng.exe [133704 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R3 amdfendrmgr; C:\WINDOWS\System32\drivers\amdfendrmgr.sys [25584 2023-06-13] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 AMDSAFD; C:\WINDOWS\System32\DriverStore\FileRepository\amdsafd.inf_amd64_54807f69fe156f14\amdsafd.sys [113088 2023-04-13] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
R3 amdwddmg; C:\WINDOWS\System32\DriverStore\FileRepository\u0394471.inf_amd64_f618062c68f63ad7\B394303\amdkmdag.sys [99600816 2023-08-04] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
S3 ampa; C:\Windows\system32\ampa.sys [15288 2011-12-26] (Aomei Technology Co., Limited -> ) [Datei ist nicht signiert]
R1 Asusgio2; C:\Windows\system32\drivers\AsIO2.sys [34384 2022-02-10] (ASUSTeK Computer Inc. -> )
R1 Asusgio3; C:\Windows\system32\drivers\AsIO3.sys [49256 2022-08-15] (ASUSTeK COMPUTER INC. -> )
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [Datei ist nicht signiert]
R3 cpuz154; C:\WINDOWS\temp\cpuz154\cpuz154_x64.sys [40976 2023-12-03] (Microsoft Windows Hardware Compatibility Publisher -> CPUID)
R1 CTIAIO; C:\Windows\system32\drivers\CtiAIo64.sys [32320 2022-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Innovation Co., LTd.)
R0 fse; C:\WINDOWS\System32\drivers\fse.sys [218592 2023-11-17] (Microsoft Windows -> Microsoft Corporation)
S3 GPUZ-v2; C:\WINDOWS\TEMP\GPUZ-v2.sys [52008 2023-10-20] (TechPowerUp LLC -> )
R3 iaLPSS2_GPIO2_ADL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_adl.inf_amd64_774a66f35d00ad3d\iaLPSS2_GPIO2_ADL.sys [140960 2022-11-16] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_I2C_ADL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_adl.inf_amd64_1ebed6f33a1c1014\iaLPSS2_I2C_ADL.sys [210600 2022-11-16] (Intel Corporation -> Intel Corporation)
R0 iaStorVD; C:\WINDOWS\System32\drivers\iaStorVD.sys [1605296 2022-11-17] (Intel Corporation -> Intel Corporation)
R3 IOMap; C:\Windows\system32\drivers\IOMap64.sys [35344 2022-09-21] (ASUSTEK COMPUTER INC. -> ASUSTeK Computer Inc.)
R2 Ld9BoxSup; C:\Program Files\ldplayer9box\Ld9BoxSup.sys [376144 2023-10-10] (Shanghai Chang Zhi Network Technology Co,. Ltd. -> Oracle Corporation)
R3 MpKsle6c25c88; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{F323CE84-9442-44C2-A282-DC6081926A11}\MpKslDrv.sys [263560 2023-12-03] (Microsoft Windows -> Microsoft Corporation)
R1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [18496 2022-06-09] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
S3 polarbear-split-tunneling; C:\Program Files (x86)\TunnelBear\Drivers\x64\SplitTunnelingDriver.sys [29176 2023-07-10] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 ProtonVPNCallout; C:\Program Files\Proton\VPN\v3.2.7\Resources\ProtonVPN.CalloutDriver.sys [34176 2023-11-02] (Microsoft Windows Hardware Compatibility Publisher -> Proton Technologies AG)
S3 pwdrvio; C:\Windows\system32\pwdrvio.sys [19032 2013-03-07] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12384 2013-03-07] (MiniTool Solution Ltd -> )
R3 tap-tb-0901; C:\WINDOWS\System32\drivers\tap-tb-0901.sys [38656 2023-07-10] (TunnelBear, Inc. -> The OpenVPN Project)
S4 UCPD; C:\WINDOWS\System32\drivers\UCPD.sys [29184 2023-09-18] (Microsoft Windows -> Microsoft Corporation)
S1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [21460800 2023-09-25] (Riot Games, Inc. -> Riot Games, Inc.)
S3 vmbusproxy; C:\WINDOWS\system32\drivers\vmbusproxy.sys [94208 2023-11-17] (Microsoft Windows -> )
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [55744 2023-11-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [578856 2023-11-07] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105768 2023-11-07] (Microsoft Windows -> Microsoft Corporation)
R3 wintun; C:\WINDOWS\system32\DRIVERS\wintun.sys [29592 2023-11-21] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S3 WireGuard; C:\WINDOWS\System32\drivers\wireguard.sys [489368 2023-11-21] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat (erstellte) (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2023-12-03 17:34 - 2023-12-03 17:34 - 000000000 ____D C:\FRST
2023-12-03 17:33 - 2023-12-03 17:33 - 002384384 _____ (Farbar) C:\Users\ms2\Downloads\FRST64.exe
2023-12-03 11:34 - 2023-12-03 11:34 - 000758838 _____ C:\WINDOWS\system32\perfh007.dat
2023-12-03 11:34 - 2023-12-03 11:34 - 000157058 _____ C:\WINDOWS\system32\perfc007.dat
2023-11-27 17:31 - 2023-11-27 17:31 - 000000000 ____D C:\Program Files (x86)\Browser Files
2023-11-27 15:54 - 2023-11-27 15:54 - 004150543 _____ C:\Users\ms2\Downloads\Skyclient-Universal-Installer-2.0.4 (2).jar
2023-11-27 15:54 - 2023-11-27 15:54 - 003087360 _____ C:\Users\ms2\Downloads\SkyblockClient-1.3.11 (1).exe
2023-11-27 15:51 - 2023-11-27 15:53 - 000000000 ____D C:\Users\ms2\AppData\Roaming\.skyclient-temp
2023-11-27 15:51 - 2023-11-27 15:51 - 001537024 _____ () C:\Users\ms2\Downloads\Skyclient-Installer-Windows.exe
2023-11-27 15:50 - 2023-11-27 15:50 - 002060712 _____ C:\Users\ms2\Downloads\Mart.zip
2023-11-23 18:59 - 2023-12-03 17:32 - 000000000 ____D C:\Users\ms2\AppData\Roaming\discord
2023-11-23 18:51 - 2023-12-03 17:32 - 000000000 ____D C:\Users\ms2\AppData\Local\Discord
2023-11-23 17:58 - 2023-11-23 17:59 - 096184608 _____ (Discord Inc.) C:\Users\ms2\Downloads\DiscordSetup.exe
2023-11-22 19:40 - 2023-11-22 19:40 - 003648980 _____ (Shadow_tj, Patrick ) C:\Users\ms2\Downloads\Dxbx 0.5 Release setup.exe
2023-11-22 19:39 - 2023-11-22 19:39 - 017885488 _____ C:\Users\ms2\Downloads\xenia_master.zip
2023-11-22 19:39 - 2023-11-22 19:39 - 000000000 ____D C:\Users\ms2\OneDrive\Dokumente\Xenia
2023-11-22 19:39 - 2023-11-22 19:39 - 000000000 ____D C:\Users\ms2\Downloads\xenia_master
2023-11-22 19:34 - 2023-11-22 19:34 - 000000000 ____D C:\Users\ms2\AppData\Roaming\xemu
2023-11-21 15:42 - 2023-11-21 15:42 - 000000000 ____D C:\Users\ms2\AppData\Local\Proton
2023-11-21 15:42 - 2023-11-21 15:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Proton
2023-11-21 15:42 - 2023-11-21 15:42 - 000000000 ____D C:\Program Files (x86)\Proton
2023-11-21 15:41 - 2023-11-21 15:43 - 000000000 ____D C:\ProgramData\ProtonVPN
2023-11-21 15:41 - 2023-11-21 15:42 - 000000000 ____D C:\Users\ms2\AppData\Local\ProtonVPN
2023-11-21 15:41 - 2023-11-21 15:42 - 000000000 ____D C:\Program Files\Proton
2023-11-21 15:41 - 2023-11-21 15:41 - 080475920 _____ (Proton AG ) C:\Users\ms2\Downloads\ProtonVPN_v3.2.7.exe
2023-11-20 20:18 - 2023-11-20 20:18 - 020133192 _____ (Raspberry Pi Ltd) C:\Users\ms2\Downloads\imager_1.8.1.exe
2023-11-20 20:18 - 2023-11-20 20:18 - 000000000 ____D C:\Users\ms2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Raspberry Pi
2023-11-20 20:18 - 2023-11-20 20:18 - 000000000 ____D C:\Users\ms2\AppData\Local\Raspberry Pi
2023-11-20 20:18 - 2023-11-20 20:18 - 000000000 ____D C:\Users\ms2\AppData\Local\cache
2023-11-20 20:18 - 2023-11-20 20:18 - 000000000 ____D C:\Program Files (x86)\Raspberry Pi Imager
2023-11-20 18:06 - 2023-11-20 18:06 - 000000000 ____D C:\Users\ms2\AppData\Local\MarblesOnStream
2023-11-19 19:19 - 2023-11-19 19:20 - 092367669 _____ C:\Users\ms2\Downloads\HITMAN 2 _ Mumbai _ Master _ Silent Assassin_Suit Only_Sniper Assassin _ Walkthrough.mp4
2023-11-17 19:33 - 2023-11-17 19:33 - 000016240 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2023-11-17 19:28 - 2023-11-17 19:29 - 000000000 ___HD C:\$WinREAgent
2023-11-14 17:42 - 2023-11-14 17:42 - 000001268 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Krawall im Lehrerzimmer.lnk
2023-11-14 17:42 - 2023-11-14 17:42 - 000000000 ____D C:\Users\ms2\AppData\LocalLow\Pk Moritz
2023-11-14 17:42 - 2023-11-14 17:42 - 000000000 ____D C:\Program Files (x86)\Krawall im Lehrerzimmer
2023-11-14 17:40 - 2023-11-14 17:41 - 107504967 _____ (Pk Moritz ) C:\Users\ms2\Downloads\Krawall im Lehrerzimmer Setup.exe
2023-11-13 20:25 - 2023-11-13 20:25 - 000046412 _____ C:\Users\ms2\Downloads\auto-clicker-fabric-1.20.1-1.8.0-build.25.jar
2023-11-11 18:10 - 2023-11-11 18:10 - 001405955 _____ C:\Users\ms2\Downloads\Xaeros_Minimap_23.8.4_Fabric_1.20.jar
2023-11-06 17:42 - 2023-11-06 17:42 - 000003864 _____ C:\WINDOWS\system32\Tasks\Google Play Games Notifier
2023-11-03 17:37 - 2023-11-03 17:37 - 000000000 ____D C:\Users\ms2\AppData\LocalLow\Ndemic Creations
2023-11-03 17:37 - 2023-11-03 17:37 - 000000000 ____D C:\Users\ms2\AppData\Local\Ndemic Creations
==================== Ein Monat (geänderte) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2023-12-03 17:34 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-12-03 17:33 - 2023-09-10 09:17 - 000000000 ____D C:\Program Files (x86)\Google
