Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung
Alle Konten gehackt, Trojan.Multi.Penguish.b, Trojan.Win32.Hosts.Gen, Fremder zugriff auf PC?

Alle Konten gehackt, Trojan.Multi.Penguish.b, Trojan.Win32.Hosts.Gen, Fremder zugriff auf PC?


Log-Analyse und Auswertung: Alle Konten gehackt, Trojan.Multi.Penguish.b, Trojan.Win32.Hosts.Gen, Fremder zugriff auf PC?

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

Thema geschlossen
Alt 14.08.2024, 14:14   #1
EinsMarcel
 
Alle Konten gehackt, Trojan.Multi.Penguish.b, Trojan.Win32.Hosts.Gen, Fremder zugriff auf PC? - Standard

FRST


Addition

Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 12-08.2024
durchgeführt von marce (14-08-2024 15:02:41)
Gestartet von C:\Users\marce\Downloads
Microsoft Windows 10 Home Version 22H2 19045.4651 (X64) (2021-04-15 22:12:42)
Start-Modus: Normal
==========================================================


==================== Konten: =============================


(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

Administrator (S-1-5-21-136319151-2595665921-3748062372-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-136319151-2595665921-3748062372-503 - Limited - Disabled)
Gast (S-1-5-21-136319151-2595665921-3748062372-501 - Limited - Disabled)
marce (S-1-5-21-136319151-2595665921-3748062372-1001 - Administrator - Enabled) => C:\Users\marce
WDAGUtilityAccount (S-1-5-21-136319151-2595665921-3748062372-504 - Limited - Disabled)

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Malwarebytes (Enabled - Up to date) {0D452135-A081-B000-D6B6-132E52638543}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: McAfee VirusScan (Enabled - Up to date) {F682A51C-4EAD-6A3A-F460-B9C1D4A2DB09}
FW: McAfee Firewall (Enabled) {CEB92439-04C2-6B62-DF3F-10F42A719C72}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

