Hallo Trojaner-Board Team,

habe seit heute morgen die Fehlermeldung Pr_end_of_file_error auf Firefox und habe auch sonst Schwierigkeiten andere Internetseiten auch mit anderen Browsern (Microsoft Edge, Chrome) aufzurufen. Meine Internverbindung habe ich überprüft, welche stabil ist.

Habe schon versucht Malwarebites zu downladen was mir nicht gelingt, die Datei habe ich nach einiger Zeit heruntergeladen, aber im Download Menü kann ich diese dann nicht mehr auf dem Computer installieren, das Fenster bleibt einfach weiß und es passiert nichts.

Mir ist auch aufgefallen das mein Computer allgemein auch sehr langsam ist, mache mir Gedanken ob ich mir etwas auf dem Computer eingefangen habe.

Den FRST Scan konnte ich nur durchführen weil ich das Programm noch auf meinem Computer hatte.

Hoffe mir kann jemand weiterhelfen.

Code: Alles auswählenAufklappen

ATTFilter

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 06-10-2021
durchgeführt von K21 (Administrator) auf DESKTOP-EJFS8EO (HP HP Pavilion Desktop 560-p0xx) (09-10-2021 09:09:52)
Gestartet von C:\Users\K21\Desktop
Geladene Profile: K21
Platform: Windows 10 Home Version 21H1 19043.1237 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: FF
Start-Modus: Normal

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Hewlett-Packard Company -> HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe
(Hewlett-Packard Company -> HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe
(HP Inc. -> ) C:\Windows\SysWOW64\spdsvc.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel(R) RMT -> Intel Corporation) C:\Program Files\Intel\Intel(R) Ready Mode Technology\IRMTService.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <14>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\K21\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12107.1001.15.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MpCopyAccelerator.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\NisSrv.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <6>
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Samsung Electronics CO., LTD. -> ) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
(Samsung Electronics CO., LTD. -> ) C:\Windows\SysWOW64\SecUPDUtilSvc.exe

==================== Registry (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9235944 2017-08-24] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [464608 2014-09-08] (Samsung Electronics CO., LTD. -> )
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [657424 2016-01-11] (Hewlett-Packard Company -> HP Inc.)
HKU\S-1-5-21-1967584404-1960276878-1159121988-1001\...\Run: [Discord] => C:\Users\K21\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub)
HKU\S-1-5-21-1967584404-1960276878-1159121988-1001\...\Run: [EpicGamesLauncher] => D:\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [33435616 2021-10-08] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-1967584404-1960276878-1159121988-1001\...\Run: [STUISpeedLauncher] => C:\Program Files\Samsung\Stylish UI Pack\TouchBasedUI.exe [411136 2015-02-09] () [Datei ist nicht signiert]
HKLM\...\Windows x64\Print Processors\us005PC: C:\Windows\System32\spool\prtprocs\x64\us005pc.dll [43520 2017-06-14] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
HKLM\...\Print\Monitors\us005 Langmon: C:\windows\system32\us005lm.dll [22528 2017-06-14] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\94.0.4606.71\Installer\chrmstp.exe [2021-10-04] (Google LLC -> Google LLC)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {0244D6CB-541A-4F3B-A352-362D6537426B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MpCmdRun.exe [884544 2021-10-06] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {0990175C-E9DD-4EBE-8E06-307FE281783D} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [129808 2021-08-13] (Dropbox, Inc -> Dropbox, Inc.)
Task: {171130F2-1227-46DE-AE57-9135F3194E00} - System32\Tasks\DropboxOEM => C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe [584488 2016-09-21] (Dropbox, Inc -> )
Task: {225EF79E-3FC9-4E4C-B406-FB7A15FEFAE5} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe
Task: {25C001BB-7654-4704-85AA-D123E76978EF} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2DC1D94C-2FA5-4E8D-B569-96E0680EB74A} - System32\Tasks\HPCeeScheduleForK21 => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [99392 2016-05-12] (Hewlett-Packard Company -> HP Development Company, L.P.)
Task: {31D605FF-F973-4B98-8511-90FEB2CD2B5E} - System32\Tasks\HPEA3JOBS => C:\Program [Argument = Files\HP\HP ePrint\hpeprint.exe /CheckJobs]
Task: {3D1FFA2F-207A-4289-8A51-53E97E2CD1CD} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {42CB30CD-A251-4B23-8709-B0091C4989DB} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {448283E8-5E71-4223-869B-00C3B99A0FCF} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {4B8FEC7B-8814-4473-87CD-BDF204D2D16E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
Task: {51D8B97E-B4CF-41AC-BE83-36D4898950F8} - System32\Tasks\EPM Preload => C:\Program Files (x86)\Samsung\Easy Printer Manager\EPM2DotNetHandler.exe [752200 2018-05-21] (HP Inc. -> )
Task: {55F9BAC6-55D0-4EEB-BAA5-7E3BD0289848} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe
Task: {5D430D38-232A-4894-AA46-D2153E4FEE9A} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {66E8BE16-E5DC-4C31-96D2-383F0214B274} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6AE2E99E-6BB1-4F02-BD34-6CD906A92DD0} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [645488 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {753C3DE7-CB59-4407-8902-FA7202FACEEA} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [816960 2017-10-11] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {768BD12E-7F95-4D0D-92AF-69176F5D7C74} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {77CCB421-A321-4E0B-8C56-C5CD4056556D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe
Task: {7A0D3194-FC71-4CF5-A5ED-9911A674183D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe
Task: {7FB3884E-9EE7-4A0F-A2D4-1A693E291E09} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe
Task: {892F785B-36C0-41C9-B954-5C3554A097CA} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [680888 2021-10-06] (Mozilla Corporation -> Mozilla Foundation)
Task: {8A6D0AF2-198C-49DD-98DC-0FC68D9FACC4} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
Task: {9C11E5AA-6D5A-4A1B-80BC-6C7368BB6772} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3339120 2021-06-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A2ED10BC-3D7A-4EF7-8331-D2532E6E5C9C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MpCmdRun.exe [884544 2021-10-06] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A61ADD4A-D024-4AC4-982D-B201A6C98E7D} - System32\Tasks\{00DF7A40-A7AF-4C08-A588-8F510D9B9302} => "c:\program files\mozilla firefox\firefox.exe" https://www.skype.com/go/downloading?source=lightinstaller&ver=7.40.0.103&LastError=404
Task: {A692CC24-2F62-4B98-A371-77957BBAF4CC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MpCmdRun.exe [884544 2021-10-06] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {AA3A969A-698E-497E-98B4-56FEB0614BE3} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe
Task: {BC033969-139E-44E0-8D6E-EE5656D1BD63} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [129808 2021-08-13] (Dropbox, Inc -> Dropbox, Inc.)
Task: {CF057288-584B-4F3B-9D50-FB37A26C3E50} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [110440 2021-10-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {D2A08AE9-7329-4608-B8FA-406063951769} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-09-28] (Google LLC -> Google LLC)
Task: {D956C970-7AE3-406D-A976-845C4E93DF40} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21976976 2021-09-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {DD71E347-19D5-43E1-BE6F-0994B9822692} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E2A97560-1BE7-40AA-BD05-9D66EF1C5C8F} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
Task: {E2BCAE47-1766-42CA-B916-8C349191D237} - System32\Tasks\{82D4A10B-C921-4EA3-9A00-096C5B65CBC2} => "c:\program files\mozilla firefox\firefox.exe" https://www.skype.com/go/downloading?source=lightinstaller&ver=7.40.0.103&LastError=404
Task: {E38EDD96-8184-4CDF-9671-2DF344FE436F} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21976976 2021-09-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {E8C07789-E703-4F27-8339-195461ED94FA} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {F2395818-BBBE-4249-8CA7-BAC1D94CD804} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MpCmdRun.exe [884544 2021-10-06] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F57C5A69-7D11-460C-8003-E00BC5266471} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [110440 2021-10-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {FBA54266-2197-43A8-B435-6766BAAC9745} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-09-28] (Google LLC -> Google LLC)
Task: {FF3C8AB3-B8D0-4369-A73B-C345FB8CBDB2} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\HPCeeScheduleForK21.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{3d7bb8f0-5a7b-49e3-aaa9-bb84d6f6de99}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{993039e8-4401-499f-998f-f67faab817b8}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{ec4688d4-2527-4b79-8a3b-47c61a42dbc8}: [DhcpNameServer] 192.168.0.1

Edge: 
=======
DownloadDir: C:\Users\K21\Downloads
Edge Extension: (Kein Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [nicht gefunden]
Edge Extension: (Kein Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [nicht gefunden]
Edge Extension: (Kein Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [nicht gefunden]
Edge Extension: (Kein Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [nicht gefunden]
Edge DefaultProfile: Default
Edge Profile: C:\Users\K21\AppData\Local\Microsoft\Edge\User Data\Default [2021-10-09]
Edge DownloadDir: Default -> C:\Users\K21\Downloads

FireFox:
========
FF DefaultProfile: lf587ff4.default-1633759003238
FF ProfilePath: C:\Users\K21\AppData\Roaming\Mozilla\Firefox\Profiles\lf587ff4.default-1633759003238 [2021-10-09]
FF Extension: (HTTPS Everywhere) - C:\Users\K21\AppData\Roaming\Mozilla\Firefox\Profiles\lf587ff4.default-1633759003238\Extensions\https-everywhere@eff.org.xpi [2021-10-09]
FF Extension: (NoScript) - C:\Users\K21\AppData\Roaming\Mozilla\Firefox\Profiles\lf587ff4.default-1633759003238\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2021-10-09]
FF Extension: (Adblock Plus - kostenloser Adblocker) - C:\Users\K21\AppData\Roaming\Mozilla\Firefox\Profiles\lf587ff4.default-1633759003238\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2021-10-09]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-05-27] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [Keine Datei]