2023-12-03 17:32 - 2023-09-10 10:28 - 000000000 ____D C:\Users\ms2\AppData\Roaming\launcher
2023-12-03 17:32 - 2023-09-10 10:08 - 000000000 ____D C:\Program Files (x86)\Steam
2023-12-03 17:32 - 2023-09-10 08:53 - 000000000 ___RD C:\Users\ms2\OneDrive
2023-12-03 17:32 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-12-03 17:31 - 2023-10-24 16:32 - 000003098 _____ C:\WINDOWS\system32\Tasks\AMDInstallLauncher
2023-12-03 17:31 - 2023-09-11 19:29 - 000003090 _____ C:\WINDOWS\system32\Tasks\AMDLinkUpdate
2023-12-03 17:31 - 2023-09-10 13:51 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-12-03 17:31 - 2022-11-18 23:29 - 001217488 _____ C:\WINDOWS\system32\AsusUpdateCheck.exe
2023-12-03 17:31 - 2022-11-18 23:28 - 001269120 _____ () C:\WINDOWS\system32\wpbbin.exe
2023-12-03 17:31 - 2022-06-03 14:35 - 000012288 ___SH C:\DumpStack.log.tmp
2023-12-03 17:31 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-12-03 11:58 - 2022-05-07 06:17 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2023-12-03 11:56 - 2023-09-29 14:01 - 000000000 ____D C:\Users\ms2\AppData\Local\CrashDumps
2023-12-03 11:54 - 2022-06-03 14:35 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-12-03 11:48 - 2023-09-10 08:52 - 000000000 ____D C:\Users\ms2\AppData\Local\PlaceholderTileLogoFolder
2023-12-03 11:48 - 2023-09-10 08:51 - 000000000 ____D C:\Users\ms2\AppData\Local\Packages
2023-12-03 11:48 - 2022-06-03 14:38 - 000000000 ____D C:\ProgramData\Packages
2023-12-03 11:48 - 2022-05-07 06:24 - 000000000 ___HD C:\Program Files\WindowsApps
2023-12-03 11:42 - 2023-09-10 09:18 - 000002239 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-12-03 11:34 - 2023-09-10 13:56 - 001754660 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-12-03 11:34 - 2022-05-07 06:22 - 000000000 ____D C:\WINDOWS\INF
2023-12-03 11:32 - 2023-09-10 13:56 - 000000000 ___HD C:\Users\ms2\Downloads\.opera
2023-12-03 11:32 - 2023-09-10 13:56 - 000000000 ___HD C:\Users\ms2\.opera
2023-12-03 11:27 - 2023-09-10 13:48 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-12-02 20:58 - 2023-09-10 09:37 - 000000000 ____D C:\Users\ms2\AppData\Roaming\.minecraft
2023-12-02 20:36 - 2023-09-11 19:15 - 000000000 ____D C:\Users\ms2\AppData\Roaming\EasyAntiCheat
2023-12-02 17:41 - 2023-09-16 16:31 - 000263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy_3.dll
2023-12-02 17:41 - 2023-09-10 09:36 - 002754152 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2023-12-02 17:41 - 2023-09-10 09:36 - 000634880 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2023-12-02 17:41 - 2023-09-10 09:36 - 000214632 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2023-12-02 17:41 - 2023-09-10 09:36 - 000194040 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2023-12-02 17:41 - 2023-09-10 09:36 - 000145000 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2023-12-02 17:41 - 2023-09-10 09:36 - 000095848 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe
2023-12-02 17:41 - 2023-09-10 09:36 - 000075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe
2023-12-01 17:40 - 2023-09-10 08:51 - 000000000 ____D C:\Users\ms2\AppData\Local\D3DSCache
2023-11-30 21:33 - 2023-09-10 09:18 - 000002242 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2023-11-30 21:27 - 2023-09-10 13:51 - 000004002 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{00639AE7-C734-477C-A2CD-9A2A5285241D}
2023-11-30 21:27 - 2023-09-10 13:51 - 000003878 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{D672E439-F1E2-44E3-A75B-92E316BA8AA7}
2023-11-29 20:23 - 2023-09-26 16:38 - 000004176 _____ C:\WINDOWS\system32\Tasks\Opera GX scheduled Autoupdate 1695742696
2023-11-29 20:23 - 2023-09-26 16:38 - 000001428 _____ C:\Users\ms2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Browser Opera GX.lnk
2023-11-27 15:57 - 2023-09-10 08:51 - 000000000 ____D C:\Users\ms2\AppData\Local\ConnectedDevicesPlatform
2023-11-23 18:53 - 2023-10-20 19:16 - 000000000 ____D C:\Users\ms2\AppData\Roaming\BetterDiscord Installer
2023-11-23 18:51 - 2023-09-10 10:26 - 000000000 ____D C:\Users\ms2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2023-11-23 18:51 - 2023-09-10 10:26 - 000000000 ____D C:\Users\ms2\AppData\Local\SquirrelTemp
2023-11-23 17:33 - 2023-09-26 18:09 - 000000000 ____D C:\Users\ms2\AppData\Local\BattlEye
2023-11-22 19:42 - 2023-09-10 08:51 - 000000000 ____D C:\Users\ms2\AppData\Local\VirtualStore
2023-11-21 20:10 - 2023-09-10 13:49 - 000000001 _____ C:\WINDOWS\vgkbootstatus.dat
2023-11-21 15:45 - 2023-09-11 19:24 - 000000000 ____D C:\Users\ms2\AppData\Local\AMD_Common
2023-11-21 15:26 - 2023-10-12 17:09 - 000000000 ____D C:\Program Files (x86)\TunnelBear
2023-11-20 18:06 - 2023-09-10 10:18 - 000000000 ____D C:\Users\ms2\AppData\Local\UnrealEngine
2023-11-20 17:48 - 2023-09-10 13:51 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-284586763-1660449626-2468957795-1003
2023-11-20 17:48 - 2023-09-10 13:51 - 000003358 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-284586763-1660449626-2468957795-1003
2023-11-20 17:48 - 2023-09-10 08:53 - 000002389 _____ C:\Users\ms2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-11-20 17:46 - 2023-09-10 15:14 - 000000000 ____D C:\Users\ms2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2023-11-19 21:30 - 2023-09-10 13:49 - 000000000 ____D C:\Users\ms2
2023-11-19 18:27 - 2023-09-20 19:11 - 000011291 _____ C:\GetDeviceStatus.xml
2023-11-19 18:27 - 2023-09-20 19:11 - 000008069 _____ C:\GetDeviceCap.xml
2023-11-19 18:19 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\USOPrivate
2023-11-19 18:04 - 2023-10-20 19:22 - 000001623 _____ C:\WINDOWS\system32\config\VSMIDK
2023-11-19 18:02 - 2023-09-10 13:48 - 000332264 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-11-19 18:01 - 2023-10-15 22:49 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2023-11-19 18:01 - 2022-05-07 11:39 - 000000000 ___SD C:\WINDOWS\system32\AppV
2023-11-19 18:01 - 2022-05-07 11:39 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2023-11-19 18:01 - 2022-05-07 11:29 - 000000000 ____D C:\WINDOWS\SysWOW64\de
2023-11-19 18:01 - 2022-05-07 11:29 - 000000000 ____D C:\WINDOWS\system32\de
2023-11-19 18:01 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\SysWOW64\lxss
2023-11-19 18:01 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\system32\UNP
2023-11-19 18:01 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\system32\lxss
2023-11-19 18:01 - 2022-05-07 06:24 - 000000000 ___RD C:\WINDOWS\PrintDialog
2023-11-19 18:01 - 2022-05-07 06:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-11-19 18:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\UUS
2023-11-19 18:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-11-19 18:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\vi-VN
2023-11-19 18:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2023-11-19 18:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2023-11-19 18:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2023-11-19 18:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2023-11-19 18:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2023-11-19 18:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\id-ID
2023-11-19 18:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\gl-ES
2023-11-19 18:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\eu-ES
2023-11-19 18:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2023-11-19 18:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2023-11-19 18:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-11-19 18:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES
2023-11-19 18:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemResources
2023-11-19 18:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-11-19 18:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2023-11-19 18:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\vi-VN
2023-11-19 18:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2023-11-19 18:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2023-11-19 18:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\setup
2023-11-19 18:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2023-11-19 18:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-11-19 18:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-11-19 18:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2023-11-19 18:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2023-11-19 18:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\id-ID