A Normal Lost Phone (HKLM-x32\...\Uplay Install 61517) (Version:  - )
Airshipper (HKLM\...\{5F467C5A-B0D8-4530-858B-D2CECDDECA70}) (Version: 0.10.0 - Airshipper contributors)
Amazon Games (HKU\S-1-5-21-136319151-2595665921-3748062372-1001\...\{4DD10B06-78A4-4E6F-AA39-25E9C38FA568}) (Version: 2.3.8425.2 - Amazon.com Services, Inc.)
ARMOURY CRATE Service (HKLM\...\{01378DC3-088F-4F55-AAFA-DC6A9CCA292A}) (Version: 5.9.4 - ASUS)
ASUS Aac_GmAcc HAL (HKLM\...\{998249B1-6913-447E-AA37-F445B8CA33D0}) (Version: 1.0.12.0 - ASUSTek COMPUTER INC.) Hidden
ASUS Aac_GmAcc HAL (HKLM-x32\...\{c3219916-0c5a-483c-8b38-bdd71cf96365}) (Version: 1.0.12.0 - ASUSTek COMPUTER INC.) Hidden
ASUS Aac_NBDT HAL (HKLM\...\{01D3B7AA-D078-4506-B460-60877FCDDBD6}) (Version: 2.3.3.0 - ASUSTek COMPUTER INC.) Hidden
ASUS Aac_NBDT HAL (HKLM-x32\...\{99c84b70-e56e-4a29-9a3a-10d41c9fcc6d}) (Version: 2.3.3.0 - ASUSTek COMPUTER INC.) Hidden
ASUS AURA Display Component (HKLM\...\{AFD1CF98-FE97-434C-A095-9F27C5BEA53C}) (Version: 1.1.23 - ASUSTek COMPUTER INC. ) Hidden
ASUS AURA Display Component (HKLM-x32\...\{b8af8e27-5c72-412c-bab7-dc6430e70f1b}) (Version: 1.1.23 - ASUSTek COMPUTER INC. ) Hidden
ASUS AURA Headset Component (HKLM\...\{A3C4120D-8096-4307-91A2-FFE37EBD5A3D}) (Version: 1.2.4 - ASUSTek COMPUTER INC.) Hidden
ASUS AURA Headset Component (HKLM-x32\...\{7f23d3ea-a821-4293-b7f7-34383bf06437}) (Version: 1.2.4 - ASUSTek COMPUTER INC.) Hidden
ASUS Aura SDK (HKLM\...\{CF8E6E00-9C03-4440-81C0-21FACB921A6B}) (Version: 3.04.43 - ASUSTek COMPUTER INC.) Hidden
ASUS Framework Service (HKLM-x32\...\{339A6383-7862-46DA-8A9D-E84180EF9424}) (Version: 4.0.1.3 - ASUSTeK Computer Inc.)
ASUS Keyboard HAL (HKLM\...\{0FA0CDEE-5DC8-421E-A97D-C74FA6E66FC3}) (Version: 1.0.34 - ASUSTek COMPUTER INC.) Hidden
ASUS Keyboard HAL (HKLM-x32\...\{049c2f12-c730-4efc-81db-0adcf3ff5782}) (Version: 1.0.34 - ASUSTek COMPUTER INC.) Hidden
ASUS MB Peripheral Products (HKLM\...\{BFED9861-7D96-4528-89F1-B090ABBF11A7}) (Version: 1.0.30 - ASUSTeK Computer Inc.) Hidden
ASUS MB Peripheral Products (HKLM-x32\...\{a3a1beb0-9f5b-4b4e-8cfa-ef25842faf55}) (Version: 1.0.30 - ASUSTeK Computer Inc.) Hidden
ASUS Mouse HAL (HKLM\...\{1838F91B-D481-45AA-B92F-071C62D0A19A}) (Version: 1.0.33 - ASUSTek COMPUTER INC.) Hidden
ASUS Mouse HAL (HKLM-x32\...\{a96c7710-4dd8-463e-8f76-c3ad65b248a5}) (Version: 1.0.33 - ASUSTek COMPUTER INC.) Hidden
ASUS Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.107.113 - ASUSTeK Computer Inc.) Hidden
Audacity 3.0.0 (HKLM-x32\...\Audacity_is1) (Version: 3.0.0 - Audacity Team)
AURA lighting effect add-on (HKLM-x32\...\{1E2EA04B-FCA7-457E-B6F4-F33E1858E859}) (Version: 0.0.44 - ASUSTek COMPUTER INC.)
AURA lighting effect add-on x64 (HKLM\...\{C5A4A164-4428-4931-B728-96EEF0FA3C44}) (Version: 0.0.44 - ASUSTek COMPUTER INC.)
AURA Service (HKLM-x32\...\{435220d3-c9be-4e00-978d-e2621d8b2dc9}) (Version: 3.07.49 - ASUSTeK Computer Inc.)
AURA Service (HKLM-x32\...\{56EEEF7D-0AE3-401A-898B-581719D005AE}) (Version: 3.07.49 - ASUSTeK Computer Inc.) Hidden
Aura Wallpaper Creator (HKLM\...\{1FBF8EDB-E45B-43F2-972A-F282A028B87F}) (Version: 1.1.3 - ASUS)
Aura Wallpaper HTML (HKLM-x32\...\{fd36a871-5a75-4285-a469-61bbe3dbd858}) (Version: 1.5.2.0 - ASUSTek Computer Inc.)
Aura Wallpaper Service (HKLM\...\{A78E52FB-5921-0A22-5D0B-212641047CF4}) (Version: 1.5.3.0 - ASUSTeK COMPUTER INC.)
Autodesk SketchBook (HKLM\...\{AE6C5657-8710-4968-BEB5-1E2ED89CB2D2}) (Version: 8.71.0000 - Autodesk)
Badlion Client (HKLM\...\1de14785-dd8c-5cd2-aae8-d4a376f81d78) (Version: 3.4.0 - Badlion)
Bandai Namco Launcher (HKLM-x32\...\BandaiNamcoLauncher_is1) (Version: 2.0.41.0 - 株式会社バンダイナムコオンライン)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
BlueStacks Services (HKU\S-1-5-21-136319151-2595665921-3748062372-1001\...\BlueStacksServices) (Version: 3.0.1 - now.gg, Inc.)
Boosteroid (HKU\S-1-5-21-136319151-2595665921-3748062372-1001\...\{fe32fd0f-18e1-4110-9435-749234ff06e5}) (Version: 1.8.11 - Boosteroid Games S.R.L.)
Citra (HKU\S-1-5-21-136319151-2595665921-3748062372-1001\...\{8f2dafcb-7e17-463b-ba39-c4d4f5d7f55a}) (Version: 1.0.0 - Citra Team)
Clownfish Voice Changer (HKLM\...\ClownfishVoiceChanger) (Version:  - )
CPUID CPU-Z 2.05 (HKLM\...\CPUID CPU-Z_is1) (Version: 2.05 - CPUID, Inc.)
CrystalDiskMark 8.0.5 Aoi Edition (HKLM\...\CrystalDiskMark8_is1) (Version: 8.0.5 - Crystal Dew World)
CurseForge (HKU\S-1-5-21-136319151-2595665921-3748062372-1001\...\Overwolf_cchhcaiapeikjbdbpfplgmpobbcdkdaphclbmkbj) (Version: 1.258.0.9849 - Overwolf app)
Cyberpunk 2077 (HKLM-x32\...\1423049311_is1) (Version: 2.12a - GOG.com)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 12.1.0.2169 - Disc Soft Ltd)
Deathcounter and Soundboard (HKLM-x32\...\DCSB) (Version: 4.0.0.9 - Kalejin)
Discord (HKU\S-1-5-21-136319151-2595665921-3748062372-1001\...\Discord) (Version: 0.0.309 - Discord Inc.)
Discord Canary (HKU\S-1-5-21-136319151-2595665921-3748062372-1001\...\DiscordCanary) (Version: 1.0.48 - Discord Inc.)
Discord PTB (HKU\S-1-5-21-136319151-2595665921-3748062372-1001\...\DiscordPTB) (Version: 1.0.1015 - Discord Inc.)
Driver Easy 5.6.15 (HKLM\...\DriverEasy_is1) (Version: 5.6.15 - Easeware)
DSB Notification (HKLM\...\{A82D01C4-0F9C-4FD6-9E2F-EDBD1E9826DC}) (Version: 1.2.1 - ASUSTeK COMPUTER INC.)
EA app (HKLM\...\{C2622085-ABD2-49E5-8AB9-D3D6A642C091}) (Version: 13.269.0.5782 - Electronic Arts) Hidden
EA app (HKLM-x32\...\{72167635-eca7-4247-b89a-db4d0579c980}) (Version: 13.269.0.5782 - Electronic Arts)
ELDEN RING (HKLM-x32\...\ELDEN RING_is1) (Version:  - )
Epic Games Launcher (HKLM-x32\...\{07D9F8F3-EC99-4133-919D-DA341C62937C}) (Version: 1.1.298.0 - Epic Games, Inc.)
Epic Online Services (HKLM-x32\...\{19695986-25CE-41AC-9C6F-54794653EDBA}) (Version: 2.0.36.0 - Epic Games, Inc.)
Equalizer APO (HKLM\...\EqualizerAPO) (Version: 1.2.1 - )
Feather Launcher (HKLM\...\cb3d390f-61d8-588c-9dbc-20097422bee3) (Version: 1.5.5 - Digital Ingot, Inc.)
FileZilla 3.60.1 (HKLM-x32\...\FileZilla Client) (Version: 3.60.1 - Tim Kosse)
FireAlpaca 2.4.3 (64bit) (HKLM\...\FireAlpaca64_is1) (Version: 2.4.3 - firealpaca.com)
FTB App (HKU\S-1-5-21-136319151-2595665921-3748062372-1001\...\Overwolf_cmogmmciplgmocnhikmphehmeecmpaggknkjlbag) (Version: 1.25.18 - Overwolf app)
Gameforge Client (HKLM-x32\...\{d3b2a0c1-f0d0-4888-ae0b-1c5e1febdafb}_is1) (Version: 2.3.34.1851 - Gameforge)
GameSDK Service (HKLM-x32\...\{021d69c3-d686-4a94-8fb5-fd1ee782fb14}) (Version: 1.0.5.0 - ASUSTek COMPUTER INC.)
GameSDK Service (HKLM-x32\...\{7160DA8D-3F25-4F6E-ABC8-F693551D82FA}) (Version: 1.0.5.0 - ASUSTek COMPUTER INC.) Hidden
GaomonTablet (HKLM-x32\...\GaomonTablet) (Version: 1.1.1.1 - Gaomon)
GIMP 2.10.34 (HKLM\...\GIMP-2_is1) (Version: 2.10.34 - The GIMP Team)
GlideX Service Installer (HKLM\...\{A06BDD76-D95C-4AC7-A0DA-73971F366D9B}) (Version: 1.0.21.0 - ASUSTeK COMPUTER INC.)
GOG GALAXY (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: 2.0.74.352 - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 127.0.6533.100 - Google LLC)
GrandRP Launcher 1.0 version 1.0 (HKLM-x32\...\{D0A3CE4B-226D-159F-2A2C-D4BE0BA4228D}_is1) (Version: 1.0 - Grand RolePlay)
HidHide (HKLM\...\{0B3F1B3F-98BC-4A84-8F71-DDEC7FD6A45B}) (Version: 1.5.212 - Nefarius Software Solutions e.U.)
HoYoPlay (HKLM\...\HYP_1_0_global) (Version: 1.0.5.88 - COGNOSPHERE PTE. LTD.)
HWiNFO64 (HKLM\...\HWiNFO64_is1) (Version: 8.02 - Martin Malik, REALiX s.r.o.)
Internet Download Manager (HKLM-x32\...\Internet Download Manager) (Version: 6.42.12 - Tonec Inc.)
Java 8 Update 371 (64-bit) (HKLM\...\{71124AE4-039E-4CA4-87B4-2F64180371F0}) (Version: 8.0.3710.11 - Oracle Corporation)
JDownloader 2 (HKU\S-1-5-21-136319151-2595665921-3748062372-1001\...\jdownloader2) (Version: 2.0.240220 - AppWork GmbH)
Jingle Palette 4.4.5 (HKLM-x32\...\Jingle Palette) (Version: 4.4.5 - )
Katawa Shoujo (HKLM-x32\...\Katawa Shoujo) (Version:  - )
King of the Hat (HKU\S-1-5-21-136319151-2595665921-3748062372-1001\...\460940655984771072) (Version:  - )
Krita (x64) 4.4.3 (HKLM\...\Krita_x64) (Version: 4.4.3.0 - Krita Foundation)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