Chrome: 
=======
CHR Profile: C:\Users\K21\AppData\Local\Google\Chrome\User Data\Default [2021-10-09]
CHR Extension: (Präsentationen) - C:\Users\K21\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-11-04]
CHR Extension: (Docs) - C:\Users\K21\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-11-04]
CHR Extension: (Google Drive) - C:\Users\K21\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-10-09]
CHR Extension: (YouTube) - C:\Users\K21\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-11-04]
CHR Extension: (Tabellen) - C:\Users\K21\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-11-04]
CHR Extension: (Google Docs Offline) - C:\Users\K21\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-09-28]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\K21\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-10-09]
CHR Extension: (Netflix Party is now Teleparty) - C:\Users\K21\AppData\Local\Google\Chrome\User Data\Default\Extensions\oocalimimngaihdkbihfgmpkcpnmlaoa [2021-10-09]
CHR Extension: (Google Mail) - C:\Users\K21\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-10-09]

==================== Dienste (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8901968 2021-02-24] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9250696 2021-10-01] (Microsoft Corporation -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [129808 2021-08-13] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [129808 2021-08-13] (Dropbox, Inc -> Dropbox, Inc.)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [784512 2020-11-11] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [16029472 2021-10-06] (Epic Games Inc. -> Epic Games, Inc.)
S3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1031704 2016-06-03] (Hewlett-Packard Company -> HP)
R2 HPWMISVC; c:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [606224 2016-01-11] (Hewlett-Packard Company -> HP Inc.)
S3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335360 2016-03-18] (Intel Corporation) [Datei ist nicht signiert]
R2 IRMTService; C:\Program Files\Intel\Intel(R) Ready Mode Technology\IRMTService.exe [181360 2016-06-21] (Intel(R) RMT -> Intel Corporation)
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [8704 2016-03-18] (Intel Corporation) [Datei ist nicht signiert]
S3 NGS; C:\WINDOWS\NGService.exe [3097648 2019-07-17] (NEXON Korea Corporation. -> NEXON Korea Corporation)
S3 Origin Client Service; D:\Origin\OriginClientService.exe [2466608 2019-11-19] (Electronic Arts, Inc. -> Electronic Arts)
S2 Origin Web Helper Service; D:\Origin\OriginWebHelperService.exe [3344176 2019-11-19] (Electronic Arts, Inc. -> Electronic Arts)
S2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [614664 2016-03-23] (CyberLink Corp. -> CyberLink)
R2 Samsung Printer Dianostics Service; C:\WINDOWS\SysWOW64\\spdsvc.exe [508488 2018-05-24] (HP Inc. -> )
R2 SamsungUPDUtilSvc; C:\WINDOWS\SysWOW64\SecUPDUtilSvc.exe [143664 2019-09-22] (Samsung Electronics CO., LTD. -> )
S3 TwitchService; C:\Program Files\Common Files\Twitch\TwitchService.exe [317144 2021-08-25] (Twitch Interactive, Inc. -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\NisSrv.exe [2855512 2021-10-06] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MsMpEng.exe [128392 2021-10-06] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Datei ist nicht signiert]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Datei ist nicht signiert]
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159864 2021-06-29] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 IntelReadyModeDriver; C:\WINDOWS\System32\drivers\IntelReadyModeDriver.sys [34952 2016-06-21] (Intel(R) RMT -> Intel Corporation)
R3 MpKsl36acf7d1; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{37D70DE1-DAD2-41A7-ABF2-B5125D33255D}\MpKslDrv.sys [130272 2021-10-09] (Microsoft Windows -> Microsoft Corporation)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48520 2021-10-06] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [434424 2021-10-06] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86264 2021-10-06] (Microsoft Windows -> Microsoft Corporation)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [2719256 2021-02-10] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat (erstellte) (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2021-10-09 09:09 - 2021-10-09 09:10 - 000026118 _____ C:\Users\K21\Desktop\FRST.txt
2021-10-09 09:06 - 2021-10-09 09:06 - 002101944 _____ (Malwarebytes) C:\Users\K21\Downloads\MBSetup (2).exe
2021-10-09 09:00 - 2021-10-09 09:00 - 002101944 _____ (Malwarebytes) C:\Users\K21\Downloads\MBSetup (1).exe
2021-10-09 07:55 - 2021-10-09 07:55 - 000318808 _____ C:\Users\K21\Desktop\bookmarks-2021-10-09.json
2021-10-06 11:08 - 2021-10-09 08:18 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-10-06 10:33 - 2021-10-06 10:33 - 000000000 ____D C:\Users\K21\AppData\Local\EOSUserHelper
2021-10-06 10:32 - 2021-10-06 10:32 - 000000000 ____D C:\Users\K21\AppData\Local\Epic Games
2021-10-06 10:32 - 2021-10-06 10:32 - 000000000 ____D C:\Program Files (x86)\Epic Games
2021-10-03 15:54 - 2021-10-03 15:54 - 000000911 _____ C:\Users\K21\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Tor Browser.lnk
2021-10-03 15:54 - 2021-10-03 15:54 - 000000863 _____ C:\Users\K21\Desktop\Start Tor Browser.lnk
2021-10-03 15:53 - 2021-10-03 15:54 - 000000000 ____D C:\Users\K21\Desktop\Tor Browser
2021-10-03 15:52 - 2021-10-03 15:53 - 074490928 _____ C:\Users\K21\Downloads\torbrowser-install-win64-10.5.6_de.exe
2021-09-21 22:02 - 2021-09-22 20:06 - 000000000 ____D C:\Users\K21\AppData\Roaming\EasyAntiCheat
2021-09-16 14:17 - 2021-09-16 14:17 - 002295296 _____ (Digimarc) C:\WINDOWS\system32\DMRCDecoder.dll
2021-09-16 14:17 - 2021-09-16 14:17 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-09-16 14:17 - 2021-09-16 14:17 - 002111488 _____ (Digimarc) C:\WINDOWS\SysWOW64\DMRCDecoder.dll
2021-09-16 14:17 - 2021-09-16 14:17 - 001823304 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-09-16 14:17 - 2021-09-16 14:17 - 001393480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-09-16 14:17 - 2021-09-16 14:17 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-09-16 14:17 - 2021-09-16 14:17 - 001313608 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-09-16 14:17 - 2021-09-16 14:17 - 001164288 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-09-16 14:17 - 2021-09-16 14:17 - 000672768 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-09-16 14:17 - 2021-09-16 14:17 - 000570368 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2021-09-16 14:17 - 2021-09-16 14:17 - 000566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-09-16 14:17 - 2021-09-16 14:17 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2021-09-16 14:17 - 2021-09-16 14:17 - 000426496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-09-16 14:17 - 2021-09-16 14:17 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-09-16 14:17 - 2021-09-16 14:17 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-09-16 14:17 - 2021-09-16 14:17 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-09-16 14:17 - 2021-09-16 14:17 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshom.ocx
2021-09-16 14:17 - 2021-09-16 14:17 - 000122880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshom.ocx
2021-09-16 14:17 - 2021-09-16 14:17 - 000098816 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-09-16 14:17 - 2021-09-16 14:17 - 000011355 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-09-16 14:10 - 2021-09-16 14:10 - 000000000 ___HD C:\$WinREAgent
2021-09-16 07:12 - 2021-09-16 07:12 - 000001033 _____ C:\Users\K21\Desktop\Telegram.lnk
2021-09-16 07:12 - 2021-09-16 07:12 - 000000000 ____D C:\Users\K21\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Telegram Desktop
2021-09-16 07:11 - 2021-09-16 07:11 - 033421624 _____ (Telegram FZ-LLC ) C:\Users\K21\Downloads\tsetup-x64.3.0.1.exe
2021-09-13 16:29 - 2021-09-13 16:29 - 089945032 _____ (obsproject.com) C:\Users\K21\Downloads\OBS-Studio-27.0.1-Full-Installer-x64.exe