2023-11-19 18:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2023-11-19 18:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\gl-ES
2023-11-19 18:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\eu-ES
2023-11-19 18:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\et-EE
2023-11-19 18:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\es-MX
2023-11-19 18:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-11-19 18:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\DDFs
2023-11-19 18:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\ca-ES
2023-11-19 18:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-11-19 18:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-11-19 18:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2023-11-19 18:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\Provisioning
2023-11-19 18:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\DiagTrack
2023-11-19 18:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-11-19 18:01 - 2022-05-07 06:24 - 000000000 ____D C:\Program Files\Common Files\System
2023-11-19 18:01 - 2022-05-07 06:17 - 000000000 ____D C:\WINDOWS\servicing
2023-11-17 19:39 - 2022-11-21 19:52 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-11-17 19:37 - 2022-11-21 19:52 - 182871392 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-11-17 19:37 - 2022-05-07 11:39 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2023-11-17 19:37 - 2022-05-07 06:25 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2023-11-17 19:37 - 2022-05-07 06:24 - 000249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2023-11-17 19:37 - 2022-05-07 06:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-11-17 19:34 - 2023-09-10 13:51 - 003212800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-11-17 19:27 - 2023-09-10 10:09 - 000000000 ____D C:\Users\ms2\AppData\Local\Steam
2023-11-16 17:38 - 2023-09-18 17:11 - 000000000 ____D C:\Users\ms2\AppData\Local\Enlisted
2023-11-14 17:32 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\NDF
2023-11-12 17:46 - 2022-11-21 19:59 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2023-11-11 18:35 - 2023-10-11 17:14 - 000000000 ____D C:\Users\ms2\AppData\Roaming\Feather Launcher
2023-11-11 18:08 - 2023-10-11 17:14 - 000000000 ____D C:\Users\ms2\AppData\Local\feather-launcher-updater
2023-11-11 18:08 - 2023-10-11 17:14 - 000000000 ____D C:\Program Files\Feather Launcher
2023-11-07 17:32 - 2022-06-03 14:35 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-11-04 19:56 - 2022-11-21 18:58 - 000000000 ____D C:\Program Files (x86)\LightingService
2023-11-04 19:56 - 2022-11-21 18:57 - 000000000 ____D C:\ProgramData\Package Cache
2023-11-04 19:56 - 2022-11-18 23:29 - 000000000 ____D C:\ProgramData\ASUS
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========
2023-10-10 12:54 - 2023-10-10 12:54 - 000000000 ____H () C:\Users\ms2\AppData\Local\BIT6AEF.tmp
2023-09-16 16:35 - 2023-09-21 19:23 - 000026630 _____ () C:\Users\ms2\AppData\Local\PlariumPlay.log
==================== SigCheck ============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
==================== Ende von FRST.txt ========================
Addition: Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 03-12-2023
durchgeführt von ms2 (03-12-2023 17:35:57)
Gestartet von C:\Users\ms2\AppData\Local\Temp\scoped_dir3708_475172757
Microsoft Windows 11 Pro Version 22H2 22621.2715 (X64) (2023-09-10 12:51:48)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
Administrator (S-1-5-21-284586763-1660449626-2468957795-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-284586763-1660449626-2468957795-503 - Limited - Disabled)
Gast (S-1-5-21-284586763-1660449626-2468957795-501 - Limited - Disabled)
ms2 (S-1-5-21-284586763-1660449626-2468957795-1003 - Administrator - Enabled) => C:\Users\ms2
WDAGUtilityAccount (S-1-5-21-284586763-1660449626-2468957795-504 - Limited - Disabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
7-Zip 21.07 (x64) (HKLM\...\7-Zip) (Version: 21.07 - Igor Pavlov)
Albion Online (HKLM-x32\...\SandboxAlbionOnline) (Version: - Sandbox Interactive GmbH)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 23.Q3 - Advanced Micro Devices, Inc.)
ARMOURY CRATE Lite Service (HKLM\...\{EF3944FF-2501-4568-B15C-5701E726719E}) (Version: 5.3.3 - ASUS)
ASUS AIOFan HAL (HKLM\...\{EAE80DED-1A39-41C5-9F60-87CC947F6454}) (Version: 1.1.50.0 - ASUSTek COMPUTER INC.) Hidden
ASUS AIOFan HAL (HKLM-x32\...\{6aabd550-b97f-4b87-8c12-fb271d7c8047}) (Version: 1.1.50.0 - ASUSTek COMPUTER INC.) Hidden
ASUS AURA Extension Card HAL (HKLM\...\{237E1CAC-1708-4940-AC34-DF15C079AB70}) (Version: 1.1.0.18 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Extension Card HAL (HKLM-x32\...\{4e2b05b0-eb08-41e5-9eb3-cdcc43d6bee0}) (Version: 1.1.0.18 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Motherboard HAL (HKLM\...\{4EBEAC95-76BC-46A8-8644-6E2F1C87CF70}) (Version: 1.3.7.0 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Motherboard HAL (HKLM-x32\...\{98ff4518-0cc2-45ec-8152-eeba51c7881a}) (Version: 1.3.7.0 - ASUSTeK COMPUTER INC.) Hidden
ASUS Aura SDK (HKLM\...\{CF8E6E00-9C03-4440-81C0-21FACB921A6B}) (Version: 3.04.39 - ASUSTek COMPUTER INC.) Hidden
ASUS AURA VGA Component (HKLM\...\{71BB96A6-EAC4-45AE-A17D-D3ED43FF1D14}) (Version: 0.0.4.3 - ASUSTek COMPUTER INC. ) Hidden
ASUS AURA VGA Component (HKLM-x32\...\{7a0d5159-cb5e-4f66-91f8-bab46f864f14}) (Version: 0.0.4.3 - ASUSTek COMPUTER INC. ) Hidden
ASUS Framework Service (HKLM-x32\...\{339A6383-7862-46DA-8A9D-E84180EF9424}) (Version: 3.1.1.0 - ASUSTeK Computer Inc.)
ASUS Motherboard (HKLM-x32\...\{93795eb8-bd86-4d4d-ab27-ff80f9467b37}) (Version: 3.03.04 - ASUSTek Computer Inc.)
ASUS Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.107.107 - ASUSTeK Computer Inc.) Hidden
AURA DRAM Component (HKLM\...\{6FB66775-BB93-4D0A-9871-4CC9B2E87BF3}) (Version: 1.1.23 - ASUS) Hidden
AURA DRAM Component (HKLM-x32\...\{179f415f-2ff3-4db1-bcc1-d5730f746db8}) (Version: 1.1.23 - ASUS) Hidden
AURA lighting effect add-on (HKLM-x32\...\{1E2EA04B-FCA7-457E-B6F4-F33E1858E859}) (Version: 0.0.24 - ASUS)
AURA lighting effect add-on x64 (HKLM\...\{C5A4A164-4428-4931-B728-96EEF0FA3C44}) (Version: 0.0.24 - ASUS)
AURA Service (HKLM-x32\...\{0fcadbd2-1a6a-4a4a-a56d-fc7163d9b3fa}) (Version: 3.07.25 - ASUSTeK Computer Inc.)
AURA Service (HKLM-x32\...\{56EEEF7D-0AE3-401A-898B-581719D005AE}) (Version: 3.07.25 - ASUSTeK Computer Inc.) Hidden
Badlion Client (HKLM\...\1de14785-dd8c-5cd2-aae8-d4a376f81d78) (Version: 3.18.2 - Badlion)
Discord (HKU\S-1-5-21-284586763-1660449626-2468957795-1003\...\Discord) (Version: 1.0.9024 - Discord Inc.)
Dokumente (HKU\S-1-5-21-284586763-1660449626-2468957795-1003\...\8557a7abc3c25fc4d27e0a6dc7b672a4) (Version: 1.0 - Google\Chrome)
Dokumente (HKU\S-1-5-21-284586763-1660449626-2468957795-1003\...\cff00975774313bd0fb36a34b81cc37d) (Version: 1.0 - Google\Chrome)
Dynamic Application Loader Host Interface Service (HKLM\...\{FE08EA18-3549-49F1-8F5D-01F176DCE1CC}) (Version: 1.0.0.0 - Intel Corporation) Hidden
ENE RGB HAL (HKLM\...\{E050E98C-5524-4AFB-9E53-97700BEF2C02}) (Version: 1.1.40.3 - Ene Tech.) Hidden
ENE RGB HAL (HKLM-x32\...\{7f329536-2468-4b20-88dc-5e2defcd5ff3}) (Version: 1.1.40.3 - Ene Tech.) Hidden
ENE_EHD_M2_HAL (HKLM\...\{37A48B7F-D4EA-4863-844E-A284E2AA3C5D}) (Version: 1.0.9.12 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_M2_HAL (HKLM-x32\...\{97f3a665-a91b-4def-91e2-97fec9f22bfa}) (Version: 1.0.9.12 - ENE TECHNOLOGY INC.) Hidden
Enlisted Launcher 1.0.3.114 (HKU\S-1-5-21-284586763-1660449626-2468957795-1003\...\{5fcad5a5-d0d8-4edf-a5ba-040b397eac31}}_is1) (Version: - Gaijin Network)
Epic Games Launcher (HKLM-x32\...\{74229F03-A24F-408B-AA3B-C4B8ECF102BA}) (Version: 1.3.82.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{35905844-0610-427D-86A0-2103FABE3D4D}) (Version: 2.0.42.0 - Epic Games, Inc.)
Feather Launcher (HKLM\...\cb3d390f-61d8-588c-9dbc-20097422bee3) (Version: 1.5.9 - Digital Ingot, Inc.)
FINAL FANTASY XIV ONLINE (HKLM-x32\...\{2B41E132-07DF-4925-A3D3-F2D1765CCDFE}) (Version: 1.0.0000 - SQUARE ENIX CO., LTD.)
Freemake Video Converter Version 4.1.13 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.13 - Mixbyte Inc.)
GameSDK Service (HKLM-x32\...\{021d69c3-d686-4a94-8fb5-fd1ee782fb14}) (Version: 1.0.5.0 - ASUSTek COMPUTER INC.)