LAV Filters 0.63.0 (HKLM-x32\...\lavfilters_is1) (Version: 0.63.0 - Hendrik Leppkes)
LDPlayer (HKLM-x32\...\LDPlayer9) (Version: 9.0.66 - XUANZHI INTERNATIONAL CO., LIMITED)
LibreOffice 24.2.5.2 (HKLM\...\{7519E50A-1B31-4EAE-9AB3-DEB5C0F764F9}) (Version: 24.2.5.2 - The Document Foundation)
Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: 2024.6.600476 - Logitech)
Malwarebytes version 5.1.7.121 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 5.1.7.121 - Malwarebytes)
Microsoft .NET Core Host - 3.1.9 (x64) (HKLM\...\{99918D04-C78B-40A2-BC82-669878B8FA3D}) (Version: 24.100.29323 - Microsoft Corporation) Hidden
Microsoft .NET Core Host FX Resolver - 3.1.9 (x64) (HKLM\...\{62673CBC-4DF2-449C-945E-C15E18E9B169}) (Version: 24.100.29323 - Microsoft Corporation) Hidden
Microsoft .NET Core Runtime - 3.1.9 (x64) (HKLM\...\{251AE139-3E66-4E5B-972A-3529EE4FE65F}) (Version: 24.100.29323 - Microsoft Corporation) Hidden
Microsoft .NET Host - 5.0.14 (x64) (HKLM\...\{61A6E3A7-F406-418A-B2A6-0606DB55B325}) (Version: 40.56.30907 - Microsoft Corporation) Hidden
Microsoft .NET Host - 6.0.8 (x64) (HKLM\...\{6950FA03-8B88-4675-B685-FB21CA1762CC}) (Version: 48.35.45462 - Microsoft Corporation) Hidden
Microsoft .NET Host - 8.0.6 (x64) (HKLM\...\{EAEDD1FB-8876-4FD8-98A6-3AF439887414}) (Version: 64.24.15199 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 5.0.14 (x64) (HKLM\...\{8D88F0E2-CE9B-4A6D-8309-FDC562195F5B}) (Version: 40.56.30907 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.8 (x64) (HKLM\...\{3C3CA326-3F1D-43B7-B0AD-CBC06B2DED5A}) (Version: 48.35.45462 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 8.0.6 (x64) (HKLM\...\{59C4A6C5-E254-4819-B254-0B4FF17747EB}) (Version: 64.24.15199 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 5.0.14 (x64) (HKLM\...\{B810ACDF-1C0C-4108-9B92-12F1674FA444}) (Version: 40.56.30907 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.8 (x64) (HKLM\...\{7CEA3ABF-FE24-42AF-ADE6-B4A3EE346743}) (Version: 48.35.45462 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 8.0.6 (x64) (HKLM\...\{F69305BE-6EFA-45D0-9635-752373304A1A}) (Version: 64.24.15199 - Microsoft Corporation) Hidden
Microsoft 365 - de-de (HKLM\...\O365HomePremRetail - de-de) (Version: 16.0.17830.20138 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 127.0.2651.98 - Microsoft Corporation)
Microsoft Edge WebView2-Laufzeit (HKLM-x32\...\Microsoft EdgeWebView) (Version: 127.0.2651.98 - Microsoft Corporation)
Microsoft GameInput (HKLM-x32\...\{1F2B6AF3-C260-8666-5950-E3FEDBC851D6}) (Version: 10.1.22621.3036 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-136319151-2595665921-3748062372-1001\...\OneDriveSetup.exe) (Version: 24.146.0721.0003 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-136319151-2595665921-3748062372-1001\...\Teams) (Version: 1.6.00.35961 - Microsoft Corporation)
Microsoft Teams Meeting Add-in for Microsoft Office (HKLM\...\{A7AB73A3-CB10-4AA5-9D38-6AEFFBDE4C91}) (Version: 1.24.14501 - Microsoft)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{b55f7208-e02b-4828-ac78-59c73ddf5bc7}) (Version: 12.0.30501.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.40.33810 (HKLM-x32\...\{5af95fd8-a22e-458f-acee-c61bd787178e}) (Version: 14.40.33810.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.40.33810 (HKLM-x32\...\{47109d57-d746-4f8b-9618-ed6a17cc922b}) (Version: 14.40.33810.0 - Microsoft Corporation)
Microsoft Visual C++ 2019 X64 Debug Runtime - 14.29.30153 (HKLM\...\{36C28914-B045-41DB-8966-1C1692AF3BB7}) (Version: 14.29.30153 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Debug Runtime - 14.29.30153 (HKLM-x32\...\{CA4E811F-BFF9-43CC-894C-D4D2EC262E49}) (Version: 14.29.30153 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.40.33810 (HKLM\...\{59CED48F-EBFE-480C-8A38-FC079C2BEC0F}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.40.33810 (HKLM\...\{B8B3BB4A-A10D-4F51-91B7-A64FFAC31EA7}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.40.33810 (HKLM-x32\...\{5EA6C998-D5AC-4ED9-89C3-9F25B17CCD3D}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.40.33810 (HKLM-x32\...\{0C3457A0-3DCE-4A33-BEF0-9B528C557771}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual Studio Installer (HKLM\...\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 3.6.2122.36397 - Microsoft Corporation)
Microsoft Visual Studio Setup Configuration (HKLM-x32\...\{6AC5612A-D067-44B9-9C8E-2C1B3473B429}) (Version: 3.7.2182.35401 - Microsoft Corporation) Hidden
Microsoft Visual Studio Setup WMI Provider (HKLM-x32\...\{E281F6E2-136B-4AF0-895B-253279711697}) (Version: 3.7.2182.35401 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 3.1.9 (x64) (HKLM\...\{FF2DDED4-D1D8-4B61-84D6-B63A3041115F}) (Version: 24.100.29323 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 3.1.9 (x64) (HKLM-x32\...\{0239197e-88fa-40bd-8b97-f9b290a40777}) (Version: 3.1.9.29323 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 5.0.14 (x64) (HKLM\...\{4CD6FFC6-FA14-4016-A7A6-B7E3D6286331}) (Version: 40.56.30911 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 5.0.14 (x64) (HKLM-x32\...\{d21a4f20-968a-4b0c-bf04-a38da5f06e41}) (Version: 5.0.14.30911 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 6.0.8 (x64) (HKLM\...\{EB3983F9-3D60-456D-A11A-C1366C79AD3E}) (Version: 48.35.45540 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.8 (x64) (HKLM-x32\...\{ca35acb3-b442-44fb-924c-4448120bf689}) (Version: 6.0.8.31518 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 8.0.6 (x64) (HKLM\...\{0EF5DD4D-EC49-4AE7-8C9A-F64FF8B3EA58}) (Version: 64.24.15241 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 8.0.6 (x64) (HKLM-x32\...\{942f6911-1a02-4186-8c4c-b27eb2b9733d}) (Version: 8.0.6.33720 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Minecraft Dungeons Launcher (HKLM-x32\...\{EF414B5E-A9E8-46C1-8A02-7D6663D4FD12}) (Version: 1.0.0.0 - Mojang)
Minecraft Launcher (HKLM-x32\...\{27B34E47-68AE-4802-822A-9F0C187AF84A}) (Version: 1.0.0.0 - Mojang)
Node.js (HKLM\...\{637236E9-EF59-4F9D-8269-3083C1A6C6D6}) (Version: 20.12.2 - Node.js Foundation)
NVIDIA FrameView SDK 1.3.8513.32290073 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8513.32290073 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.28.0.417 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.28.0.417 - NVIDIA Corporation)
NVIDIA GeForce NOW 2.0.65.163 (HKU\S-1-5-21-136319151-2595665921-3748062372-1001\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GeForceNOW) (Version: 2.0.65.163 - NVIDIA Corporation)
NVIDIA Grafiktreiber 556.12 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 556.12 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.4.0.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.4.0.1 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.23.1019 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.23.1019 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 29.1.1 - OBS Project)
Oculus (HKLM\...\Oculus) (Version: <3 - Facebook Technologies, LLC)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.17830.20138 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.17830.20138 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0407-1000-0000000FF1CE}) (Version: 16.0.17628.20110 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Opera GX Stable 112.0.5197.60 (HKU\S-1-5-21-136319151-2595665921-3748062372-1001\...\Opera GX 112.0.5197.60) (Version: 112.0.5197.60 - Opera Software)
Origin (HKLM-x32\...\Origin) (Version: 10.5.122.52971 - Electronic Arts, Inc.)
osu! (HKLM-x32\...\{e229ac33-c423-40cb-8e8c-f37fa46536a2}) (Version: latest - ppy Pty Ltd)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.258.0.6 - Overwolf Ltd.)
Pixelmon Realms Launcher 1.0.0 (HKLM\...\15c05a6c-f0b9-5cf2-8c56-79e240f16d2f) (Version: 1.0.0 - Pixelmon Realms)
PlanetSide 2 (HKU\S-1-5-21-136319151-2595665921-3748062372-1001\...\DG0-PlanetSide 2) (Version:  - Sony Online Entertainment)
PowerToys (Preview) (HKLM\...\{57FC4D2E-D9BB-4F1B-A4EA-6037EEDE6E0C}) (Version: 0.66.0 - Microsoft Corporation) Hidden
PowerToys (Preview) x64 (HKLM-x32\...\{3ece69df-0f51-455b-b00e-f4715ded8876}) (Version: 0.66.0 - Microsoft Corporation)