==================== Ein Monat (geänderte) ==================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2021-10-09 09:10 - 2019-10-12 18:35 - 000000000 ____D C:\FRST
2021-10-09 09:09 - 2021-02-09 22:57 - 000000000 ____D C:\Users\K21\Desktop\FRST-OlderVersion
2021-10-09 09:09 - 2020-04-19 23:47 - 002308096 _____ (Farbar) C:\Users\K21\Desktop\FRST64.exe
2021-10-09 09:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-10-09 09:00 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-10-09 08:57 - 2020-08-06 19:29 - 001882176 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-10-09 08:57 - 2019-12-07 16:50 - 000803488 _____ C:\WINDOWS\system32\perfh007.dat
2021-10-09 08:57 - 2019-12-07 16:50 - 000175462 _____ C:\WINDOWS\system32\perfc007.dat
2021-10-09 08:57 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-10-09 08:54 - 2017-01-13 03:10 - 000000000 ____D C:\ProgramData\NVIDIA
2021-10-09 08:53 - 2019-07-10 12:45 - 000000593 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
2021-10-09 08:53 - 2019-02-05 12:23 - 000000000 ____D C:\ProgramData\Mozilla
2021-10-09 08:52 - 2018-05-01 23:19 - 000000000 ____D C:\Users\K21\AppData\Local\Discord
2021-10-09 08:52 - 2017-11-04 12:34 - 000000000 ____D C:\Program Files (x86)\Google
2021-10-09 08:52 - 2017-06-17 15:43 - 000000000 ____D C:\Users\K21\AppData\Roaming\discord
2021-10-09 08:52 - 2017-05-15 14:43 - 000000000 ____D C:\Users\K21\AppData\LocalLow\Mozilla
2021-10-09 07:55 - 2019-11-14 21:58 - 000000000 ____D C:\Users\K21\AppData\Local\WEB2Print
2021-10-09 07:37 - 2021-01-13 14:24 - 000000000 ____D C:\Users\K21\AppData\Roaming\Telegram Desktop
2021-10-09 07:15 - 2020-08-06 19:26 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-10-09 07:15 - 2020-08-06 19:18 - 000008192 ___SH C:\DumpStack.log.tmp
2021-10-09 07:15 - 2017-05-15 14:42 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-10-09 07:15 - 2017-04-21 11:49 - 000000356 _____ C:\WINDOWS\Tasks\HPCeeScheduleForK21.job
2021-10-09 07:14 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-10-09 07:00 - 2020-08-06 19:18 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-10-09 00:50 - 2017-06-09 18:47 - 000000000 ____D C:\Program Files (x86)\Steam
2021-10-08 14:23 - 2021-01-19 23:03 - 000000000 ____D C:\Users\K21\Downloads\Telegram Desktop
2021-10-08 00:54 - 2017-01-13 02:26 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-10-07 20:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-10-06 23:06 - 2020-08-06 19:26 - 000003240 _____ C:\WINDOWS\system32\Tasks\HPCeeScheduleForK21
2021-10-06 17:57 - 2018-03-10 02:40 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-10-06 11:08 - 2017-05-15 14:42 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-10-06 11:05 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-10-06 10:32 - 2018-04-06 02:14 - 000000000 ____D C:\ProgramData\Epic
2021-10-05 21:21 - 2021-01-06 13:52 - 000000000 ____D C:\Program Files\Common Files\Twitch
2021-10-05 21:20 - 2019-11-28 16:37 - 000000000 ____D C:\Users\K21\AppData\Roaming\Twitch Studio
2021-10-05 10:44 - 2020-08-06 19:26 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1967584404-1960276878-1159121988-1001
2021-10-05 10:44 - 2020-08-06 19:19 - 000002400 _____ C:\Users\K21\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-10-04 23:22 - 2020-09-28 09:04 - 000002246 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-10-04 23:22 - 2020-09-28 09:04 - 000002205 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-10-04 17:00 - 2017-04-20 17:50 - 000000000 ____D C:\Users\K21\AppData\Local\CrashDumps
2021-10-03 09:20 - 2019-08-16 22:34 - 000000000 ____D C:\ProgramData\Riot Games
2021-10-03 01:23 - 2020-08-06 19:19 - 000000000 ____D C:\Users\K21
2021-10-02 23:14 - 2020-06-14 12:57 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-10-02 23:14 - 2020-06-14 12:57 - 000002281 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-10-02 03:09 - 2020-08-06 19:26 - 000003700 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-10-02 03:09 - 2020-08-06 19:26 - 000003576 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-10-01 19:13 - 2021-01-22 05:54 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-10-01 00:37 - 2020-09-28 09:03 - 000003632 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-10-01 00:37 - 2020-09-28 09:03 - 000003508 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-09-24 23:46 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-09-24 10:02 - 2018-05-16 12:14 - 000000000 ____D C:\Users\K21\AppData\Local\D3DSCache
2021-09-23 08:43 - 2018-05-01 23:19 - 000002228 _____ C:\Users\K21\Desktop\Discord.lnk
2021-09-17 00:21 - 2020-08-06 19:18 - 000577120 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-09-17 00:21 - 2017-01-13 03:16 - 000001250 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2021-09-17 00:21 - 2017-01-13 03:16 - 000001246 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2021-09-17 00:19 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-09-17 00:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-09-17 00:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-09-17 00:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-09-17 00:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-09-17 00:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-09-17 00:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-09-17 00:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-09-17 00:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-09-17 00:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-09-17 00:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2021-09-17 00:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2021-09-17 00:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-09-17 00:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-09-17 00:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-09-17 00:19 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2021-09-16 14:20 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-09-16 14:10 - 2017-04-22 02:05 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-09-16 14:08 - 2017-04-22 02:05 - 135637312 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-09-14 00:19 - 2018-04-06 03:04 - 000001077 _____ C:\Users\K21\Desktop\Glyph.lnk

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========

2017-07-09 15:49 - 2017-07-09 15:49 - 000000063 _____ () C:\Users\K21\AppData\Local\emaildefaults
2017-07-09 23:41 - 2017-07-09 23:41 - 000000417 _____ () C:\Users\K21\AppData\Local\karboncalligraphyrc
2020-11-10 13:26 - 2020-11-10 13:26 - 000000039 _____ () C:\Users\K21\AppData\Local\kritadisplayrc
2017-07-09 15:49 - 2020-11-10 13:26 - 000022874 _____ () C:\Users\K21\AppData\Local\kritarc

==================== SigCheck ============================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

==================== Ende von FRST.txt ========================
         

Code: Alles auswählenAufklappen

ATTFilter

Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 06-10-2021
durchgeführt von K21 (09-10-2021 09:11:10)
Gestartet von C:\Users\K21\Desktop
Windows 10 Home Version 21H1 19043.1237 (X64) (2020-08-06 17:26:26)
Start-Modus: Normal
==========================================================


==================== Konten: =============================


(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

Administrator (S-1-5-21-1967584404-1960276878-1159121988-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1967584404-1960276878-1159121988-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-1967584404-1960276878-1159121988-1000 - Limited - Disabled) => C:\Users\defaultuser0
Gast (S-1-5-21-1967584404-1960276878-1159121988-501 - Limited - Disabled)
K21 (S-1-5-21-1967584404-1960276878-1159121988-1001 - Administrator - Enabled) => C:\Users\K21
WDAGUtilityAccount (S-1-5-21-1967584404-1960276878-1159121988-504 - Limited - Disabled)

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

Bandicam (HKLM-x32\...\Bandicam) (Version: 4.1.4.1413 - Bandicam.com)
Bandicam MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version:  - Bandicam.com)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Common Desktop Agent (HKLM\...\{031A0E14-0413-4C97-9772-2639B782F46F}) (Version: 1.62.0 - OEM) Hidden
CyberLink Power Media Player 14 (HKLM-x32\...\{32C8E300-BDB4-4398-92C2-E9B7D8A233DB}) (Version: 14.0.5.6909 - CyberLink Corp.)
CyberLink PowerDirector 14 (HKLM-x32\...\{6BADCD73-E925-46F7-A295-FF2448632728}) (Version: 14.0.2.3309 - CyberLink Corp.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Discord (HKU\S-1-5-21-1967584404-1960276878-1159121988-1001\...\Discord) (Version: 0.0.309 - Discord Inc.)
Dropbox 25 GB (HKLM-x32\...\{0867A88D-764F-366E-9E21-130DA8B472C3}) (Version: 3.1.18.0 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.503.1 - Dropbox, Inc.) Hidden
Energy Star (HKLM\...\{5CB22648-35F8-41BC-9C35-1E41FE6E12A5}) (Version: 1.1.1 - HP Inc.)
Epic Games Launcher (HKLM-x32\...\{42D23AAF-7D6F-48C7-A62C-8E02D6234156}) (Version: 1.1.147.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{32C68D93-D32F-4B01-8250-61642BFC22F8}) (Version: 2.0.28.0 - Epic Games, Inc.)
Fotogalerie (HKLM-x32\...\{41BF4A3B-D60A-4E92-883F-C88C8C157261}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Game Installer (HKLM-x32\...\Game Installer 1.0.0) (Version: 1.0.0 - Intrepid Studios, Inc.)
Genshin Impact (HKLM\...\Genshin Impact) (Version: 2.9.1.0 - miHoYo Co.,Ltd)
Glyph (HKLM-x32\...\Glyph) (Version:  - Trion Worlds, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 94.0.4606.71 - Google LLC)
Guild Wars 2 (HKLM\...\Guild Wars 2) (Version:  - NCsoft Corporation, Ltd.)
HP Audio Switch (HKLM-x32\...\{3A5141D4-47DB-4302-9B1C-272BE585BC8A}) (Version: 1.0.179.0 - HP Inc.)
HP Documentation (HKLM\...\HP_Documentation) (Version: 1.0.0.2 - HP Inc.)
HP ePrint SW (HKLM-x32\...\{b0ebf7ff-6b1a-4a92-9c85-6915be1962b9}) (Version: 5.1.19895 - HP Inc.)
HP Support Solutions Framework (HKLM-x32\...\{624DA112-9F71-492E-BAF9-0E5E4224626C}) (Version: 12.12.32.3 - HP Inc.)
HP System Event Utility (HKLM-x32\...\{025C1573-2F1D-46AF-BAB8-594EBF56A889}) (Version: 1.4.11 - HP Inc.)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1054 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.8.0.1042 - Intel Corporation)
Intel(R) Ready Mode Technology (HKLM\...\{91DC75C1-5D36-4AF0-913E-F45B0923CA43}) (Version: 1.1.70.525 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.47.866.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{246c6cc0-9810-4728-9a29-28474de2eec5}) (Version: 1.47.866.0 - Intel Corporation) Hidden
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{35069AA3-F7B2-4759-96F0-9EE43AACB690}) (Version: 19.00.1621.3340 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (HKLM-x32\...\{aaa7f0fb-02dc-4576-beef-7d24842c5fbe}) (Version: 10.1.1.32 - Intel(R) Corporation) Hidden
Intel® PROSet/Wireless Software (HKLM-x32\...\{f8c930bd-0a68-425f-8c11-87723d1e2c97}) (Version: 20.90.0 - Intel Corporation)
Intel® Security Assist (HKLM-x32\...\{B294CE94-FE0F-4427-910C-180AF9FCFED1}) (Version: 1.0.1.620 - Intel Corporation)
Krita (x64) 3.1.4.0 (HKLM\...\Krita_x64) (Version: 3.1.4.0 - Krita Foundation)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKLM-x32\...\League of Legends 1.0) (Version: 1.0 - Riot Games, Inc)
LibreOffice 7.0.4.2 (HKLM\...\{B3171B83-4945-43E0-A101-841638C05506}) (Version: 7.0.4.2 - The Document Foundation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 94.0.992.38 - Microsoft Corporation)
Microsoft Office Home and Student 2016 - de-de (HKLM\...\HomeStudentRetail - de-de) (Version: 16.0.14430.20270 - Microsoft Corporation)
Microsoft Office Home and Student 2016 - en-us (HKLM\...\HomeStudentRetail - en-us) (Version: 16.0.14430.20270 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1967584404-1960276878-1159121988-1001\...\OneDriveSetup.exe) (Version: 21.180.0905.0007 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{29B15818-E79F-4AB0-8938-9410C807AD76}) (Version: 2.84.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29334 (HKLM-x32\...\{a9cfe9c7-e54f-46cd-9c5c-542ff8e3e8c4}) (Version: 14.28.29334.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334 (HKLM-x32\...\{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{70C91B91-61E8-4D06-86D6-A9DCC291983A}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox (x64 de) (HKLM\...\Mozilla Firefox 93.0 (x64 de)) (Version: 93.0 - Mozilla)
NVIDIA FrameView SDK 1.1.4923.29968894 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29968894 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.23.0.74 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.23.0.74 - NVIDIA Corporation)
NVIDIA Grafiktreiber 431.07 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 431.07 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.38.16 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.16 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.14430.20270 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.14430.20234 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.14430.20270 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0407-0000-0000000FF1CE}) (Version: 16.0.14430.20234 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0409-0000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden
Origin (HKLM-x32\...\Origin) (Version: 10.5.56.33908 - Electronic Arts, Inc.)
PokeMMO (HKU\S-1-5-21-1967584404-1960276878-1159121988-1001\...\PokeMMO_is1) (Version:  - PokeMMO)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10586.31225 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.9.422.2016 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8237 - Realtek Semiconductor Corp.)
Samsung Drucker-Diagnose (HKLM-x32\...\Samsung Printer Diagnostics) (Version: 1.0.4.28 - HP Printing Korea Co., Ltd.)
Samsung Scan Process Machine (HKLM-x32\...\Samsung Scan Process Machine) (Version: 1.03.05.32 - Samsung Electronics Co., Ltd.) Hidden
Skype Version 8.73 (HKLM-x32\...\Skype_is1) (Version: 8.73 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.2.1 - TeamSpeak Systems GmbH)
Telegram Desktop version 3.1.8 (HKU\S-1-5-21-1967584404-1960276878-1159121988-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 3.1.8 - Telegram FZ-LLC)
Twitch Studio (HKU\S-1-5-21-1967584404-1960276878-1159121988-1001\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF372B0}) (Version: 8.0.0 - Twitch Interactive, Inc.)
Uninstall Samsung Printer Software (HKLM-x32\...\TotalUninstaller) (Version: 4.0.0.67 - Samsung Electronics CO., LTD.)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{F14FB68A-9188-4036-AD0D-D054BC9C9291}) (Version: 2.59.0.0 - Microsoft Corporation)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Zoom (HKU\S-1-5-21-1967584404-1960276878-1159121988-1001\...\ZoomUMX) (Version: 5.6.6 (961) - Zoom Video Communications, Inc.)