GameSDK Service (HKLM-x32\...\{7160DA8D-3F25-4F6E-ABC8-F693551D82FA}) (Version: 1.0.5.0 - ASUSTek COMPUTER INC.) Hidden
GDLauncher 1.1.30 (HKU\S-1-5-21-284586763-1660449626-2468957795-1003\...\916a734d-6952-56dd-9bc1-8fe0631126cf) (Version: 1.1.30 - GorillaDevs)
Geeks3D FurMark 1.33.0.0 (HKLM-x32\...\{2397CAD4-2263-4CD0-96BE-E43A980B9C9A}_is1) (Version: 1.33.0.0 - Geeks3D)
Gmail (HKU\S-1-5-21-284586763-1660449626-2468957795-1003\...\353a301a48351569798e7c8326dfac78) (Version: 1.0 - Google\Chrome)
Gmail (HKU\S-1-5-21-284586763-1660449626-2468957795-1003\...\4edb2163dcdb48d2b9be0b8c8d5329c8) (Version: 1.0 - Google\Chrome)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 119.0.6045.200 - Google LLC)
Google Drive (HKU\S-1-5-21-284586763-1660449626-2468957795-1003\...\3c322670cc9ad108a53e92261056fe13) (Version: 1.0 - Google\Chrome)
Google Drive (HKU\S-1-5-21-284586763-1660449626-2468957795-1003\...\5023d0bb20940fc4f4ef22a8f0370e55) (Version: 1.0 - Google\Chrome)
Google Play Spiele (Beta) (HKLM\...\GooglePlayGames) (Version: 23.11.819.6 - Google LLC)
Hextech Repair Tool (HKLM-x32\...\{7F9A97E6-E666-11E5-B582-B88687E82322}) (Version: 1.1.176 - Riot Games, Inc.)
Intel(R) Chipset Device Software (HKLM\...\{2EE411D3-03C6-4647-81F5-A3C13F25FDC5}) (Version: 10.1.18838.8284 - Intel Corporation) Hidden
Intel(R) Chipset Device Software (HKLM-x32\...\{2d8d3782-0c02-4681-87f4-e004b3d4a8f6}) (Version: 10.1.18838.8284 - Intel(R) Corporation)
Intel(R) LMS (HKLM\...\{DFFC9992-3A41-4155-A834-9831C6E58D98}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{FA6E1882-F6C1-47E1-A6CB-FC1F5460E311}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Driver (HKLM\...\{38F0D70E-8F07-4BF9-A5E0-6946C3D614D8}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.2129.8 - Intel Corporation)
Intel(R) Serial IO (HKLM\...\{A5530342-3F3E-4C02-9ECA-20DC35944BFD}) (Version: 30.100.2129.8 - Intel Corporation) Hidden
Java 8 Update 381 (HKLM-x32\...\{77924AE4-039E-4CA4-87B4-2F32180381F0}) (Version: 8.0.3810.9 - Oracle Corporation)
Java(TM) SE Development Kit 21 (64-bit) (HKLM\...\{8D4CF14F-F1A6-576C-AE82-5F90CC628632}) (Version: 21.0.0.0 - Oracle Corporation)
Kingston AURA DRAM Component (HKLM\...\{965CDF5F-901C-476F-B3A8-7396701B1129}) (Version: 1.1.16 - KINGSTON COMPONENTS INC.) Hidden
Kingston AURA DRAM Component (HKLM-x32\...\{39014df0-ccd5-4c61-8e9d-836af9ef56fd}) (Version: 1.1.16 - KINGSTON COMPONENTS INC.) Hidden
Krawall im Lehrerzimmer version 1.0 (HKLM-x32\...\{F9589E7E-8DD7-4FCF-9094-367357F840B7}_is1) (Version: 1.0 - Pk Moritz)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
LDPlayer (HKLM-x32\...\LDPlayer9) (Version: 9.0.59 - XUANZHI INTERNATIONAL CO., LIMITED)
League of Legends (HKU\S-1-5-21-284586763-1660449626-2468957795-1003\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc)
Microsoft .NET Host - 6.0.10 (x64) (HKLM\...\{0222FFF1-57A3-48A6-9AD2-0D6B5D0172B3}) (Version: 48.43.48869 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.10 (x64) (HKLM\...\{A93C4E12-1BAB-4CFB-ADBC-9CE0B93176FF}) (Version: 48.43.48869 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.10 (x64) (HKLM\...\{A2A39CB9-677D-4299-8537-C00B99F3D4A4}) (Version: 48.43.48869 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 119.0.2151.93 - Microsoft Corporation)
Microsoft Edge WebView2-Laufzeit (HKLM-x32\...\Microsoft EdgeWebView) (Version: 119.0.2151.97 - Microsoft Corporation)
Microsoft GameInput (HKLM-x32\...\{1F2B6AF3-C260-8666-5950-E3FEDBC851D6}) (Version: 10.1.22621.3036 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-284586763-1660449626-2468957795-1003\...\OneDriveSetup.exe) (Version: 23.226.1031.0003 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{C6FD611E-7EFE-488C-A0E0-974C09EF6473}) (Version: 5.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40649 (HKLM-x32\...\{5d0723d3-cff7-4e07-8d0b-ada737deb5e6}) (Version: 12.0.40649.5 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40649 (HKLM\...\{20C1086D-C843-36B1-B678-990089D1BD44}) (Version: 12.0.40649 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40649 (HKLM\...\{ABB19BB4-838D-3082-BDA4-87C6604181A2}) (Version: 12.0.40649 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.36.32532 (HKLM-x32\...\{8bdfe669-9705-4184-9368-db9ce581e0e7}) (Version: 14.36.32532.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.36.32532 (HKLM-x32\...\{410c0ee1-00bb-41b6-9772-e12c2828b02f}) (Version: 14.36.32532.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.36.32532 (HKLM\...\{0025DD72-A959-45B5-A0A3-7EFEB15A8050}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.36.32532 (HKLM\...\{D5D19E2F-7189-42FE-8103-92CD1FA457C2}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.36.32532 (HKLM-x32\...\{C2C59CAB-8766-4ABD-A8EF-1151A36C41E5}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.36.32532 (HKLM-x32\...\{73F77E4E-5A17-46E5-A5FC-8A061047725F}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.10 (x64) (HKLM\...\{3EC7701F-54F2-491D-AFD1-0395F465BC5A}) (Version: 48.43.48870 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.10 (x64) (HKLM-x32\...\{ff748137-9c9a-4056-be0a-48c7e465453c}) (Version: 6.0.10.31726 - Microsoft Corporation)
OpenOffice 4.1.14 (HKLM-x32\...\{67817932-052B-4DB6-8E7C-A78585923709}) (Version: 4.114.9811 - Apache Software Foundation)
OpenOffice Updater (HKU\S-1-5-21-284586763-1660449626-2468957795-1003\...\OpenOffice Updater) (Version: 1.1.10 - OpenOffice) <==== ACHTUNG
Opera GX Stable 104.0.4944.80 (HKU\S-1-5-21-284586763-1660449626-2468957795-1003\...\Opera GX 104.0.4944.80) (Version: 104.0.4944.80 - Opera Software)
Paradox Launcher v2 (HKLM\...\{8C5CF4CE-D589-40B4-A77F-01FD64602C50}) (Version: 2.4.0 - Paradox Interactive)
Patriot Viper DRAM RGB (HKLM\...\{1F9C282E-CCB4-4D8E-A5CB-7B74DFCD8C95}) (Version: 1.0.9.5 - Patriot Memory) Hidden
Patriot Viper DRAM RGB (HKLM-x32\...\{31850f16-ce9f-4dec-81ca-222c617a9115}) (Version: 1.0.9.5 - Patriot Memory) Hidden
Patriot Viper M2 SSD RGB (HKLM\...\{8B4C0A3D-C135-4E1F-98D8-3926494B4D61}) (Version: 1.1.0.2 - Patriot Memory) Hidden
Patriot Viper M2 SSD RGB (HKLM-x32\...\{959e5696-0edd-4896-b1d8-54aaa725f770}) (Version: 1.1.0.2 - Patriot Memory) Hidden
PDF24 Creator 11.13.2 (HKLM\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version: 11.13.2 - PDF24.org)
PHISON HAL (HKLM\...\{966E33F0-6786-4B38-AA29-C1B3F6C1955D}) (Version: 1.0.9.0 - PHISON Electronics Corp.) Hidden
PHISON HAL (HKLM-x32\...\{549da357-1b81-456b-83f2-dcc47c41dfff}) (Version: 1.0.9.0 - PHISON Electronics Corp.) Hidden
Plarium Play (HKLM-x32\...\{99207913-0a03-44d8-8635-47ffc9f5fb5d}) (Version: 8.7.0 - Plarium)
PlariumPlay (HKLM-x32\...\{A52E340E-AEE7-410B-BB45-C39E76FB9310}) (Version: 8.7.0 - Plarium) Hidden
Präsentationen (HKU\S-1-5-21-284586763-1660449626-2468957795-1003\...\a5aa26bea252ad10305f19b359c3965e) (Version: 1.0 - Google\Chrome)
Präsentationen (HKU\S-1-5-21-284586763-1660449626-2468957795-1003\...\fb6823f2973bbaee20d47d0bb2eca9df) (Version: 1.0 - Google\Chrome)
Proton Drive (HKLM\...\{70CFE697-DAF4-47F4-BB3B-8C18B049E116}) (Version: 1.4.2 - Proton AG) Hidden
Proton Drive (HKLM\...\Proton Drive 1.4.2) (Version: 1.4.2 - Proton AG)
Proton VPN (HKLM\...\Proton VPN_is1) (Version: 3.2.7 - Proton AG)
Raspberry Pi Imager (HKU\S-1-5-21-284586763-1660449626-2468957795-1003\...\Raspberry Pi Imager) (Version: 1.8.1 - Raspberry Pi Ltd)
Riot Client (HKU\S-1-5-21-284586763-1660449626-2468957795-1003\...\Riot Game Riot_Client.) (Version: - Riot Games, Inc)
Riot Vanguard (HKLM\...\Riot Vanguard) (Version: - Riot Games, Inc.)