PreMiD (HKU\S-1-5-21-136319151-2595665921-3748062372-1001\...\PreMiD latest) (Version: latest - Timeraa)
Proton VPN (HKLM\...\Proton VPN_is1) (Version: 3.2.11 - Proton AG)
PyCharm Community Edition 2020.3.3 (HKLM-x32\...\PyCharm Community Edition 2020.3.3) (Version: 203.7148.72 - JetBrains s.r.o.)
Python 3.12.3 (64-bit) (HKU\S-1-5-21-136319151-2595665921-3748062372-1001\...\{5ee4d2b6-a5dc-4321-b6bd-3ebc98120a51}) (Version: 3.12.3150.0 - Python Software Foundation)
Python 3.12.3 Add to Path (64-bit) (HKLM\...\{8FB3DEFF-4D86-4889-9B0A-0FE7AE90D7C9}) (Version: 3.12.3150.0 - Python Software Foundation) Hidden
Python 3.12.3 Core Interpreter (64-bit) (HKLM\...\{3519C7D0-70D4-46F5-A0A9-3A115D73E2EC}) (Version: 3.12.3150.0 - Python Software Foundation) Hidden
Python 3.12.3 Development Libraries (64-bit) (HKLM\...\{8EB1F259-1326-4583-B383-F5C3D7C93D7D}) (Version: 3.12.3150.0 - Python Software Foundation) Hidden
Python 3.12.3 Documentation (64-bit) (HKLM\...\{5C195EDE-CE8F-4C5C-A4B8-B60913B9C2B9}) (Version: 3.12.3150.0 - Python Software Foundation) Hidden
Python 3.12.3 Executables (64-bit) (HKLM\...\{474E5879-A9D5-4DF5-9385-ADF7E224CEC7}) (Version: 3.12.3150.0 - Python Software Foundation) Hidden
Python 3.12.3 pip Bootstrap (64-bit) (HKLM\...\{837260D6-3959-452B-A557-666302BEA663}) (Version: 3.12.3150.0 - Python Software Foundation) Hidden
Python 3.12.3 Standard Library (64-bit) (HKLM\...\{A1839EB2-3C30-4BCD-AACF-04F6FF6C90CD}) (Version: 3.12.3150.0 - Python Software Foundation) Hidden
Python 3.12.3 Tcl/Tk Support (64-bit) (HKLM\...\{A2FC8FF0-021A-431C-826E-E4B85D3F064F}) (Version: 3.12.3150.0 - Python Software Foundation) Hidden
Python 3.12.3 Test Suite (64-bit) (HKLM\...\{575FEF7A-71FE-437E-91B0-D3838C1026DA}) (Version: 3.12.3150.0 - Python Software Foundation) Hidden
Python 3.8.6 (64-bit) (HKU\S-1-5-21-136319151-2595665921-3748062372-1001\...\{fef707d7-d438-4dd9-bb0f-5788ee658f4f}) (Version: 3.8.6150.0 - Python Software Foundation)
Python 3.8.6 Core Interpreter (64-bit) (HKLM\...\{DE282FFC-F4AD-416A-8479-F3C72F94C967}) (Version: 3.8.6150.0 - Python Software Foundation) Hidden
Python 3.8.6 Development Libraries (64-bit) (HKLM\...\{59704C10-77A1-4D72-A97B-8FB2A933985B}) (Version: 3.8.6150.0 - Python Software Foundation) Hidden
Python 3.8.6 Documentation (64-bit) (HKLM\...\{558E2EFE-87D5-4E3F-B050-D4DEC548EA02}) (Version: 3.8.6150.0 - Python Software Foundation) Hidden
Python 3.8.6 Executables (64-bit) (HKLM\...\{7F55BD37-4437-47EE-8C82-3103E19DB114}) (Version: 3.8.6150.0 - Python Software Foundation) Hidden
Python 3.8.6 pip Bootstrap (64-bit) (HKLM\...\{28B1EC39-1C9F-482C-BFF7-4D347CE5ADED}) (Version: 3.8.6150.0 - Python Software Foundation) Hidden
Python 3.8.6 Standard Library (64-bit) (HKLM\...\{04BA74DE-13BE-477C-8FE5-19F247C0D555}) (Version: 3.8.6150.0 - Python Software Foundation) Hidden
Python 3.8.6 Tcl/Tk Support (64-bit) (HKLM\...\{79C40B8F-BC99-4FFF-8E1E-F05D246E772C}) (Version: 3.8.6150.0 - Python Software Foundation) Hidden
Python 3.8.6 Test Suite (64-bit) (HKLM\...\{3968C4C7-904D-4571-BC22-1CD8B87549D7}) (Version: 3.8.6150.0 - Python Software Foundation) Hidden
Python 3.8.6 Utility Scripts (64-bit) (HKLM\...\{0A041F8F-4124-46CC-B021-AB8E70A873EC}) (Version: 3.8.6150.0 - Python Software Foundation) Hidden
Python Launcher (HKLM-x32\...\{3B82A91D-DB48-4160-94D2-0B8C6D2B1710}) (Version: 3.8.7205.0 - Python Software Foundation)
RefreshRateService (HKLM-x32\...\{7E5E84CB-B190-4658-A4DC-166779C329D1}) (Version: 2.1.0 - ASUSTeK COMPUTER INC.)
ReMouse Micro (HKU\S-1-5-21-136319151-2595665921-3748062372-1001\...\ReMouse Micro_is1) (Version: Micro V4.0.2 - AutomaticSolution Software)
ReMouse Standard (HKU\S-1-5-21-136319151-2595665921-3748062372-1001\...\ReMouse Standard_is1) (Version: Standard V4.1 - AutomaticSolution Software)
Riot Vanguard (HKLM\...\Riot Vanguard) (Version:  - Riot Games, Inc.)
Roblox Player for marce (HKU\S-1-5-21-136319151-2595665921-3748062372-1001\...\roblox-player) (Version:  - Roblox Corporation)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.92.2003 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.3.3.1 - Rockstar Games)
ROG Live Service (HKLM\...\{2D87BFB6-C184-4A59-9BBE-3E20CE797631}) (Version: 2.4.14.0 - ASUSTek COMPUTER INC.)
RSI Launcher 2.0.1 (HKLM\...\81bfc699-f883-50c7-b674-2483b6baae23) (Version: 2.0.1 - Cloud Imperium Games)
Shotcut (HKLM\...\Shotcut) (Version: 21.12.24 - Meltytech, LLC)
SideQuest 0.10.26 (HKLM\...\4924ec51-3e48-5cb7-b145-2119467094c7) (Version: 0.10.26 - Shane Harris)
Skiller PRO+ (HKLM-x32\...\{54C8FBB3-B992-43CB-8F0A-E26228013F88}) (Version: 1.1.15.7 - Sharkoon Technologies)
Snap Camera 1.19.0 (HKLM-x32\...\{024A6CF5-627D-497F-980B-B9A6EC5C40AF}_is1) (Version: 1.19.0 - Snap Inc.)
STAR WARS™ Battlefront™ II (HKLM-x32\...\{8a882ce0-0c0b-4eb2-850c-28ebadab4f50}) (Version: 1.1.8.16162 - Electronic Arts)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.5.6 - TeamSpeak Systems GmbH)
The Planet Crafter (HKLM-x32\...\1882985557_is1) (Version: v1.105 - GOG.com)
Twitch (HKU\S-1-5-21-136319151-2595665921-3748062372-1001\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 8.0.0 - Twitch Interactive, Inc.)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 29.0 - Ubisoft)
UE4 Prerequisites (x64) (HKLM\...\{F9EC45F9-074A-48BF-92E9-A8CADD56F693}) (Version: 1.0.11.0 - Epic Games, Inc.) Hidden
UE4 Prerequisites (x64) (HKLM-x32\...\{4e242cc8-5e3c-4b08-9d55-dbc62ddd1208}) (Version: 1.0.13.0 - Epic Games, Inc.) Hidden
Uninstall Lunar Client (HKU\S-1-5-21-136319151-2595665921-3748062372-1001\...\1fcec38f-e773-5444-8669-32b8eb41524b) (Version: 3.2.15 - Moonsworth LLC)
Universal CRT Redistributable (HKLM-x32\...\{0460C87B-7F4C-3170-FAC9-B7A6AE5CE4E9}) (Version: 10.0.26624 - Microsoft Corporation) Hidden
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{85C69797-7336-4E83-8D97-32A7C8465A3B}) (Version: 8.94.0.0 - Microsoft Corporation)
uTorrent Web (HKU\S-1-5-21-136319151-2595665921-3748062372-1001\...\utweb) (Version: 1.4.0 - BitTorrent Limited)
ValoPlant (HKU\S-1-5-21-136319151-2595665921-3748062372-1001\...\Overwolf_bcppfmdlbgmoabmdolimfajhghjofinldpaobdgo) (Version: 7.3.1 - Overwolf app)
VALORANT (HKU\S-1-5-21-136319151-2595665921-3748062372-1001\...\Riot Game valorant.live) (Version:  - Riot Games, Inc)
Valorant Tracker (HKU\S-1-5-21-136319151-2595665921-3748062372-1001\...\Overwolf_ipmlnnogholfmdmenfijjifldcpjoecappfccceh) (Version: 1.22.0 - Overwolf app)
VBCABLE, The Virtual Audio Cable (HKLM\...\VB:VBCABLE {87459874-1236-4469}) (Version:  - VB-Audio Software)
vcpp_crt.redist.clickonce (HKLM-x32\...\{76E1A37D-67AC-4D4B-9059-09720DAFD1EB}) (Version: 14.29.30153 - Microsoft Corporation) Hidden
ViGEm Bus Driver (HKLM\...\{966606F3-2745-49E9-BF15-5C3EAA4E9077}) (Version: 1.22.0 - Nefarius Software Solutions e.U.)
Virtual Desktop Service (HKLM\...\{A35FB2FC-0FC6-431C-9D84-ED53AB3F409E}) (Version: 1.18.3 - Virtual Desktop, Inc.)
Virtual Desktop Streamer (HKLM\...\{FD8054F5-459D-4436-9A85-C72A9BF7303C}) (Version: 1.18.8 - Virtual Desktop, Inc.)
Visual Studio Build Tools 2019 (HKLM-x32\...\b04464fb) (Version: 16.11.35 - Microsoft Corporation)
Vortex (HKLM\...\57979c68-f490-55b8-8fed-8b017a5af2fe) (Version: 1.6.14 - Black Tree Gaming Ltd.)
vs_FileTracker_Singleton (HKLM-x32\...\{045598F8-FB49-4F2A-938B-741E537E4C91}) (Version: 16.11.34728 - Microsoft Corporation) Hidden
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1-2) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
Windows-PC-Integritätsprüfung (HKLM\...\{B3956CF3-F6C5-4567-AC38-1FD4432B319C}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Windscribe (HKLM-x32\...\{fa690e90-ddb0-4f0c-b3f1-136c084e5fc7}_is1) (Version: 1.83 Build 20 - Windscribe Limited)
WinRAR 5.91 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.91.0 - win.rar GmbH)
Wuthering Waves (HKLM-x32\...\KRInstall Wuthering Waves Overseas) (Version: 1.5.3.0 - KURO TECHNOLOGY (HONG KONG) CO., LTD.)
XDefiant (HKLM-x32\...\Uplay Install 15657) (Version:  - Ubisoft)
Zoom (HKU\S-1-5-21-136319151-2595665921-3748062372-1001\...\ZoomUMX) (Version: 5.6.4 (799) - Zoom Video Communications, Inc.)