Packages:
=========
Amazon -> C:\Program Files\WindowsApps\Amazon.com.Amazon_2018.519.2815.0_x64__343d40qqvtj1t [2020-02-20] (Amazon.com)
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.203.500.0_x86__kgqvnymyfvs32 [2021-10-03] (king.com)
Facebook -> C:\Program Files\WindowsApps\FACEBOOK.FACEBOOK_2021.927.1.0_neutral__8xx8rvfyw5nnt [2021-09-28] (Facebook Inc)
HP JumpStart -> C:\Program Files\WindowsApps\AD2F1837.HPJumpStart_1.2.228.0_x64__v10z8vjag6ke6 [2017-04-20] (HP Inc.)
HP LOUNGE -> C:\Program Files\WindowsApps\UniversalMusicMobile.HPLOUNGE_2.1.1.0_x64__3ms5eyejfeart [2021-02-10] (Universal Music Mobile)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_131.1.242.0_x64__v10z8vjag6ke6 [2021-09-28] (HP Inc.)
March of Empires: War of Lords -> C:\Program Files\WindowsApps\A278AB0D.MarchofEmpires_5.9.13.0_x86__h6adky7gbf63m [2021-09-30] (Gameloft SE)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.10.7290.0_x64__8wekyb3d8bbwe [2021-08-03] (Microsoft Studios) [MS Ad]
Minecraft for Windows 10 -> C:\Program Files\WindowsApps\Microsoft.MinecraftUWP_1.17.3402.0_x64__8wekyb3d8bbwe [2021-10-06] (Microsoft Studios)
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.97.752.0_x64__mcm4njqhnhss8 [2020-07-16] (Netflix, Inc.)
Samsung Printer Experience -> C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCO.LTD.SamsungPrinterExperience_1.3.15.0_x64__3c1yjt4zspk6g [2019-09-22] (Samsung Electronics Co. Ltd.)
Simple Mahjong -> C:\Program Files\WindowsApps\26720RandomSaladGamesLLC.SimpleMahjong_6.0.59.0_x64__kx24dqmazqk8j [2021-08-18] (Random Salad Games LLC)
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.TWITTER_7.0.1.0_neutral__wgeqdkkx372wm [2021-06-11] (Twitter Inc.)
WhatsApp Desktop -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2134.10.0_x64__cv1g1gvanyjgm [2021-09-04] (WhatsApp Inc.)
XING -> C:\Program Files\WindowsApps\XINGAG.XING_4.0.9.0_x86__xpfg3f7e9an52 [2021-06-03] (New Work SE)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2019-06-05] (NVIDIA Corporation -> NVIDIA Corporation)

==================== Codecs (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Drivers32: [vidc.mjpg] => C:\windows\system32\bdmjpeg64.dll [75248 2017-01-26] (Bandicam Company -> )
HKLM\...\Drivers32: [vidc.mpeg] => C:\windows\system32\bdmpegv64.dll [75272 2017-01-26] (Bandicam Company -> )
HKLM\...\Drivers32: [msacm.bdmpeg] => C:\windows\system32\bdmpega64.acm [75784 2017-01-26] (Bandicam Company -> )
HKLM\...\Drivers32: [vidc.mjpg] => C:\Windows\SysWOW64\bdmjpeg.dll [71152 2017-01-26] (Bandicam Company -> )
HKLM\...\Drivers32: [vidc.mpeg] => C:\Windows\SysWOW64\bdmpegv.dll [71176 2017-01-26] (Bandicam Company -> )
HKLM\...\Drivers32: [msacm.bdmpeg] => C:\Windows\SysWOW64\bdmpega.acm [71176 2017-01-26] (Bandicam Company -> )
HKLM\...\Drivers32: [vidc.VP60] => C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2015-04-14] (Electronic Arts -> On2.com)
HKLM\...\Drivers32: [vidc.VP61] => C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2015-04-14] (Electronic Arts -> On2.com)

==================== Verknüpfungen & WMI ========================

==================== Geladene Module (Nicht auf der Ausnahmeliste) =============

2019-09-22 21:33 - 2016-07-20 12:15 - 002847744 _____ () [Datei ist nicht signiert] C:\WINDOWS\system32\DlgSearchEngine.dll
2017-11-08 08:35 - 2017-11-08 08:35 - 000123904 _____ (Samsung Electronics Co., Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Samsung\Easy Printer Manager\SmartScreenPrint\CDAKEYMonitor64.dll
2018-05-18 10:57 - 2018-05-18 10:57 - 003696128 _____ (TODO: <Company name>) [Datei ist nicht signiert] C:\Program Files (x86)\Samsung\Easy Printer Manager\ScanFax2PC\CDAScan2PCMonitor64.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)

AlternateDataStreams: C:\Users\K21\Anwendungsdaten:6699d3ee8dd9cf775caae782c8f44f03 [394]
AlternateDataStreams: C:\Users\K21\AppData\Roaming:6699d3ee8dd9cf775caae782c8f44f03 [394]
AlternateDataStreams: C:\Users\Public\AppData:CSM [478]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [480]

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================

==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================

==================== Internet Explorer (Nicht auf der Ausnahmeliste) ==========

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
HKU\S-1-5-21-1967584404-1960276878-1159121988-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE
HKU\S-1-5-21-1967584404-1960276878-1159121988-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
SearchScopes: HKLM -> {FABA87FC-4F2D-425C-93C7-05A3ECD974D7} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF-8&tag=hp-uk1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM-x32 -> {FABA87FC-4F2D-425C-93C7-05A3ECD974D7} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF-8&tag=hp-uk1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-1967584404-1960276878-1159121988-1001 -> {FABA87FC-4F2D-425C-93C7-05A3ECD974D7} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF-8&tag=hp-uk1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2021-10-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-01] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts Inhalt: =========================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2016-07-16 13:47 - 2016-07-16 13:45 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

2019-07-10 12:45 - 2021-10-09 08:53 - 000000593 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
192.168.137.1 DESKTOP-EJFS8EO.mshome.net # 2026 10 4 8 6 53 24 139
192.168.137.116 Galaxy-A52.mshome.net # 2021 10 6 16 6 53 24 139
418
7 924
192.168.137.124 Galaxy-A52.mshome.net # 2021 8 4 12 12 13 9 942
42