ROG FAN XPERT 4 (HKLM-x32\...\{2dfe216d-3481-4684-ad4d-2566bd7cfe4f}) (Version: 2.02.02 - ASUSTek Computer Inc.)
ROG Live Service (HKLM\...\{2D87BFB6-C184-4A59-9BBE-3E20CE797631}) (Version: 2.1.5.0 - ASUSTek COMPUTER INC.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Tabellen (HKU\S-1-5-21-284586763-1660449626-2468957795-1003\...\9d01383c2ac473607b501d16d31d2fa7) (Version: 1.0 - Google\Chrome)
Tabellen (HKU\S-1-5-21-284586763-1660449626-2468957795-1003\...\e084ea7e1937993b3718d3c33edbd5a4) (Version: 1.0 - Google\Chrome)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 11.01 - Ghisler Software GmbH)
TunnelBear (HKLM-x32\...\{c99146dd-e09d-4881-b76b-2d7bc1b30806}) (Version: 4.8.0.0 - TunnelBear)
TunnelBear (HKLM-x32\...\{E7AEA528-0D3E-4A22-B516-9EC97C636E42}) (Version: 4.8.0.0 - TunnelBear) Hidden
Uninstall Lunar Client (HKU\S-1-5-21-284586763-1660449626-2468957795-1003\...\1fcec38f-e773-5444-8669-32b8eb41524b) (Version: 3.1.3 - Moonsworth LLC)
Universal Holtek RGB DRAM (HKLM\...\{826388E4-E31F-4514-948B-3BB954FB3EAF}) (Version: 1.0.0.4 - PD) Hidden
Universal Holtek RGB DRAM (HKLM-x32\...\{c8b4688a-f5d4-4236-aec4-df260a88ccc4}) (Version: 1.0.0.4 - PD) Hidden
VALORANT (HKU\S-1-5-21-284586763-1660449626-2468957795-1003\...\Riot Game valorant.live) (Version: - Riot Games, Inc)
WD_BLACK AN1500 (HKLM\...\{085E2365-0A70-4230-B664-02D5E4FE7E9C}) (Version: 1.0.14.0 - ENE TECHNOLOGY INC.) Hidden
WD_BLACK AN1500 (HKLM-x32\...\{e42c5874-37b0-4977-9e8d-70bf006e1f76}) (Version: 1.0.14.0 - ENE TECHNOLOGY INC.) Hidden
Websuche (Chrome/Edge) (HKLM-x32\...\Websuche) (Version: - Websuche) <==== ACHTUNG
YouTube (HKU\S-1-5-21-284586763-1660449626-2468957795-1003\...\f07270df04075bae4abfbb4d8f1576b3) (Version: 1.0 - Google\Chrome)
Packages:
=========
AMD Radeon Software -> C:\Program Files\AMD\CNext\CNext [2023-09-11] (Advanced Micro Devices Inc.) [Startup Task]
Dev Home -> C:\Program Files\WindowsApps\Microsoft.Windows.DevHome_0.700.323.0_x64__8wekyb3d8bbwe [2023-11-30] (Microsoft Corporation)
Intel® Optane™ Memory and Storage Management -> C:\Program Files\WindowsApps\AppUp.IntelOptaneMemoryandStorageManagement_20.0.1011.0_x64__8j3eq9eme6ctt [2023-11-01] (INTEL CORP)
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_3.0.14.0_x64__w1wdnht996qgy [2023-11-30] (LinkedIn) [Startup Task]
Microsoft Teams Play Together -> C:\Program Files\WindowsApps\Microsoft.TeamsXboxGameBarWidget_1.0.22.0_x64__8wekyb3d8bbwe [2023-12-03] (Microsoft Corporation)
Microsoft.WindowsAppRuntime.CBS -> C:\WINDOWS\SystemApps\Microsoft.WindowsAppRuntime.CBS_8wekyb3d8bbwe [2023-11-19] (Microsoft Corporation)
Minecraft Dungeons -> C:\Program Files\WindowsApps\Microsoft.Lovika_1.17.0.0_x64__8wekyb3d8bbwe [2023-10-12] (Microsoft Studios)
Minecraft Launcher -> C:\Program Files\WindowsApps\Microsoft.4297127D64EC6_1.3.7.0_x64__8wekyb3d8bbwe [2023-09-18] (Microsoft Studios)
Outlook for Windows -> C:\Program Files\WindowsApps\Microsoft.OutlookForWindows_1.2023.1114.0_x64__8wekyb3d8bbwe [2023-12-03] (Microsoft Corporation)
Roblox -> C:\Program Files\WindowsApps\ROBLOXCORPORATION.ROBLOX_2.602.625.0_x64__55nm5eh3cm0pr [2023-11-30] (Roblox Corporation)
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.18.11020.0_x64__8wekyb3d8bbwe [2023-11-30] (Microsoft Studios) [MS Ad]
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.225.1011.0_x64__zpdnekdrzrea0 [2023-11-30] (Spotify AB) [Startup Task]
Stardew Valley -> C:\Program Files\WindowsApps\ConcernedApe.StardewValleyPC_1.5.60002.0_x64__0c8vynj4cqe4e [2023-10-12] (ConcernedApe)
Windows Feature Experience Pack -> C:\WINDOWS\SystemApps\MicrosoftWindows.Client.FileExp_cw5n1h2txyewy [2023-11-19] (Microsoft Corporation)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-284586763-1660449626-2468957795-1003_Classes\CLSID\{1dcb280c-9699-aefe-803c-2007c35cbb5a}\localserver32 -> C:\Program Files\Proton\Drive\ProtonDrive.exe (Proton AG -> Proton AG)
CustomCLSID: HKU\S-1-5-21-284586763-1660449626-2468957795-1003_Classes\CLSID\{2a27ab37-5ba0-4130-bc13-62c2ea78d1f6}\localserver32 -> C:\Users\ms2\AppData\Local\PlariumPlay\8.6.0-0.0.1\dotnet\info\PlariumPlayInfo.exe (Plarium Global LTD -> PlariumPlayInfo)
CustomCLSID: HKU\S-1-5-21-284586763-1660449626-2468957795-1003_Classes\CLSID\{50726f74-6f6e-2e56-504e-000000000000}\localserver32 -> C:\Program Files\Proton\VPN\v3.2.7\ProtonVPN.exe (Proton AG -> )
CustomCLSID: HKU\S-1-5-21-284586763-1660449626-2468957795-1003_Classes\CLSID\{6282d2e9-5906-bbf9-4b71-0c2869c6a835}\localserver32 -> C:\Program Files\Google\Play Games\current\service\Service.exe (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-284586763-1660449626-2468957795-1003_Classes\CLSID\{6a27a1a9-7be8-1491-04ca-ee68a211c258}\localserver32 -> C:\Program Files\Google\Play Games\current\service\Service.exe (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-284586763-1660449626-2468957795-1003_Classes\CLSID\{d041da50-3bbc-fd04-7bbf-cc85bba226da}\localserver32 -> C:\Users\ms2\AppData\Local\PlariumPlay\8.7.0-0.0.1\dotnet\info\PlariumPlayInfo.exe (Plarium Global LTD -> PlariumPlayInfo)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2021-12-26] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2021-12-26] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => -> Keine Datei
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2021-12-26] (Igor Pavlov) [Datei ist nicht signiert]
==================== Codecs (Nicht auf der Ausnahmeliste) ====================
==================== Verknüpfungen & WMI ========================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
ShortcutWithArgument: C:\Users\ms2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Dokumente (1).lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 1" --app-id=mpnpojknpmmopombnjdcgaaiekajbnjb
ShortcutWithArgument: C:\Users\ms2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Dokumente.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=mpnpojknpmmopombnjdcgaaiekajbnjb
ShortcutWithArgument: C:\Users\ms2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Gmail (1).lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 1" --app-id=fmgjjmmmlfnkbppncabfkddbjimcfncm
ShortcutWithArgument: C:\Users\ms2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Gmail.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=fmgjjmmmlfnkbppncabfkddbjimcfncm
ShortcutWithArgument: C:\Users\ms2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Google Drive (1).lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 1" --app-id=aghbiahbpaijignceidepookljebhfak
ShortcutWithArgument: C:\Users\ms2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Google Drive.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=aghbiahbpaijignceidepookljebhfak
ShortcutWithArgument: C:\Users\ms2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Präsentationen (1).lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 1" --app-id=kefjledonklijopmnomlcbpllchaibag
ShortcutWithArgument: C:\Users\ms2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Präsentationen.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=kefjledonklijopmnomlcbpllchaibag
ShortcutWithArgument: C:\Users\ms2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Tabellen (1).lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 1" --app-id=fhihpiojkbmbpdjeoajapmgkhlnakfjf
ShortcutWithArgument: C:\Users\ms2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Tabellen.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=fhihpiojkbmbpdjeoajapmgkhlnakfjf
ShortcutWithArgument: C:\Users\ms2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\YouTube (1).lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 1" --app-id=agimnkijcaahngcdmfeangaknmldooml
ShortcutWithArgument: C:\Users\ms2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\hugo - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 1"
==================== Geladene Module (Nicht auf der Ausnahmeliste) =============
2023-08-30 15:19 - 2023-08-30 15:19 - 000030720 _____ () [Datei ist nicht signiert] [Datei wird verwendet] C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.Wrapper.dll
2022-11-21 18:57 - 2022-09-01 09:47 - 000522240 _____ () [Datei ist nicht signiert] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\ac_node_addon\prebuilds\win32-ia32\node.napi.node
2022-11-21 18:57 - 2022-09-01 09:47 - 000520192 _____ () [Datei ist nicht signiert] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\ffi-napi\prebuilds\win32-ia32\node.napi.node
2022-11-21 18:57 - 2022-09-01 09:47 - 000483328 _____ () [Datei ist nicht signiert] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\node-system-fonts\build\Release\system-fonts.node