Packages:
=========

AMD Radeon Software -> C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.21.20025.0_x64__0a9344xs7nr4m [2022-02-14] (Advanced Micro Devices Inc.) [Startup Task]
AMD Radeon™ Settings Lite -> C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.59462344778C5_10.19.20004.0_x64__0a9344xs7nr4m [2021-06-29] (Advanced Micro Devices Inc.)
ARMOURY CRATE -> C:\Program Files\WindowsApps\B9ECED6F.ArmouryCrate_5.9.4.0_x64__qmba6cd70vzyy [2024-06-28] (ASUSTeK COMPUTER INC.)
Debian -> C:\Program Files\WindowsApps\TheDebianProject.DebianGNULinux_1.16.0.0_x64__76v4gfsz19hv4 [2024-03-27] (The Debian Project)
Desktop Live Wallpapers -> C:\Program Files\WindowsApps\48405AmbientSoftware.LiveDesktopWallpapers_2.1.3.0_x64__agy8jafheqhng [2024-07-22] (Chan Software Solutions) [Startup Task]
Disney+ -> C:\Program Files\WindowsApps\Disney.37853FC22B2CE_2024.3.211.0_neutral__6rarf9sa4v8jt [2024-06-24] (Disney)
DTS Headphone:X v1 -> C:\Program Files\WindowsApps\DTSInc.DTSHeadphoneXv1_2.0.0.0_x64__t5j2fzbtdg37r [2020-08-11] (DTS, Inc.)
Forager -> C:\Program Files\WindowsApps\HumbleBundle.ForagerWin10_1.0.1.2_x64__q2mcdwmzx4qja [2021-11-28] (Humble Bundle)
GlideX -> C:\Program Files\WindowsApps\B9ECED6F.Glidex_3.3.2.0_x64__qmba6cd70vzyy [2024-07-22] (ASUSTeK COMPUTER INC.)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_155.1.1088.0_x64__v10z8vjag6ke6 [2024-08-07] (HP Inc.)
Lively Wallpaper -> C:\Program Files\WindowsApps\12030rocksdanister.LivelyWallpaper_1.0.144.0_x64__97hta09mmv6hy [2024-06-09] (rocksdanister) [Startup Task]
Media Engine-Add-On für Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2022-08-05] (Microsoft Corporation)
Microsoft Defender -> C:\Program Files\WindowsApps\Microsoft.6365217CE6EB4_102.2407.18001.0_x64__8wekyb3d8bbwe [2024-08-07] (Microsoft Corporation) [Startup Task]
Microsoft Minesweeper -> C:\Program Files\WindowsApps\Microsoft.MicrosoftMinesweeper_4.5.4011.0_x64__8wekyb3d8bbwe [2024-04-27] (Microsoft Studios)
Microsoft Teams -> C:\Program Files\WindowsApps\MSTeams_24180.205.2980.1757_x64__8wekyb3d8bbwe [2024-08-04] (Microsoft) [Startup Task]
Minecraft for Windows -> C:\Program Files\WindowsApps\Microsoft.MinecraftUWP_1.21.202.0_x64__8wekyb3d8bbwe [2024-07-22] (Microsoft Studios)
Minecraft Launcher -> C:\Program Files\WindowsApps\Microsoft.4297127D64EC6_1.7.2.0_x64__8wekyb3d8bbwe [2024-06-18] (Microsoft Studios)
MyASUS -> C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.16.0_x64__qmba6cd70vzyy [2024-07-01] (ASUSTeK COMPUTER INC.)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.966.0_x64__56jybvy8sckqj [2024-07-14] (NVIDIA Corp.)
Prime Video for Windows -> C:\Program Files\WindowsApps\AmazonVideo.PrimeVideo_1.0.158.0_x64__pwbj9vvecjh7j [2024-07-04] (Amazon Development Centre (London) Ltd)
Python 3.10 -> C:\Program Files\WindowsApps\PythonSoftwareFoundation.Python.3.10_3.10.3056.0_x64__qbz5n2kfra8p0 [2023-04-08] (Python Software Foundation)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.2.169.0_x64__dt26b99r8h8gj [2020-08-11] (Realtek Semiconductor Corp)
S Note -> C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCO.LTD.5297316B03CEE_5.2.3.0_x64__3c1yjt4zspk6g [2022-08-05] (Samsung Electronics Co. Ltd.)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.243.420.0_x64__zpdnekdrzrea0 [2024-08-04] (Spotify AB) [Startup Task]
Websuche von Microsoft Bing -> C:\Program Files\WindowsApps\Microsoft.BingSearch_1.0.95.0_x64__8wekyb3d8bbwe [2024-07-26] (Microsoft Corporation)
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2429.10.0_x64__cv1g1gvanyjgm [2024-08-04] (WhatsApp Inc.) [Startup Task]
XING -> C:\Program Files\WindowsApps\XINGAG.XING_4.0.9.0_x86__xpfg3f7e9an52 [2024-03-25] (New Work SE)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-136319151-2595665921-3748062372-1001_Classes\CLSID\{04d5c66b-d515-61ec-258f-a409f9443e98}\localserver32 -> "C:\Program Files\Proton\VPN\v3.0.7\ProtonVPN.exe" -ToastActivated => Keine Datei
CustomCLSID: HKU\S-1-5-21-136319151-2595665921-3748062372-1001_Classes\CLSID\{10144713-1526-46C9-88DA-1FB52807A9FF}\InprocServer32 -> C:\Program Files\PowerToys\modules\FileExplorerPreview\PowerToys.SvgThumbnailProviderCpp.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-136319151-2595665921-3748062372-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\marce\AppData\Local\Microsoft\TeamsMeetingAdd-in\1.24.14501\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-136319151-2595665921-3748062372-1001_Classes\CLSID\{318cc681-4136-d2bd-6204-14d67a05b724}\localserver32 -> "C:\Program Files\Proton\VPN\v3.2.1\ProtonVPN.exe" -ToastActivated => Keine Datei
CustomCLSID: HKU\S-1-5-21-136319151-2595665921-3748062372-1001_Classes\CLSID\{3f5d0051-61b8-0f45-6166-996cfb4f914f}\localserver32 -> C:\Program Files\PowerToys\modules\launcher\PowerToys.PowerLauncher.exe (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-136319151-2595665921-3748062372-1001_Classes\CLSID\{50726f74-6f6e-2e56-504e-000000000000}\localserver32 -> C:\Program Files\Proton\VPN\v3.2.11\ProtonVPN.exe (Proton AG -> )
CustomCLSID: HKU\S-1-5-21-136319151-2595665921-3748062372-1001_Classes\CLSID\{60789D87-9C3C-44AF-B18C-3DE2C2820ED3}\InprocServer32 -> C:\Program Files\PowerToys\modules\FileExplorerPreview\PowerToys.MarkdownPreviewHandlerCpp.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-136319151-2595665921-3748062372-1001_Classes\CLSID\{77257004-6F25-4521-B602-50ECC6EC62A6}\InprocServer32 -> C:\Program Files\PowerToys\modules\FileExplorerPreview\PowerToys.StlThumbnailProviderCpp.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-136319151-2595665921-3748062372-1001_Classes\CLSID\{89b2b650-c4dd-d68b-46e7-3176f1973c8b}\localserver32 -> "C:\Program Files\Voicemod Desktop\VoicemodDesktop.exe" -ToastActivated => Keine Datei
CustomCLSID: HKU\S-1-5-21-136319151-2595665921-3748062372-1001_Classes\CLSID\{A0257634-8812-4CE8-AF11-FA69ACAEAFAE}\InprocServer32 -> C:\Program Files\PowerToys\modules\FileExplorerPreview\PowerToys.GcodePreviewHandlerCpp.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-136319151-2595665921-3748062372-1001_Classes\CLSID\{a04f95c0-6183-7419-2316-954e331d0cbc}\localserver32 -> "C:\Program Files\Proton\VPN\v3.2.2\ProtonVPN.exe" -ToastActivated => Keine Datei
CustomCLSID: HKU\S-1-5-21-136319151-2595665921-3748062372-1001_Classes\CLSID\{a126d52d-7bdc-c01a-fb69-c574657b2498}\localserver32 -> "C:\Program Files\Proton\VPN\v3.1.1\ProtonVPN.exe" -ToastActivated => Keine Datei
CustomCLSID: HKU\S-1-5-21-136319151-2595665921-3748062372-1001_Classes\CLSID\{C52B9871-E5E9-41FD-B84D-C5ACADBEC7AE}\InprocServer32 -> C:\Users\marce\Downloads\Locale.Emulator.2.5.0.1\LEContextMenuHandler.DLL (Paddy Xu) [Datei ist nicht signiert] [Datei wird verwendet]
CustomCLSID: HKU\S-1-5-21-136319151-2595665921-3748062372-1001_Classes\CLSID\{d1b22d3d-8585-53a6-acb3-0e803c7e8d2a}\localserver32 -> C:\Users\marce\AppData\Local\Microsoft\Teams\current\Teams.exe (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-136319151-2595665921-3748062372-1001_Classes\CLSID\{D8034CFA-F34B-41FE-AD45-62FCBB52A6DA}\InprocServer32 -> C:\Program Files\PowerToys\modules\FileExplorerPreview\PowerToys.MonacoPreviewHandlerCpp.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-136319151-2595665921-3748062372-1001_Classes\CLSID\{d936918b-9c4b-555e-074a-c79314be04e1}\localserver32 -> "C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.exe" -ToastActivated => Keine Datei
CustomCLSID: HKU\S-1-5-21-136319151-2595665921-3748062372-1001_Classes\CLSID\{F2847CBE-CD03-4C83-A359-1A8052C1B9D5}\InprocServer32 -> C:\Program Files\PowerToys\modules\FileExplorerPreview\PowerToys.GcodeThumbnailProviderCpp.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-136319151-2595665921-3748062372-1001_Classes\CLSID\{FCDD4EED-41AA-492F-8A84-31A1546226E0}\InprocServer32 -> C:\Program Files\PowerToys\modules\FileExplorerPreview\PowerToys.SvgPreviewHandlerCpp.dll (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [			IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll [2021-03-02] (Tonec Inc. -> Tonec FZE)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2024-06-27] (SIA AVB Disc Soft -> Disc Soft FZE LLC)
ContextMenuHandlers2: [FileLocksmithExt] -> {84D68575-E186-46AD-B0CB-BAEB45EE29C0} => C:\Program Files\PowerToys\modules\FileLocksmith\PowerToys.FileLocksmithExt.dll [2023-01-04] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2024-06-27] (SIA AVB Disc Soft -> Disc Soft FZE LLC)
ContextMenuHandlers3: [FileLocksmithExt] -> {84D68575-E186-46AD-B0CB-BAEB45EE29C0} => C:\Program Files\PowerToys\modules\FileLocksmith\PowerToys.FileLocksmithExt.dll [2023-01-04] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2024-08-14] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers3: [PowerRenameExt] -> {0440049F-D1DC-4E46-B27B-98393D79486B} => C:\Program Files\PowerToys\modules\PowerRename\PowerToys.PowerRenameExt.dll [2023-01-04] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_6e87d9907e09ff6b\nvshext.dll [2024-06-25] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2024-08-14] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Nicht auf der Ausnahmeliste) ====================