==================== Andere Bereiche ===========================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\windows\system32;C:\windows;C:\windows\System32\Wbem;C:\windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Windows Live\Shared;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\WINDOWS\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-1967584404-1960276878-1159121988-1000\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-21-1967584404-1960276878-1159121988-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\K21\Desktop\Bandicam\Bilder 23\Wallpaper\yosemite-valley (1).jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Prompt)
 ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [UDP Query User{2DDDF377-361C-493E-ADAC-012E031F8DDB}C:\program files (x86)\samsung\easy printer manager\easyprintermanagerv2.exe] => (Block) C:\program files (x86)\samsung\easy printer manager\easyprintermanagerv2.exe (HP Inc. -> )
FirewallRules: [TCP Query User{793B3F73-6DEF-4F12-8A83-8A8808087D8F}C:\program files (x86)\samsung\easy printer manager\easyprintermanagerv2.exe] => (Block) C:\program files (x86)\samsung\easy printer manager\easyprintermanagerv2.exe (HP Inc. -> )
FirewallRules: [{9A4B9103-ABAA-4997-9B68-0F101D716D5B}] => (Allow) D:\Games2\steamapps\common\Tales of Berseria\Tales of Berseria.exe () [Datei ist nicht signiert]
FirewallRules: [{112E5F28-60B5-4DC2-B0B2-624C79BCDD26}] => (Allow) D:\Games2\steamapps\common\Tales of Berseria\Tales of Berseria.exe () [Datei ist nicht signiert]
FirewallRules: [{66EF7E85-8A46-4F07-8B07-0660DD5B1927}] => (Allow) D:\Games2\steamapps\common\Temtem\Temtem.exe () [Datei ist nicht signiert]
FirewallRules: [{2743F7A2-FCCC-4A0C-8330-DA0920D82B60}] => (Allow) D:\Games2\steamapps\common\Temtem\Temtem.exe () [Datei ist nicht signiert]
FirewallRules: [{E56A520F-DA95-4CDA-83B9-CC3D91CFCC8C}] => (Allow) D:\Games2\steamapps\common\AoE2DE\BattleServer\BattleServer.exe () [Datei ist nicht signiert]
FirewallRules: [{92D7512D-71F8-49C2-A1E4-DF80AB71F877}] => (Allow) D:\Games2\steamapps\common\AoE2DE\BattleServer\BattleServer.exe () [Datei ist nicht signiert]
FirewallRules: [{8E31CD2F-60D9-4E53-BCF7-97726D699641}] => (Allow) D:\Games2\steamapps\common\AoE2DE\AoE2DE_s.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{699B02D8-FCC2-4B15-A020-D9CDC7A9CA78}] => (Allow) D:\Games2\steamapps\common\AoE2DE\AoE2DE_s.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{32340C4D-5A86-4095-B4FC-D174E94DF53E}] => (Allow) D:\Games2\steamapps\common\Special Edition\DevilMayCry4SpecialEdition.exe (CAPCOM CO., LTD. -> CAPCOM CO., LTD.)
FirewallRules: [{1EEDF67A-A09F-4726-B236-A5574D331234}] => (Allow) D:\Games2\steamapps\common\Special Edition\DevilMayCry4SpecialEdition.exe (CAPCOM CO., LTD. -> CAPCOM CO., LTD.)
FirewallRules: [UDP Query User{6B31903A-64B0-44DD-9633-34695CBA0340}D:\games2\league of legends\game\league of legends.exe] => (Block) D:\games2\league of legends\game\league of legends.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [TCP Query User{10C5BE9A-97CB-49E6-A197-E298C973FBC9}D:\games2\league of legends\game\league of legends.exe] => (Block) D:\games2\league of legends\game\league of legends.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [{182D9748-A6AD-4678-99A4-9B2D9FF21DD2}] => (Allow) D:\Games2\steamapps\common\Devil May Cry HD Collection\dmcLauncher.exe (CAPCOM Co.,Ltd. -> )
FirewallRules: [{3E74C55F-74C2-4615-A2B2-41A3425A4E4D}] => (Allow) D:\Games2\steamapps\common\Devil May Cry HD Collection\dmcLauncher.exe (CAPCOM Co.,Ltd. -> )
FirewallRules: [UDP Query User{174BB3B9-9DE5-4BBA-9A09-CFB1630D58C2}C:\program files (x86)\common files\scan process machine\imageeng.exe] => (Block) C:\program files (x86)\common files\scan process machine\imageeng.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [TCP Query User{7386F47F-54AD-46F2-B69D-E37FE2ED0430}C:\program files (x86)\common files\scan process machine\imageeng.exe] => (Block) C:\program files (x86)\common files\scan process machine\imageeng.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{862EC06A-C323-4DA2-9857-63388A3DBF64}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{1A48DEBC-C60D-4B20-8463-CB7CDEFFEEAE}] => (Allow) C:\Program Files (x86)\Samsung\Easy Document Creator\EDC.exe => Keine Datei
FirewallRules: [{F0F37E3D-C541-4509-9CE3-43E0D38F11E8}] => (Allow) C:\Program Files (x86)\Samsung\Easy Document Creator\EDC.exe => Keine Datei
FirewallRules: [{5E679FBF-9484-4B3B-A8EA-5E25ECF9581E}] => (Allow) C:\Program Files (x86)\Samsung\Easy Document Creator\EDCApp.exe => Keine Datei
FirewallRules: [{D2B7FD36-4C50-4F53-8D3D-B7652A345409}] => (Allow) C:\Program Files (x86)\Samsung\Easy Document Creator\EDCApp.exe => Keine Datei
FirewallRules: [{A815FB4C-6D84-4F4B-912E-4DF6D7BFBF81}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{3AB0EF62-2CB7-466F-A784-C8431CEC4156}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{3A077B1C-31DF-4A4B-B6AA-2B8880C51408}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{1430457D-F984-42AA-930D-08DB71566001}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\EPM2Migrator.exe (HP Inc. -> )
FirewallRules: [{B4872368-E942-4810-A3E8-3062ED6C35AE}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\EPM2AlertList.exe (HP Inc. -> HP Printing Korea Co., Ltd.)
FirewallRules: [{07BE60BF-439D-484C-B665-F432875BB0F2}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\OrderSupplies.exe (HP Inc. -> HP Printing Korea Co., Ltd.)
FirewallRules: [{DF8E8124-FC68-4F90-BF8B-E4A2FB042047}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\EasyPrinterManagerV2.exe (HP Inc. -> )
FirewallRules: [{3A6D9B27-790C-480C-AC90-F6E152F51897}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Scan Driver\ScanCDLM.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{B56A3017-9B07-4426-9825-61A1AF1BC6BC}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Printer Center\SamsungPrinterCenter.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{91084CF8-ED1B-413B-A005-BAA81EB04F95}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0EAEFBB1-9EE4-4886-AEB9-8F82B3EED741}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{DF3BF395-9013-41C8-8F46-B6C99CAF64C0}] => (Allow) D:\Games2\League of Legends\LeagueClient.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [{EA918A23-9B19-4393-B1CB-645E4BBCABFE}] => (Allow) D:\Games2\League of Legends\LeagueClient.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [{A042B6E0-F396-4C85-9A5C-F320851EBB54}] => (Allow) D:\Games2\League of Legends\LeagueClient.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [{5F2D4802-A8D3-430E-A3A5-CF8848437570}] => (Allow) D:\Games2\League of Legends\LeagueClient.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [UDP Query User{448F24CA-98E2-4A58-A62B-44351C19C053}C:\users\k21\appdata\local\mycomgames\mycomgames.exe] => (Block) C:\users\k21\appdata\local\mycomgames\mycomgames.exe => Keine Datei
FirewallRules: [TCP Query User{C6B0BE44-D1FD-45BC-B4B6-40174929D328}C:\users\k21\appdata\local\mycomgames\mycomgames.exe] => (Block) C:\users\k21\appdata\local\mycomgames\mycomgames.exe => Keine Datei
FirewallRules: [{45C32BB5-7CDF-40DB-8C87-38C6D8BAB729}] => (Allow) C:\Program Files (x86)\Glyph\GlyphDownloader.exe (Trion Worlds Inc.) [Datei ist nicht signiert]
FirewallRules: [{32DED9B5-2517-4B3E-A4DF-E27C25284D40}] => (Allow) C:\Program Files (x86)\Glyph\GlyphDownloader.exe (Trion Worlds Inc.) [Datei ist nicht signiert]
FirewallRules: [{9484FF45-858C-4827-862C-804F6E554DA4}] => (Allow) C:\Program Files (x86)\Glyph\GlyphDownloader.exe (Trion Worlds Inc.) [Datei ist nicht signiert]
FirewallRules: [{6338FA0F-BD3E-4DB2-8CBB-301C086EDD76}] => (Allow) C:\Program Files (x86)\Glyph\GlyphDownloader.exe (Trion Worlds Inc.) [Datei ist nicht signiert]
FirewallRules: [{D6F309A4-51A8-42AE-A45B-F6DFFED4E691}] => (Allow) C:\Program Files (x86)\Glyph\GlyphClient.exe (Trion Worlds Inc. -> Trion Worlds Inc.)
FirewallRules: [{CB7ED8B0-CDF2-45A9-B9D9-013CBEC7DFEF}] => (Allow) C:\Program Files (x86)\Glyph\GlyphClient.exe (Trion Worlds Inc. -> Trion Worlds Inc.)
FirewallRules: [{83730AA0-54BA-4A4A-9DBA-2D5B20B0A09B}] => (Allow) C:\Program Files (x86)\Glyph\GlyphClient.exe (Trion Worlds Inc. -> Trion Worlds Inc.)
FirewallRules: [{22B7DA9D-5BE7-4763-B58F-8EB91846FCF7}] => (Allow) C:\Program Files (x86)\Glyph\GlyphClient.exe (Trion Worlds Inc. -> Trion Worlds Inc.)