2022-11-21 18:57 - 2022-09-01 09:47 - 000510464 _____ () [Datei ist nicht signiert] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\ref-napi\prebuilds\win32-ia32\node.napi.node
2022-11-21 18:57 - 2022-09-01 09:47 - 000786432 _____ () [Datei ist nicht signiert] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\usb-detection\prebuilds\win32-ia32\node.napi.node
2023-12-03 17:32 - 2023-12-03 17:32 - 000265728 _____ () [Datei ist nicht signiert] \\?\C:\Users\ms2\AppData\Local\Temp\861b7289-725d-4dce-b776-0b3276125909.tmp.node
2022-11-21 18:57 - 2022-06-08 10:33 - 000081920 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\WindowID\WindowID.dll
2023-09-10 10:28 - 2023-11-22 13:54 - 002880000 _____ () [Datei ist nicht signiert] C:\Users\ms2\AppData\Local\Programs\launcher\ffmpeg.dll
2023-09-10 10:28 - 2023-11-22 13:54 - 000480256 _____ () [Datei ist nicht signiert] C:\Users\ms2\AppData\Local\Programs\launcher\libegl.dll
2023-09-10 10:28 - 2023-11-22 13:54 - 007417856 _____ () [Datei ist nicht signiert] C:\Users\ms2\AppData\Local\Programs\launcher\libglesv2.dll
2023-09-10 10:28 - 2023-11-22 13:54 - 005251072 _____ () [Datei ist nicht signiert] C:\Users\ms2\AppData\Local\Programs\launcher\vk_swiftshader.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\desktop.ini:B1DA6C571C [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Badlion Client.lnk:8BD81608B2 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\desktop.ini:41964AA945 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk:BE32D07BC5 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Feather Launcher.lnk:FBDA9CAD7D [3442]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [9678]
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================
==================== Internet Explorer (Nicht auf der Ausnahmeliste) ==========
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre-1.8\bin\ssv.dll [2023-06-14] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre-1.8\bin\jp2ssv.dll [2023-06-14] (Oracle America, Inc. -> Oracle Corporation)
==================== Hosts Inhalt: =========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2021-06-05 13:08 - 2023-11-22 19:45 - 000000822 _____ C:\WINDOWS\system32\drivers\etc\hosts
2023-10-20 19:27 - 2023-10-20 19:27 - 000000435 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
172.27.144.1 LouisPC.mshome.net # 2028 10 3 18 18 27 16 828
==================== Andere Bereiche ===========================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Common Files\Oracle\Java\javapath;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\dotnet\
HKU\S-1-5-21-284586763-1660449626-2468957795-1003\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.179.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppHost => (EnableWebContentEvaluation: 1)
ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
HKU\S-1-5-21-284586763-1660449626-2468957795-1003\...\StartupApproved\Run: => "Salad"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{61B9B5B3-9491-4AA4-9F2D-6C66CDEEB514}] => (Allow) C:\Riot Games\League of Legends\LeagueClient.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [{45C972F5-BB9E-4A6C-A0CF-F4947FF24B37}] => (Allow) C:\Riot Games\League of Legends\LeagueClient.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [UDP Query User{808B93E9-BBF8-43F3-8B0A-4A8D56DC6DA9}C:\users\ms2\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Allow) C:\users\ms2\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe
FirewallRules: [TCP Query User{D81A0217-DC90-4DE4-A240-ABBE44920078}C:\users\ms2\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Allow) C:\users\ms2\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe
FirewallRules: [UDP Query User{F783EFF7-520F-4236-B467-27E5D169D2D3}C:\users\ms2\.lunarclient\jre\4dcd188552ce8876d5e55e1f6d22505109bfa4cb\zulu17.34.19-ca-jre17.0.3-win_x64\bin\javaw.exe] => (Allow) C:\users\ms2\.lunarclient\jre\4dcd188552ce8876d5e55e1f6d22505109bfa4cb\zulu17.34.19-ca-jre17.0.3-win_x64\bin\javaw.exe
FirewallRules: [TCP Query User{B95047D9-AD62-49D5-9B78-DD2A1E87CD9E}C:\users\ms2\.lunarclient\jre\4dcd188552ce8876d5e55e1f6d22505109bfa4cb\zulu17.34.19-ca-jre17.0.3-win_x64\bin\javaw.exe] => (Allow) C:\users\ms2\.lunarclient\jre\4dcd188552ce8876d5e55e1f6d22505109bfa4cb\zulu17.34.19-ca-jre17.0.3-win_x64\bin\javaw.exe
FirewallRules: [{B4AB789C-173F-4C04-AC79-75D445053158}] => (Allow) C:\Users\ms2\AppData\Local\Programs\Opera\102.0.4880.41\opera.exe => Keine Datei
FirewallRules: [{0A1794BC-DC74-4B97-841C-7C96EBD452F5}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{60D55881-1944-4506-8341-7F1E7C40B3A2}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{CE33A995-1979-4735-A07D-81E6CD44C641}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{93343B81-3CEC-4419-9C96-80DD4D9C2F36}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{992122EF-F89B-4A70-9B1B-A38621D427CE}] => (Allow) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
FirewallRules: [{03A65894-FEF1-49D2-8FF3-C0D39B393CEB}] => (Allow) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
FirewallRules: [{A66F9D1C-6065-45B5-A82D-F89BFE875772}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmouryHtmlDebugServer.exe (ASUSTeK COMPUTER INC. -> ASUS)
FirewallRules: [{7EBF617E-8E81-4C31-841C-0E229955FEFE}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe (ASUSTeK COMPUTER INC. -> ASUS)
FirewallRules: [{5AA4E430-0F0B-4228-B91F-A20241EB29F3}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
FirewallRules: [TCP Query User{36F2D3FB-B090-4682-ADA7-A8F9095C7C24}C:\program files\badlion client\badlion client.exe] => (Allow) C:\program files\badlion client\badlion client.exe (ESL Gaming Online, Inc. -> Badlion)
FirewallRules: [UDP Query User{730BA2FE-07F4-4059-B959-B3D256707D24}C:\program files\badlion client\badlion client.exe] => (Allow) C:\program files\badlion client\badlion client.exe (ESL Gaming Online, Inc. -> Badlion)
FirewallRules: [TCP Query User{F257931A-CA4F-4782-AB2B-FB8E584DDE73}C:\programdata\badlionclient\jdk-17.0.1_12\bin\javaw.exe] => (Allow) C:\programdata\badlionclient\jdk-17.0.1_12\bin\javaw.exe
FirewallRules: [UDP Query User{50C97B84-0715-4297-8193-835200AE7909}C:\programdata\badlionclient\jdk-17.0.1_12\bin\javaw.exe] => (Allow) C:\programdata\badlionclient\jdk-17.0.1_12\bin\javaw.exe
FirewallRules: [{EB221B83-17EF-45CA-A45B-AAC7873FE6C6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe () [Datei ist nicht signiert]
FirewallRules: [{3610379A-CACD-4901-BF9F-B286AF1C7A60}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{D47656BE-B59E-43C0-B4A6-B8A5BED38812}C:\riot games\riot client\riotclientservices.exe] => (Allow) C:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [UDP Query User{EF69B32E-07C2-4008-8177-7E0C61B910A8}C:\riot games\riot client\riotclientservices.exe] => (Allow) C:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [TCP Query User{726E40A9-8525-4531-8292-4F55F7586B7D}C:\users\ms2\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Allow) C:\users\ms2\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe
FirewallRules: [UDP Query User{1C00ED08-39DB-4431-B8BA-42C13158CF00}C:\users\ms2\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Allow) C:\users\ms2\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe
FirewallRules: [{0A0096CD-4DA1-4D2C-AFB7-BDBA4C471A73}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dungeons &amp; Degenerate Gamblers Demo\DnDG_64.exe (Godot Engine) [Datei ist nicht signiert]
FirewallRules: [{EC48E180-C775-43AF-A251-2096DC10AB9E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dungeons &amp; Degenerate Gamblers Demo\DnDG_64.exe (Godot Engine) [Datei ist nicht signiert]
FirewallRules: [{C7711EF5-A8C6-4D9A-AAE0-8439EF1A62DA}] => (Allow) C:\Program Files (x86)\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivboot.exe (SQUARE ENIX CO., LTD. -> SQUARE ENIX CO., LTD.)
FirewallRules: [{6B71B6BB-14E3-4918-B288-7C152B76A95D}] => (Allow) C:\Program Files (x86)\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivboot.exe (SQUARE ENIX CO., LTD. -> SQUARE ENIX CO., LTD.)
FirewallRules: [{BA998217-2077-4855-9132-B8D2C60F1714}] => (Allow) C:\Program Files (x86)\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivlauncher.exe (SQUARE ENIX CO., LTD. -> SQUARE ENIX CO., LTD.)
FirewallRules: [{0A38FA10-FDDC-47BE-BEFB-F7C4BF157FD3}] => (Allow) C:\Program Files (x86)\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivlauncher.exe (SQUARE ENIX CO., LTD. -> SQUARE ENIX CO., LTD.)