==================== Verknüpfungen & WMI ========================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

Shortcut: C:\Users\marce\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Robocode\Robocode.lnk -> C:\robocode\robocode.bat ()

==================== Geladene Module (Nicht auf der Ausnahmeliste) =============

2023-09-22 17:51 - 2023-07-19 19:31 - 000322048 _____ () [Datei ist nicht signiert] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\resources\app.asar.unpacked\node_modules\ac_node_addon\build\Release\ac_node_addon.node
2023-09-22 17:51 - 2023-04-14 14:18 - 000319488 _____ () [Datei ist nicht signiert] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\resources\app.asar.unpacked\node_modules\sharp\build\Release\sharp-win32-ia32.node
2023-09-22 17:51 - 2023-04-26 16:06 - 000541696 _____ () [Datei ist nicht signiert] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\resources\app.asar.unpacked\node_modules\usb\prebuilds\win32-ia32\node.napi.node
2020-12-02 18:53 - 2020-12-02 18:53 - 001282048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\LIBEAY32.dll
2020-12-02 18:53 - 2020-12-02 18:53 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\ssleay32.dll
2020-12-02 18:53 - 2020-12-02 18:53 - 001611264 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2023-03-16 00:24 - 2020-12-02 18:53 - 005487104 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Core.dll
2023-03-16 00:24 - 2020-12-02 18:53 - 005841920 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Gui.dll
2023-03-16 00:24 - 2020-12-02 18:53 - 001179136 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Network.dll
2023-03-16 00:24 - 2020-12-02 18:53 - 000146432 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5WebSockets.dll
2023-03-16 00:24 - 2020-12-02 18:53 - 005089792 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2023-03-16 00:24 - 2020-12-02 18:53 - 000184832 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Xml.dll
2019-04-12 19:59 - 2019-04-12 19:59 - 000427520 _____ (TODO: <Company name>) [Datei ist nicht signiert] C:\Program Files\ASUS\Aac_Keyboard\AacKbHal_x86.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)