FirewallRules: [{52B56086-059A-4CE7-93CD-B534DAD0418B}] => (Block) D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{CC30C740-79B2-40F1-8BB8-F398AB4FE31C}] => (Block) D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{C073FB44-D761-4800-B3D1-AA14E9410682}D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{EF7E69BE-1F11-420D-93AD-5806325455B0}D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{8A1671B8-3D54-4868-B369-0C43BA3F22E2}] => (Block) D:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{6BBA2C59-8330-4DB5-B0CC-4DB0336ED55D}] => (Block) D:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{B680590D-F680-4C4D-B2C3-9150D506B100}D:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) D:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{D912DB14-41B8-45C6-9645-5C7A33006346}D:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) D:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{3060DA83-4CA1-448E-90B6-19C5B776B2F9}] => (Block) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => Keine Datei
FirewallRules: [{FE4293B5-16F4-48C9-9705-CB1EC80579BF}] => (Block) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => Keine Datei
FirewallRules: [UDP Query User{0CCD1D59-6CED-4B20-A135-AD3B6CA75C96}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => Keine Datei
FirewallRules: [TCP Query User{980FDE5C-2D78-469B-AA33-14A0BF3C89BD}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => Keine Datei
FirewallRules: [{8BEB68A9-82A1-4409-94AF-8C899E4D5B1C}] => (Block) C:\program files (x86)\steam\steamapps\common\orcs must die 2\build\game\orcsmustdie2.exe => Keine Datei
FirewallRules: [{BFF0DC43-95AC-4DE4-A4B8-4170B183A1FD}] => (Block) C:\program files (x86)\steam\steamapps\common\orcs must die 2\build\game\orcsmustdie2.exe => Keine Datei
FirewallRules: [UDP Query User{F4CBE8DE-6C5B-463B-9F56-D42AD7EFC5D2}C:\program files (x86)\steam\steamapps\common\orcs must die 2\build\game\orcsmustdie2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\orcs must die 2\build\game\orcsmustdie2.exe => Keine Datei
FirewallRules: [TCP Query User{99EDE91F-8BA2-4D9E-A9C9-558C6628D8FA}C:\program files (x86)\steam\steamapps\common\orcs must die 2\build\game\orcsmustdie2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\orcs must die 2\build\game\orcsmustdie2.exe => Keine Datei
FirewallRules: [{51969C71-F3FE-4F57-A1D1-C3A7A359F15C}] => (Block) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe => Keine Datei
FirewallRules: [{D4E5756C-63E9-4AC3-B7AC-615645F35E0F}] => (Block) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe => Keine Datei
FirewallRules: [UDP Query User{3E25EF61-9EDB-47A1-9737-50C25A1DAC55}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe => Keine Datei
FirewallRules: [TCP Query User{08B9A1A3-1A08-49A4-B88A-E8AEADFC3B47}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe => Keine Datei
FirewallRules: [{1BBD3A94-6B54-4C48-B372-DCC20336D717}] => (Block) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe => Keine Datei
FirewallRules: [{EF49B8AC-B285-482F-BE9E-D3065F6913C7}] => (Block) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe => Keine Datei
FirewallRules: [UDP Query User{4E4F2D49-7F97-47DC-AA0F-8F61060CBF78}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe => Keine Datei
FirewallRules: [TCP Query User{09A68168-DDED-4E07-956E-E5CB958BA584}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe => Keine Datei
FirewallRules: [{7C5010F9-6C39-4A5A-A647-AC1633A8ED95}] => (Allow) LPort=1900
FirewallRules: [{DD840014-9503-432F-93A8-985C4AB205AD}] => (Allow) LPort=2869
FirewallRules: [{6CF7B920-A8A9-4970-98E5-B4AFD5DF6260}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F0256D43-7C44-46C9-A514-D32D93623CB5}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Keine Datei
FirewallRules: [{5505D5CB-230C-40FD-98FA-BFC06590E8AE}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Keine Datei
FirewallRules: [{5DBC6FBE-8969-4470-B060-EA2C1F46D187}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{3B637BE3-5D8B-4C8D-ADC3-C27F648CA39D}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{1F574894-9198-4ADA-8301-4924FDB8824F}] => (Allow) C:\Users\K21\Downloads\BlackDesert_Downloader.exe => Keine Datei
FirewallRules: [{25ECC44B-09CF-44E6-AB4C-84F97859EB10}] => (Allow) C:\Users\K21\Downloads\BlackDesert_Launcher.exe => Keine Datei
FirewallRules: [{100F0297-C846-4D87-B03F-7ED875E67519}] => (Allow) C:\Users\K21\Downloads\bin64\BlackDesert64.exe => Keine Datei
FirewallRules: [{541D4041-611F-436B-9D92-D7EF54A7AAE2}] => (Allow) C:\Users\K21\Downloads\bin\BlackDesert32.exe => Keine Datei
FirewallRules: [{66B58DF2-E010-4069-8398-6E940ADD203B}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{937E67D8-D8D4-4CFC-B6A1-BD791F88A19E}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{A835CBA9-9E1C-49ED-A95F-B5B688A306F2}D:\mygames\revelation online\game\tianyu.exe] => (Block) D:\mygames\revelation online\game\tianyu.exe => Keine Datei
FirewallRules: [TCP Query User{731E2798-3646-4389-A81D-86F1D573BE8F}D:\mygames\revelation online\game\tianyu.exe] => (Block) D:\mygames\revelation online\game\tianyu.exe => Keine Datei
FirewallRules: [UDP Query User{F5BF8D29-5357-4EBD-BC02-A0591B519930}C:\users\k21\appdata\local\mycomgames\mycomgames.exe] => (Block) C:\users\k21\appdata\local\mycomgames\mycomgames.exe => Keine Datei
FirewallRules: [TCP Query User{8E552E3C-C36B-4D4B-983C-D99409DC89F8}C:\users\k21\appdata\local\mycomgames\mycomgames.exe] => (Block) C:\users\k21\appdata\local\mycomgames\mycomgames.exe => Keine Datei
FirewallRules: [TCP Query User{738F4040-E865-4F64-A821-0295BEBAB677}C:\program files (x86)\steam\steamapps\common\black desert online\bin64\blackdesert64.exe] => (Block) C:\program files (x86)\steam\steamapps\common\black desert online\bin64\blackdesert64.exe => Keine Datei
FirewallRules: [UDP Query User{722B429C-5634-4D89-AE08-06F9CB995E36}C:\program files (x86)\steam\steamapps\common\black desert online\bin64\blackdesert64.exe] => (Block) C:\program files (x86)\steam\steamapps\common\black desert online\bin64\blackdesert64.exe => Keine Datei
FirewallRules: [TCP Query User{06F052ED-6B03-41D0-AD06-2730ED2D8BAE}D:\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{248B7716-9EC3-479E-A9D8-97753081CD6B}D:\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{F2C2C73F-A23C-418B-B2D0-69BB84E97B2B}] => (Allow) D:\Games2\steamapps\common\Black Desert Online\Black Desert Online Steam Launcher.exe => Keine Datei
FirewallRules: [{B416FE38-CB35-4499-8DA2-319DB941C6C1}] => (Allow) D:\Games2\steamapps\common\Black Desert Online\Black Desert Online Steam Launcher.exe => Keine Datei
FirewallRules: [{65E31776-FDA8-476F-B2E6-41E09B86D25F}] => (Allow) D:\Games2\steamapps\common\Skyrim\SkyrimLauncher.exe (Bethesda Softworks) [Datei ist nicht signiert]
FirewallRules: [{E006A453-632F-40FF-B9E6-B2C8E10A9987}] => (Allow) D:\Games2\steamapps\common\Skyrim\SkyrimLauncher.exe (Bethesda Softworks) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{C00E63F2-406C-474E-93B3-2EFB1F42C843}D:\games2\steamapps\common\black desert online\bin64\blackdesert64.exe] => (Allow) D:\games2\steamapps\common\black desert online\bin64\blackdesert64.exe (Pearl abyss Corp -> )
FirewallRules: [UDP Query User{CD477984-0A16-484A-8240-947AEFCE3360}D:\games2\steamapps\common\black desert online\bin64\blackdesert64.exe] => (Allow) D:\games2\steamapps\common\black desert online\bin64\blackdesert64.exe (Pearl abyss Corp -> )
FirewallRules: [{6A9D9DEB-2B45-45D9-BD58-3F15A1CA103B}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{17CE65AD-A9DE-4B44-BA6D-A288F914AA21}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{54AA717B-E30F-4ED3-B3A3-E87B925A5FB8}D:\games2\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe] => (Allow) D:\games2\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{41260157-1F0F-48A6-9AA1-00ACA0A0D9DB}D:\games2\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe] => (Allow) D:\games2\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [{5631BB50-E38E-4B9C-BFE3-5B5F9A7D62C1}] => (Allow) D:\Games2\steamapps\common\Golf With Your Friends\Golf With Your Friends.exe () [Datei ist nicht signiert]
FirewallRules: [{2CF01E47-E5E4-4BEE-8A2F-E4A0B7EF8555}] => (Allow) D:\Games2\steamapps\common\Golf With Your Friends\Golf With Your Friends.exe () [Datei ist nicht signiert]