FirewallRules: [TCP Query User{BA09238C-8CE8-4638-B4D9-936E1B923843}C:\users\ms2\appdata\local\enlisted\launcher.exe] => (Allow) C:\users\ms2\appdata\local\enlisted\launcher.exe (Gaijin Network Ltd -> Gaijin)
FirewallRules: [UDP Query User{75A485A2-CC80-4FF1-9143-7C94F5E00005}C:\users\ms2\appdata\local\enlisted\launcher.exe] => (Allow) C:\users\ms2\appdata\local\enlisted\launcher.exe (Gaijin Network Ltd -> Gaijin)
FirewallRules: [TCP Query User{FDB2E01C-8038-4382-B0E0-E075CD6204E4}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{1BDA7238-3188-4C25-B32E-0F946BF306F8}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{0283C1F4-6835-4626-B2FA-7A52125756EC}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{23A7ADFD-9171-4905-9D90-86C7EFDBFF94}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{46940c56-5208-4c33-a492-d8d3c011b705}] => (Allow) C:\Program Files\ldplayer9box\Ld9BoxHeadless.exe (Shanghai Chang Zhi Network Technology Co,. Ltd. -> Oracle Corporation)
FirewallRules: [{62d35af4-ce66-46ce-99e8-6b9cc8239569}] => (Allow) C:\Program Files\ldplayer9box\VBoxNetNAT.exe (Shanghai Chang Zhi Network Technology Co,. Ltd. -> Oracle Corporation)
FirewallRules: [{a19dee9b-5bbd-4195-8b9e-681b93da982e}] => (Allow) C:\LDPlayer\LDPlayer9\dnplayer.exe (Shanghai Chang Zhi Network Technology Co,. Ltd. -> )
FirewallRules: [{BC33B374-C07F-4E4C-AF6F-56033B769C3E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Bloons TD Battles 2\btdb2_game.exe (Ninja Kiwi Ltd.) [Datei ist nicht signiert]
FirewallRules: [{C0E4C275-D3B8-47A8-BEE6-24C19A97F32C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Bloons TD Battles 2\btdb2_game.exe (Ninja Kiwi Ltd.) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{28FAE7FA-A342-428B-89BC-CF92D21C2076}C:\riot games\valorant\live\shootergame\binaries\win64\valorant-win64-shipping.exe] => (Block) C:\riot games\valorant\live\shootergame\binaries\win64\valorant-win64-shipping.exe (Riot Games, Inc. -> Riot Games)
FirewallRules: [UDP Query User{8D032686-4EAD-4A19-B2C7-5E877D052D96}C:\riot games\valorant\live\shootergame\binaries\win64\valorant-win64-shipping.exe] => (Block) C:\riot games\valorant\live\shootergame\binaries\win64\valorant-win64-shipping.exe (Riot Games, Inc. -> Riot Games)
FirewallRules: [TCP Query User{EAA75932-28F6-4C9D-AF56-18C4FF793C87}C:\users\ms2\appdata\local\programs\opera gx\opera.exe] => (Block) C:\users\ms2\appdata\local\programs\opera gx\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [UDP Query User{4164A7BB-8E7A-44D0-AA36-B268756034D8}C:\users\ms2\appdata\local\programs\opera gx\opera.exe] => (Block) C:\users\ms2\appdata\local\programs\opera gx\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [{84AB865D-4559-40D4-A76B-7E2B7284181B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\HITMAN 3\Launcher.exe (IO INTERACTIVE A/S -> )
FirewallRules: [{74D1E9D8-1F6E-4604-8D33-1EC12320E869}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\HITMAN 3\Launcher.exe (IO INTERACTIVE A/S -> )
FirewallRules: [{41EB6A5C-B711-4CDA-907B-5D141B89DF8C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PlagueInc\PlagueIncEvolved.exe () [Datei ist nicht signiert]
FirewallRules: [{269CD598-9050-4899-B8AB-71D1ED48B86E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PlagueInc\PlagueIncEvolved.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{F745EE56-4DBB-4B9D-BF94-8BACA51BE7AA}C:\users\ms2\appdata\roaming\.minecraft\jre\openjdk17u-jre_x64_windows_hotspot_17.0.3_7\bin\javaw.exe] => (Allow) C:\users\ms2\appdata\roaming\.minecraft\jre\openjdk17u-jre_x64_windows_hotspot_17.0.3_7\bin\javaw.exe
FirewallRules: [UDP Query User{DB431B2B-E577-4432-A476-D5666138D72F}C:\users\ms2\appdata\roaming\.minecraft\jre\openjdk17u-jre_x64_windows_hotspot_17.0.3_7\bin\javaw.exe] => (Allow) C:\users\ms2\appdata\roaming\.minecraft\jre\openjdk17u-jre_x64_windows_hotspot_17.0.3_7\bin\javaw.exe
FirewallRules: [{1DD8B06D-ACF5-4425-81AF-FB3DE105ABF8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Marbles on Stream\MarblesOnStream.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [{2A2F6821-4E64-4D9E-AF6C-0391A69F8EB7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Marbles on Stream\MarblesOnStream.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [{F6A5FA38-89A8-489F-AD92-20491053C2E6}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.225.1011.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{6D45894D-28ED-4AF7-9380-32DA3CAE29C5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.225.1011.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{13D33B63-B7CD-44DB-8E46-E1C861A9D029}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.225.1011.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{0997A676-1C9E-4BF7-9AC8-A422BE1F59B1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.225.1011.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{7231981C-6D26-43F9-90CD-7CE614B2FC56}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.225.1011.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{20E7F6ED-88B6-466F-A42A-CB375B8B20F3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.225.1011.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{19A39D50-B0AA-4027-8555-3CDA7FA02886}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.225.1011.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{B9D48EC4-AA05-4F76-9C75-70708ECB8918}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.225.1011.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{0A47D234-018C-4E48-9510-1B96539E0FB8}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.225.1011.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{8047613F-C302-4D82-801B-A37076019445}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.225.1011.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{BCADB791-DB30-45DD-A508-0632F4971AA3}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{C536ECBA-C277-476D-BF22-CEF52F6EABF2}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_23306.3309.2530.1346_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C6A5178E-6326-46E4-8B12-6F3DA37E8045}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_23306.3309.2530.1346_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C6DB5579-932B-4B2C-B2A4-917DF72C3AE0}] => (Allow) C:\Program Files\Google\Play Games\current\emulator\crosvm.exe (Google LLC -> )
FirewallRules: [{622AFCFC-FCB8-4B86-91A5-4B76FBBC4AB7}] => (Allow) C:\Program Files\Google\Play Games\current\emulator\crosvm.exe (Google LLC -> )
FirewallRules: [TCP Query User{90260B74-1A63-47EF-A876-31A30FA8AB9A}C:\program files\epic games\fortnite\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files\epic games\fortnite\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{88EA8497-C3C0-455B-8934-5FE0B1C2BDC8}C:\program files\epic games\fortnite\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files\epic games\fortnite\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{41A6F4DB-D38A-4ECC-AB65-299C7F7C3726}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\119.0.2151.97\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
==================== Wiederherstellungspunkte =========================
19-11-2023 18:23:37 Geplanter Prüfpunkt
30-11-2023 19:37:02 Windows Update
==================== Fehlerhafte Geräte im Gerätemanager ============
==================== Fehlereinträge in der Ereignisanzeige: ========================
Applikationsfehler:
==================
Error: (12/03/2023 05:32:31 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 13) (User: LOUISPC)
Description: C:\Users\ms2\AppData\Local\Publishers\8wekyb3d8bbwe\TeamsSharedConfigMicrosoftTeams_8wekyb3d8bbwe-2147024894
Error: (12/03/2023 11:58:30 AM) (Source: VSS) (EventID: 13) (User: )
Description: Volumenschattenkopie-Dienst-Informationen: Der COM-Server mit CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} und dem Namen "CEventSystem" kann nicht gestartet werden. [0x8007045b, Der Computer wird heruntergefahren.
]
Error: (12/03/2023 11:57:45 AM) (Source: Microsoft-Windows-AppModel-State) (EventID: 13) (User: LOUISPC)
Description: C:\Users\ms2\AppData\Local\Publishers\8wekyb3d8bbwe\TeamsSharedConfigMicrosoftTeams_8wekyb3d8bbwe-2147024894
Error: (12/03/2023 11:56:16 AM) (Source: Application Error) (EventID: 1000) (User: LOUISPC)
Description: Name der fehlerhaften Anwendung: svchost.exe, Version: 10.0.22621.1, Zeitstempel: 0x6dc5c2a5
Name des fehlerhaften Moduls: SyncController.dll, Version: 10.0.22621.2506, Zeitstempel: 0x73f780f5
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000000000007ab9
ID des fehlerhaften Prozesses: 0x0x1598
Startzeit der fehlerhaften Anwendung: 0x0x1da25d34e813271
Pfad der fehlerhaften Anwendung: C:\WINDOWS\System32\svchost.exe
Pfad des fehlerhaften Moduls: C:\Windows\System32\SyncController.dll
Berichtskennung: d923ab61-b761-41c2-a50c-577e97b4599e
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (12/03/2023 11:28:05 AM) (Source: Microsoft-Windows-AppModel-State) (EventID: 13) (User: LOUISPC)
Description: C:\Users\ms2\AppData\Local\Publishers\8wekyb3d8bbwe\TeamsSharedConfigMicrosoftTeams_8wekyb3d8bbwe-2147024894
Error: (12/02/2023 08:59:53 PM) (Source: Application Hang) (EventID: 1002) (User: NT-AUTORITÄT)
Description: Das Programm TeamsClientXboxOverlays.exe Version 1.0.0.0 hat aufgehört mit Windows zu interagieren und wurde geschlossen. Weitere Informationen zum Problem finden Sie im Problemverlauf in der Systemsteuerung „Sicherheit und Wartung“.
Error: (12/02/2023 08:36:53 PM) (Source: Application Hang) (EventID: 1002) (User: NT-AUTORITÄT)
Description: Das Programm TeamsClientXboxOverlays.exe Version 1.0.0.0 hat aufgehört mit Windows zu interagieren und wurde geschlossen. Weitere Informationen zum Problem finden Sie im Problemverlauf in der Systemsteuerung „Sicherheit und Wartung“.