AlternateDataStreams: C:\WINDOWS\tracing:? [16]
AlternateDataStreams: C:\ProgramData\DisplaySessionContainer1.log:F107EE40EF [5154]
AlternateDataStreams: C:\ProgramData\DisplaySessionContainer1.log_backup1:2DD1EC5C91 [5154]
AlternateDataStreams: C:\ProgramData\DisplaySessionContainer10.log:CCC93B07B0 [5154]
AlternateDataStreams: C:\ProgramData\DisplaySessionContainer10.log_backup1:AD433BF298 [5154]
AlternateDataStreams: C:\ProgramData\DisplaySessionContainer11.log:72C8986B20 [5154]
AlternateDataStreams: C:\ProgramData\DisplaySessionContainer11.log_backup1:97A90964FA [5154]
AlternateDataStreams: C:\ProgramData\DisplaySessionContainer12.log:C40F6B9209 [5154]
AlternateDataStreams: C:\ProgramData\DisplaySessionContainer12.log_backup1:7CC29836A6 [5154]
AlternateDataStreams: C:\ProgramData\DisplaySessionContainer13.log:AE3C879266 [5154]
AlternateDataStreams: C:\ProgramData\DisplaySessionContainer13.log_backup1:AF8AA3CDC1 [5154]
AlternateDataStreams: C:\ProgramData\DisplaySessionContainer14.log:DE1448F4D7 [5154]
AlternateDataStreams: C:\ProgramData\DisplaySessionContainer14.log_backup1:D61270D3FD [5154]
AlternateDataStreams: C:\ProgramData\DisplaySessionContainer15.log:16B67B15CB [5154]
AlternateDataStreams: C:\ProgramData\DisplaySessionContainer15.log_backup1:1F4CC1D50C [5154]
AlternateDataStreams: C:\ProgramData\DisplaySessionContainer16.log:2B192A174C [5154]
AlternateDataStreams: C:\ProgramData\DisplaySessionContainer16.log_backup1:E86CB8880A [5154]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\desktop.ini:B1DA6C571C [5154]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Gameforge Client.url:F2CF60045E [5154]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\HidHide Configuration Client.lnk:B7B9C8BD2D [5154]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk:A1B76439FE [5154]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk:09A0A90EF3 [5154]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Aura Wallpaper Creator.lnk:7B7FFE79BA [5154]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Badlion Client.lnk:8BD81608B2 [5154]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\desktop.ini:41964AA945 [5154]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk:BE32D07BC5 [5154]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk:B96E9B8455 [5154]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Feather Launcher.lnk:FBDA9CAD7D [5154]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.10.34.lnk:968EA13E5A [4298]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk:60EC9648C0 [10]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook (classic).lnk:5465085A2F [10]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Uninstall Oculus.lnk:3E1FCB1CF0 [5154]
AlternateDataStreams: C:\Users\marce\Anwendungsdaten:374c9b336db4fa9522b72c58dcd0c3f9 [394]
AlternateDataStreams: C:\Users\marce\Anwendungsdaten:48e63d4de0a63256000858a7c61c87df [394]
AlternateDataStreams: C:\Users\marce\Anwendungsdaten:7eb204cd5958b73ad122d49fc978e003 [394]
AlternateDataStreams: C:\Users\marce\Downloads\adwcleaner.exe:MBAM.Zone.Identifier [141]
AlternateDataStreams: C:\Users\marce\AppData\Roaming:374c9b336db4fa9522b72c58dcd0c3f9 [394]
AlternateDataStreams: C:\Users\marce\AppData\Roaming:48e63d4de0a63256000858a7c61c87df [394]
AlternateDataStreams: C:\Users\marce\AppData\Roaming:7eb204cd5958b73ad122d49fc978e003 [394]
AlternateDataStreams: C:\Users\marce\AppData\Local\Temp:$DATA​ [16]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [6346]

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)

HKU\S-1-5-21-136319151-2595665921-3748062372-1001\Software\Classes\regfile:  <==== ACHTUNG
HKU\S-1-5-21-136319151-2595665921-3748062372-1001\Software\Classes\.reg:  =>  <==== ACHTUNG
HKU\S-1-5-21-136319151-2595665921-3748062372-1001\Software\Classes\.bat:  =>  <==== ACHTUNG
HKU\S-1-5-21-136319151-2595665921-3748062372-1001\Software\Classes\.cmd:  =>  <==== ACHTUNG

==================== Internet Explorer (Nicht auf der Ausnahmeliste) ==========

SearchScopes: HKU\S-1-5-21-136319151-2595665921-3748062372-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-136319151-2595665921-3748062372-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2021-11-08] (Tonec Inc. -> Internet Download Manager, Tonec Inc.)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre-1.8\bin\ssv.dll [2023-03-17] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre-1.8\bin\jp2ssv.dll [2023-03-17] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2021-11-08] (Tonec Inc. -> Internet Download Manager, Tonec Inc.)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2024-04-05] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-08-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-08-07] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-08-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-08-07] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-08-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-08-07] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-08-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-08-07] (Microsoft Corporation -> Microsoft Corporation)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)

IE trusted site: HKU\S-1-5-21-136319151-2595665921-3748062372-1001\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-136319151-2595665921-3748062372-1001\...\sharepoint.com -> hxxps://*****.sharepoint.com

==================== Hosts Inhalt: =========================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2024-06-17 17:04 - 2024-08-13 21:02 - 000000147 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost

==================== Andere Bereiche ===========================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Python312\Scripts\;C:\Python312\;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Program Files\Oculus\Support\oculus-runtime;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files\dotnet\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files\Airshipper\;C:\Program Files\nodejs\;C:\ProgramData\chocolatey\bin;
HKU\S-1-5-21-136319151-2595665921-3748062372-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\marce\Downloads\Ranni WQHD.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
 ist aktiviert.

Network Binding:
=============
WLAN: Realtek 8821CE Wireless LAN 802.11ac PCI-E NIC -> rtwlane.sys
Ethernet 2: Windscribe VPN -> tapwindscribe0901.sys
LAN-Verbindung 2: WireGuard Tunnel -> wireguard.sys
Bluetooth-Netzwerkverbindung: Bluetooth Device (Personal Area Network) -> bthpan.sys
Ethernet: Realtek PCIe GbE Family Controller -> rt640x64.sys

vms_vsf: Erweiterungsfilter für virtuellen Hyper-V-Switch
vms_vsp: Extension-Protokoll für virtuellen Hyper-V-Switch