FirewallRules: [{050944A0-B637-4FE5-BF61-8F8E087BE229}] => (Allow) D:\Games2\steamapps\common\Age2HD\Launcher.exe (TODO: <Company name>) [Datei ist nicht signiert]
FirewallRules: [{E4BC2E89-4A7A-412C-8CD3-5E489E11CFBB}] => (Allow) D:\Games2\steamapps\common\Age2HD\Launcher.exe (TODO: <Company name>) [Datei ist nicht signiert]
FirewallRules: [{1A6078FB-0BDE-4B95-B664-D4F0EF946756}] => (Allow) D:\Games2\steamapps\common\Monster Hunter World\MonsterHunterWorld.exe (CAPCOM CO., LTD. -> CAPCOM CO., LTD.)
FirewallRules: [{31A12DD4-3332-485C-B0A4-7A19E930CDA0}] => (Allow) D:\Games2\steamapps\common\Monster Hunter World\MonsterHunterWorld.exe (CAPCOM CO., LTD. -> CAPCOM CO., LTD.)
FirewallRules: [{B29F22DA-3379-4B0B-BA59-99D4C46EA596}] => (Allow) D:\EasyAntiCheat\EasyAntiCheat_Setup.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [TCP Query User{AA91E5CD-75C9-4BF0-98DF-BA24C71CD181}D:\apoc\binaries\win64\apoc-win64-shipping.exe] => (Allow) D:\apoc\binaries\win64\apoc-win64-shipping.exe (Intrepid Studios, Inc.) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{1E6D126E-DB51-4640-B4D2-0376297AB3E6}D:\apoc\binaries\win64\apoc-win64-shipping.exe] => (Allow) D:\apoc\binaries\win64\apoc-win64-shipping.exe (Intrepid Studios, Inc.) [Datei ist nicht signiert]
FirewallRules: [{4F68D823-004A-49BA-849E-872EEB1E2AAC}] => (Allow) D:\Games2\steamapps\common\FINAL FANTASY XIV Online\boot\ffxivboot.exe (SQUARE ENIX CO., LTD. -> SQUARE ENIX CO., LTD.)
FirewallRules: [{9CFC75A0-51A5-4F53-8AB7-647D66C556AD}] => (Allow) D:\Games2\steamapps\common\FINAL FANTASY XIV Online\boot\ffxivboot.exe (SQUARE ENIX CO., LTD. -> SQUARE ENIX CO., LTD.)
FirewallRules: [{DAD5B8F1-EE56-451E-B6CF-974862F51846}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D7AA6A2C-261F-457B-BEBC-1E97726FE3E7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{6461B2B6-037B-47AC-92BA-9DBD2B0AF3CD}D:\program files (x86)\origin games\apex\r5apex.exe] => (Allow) D:\program files (x86)\origin games\apex\r5apex.exe => Keine Datei
FirewallRules: [UDP Query User{69F54785-BDC5-4F5A-929A-8556DD9BABF2}D:\program files (x86)\origin games\apex\r5apex.exe] => (Allow) D:\program files (x86)\origin games\apex\r5apex.exe => Keine Datei
FirewallRules: [{40C859E3-600D-4C03-93DF-787532BC75EA}] => (Allow) D:\Games2\steamapps\common\SMITE\Binaries\Win64\SmiteEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{04CA3854-B8F7-41E5-9609-56E63FFBE991}] => (Allow) D:\Games2\steamapps\common\SMITE\Binaries\Win64\SmiteEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{DC2E3732-2760-40BC-BDEA-46C8DA82087C}] => (Allow) D:\Games2\steamapps\common\SMITE\Binaries\Win32\SmiteEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{4C059F61-6C83-4CC8-BC1B-597C577B87D2}] => (Allow) D:\Games2\steamapps\common\SMITE\Binaries\Win32\SmiteEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [TCP Query User{E2091C34-3DD1-42D7-851E-4D41E87E343A}D:\games2\steamapps\common\smite\binaries\win64\smite.exe] => (Allow) D:\games2\steamapps\common\smite\binaries\win64\smite.exe (Hirez Studios, Inc.) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{0C25909D-28D3-4E6A-9D97-E180A09814F1}D:\games2\steamapps\common\smite\binaries\win64\smite.exe] => (Allow) D:\games2\steamapps\common\smite\binaries\win64\smite.exe (Hirez Studios, Inc.) [Datei ist nicht signiert]
FirewallRules: [{A3844684-FFEF-4D27-80CF-9DAE8516E646}] => (Allow) D:\Games2\steamapps\common\Human Fall Flat\Human.exe () [Datei ist nicht signiert]
FirewallRules: [{93B722E3-10F6-4E9E-8F40-CAAF26ED5DAE}] => (Allow) D:\Games2\steamapps\common\Human Fall Flat\Human.exe () [Datei ist nicht signiert]
FirewallRules: [{625F88A7-5033-4EF9-8E9C-6A6A45DA9091}] => (Allow) D:\Games2\steamapps\common\DISSIDIA FINAL FANTASY NT Free Edition\dffnt.exe (SQUARE ENIX CO., LTD. -> SQUARE ENIX CO., LTD.)
FirewallRules: [{1BD0B5B8-5FB0-4963-A489-99723BEFFD44}] => (Allow) D:\Games2\steamapps\common\DISSIDIA FINAL FANTASY NT Free Edition\dffnt.exe (SQUARE ENIX CO., LTD. -> SQUARE ENIX CO., LTD.)
FirewallRules: [{B4D27174-957A-4ABA-AF74-5A243B3EEF05}] => (Allow) D:\Games2\steamapps\common\WormsWMD\Worms W.M.D.exe () [Datei ist nicht signiert]
FirewallRules: [{570A5DF2-050D-499E-83DD-AB2FC4779603}] => (Allow) D:\Games2\steamapps\common\WormsWMD\Worms W.M.D.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{5E1C7C27-0196-49DF-99CA-9018C1D7B9ED}C:\users\k21\desktop\harbor\harbor.exe] => (Allow) C:\users\k21\desktop\harbor\harbor.exe => Keine Datei
FirewallRules: [UDP Query User{777F24FA-5455-4674-8F21-2B21AC9F30F0}C:\users\k21\desktop\harbor\harbor.exe] => (Allow) C:\users\k21\desktop\harbor\harbor.exe => Keine Datei
FirewallRules: [{D8C98445-1F22-46A0-9A8C-2527563F8C41}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation -> )
FirewallRules: [{4EDFD8BA-824C-4DB2-AEA7-754C754A83BB}] => (Allow) D:\Games2\steamapps\common\Uno\UNO.exe (Chengdu Ubisoft Software Co., Ltd. -> )
FirewallRules: [{353832A4-5835-4B22-B3EF-1BCD947D41CC}] => (Allow) D:\Games2\steamapps\common\Uno\UNO.exe (Chengdu Ubisoft Software Co., Ltd. -> )
FirewallRules: [TCP Query User{C7CDE234-BBCF-42CC-A86F-BDD772EDBADB}C:\users\k21\appdata\local\gamecenter\gamecenter.exe] => (Allow) C:\users\k21\appdata\local\gamecenter\gamecenter.exe => Keine Datei
FirewallRules: [UDP Query User{AAECA656-9560-427B-AF19-9A757F0EEBDB}C:\users\k21\appdata\local\gamecenter\gamecenter.exe] => (Allow) C:\users\k21\appdata\local\gamecenter\gamecenter.exe => Keine Datei
FirewallRules: [{5692F478-AF58-4FEA-B5E2-44DC600B247E}] => (Block) C:\users\k21\appdata\local\gamecenter\gamecenter.exe => Keine Datei
FirewallRules: [{39B8937F-C68A-47D2-BEB3-FC4FC851086C}] => (Block) C:\users\k21\appdata\local\gamecenter\gamecenter.exe => Keine Datei
FirewallRules: [TCP Query User{6719ACE0-5226-4B68-97FF-A14F7C39D975}C:\users\k21\appdata\roaming\twitch studio\bin\twitchstudioagent.exe] => (Allow) C:\users\k21\appdata\roaming\twitch studio\bin\twitchstudioagent.exe (Twitch Interactive, Inc. -> )
FirewallRules: [UDP Query User{96260930-84A1-4D35-85F9-C30AC45F1FE1}C:\users\k21\appdata\roaming\twitch studio\bin\twitchstudioagent.exe] => (Allow) C:\users\k21\appdata\roaming\twitch studio\bin\twitchstudioagent.exe (Twitch Interactive, Inc. -> )
FirewallRules: [{964F0EDE-0AE6-42F3-80F3-CC6F5ED26B01}] => (Allow) D:\Games2\steamapps\common\Dead by Daylight\DeadByDaylight.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{3DD7F452-4324-4FE4-8DFC-A8292CFDDD22}] => (Allow) D:\Games2\steamapps\common\Dead by Daylight\DeadByDaylight.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{9C13C11E-BD28-4A29-B9D4-22B9C79F565F}] => (Allow) D:\Games2\steamapps\common\Black Desert Online\BlackDesertLauncher.exe (Pearl abyss Corp -> Pearlabyss)
FirewallRules: [{E0183729-2724-465F-8AF3-924C065979F7}] => (Allow) D:\Games2\steamapps\common\Black Desert Online\BlackDesertLauncher.exe (Pearl abyss Corp -> Pearlabyss)
FirewallRules: [{D185BB44-5A94-4F1F-841A-C68164F694E7}] => (Allow) C:\Users\K21\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{69DF0FDD-0321-4889-BC77-F22023C6CC4B}] => (Allow) C:\Users\K21\AppData\Roaming\Zoom\bin\airhost.exe => Keine Datei
FirewallRules: [{25ADA769-57D8-471A-81A4-C5B292983257}] => (Allow) C:\Users\K21\AppData\Roaming\Zoom\bin\airhost.exe => Keine Datei
FirewallRules: [{F33D389B-2437-47DD-BF77-E1C0C3D9121E}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{17CE5C24-DC51-46A5-BAED-5C2A8E041846}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{4523701E-98E0-46CF-9100-52085F7D0CC9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{16178D22-1E3C-45FF-8A66-6661CF247427}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{5AA41C3A-A5A0-491F-B9CF-D033B1CEBEA6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{B8DBC147-6829-431A-93AA-D64AF15977DE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{A8C08DF9-8231-4280-BC70-BECBC9B34D02}C:\users\k21\appdata\roaming\telegram desktop\telegram.exe] => (Block) C:\users\k21\appdata\roaming\telegram desktop\telegram.exe (Telegram FZ-LLC -> Telegram FZ-LLC)
FirewallRules: [UDP Query User{51DC50D8-8886-4B47-915F-680987A26A32}C:\users\k21\appdata\roaming\telegram desktop\telegram.exe] => (Block) C:\users\k21\appdata\roaming\telegram desktop\telegram.exe (Telegram FZ-LLC -> Telegram FZ-LLC)
FirewallRules: [{0DBE2517-86D2-4A1E-A6F9-F66E80363F36}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Wiederherstellungspunkte =========================