Error: (12/02/2023 08:24:44 PM) (Source: Application Hang) (EventID: 1002) (User: NT-AUTORITÄT)
Description: Das Programm TeamsClientXboxOverlays.exe Version 1.0.0.0 hat aufgehört mit Windows zu interagieren und wurde geschlossen. Weitere Informationen zum Problem finden Sie im Problemverlauf in der Systemsteuerung „Sicherheit und Wartung“.
Systemfehler:
=============
Error: (12/03/2023 05:33:51 PM) (Source: DCOM) (EventID: 10010) (User: LOUISPC)
Description: Der Server "{8CFC164F-4BE5-4FDD-94E9-E2AF73ED4A19}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (12/03/2023 05:31:45 PM) (Source: Netwtw08) (EventID: 5010) (User: )
Description: Intel(R) Wireless-AC 9260 160MHz : Der Netzwerkadapter hat einen ungültigen Wert an den Treiber zurückgegeben.
5010 - Driver DBG_ASSERT - instead of BSOD
Error: (12/03/2023 11:56:56 AM) (Source: Netwtw08) (EventID: 5010) (User: )
Description: Intel(R) Wireless-AC 9260 160MHz : Der Netzwerkadapter hat einen ungültigen Wert an den Treiber zurückgegeben.
5010 - Driver DBG_ASSERT - instead of BSOD
Error: (12/03/2023 11:37:20 AM) (Source: Schannel) (EventID: 4103) (User: NT-AUTORITÄT)
Description: Schwer wiegender Fehler beim Erstellen einer TLS-Client Anmelde Informationen. Der interne Fehler Status ist 10013.
der SSPI-Client Prozess svchost (PID: 5528).
Error: (12/03/2023 11:27:28 AM) (Source: Netwtw08) (EventID: 5010) (User: )
Description: Intel(R) Wireless-AC 9260 160MHz : Der Netzwerkadapter hat einen ungültigen Wert an den Treiber zurückgegeben.
5010 - Driver DBG_ASSERT - instead of BSOD
Error: (12/02/2023 08:18:33 PM) (Source: Netwtw08) (EventID: 5010) (User: )
Description: Intel(R) Wireless-AC 9260 160MHz : Der Netzwerkadapter hat einen ungültigen Wert an den Treiber zurückgegeben.
5010 - Driver DBG_ASSERT - instead of BSOD
Error: (12/02/2023 05:46:33 PM) (Source: DCOM) (EventID: 10005) (User: LOUISPC)
Description: Fehler "87" in DCOM, als der Dienst "GamingServices" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden:
{3E8C9ABE-9226-4609-BF5B-60288A391DEE}
Error: (12/02/2023 05:46:33 PM) (Source: DCOM) (EventID: 10005) (User: LOUISPC)
Description: Fehler "87" in DCOM, als der Dienst "GamingServices" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden:
{3E8C9ABE-9226-4609-BF5B-60288A391DEE}
Windows Defender:
================
Date: 2023-12-03 17:35:55
Description:
Microsoft Defender Antivirus hat Schadsoftware oder andere potenziell unerwünschte Software erkannt.
Weitere Informationen:
https://go.microsoft.com/fwlink/?linkid=37020&name=Misleading:Win32/Lodi!MTB&threatid=268893&enterprise=0
Name: Misleading:Win32/Lodi!MTB
Schweregrad: Hoch
Kategorie: Adware
Pfad: file:_C:\Users\ms2\Downloads\SF-Helper-[af529040045433bc#403#].exe
Erkennungsursprung: Lokaler Computer
Erkennungstype: Konkret
Erkennungsquelle: Echtzeitschutz
Benutzer: LouisPC\ms2
Prozessname: C:\Users\ms2\AppData\Local\Temp\scoped_dir3708_475172757\FRST64.exe
Sicherheitsversion: AV: 1.401.1591.0, AS: 1.401.1591.0, NIS: 1.401.1591.0
Modulversion: AM: 1.1.23100.2009, NIS: 1.1.23100.2009
Date: 2023-11-13 20:24:01
Description:
Microsoft Defender Antivirus hat Schadsoftware oder andere potenziell unerwünschte Software erkannt.
Weitere Informationen:
https://go.microsoft.com/fwlink/?linkid=37020&name=Misleading:Win32/Lodi!MTB&threatid=268893&enterprise=0
Name: Misleading:Win32/Lodi!MTB
Schweregrad: Hoch
Kategorie: Adware
Pfad: file:_C:\Users\ms2\Downloads\SF-Helper-[af529040045433bc#300#].exe
Erkennungsursprung: Lokaler Computer
Erkennungstype: FastPath
Erkennungsquelle: Echtzeitschutz
Benutzer: LouisPC\ms2
Prozessname: C:\Windows\explorer.exe
Sicherheitsversion: AV: 1.401.551.0, AS: 1.401.551.0, NIS: 1.401.551.0
Modulversion: AM: 1.1.23100.2009, NIS: 1.1.23100.2009
Date: 2023-10-28 17:38:12
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {0D7F875F-FFAD-48FA-8EFB-801B7425F97F}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Date: 2023-10-13 18:42:40
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {FBB7F81F-4915-4061-9024-8E11C35DDFCD}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Date: 2023-10-09 12:30:48
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {2D3BA9B9-455B-4E83-BFF3-63ADEC28C9A1}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Event[0]
Date: 2023-11-15 15:37:07
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.
Neue Version der Sicherheitsinformationen:
%Vorherige Version der Sicherheitsinformationen: 1.401.615.0
Update Source: Microsoft Update-Server
Sicherheitstyp: AntiVirus
Updatetyp: Voll
Benutzer: NT-AUTORITÄT\SYSTEM
Aktuelle Modulversion:
%Vorherige Modulversion: 1.1.23100.2009
Fehlercode: 0x80240438
Fehlerbeschreibung: Unerwartetes Problem bei der Überprüfung auf Updates. Informationen zum Installieren von Updates oder zur Problembehandlung finden Sie unter "Hilfe und Support".
Date: 2023-11-09 15:28:15
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.
Neue Version der Sicherheitsinformationen:
%Vorherige Version der Sicherheitsinformationen: 1.401.290.0
Update Source: Microsoft Update-Server
Sicherheitstyp: AntiVirus
Updatetyp: Voll
Benutzer: NT-AUTORITÄT\SYSTEM
Aktuelle Modulversion:
%Vorherige Modulversion: 1.1.23100.2009
Fehlercode: 0x80240438
Fehlerbeschreibung: Unerwartetes Problem bei der Überprüfung auf Updates. Informationen zum Installieren von Updates oder zur Problembehandlung finden Sie unter "Hilfe und Support".
Date: 2023-11-08 16:01:30
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.
Neue Version der Sicherheitsinformationen:
%Vorherige Version der Sicherheitsinformationen: 1.401.241.0
Update Source: Microsoft Update-Server
Sicherheitstyp: AntiVirus
Updatetyp: Voll
Benutzer: NT-AUTORITÄT\SYSTEM
Aktuelle Modulversion:
%Vorherige Modulversion: 1.1.23100.2009
Fehlercode: 0x80240438
Fehlerbeschreibung: Unerwartetes Problem bei der Überprüfung auf Updates. Informationen zum Installieren von Updates oder zur Problembehandlung finden Sie unter "Hilfe und Support".
Date: 2023-11-01 16:54:49
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.
Neue Version der Sicherheitsinformationen:
%Vorherige Version der Sicherheitsinformationen: 1.399.1670.0
Update Source: Microsoft Update-Server
Sicherheitstyp: AntiVirus
Updatetyp: Voll
Benutzer: NT-AUTORITÄT\SYSTEM
Aktuelle Modulversion:
%Vorherige Modulversion: 1.1.23090.2007
Fehlercode: 0x80072efd
Fehlerbeschreibung: Die Serververbindung konnte nicht hergestellt werden.
Date: 2023-10-25 14:48:23
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.
Neue Version der Sicherheitsinformationen:
%Vorherige Version der Sicherheitsinformationen: 1.399.1289.0
Update Source: Microsoft Update-Server
Sicherheitstyp: AntiVirus
Updatetyp: Voll
Benutzer: NT-AUTORITÄT\SYSTEM
Aktuelle Modulversion:
%Vorherige Modulversion: 1.1.23090.2007
Fehlercode: 0x80240438
Fehlerbeschreibung: Unerwartetes Problem bei der Überprüfung auf Updates. Informationen zum Installieren von Updates oder zur Problembehandlung finden Sie unter "Hilfe und Support".
CodeIntegrity:
===============
Date: 2023-10-20 20:13:35
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Users\ms2\AppData\Local\PlariumPlay\8.7.0-0.0.1\PlariumPlay.exe) attempted to load \Device\HarddiskVolume3\Users\ms2\AppData\Local\PlariumPlay\8.7.0-0.0.1\vulkan-1.dll that did not meet the Microsoft signing level requirements.
==================== Speicherinformationen ===========================
BIOS: American Megatrends Inc. 2212 12/13/2022
Hauptplatine: ASUSTeK COMPUTER INC. PRIME H610M-A D4
Prozessor: 12th Gen Intel(R) Core(TM) i5-12400F
Prozentuale Nutzung des RAM: 28%
Installierter physikalischer RAM: 32581.21 MB
Verfügbarer physikalischer RAM: 23332.81 MB
Summe virtueller Speicher: 34629.21 MB
Verfügbarer virtueller Speicher: 22763.36 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:930.59 GB) (Free:568.36 GB) (Model: KIOXIA-EXCERIA G2 SSD) NTFS
\\?\Volume{86961bce-3145-4399-87a5-3b660494992c}\ () (Fixed) (Total:0.69 GB) (Free:0.09 GB) NTFS
\\?\Volume{015da65e-f5bf-46bb-aade-5fcf8b7efc7b}\ () (Fixed) (Total:0.1 GB) (Free:0.07 GB) FAT32
==================== MBR & Partitionstabelle ====================
==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 345AF493)
Partition: GPT.
==================== Ende von Addition.txt =======================
Danke schonmal im vorraus |