ACHTUNG: Systemwiederherstellung ist deaktiviert (Total:118.01 GB) (Free:8.4 GB) (7%)

==================== Fehlerhafte Geräte im Gerätemanager ============


==================== Fehlereinträge in der Ereignisanzeige: ========================

Applikationsfehler:
==================
Error: (10/09/2021 07:15:23 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: OriginWebHelperService.exe, Version: 10.5.56.33908, Zeitstempel: 0x5dd474e2
Name des fehlerhaften Moduls: OriginWebHelperService.exe, Version: 10.5.56.33908, Zeitstempel: 0x5dd474e2
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00098210
ID des fehlerhaften Prozesses: 0x12e0
Startzeit der fehlerhaften Anwendung: 0x01d7bccca41de924
Pfad der fehlerhaften Anwendung: D:\Origin\OriginWebHelperService.exe
Pfad des fehlerhaften Moduls: D:\Origin\OriginWebHelperService.exe
Berichtskennung: 6e99c13d-5968-4f89-8e41-e7eceb618ed8
Vollständiger Name des fehlerhaften Pakets: 
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (10/09/2021 07:14:47 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Aufrufen von Routine "CoCreateInstance" ist ein unerwarteter Fehler aufgetreten. hr = 0x8007045b, Der Computer wird heruntergefahren.
.

Error: (10/09/2021 07:14:47 AM) (Source: VSS) (EventID: 13) (User: )
Description: Volumenschattenkopie-Dienst-Informationen: Der COM-Server mit CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} und dem Namen "CEventSystem" kann nicht gestartet werden. [0x8007045b, Der Computer wird heruntergefahren.
]

Error: (10/08/2021 09:09:29 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Die Speicheroptimierung konnte erneut optimieren auf RECOVERY (E:) nicht abschließen. Grund: Der angeforderte Vorgang wird von der Hardware des Volumes nicht unterstützt. (0x8900002A)

Error: (10/08/2021 09:09:29 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Die Speicheroptimierung konnte erneut optimieren auf DATA (D:) nicht abschließen. Grund: Der angeforderte Vorgang wird von der Hardware des Volumes nicht unterstützt. (0x8900002A)

Error: (10/04/2021 05:00:12 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: GameBar.exe, Version: 5.721.9022.0, Zeitstempel: 0x61318ae5
Name des fehlerhaften Moduls: GameBar.exe, Version: 5.721.9022.0, Zeitstempel: 0x61318ae5
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000000000cb848e
ID des fehlerhaften Prozesses: 0x39c0
Startzeit der fehlerhaften Anwendung: 0x01d7b9301ab59ff5
Pfad der fehlerhaften Anwendung: C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.721.9022.0_x64__8wekyb3d8bbwe\GameBar.exe
Pfad des fehlerhaften Moduls: C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.721.9022.0_x64__8wekyb3d8bbwe\GameBar.exe
Berichtskennung: f6342e66-4c45-4b06-aff8-8ee19714e0aa
Vollständiger Name des fehlerhaften Pakets: Microsoft.XboxGamingOverlay_5.721.9022.0_x64__8wekyb3d8bbwe
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: App

Error: (10/01/2021 09:26:46 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Die Speicheroptimierung konnte erneut optimieren auf RECOVERY (E:) nicht abschließen. Grund: Der angeforderte Vorgang wird von der Hardware des Volumes nicht unterstützt. (0x8900002A)

Error: (10/01/2021 09:26:45 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Die Speicheroptimierung konnte erneut optimieren auf DATA (D:) nicht abschließen. Grund: Der angeforderte Vorgang wird von der Hardware des Volumes nicht unterstützt. (0x8900002A)


Systemfehler:
=============
Error: (10/09/2021 08:58:23 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel(R) Security Assist" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (10/09/2021 08:21:03 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "XTUOCDriverService" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (10/09/2021 08:07:59 AM) (Source: Schannel) (EventID: 4103) (User: NT-AUTORITÄT)
Description: Schwerwiegender Fehler beim Erstellen der Client-Anmeldeinformationen für TLS. Der interne Fehlerstatus ist 10013.

Error: (10/09/2021 07:38:42 AM) (Source: Schannel) (EventID: 4103) (User: NT-AUTORITÄT)
Description: Schwerwiegender Fehler beim Erstellen der Client-Anmeldeinformationen für TLS. Der interne Fehlerstatus ist 10013.

Error: (10/09/2021 07:20:24 AM) (Source: Schannel) (EventID: 4103) (User: NT-AUTORITÄT)
Description: Schwerwiegender Fehler beim Erstellen der Client-Anmeldeinformationen für TLS. Der interne Fehlerstatus ist 10013.

Error: (10/09/2021 07:16:19 AM) (Source: Schannel) (EventID: 4103) (User: NT-AUTORITÄT)
Description: Schwerwiegender Fehler beim Erstellen der Client-Anmeldeinformationen für TLS. Der interne Fehlerstatus ist 10013.

Error: (10/09/2021 07:16:05 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Origin Web Helper Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (10/07/2021 07:37:52 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Steam Client Service" wurde aufgrund folgenden Fehlers nicht gestartet: 
Der Dienst antwortete nicht rechtzeitig auf die Start- oder Steuerungsanforderung.


Windows Defender:
================
Date: 2021-10-08 21:05:13
Description: 
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {02819D80-6D5E-4B0D-877D-0759AC53917B}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM

Date: 2021-10-07 18:24:54
Description: 
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {00EDAC44-0536-4DBC-A07B-E8312CCF5AE0}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM

Date: 2021-10-06 11:04:08
Description: 
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {F2B3D6FB-F193-49D0-BFBF-2F04D32BDE3E}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM

Date: 2021-10-05 09:16:04
Description: 
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {5C86963F-6EB0-40CC-8FF8-6D176E9210E6}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM

Date: 2021-10-04 09:40:42
Description: 
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {A3C10450-F388-4C8A-98CC-7C54110C8C8C}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM

CodeIntegrity:
===============
Date: 2021-10-08 17:36:46
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\NVIDIA Corporation\Ansel\Tools\NvCameraWhitelisting64.dll because the set of per-page image hashes could not be found on the system.


==================== Speicherinformationen =========================== 

BIOS: AMI F.22 11/04/2016
Hauptplatine: HP 828A
Prozessor: Intel(R) Core(TM) i5-6400 CPU @ 2.70GHz
Prozentuale Nutzung des RAM: 52%
Installierter physikalischer RAM: 8141.54 MB
Verfügbarer physikalischer RAM: 3872.19 MB
Summe virtueller Speicher: 15565.54 MB
Verfügbarer virtueller Speicher: 9588.85 MB

==================== Laufwerke ================================

Drive c: (Windows) (Fixed) (Total:118.01 GB) (Free:8.4 GB) NTFS
Drive d: (DATA) (Fixed) (Total:919.76 GB) (Free:270.02 GB) NTFS
Drive e: (RECOVERY) (Fixed) (Total:11.75 GB) (Free:1.23 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]

\\?\Volume{a6b73df8-e8fe-4716-a81e-041f99cb74ac}\ (Windows RE tools) (Fixed) (Total:0.96 GB) (Free:0.47 GB) NTFS
\\?\Volume{8e1affda-4d46-45b8-805f-324f9dc60da1}\ () (Fixed) (Total:0.25 GB) (Free:0.18 GB) FAT32

==================== MBR & Partitionstabelle ====================

==========================================================
Disk: 0 (Size: 119.2 GB) (Disk ID: A80690AF)

Partition: GPT.

==========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: F1E6F7CD)

Partition: GPT.

==================== Ende von Addition.txt =======================
         

Zitat:

habe seit heute morgen die Fehlermeldung Pr_end_of_file_error auf Firefox

Geht das auch mal bitte etwas genauer?
Und was genau hat das mit Schädlingen zu tun?

Fehlende Rückmeldung
Dieses Thema wurde aus unseren Abos gelöscht. Somit bekommen wir keine Benachrichtigung über neue Antworten.
Solltest Du das Thema erneut brauchen, schicke uns bitte eine Erinnerung inklusive Link zum Thema.

Hinweis: Das Verschwinden der Symptome bedeutet nicht, dass Dein Rechner schon sauber ist.

Jeder andere bitte hier klicken und ein eigenes Thema erstellen!