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

HKLM\...\StartupApproved\Run32: => "GaomonTablet"
HKLM\...\StartupApproved\Run32: => "Skiller PRO+"
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKU\S-1-5-21-136319151-2595665921-3748062372-1001\...\StartupApproved\StartupFolder: => "Twitch.lnk"
HKU\S-1-5-21-136319151-2595665921-3748062372-1001\...\StartupApproved\StartupFolder: => "hide.me VPN.lnk"
HKU\S-1-5-21-136319151-2595665921-3748062372-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-136319151-2595665921-3748062372-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-136319151-2595665921-3748062372-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-136319151-2595665921-3748062372-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-136319151-2595665921-3748062372-1001\...\StartupApproved\Run: => "PreMiD"
HKU\S-1-5-21-136319151-2595665921-3748062372-1001\...\StartupApproved\Run: => "LGHUB"
HKU\S-1-5-21-136319151-2595665921-3748062372-1001\...\StartupApproved\Run: => "Overwolf"
HKU\S-1-5-21-136319151-2595665921-3748062372-1001\...\StartupApproved\Run: => "utweb"
HKU\S-1-5-21-136319151-2595665921-3748062372-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-136319151-2595665921-3748062372-1001\...\StartupApproved\Run: => "DiscordCanary"
HKU\S-1-5-21-136319151-2595665921-3748062372-1001\...\StartupApproved\Run: => "Opera GX Browser Assistant"
HKU\S-1-5-21-136319151-2595665921-3748062372-1001\...\StartupApproved\Run: => "Opera GX Stable"
HKU\S-1-5-21-136319151-2595665921-3748062372-1001\...\StartupApproved\Run: => "CyberGhost"
HKU\S-1-5-21-136319151-2595665921-3748062372-1001\...\StartupApproved\Run: => "RiotClient"
HKU\S-1-5-21-136319151-2595665921-3748062372-1001\...\StartupApproved\Run: => "EADM"
HKU\S-1-5-21-136319151-2595665921-3748062372-1001\...\StartupApproved\Run: => "electron.app.BlueStacks Services"
HKU\S-1-5-21-136319151-2595665921-3748062372-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_6A7EFD9FB16063B23C21C72578A008BC"
HKU\S-1-5-21-136319151-2595665921-3748062372-1001\...\StartupApproved\Run: => "Lunar Client"
HKU\S-1-5-21-136319151-2595665921-3748062372-1001\...\StartupApproved\Run: => "com.squirrel.Teams.Teams"
HKU\S-1-5-21-136319151-2595665921-3748062372-1001\...\StartupApproved\Run: => "GogGalaxy"
HKU\S-1-5-21-136319151-2595665921-3748062372-1001\...\StartupApproved\Run: => "IDMan"
HKU\S-1-5-21-136319151-2595665921-3748062372-1001\...\StartupApproved\Run: => "nefarius_HidHide_Updater"
HKU\S-1-5-21-136319151-2595665921-3748062372-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [{9FF11B8D-EAF4-494B-A998-DD5CDEF18076}] => (Allow) C:\Program Files\ASUS\ARMOURY CRATE Service\MobilePlugin\AutoConnectHelper.exe (ASUSTeK COMPUTER INC. -> )
FirewallRules: [UDP Query User{DE3D4538-A099-4BB3-9ED2-9F2197F106FB}C:\program files (x86)\minecraft launcher\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe
FirewallRules: [TCP Query User{1D6B9AD9-417A-4EBB-8F3A-2BE069FF35D1}C:\program files (x86)\minecraft launcher\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe
FirewallRules: [UDP Query User{2BED023B-2B9D-4E54-89E9-18555148FAB1}C:\program files (x86)\windscribe\wsappcontrol.exe] => (Allow) C:\program files (x86)\windscribe\wsappcontrol.exe (Windscribe Limited -> Windscribe Limited)
FirewallRules: [TCP Query User{673F2368-4F5D-46B1-8C87-F54E62E16349}C:\program files (x86)\windscribe\wsappcontrol.exe] => (Allow) C:\program files (x86)\windscribe\wsappcontrol.exe (Windscribe Limited -> Windscribe Limited)
FirewallRules: [UDP Query User{4345900E-8839-4B6A-AB45-554A02848519}C:\program files\lghub\lghub_agent.exe] => (Block) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [TCP Query User{90291B92-C645-43EA-A818-78100A854C8F}C:\program files\lghub\lghub_agent.exe] => (Block) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [UDP Query User{0F10CBDC-FCF0-4CCB-9971-A0FE02242477}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [TCP Query User{33336089-AC5B-4E08-8047-786A8194A92C}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [{9F1C067B-7FB5-4630-971B-5C5E0214CB2D}] => (Allow) C:\Program Files\Easeware\DriverEasy\DriverEasy.exe (Easeware Technology Limited -> Easeware)
FirewallRules: [UDP Query User{7956BB01-0C55-4E75-9AD3-994BF1093C2F}C:\program files\jetbrains\pycharm community edition 2020.3.3\bin\pycharm64.exe] => (Allow) C:\program files\jetbrains\pycharm community edition 2020.3.3\bin\pycharm64.exe (JetBrains s.r.o. -> JetBrains s.r.o.)
FirewallRules: [TCP Query User{90E831AB-BB58-46CB-BB1F-FCD9B305AE18}C:\program files\jetbrains\pycharm community edition 2020.3.3\bin\pycharm64.exe] => (Allow) C:\program files\jetbrains\pycharm community edition 2020.3.3\bin\pycharm64.exe (JetBrains s.r.o. -> JetBrains s.r.o.)
FirewallRules: [UDP Query User{E2A29D91-33AD-4419-8DF9-4981FC45FE59}C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe
FirewallRules: [TCP Query User{1A658EB4-CC7A-48EC-9D48-2B4F1B6BB4AD}C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe
FirewallRules: [{9BF0EC8E-F532-4778-ABB5-C065736A5799}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtourscfg.exe (Valve Corp. -> )
FirewallRules: [{08DAE5F1-B0B4-4E38-AF75-847D01E7EDB6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtourscfg.exe (Valve Corp. -> )
FirewallRules: [UDP Query User{D45F7C45-5D4E-48CB-83E9-602EBE312880}C:\program files (x86)\steam\steamapps\common\steamvr\tools\steamvr_environments\game\bin\win64\steamtours.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\steamvr\tools\steamvr_environments\game\bin\win64\steamtours.exe (Valve Corp. -> )
FirewallRules: [TCP Query User{534C4B39-C730-4438-85C8-7CC80AA1FFF7}C:\program files (x86)\steam\steamapps\common\steamvr\tools\steamvr_environments\game\bin\win64\steamtours.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\steamvr\tools\steamvr_environments\game\bin\win64\steamtours.exe (Valve Corp. -> )
FirewallRules: [{BA2908A1-6EDB-4CAA-9512-C7113969E73C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\bin\win32\vrstartup.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{DFD3C111-EBE5-44DC-AB4B-4DD92471D8FF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\bin\win32\vrstartup.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{35796799-D902-419E-99BD-7443E6ECB68B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\VRChat\VRChat.exe () [Datei ist nicht signiert]
FirewallRules: [{AFA08714-2D04-4F65-ADDC-5E85A0B23D7D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\VRChat\VRChat.exe () [Datei ist nicht signiert]
FirewallRules: [{0C1225FC-BDA3-4544-B326-F6D48BA1685A}] => (Allow) C:\Program Files\Virtual Desktop Streamer\VirtualDesktop.Streamer.exe (Virtual Desktop, Inc. -> Virtual Desktop, Inc.)
FirewallRules: [{5FEABA64-BECE-40A0-B4DD-4A59503806DF}] => (Allow) C:\Program Files\Oculus\Software\Software\vrchat-vrchat\install.exe => Keine Datei
FirewallRules: [{360788C1-3242-44FD-B960-224F5ED89852}] => (Allow) C:\Program Files\Oculus\Software\Software\vrchat-vrchat\install.exe => Keine Datei
FirewallRules: [{47C12A8A-015B-48CD-B9F1-D404B8BA0E30}] => (Allow) C:\Program Files\Oculus\Software\Software\vrchat-vrchat\UnityCrashHandler64.exe => Keine Datei
FirewallRules: [{52AE056C-2A1E-499B-B7CC-0A2839148672}] => (Allow) C:\Program Files\Oculus\Software\Software\vrchat-vrchat\UnityCrashHandler64.exe => Keine Datei
FirewallRules: [{009EA0BC-0816-4F77-BFCF-9B815285BD4E}] => (Allow) C:\Program Files\Oculus\Software\Software\vrchat-vrchat\VRChat.exe => Keine Datei
FirewallRules: [{DEB5B8BD-62EA-41F5-80ED-A093F1239BD8}] => (Allow) C:\Program Files\Oculus\Software\Software\vrchat-vrchat\VRChat.exe => Keine Datei
FirewallRules: [UDP Query User{C189AD46-F08E-4A10-BDC5-F1E2021AC99E}C:\users\marce\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\marce\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{6FD651E0-F85E-4DF0-BB5A-87088A660EFA}C:\users\marce\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\marce\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{F2914919-E115-4C58-9C16-40C1B38AB647}C:\users\marce\appdata\roaming\premid\premid.exe] => (Allow) C:\users\marce\appdata\roaming\premid\premid.exe (GitHub, Inc.) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{64C66572-364F-4815-B67B-D4F6EEBFBF13}C:\users\marce\appdata\roaming\premid\premid.exe] => (Allow) C:\users\marce\appdata\roaming\premid\premid.exe (GitHub, Inc.) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{E05D2FED-E658-4392-8565-A7856AD658AD}C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe
FirewallRules: [TCP Query User{C241846A-9654-4F50-94C7-DD03D4C69B61}C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe
FirewallRules: [{7EE509D7-535E-4F5C-B404-566A8EBF53CA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Puzzle Together\Puzzle Together.exe () [Datei ist nicht signiert]
FirewallRules: [{4A3BD37E-B665-41C7-BBBC-9D70DB5498E7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Puzzle Together\Puzzle Together.exe () [Datei ist nicht signiert]
FirewallRules: [{58157501-5D20-43B7-856E-64726A116B71}] => (Allow) C:\Users\marce\AppData\Local\Warframe\Downloaded\Public\Tools\RemoteCrashSender.exe => Keine Datei
FirewallRules: [{C4646250-DC1C-4732-B446-FC41A5D4BD0C}] => (Allow) C:\Users\marce\AppData\Local\Warframe\Downloaded\Public\Warframe.x64.exe => Keine Datei
FirewallRules: [{3B7A3AC0-0B05-46C2-8E47-1015E519EADE}] => (Allow) C:\Users\marce\AppData\Local\Warframe\Downloaded\Public\Warframe.x64.exe => Keine Datei
FirewallRules: [{D0C51D46-1B9F-4CD5-9F0D-337A1D3267D6}] => (Allow) C:\Users\marce\AppData\Local\Warframe\Downloaded\Public\Tools\Launcher.exe => Keine Datei
FirewallRules: [{C3AFDDD1-5C5A-4B51-A2A9-A37D0DB2DEE6}] => (Allow) C:\Users\marce\AppData\Local\Warframe\Downloaded\Public\Tools\RemoteCrashSender.exe => Keine Datei
FirewallRules: [{83B57795-E26B-4EA0-9696-6C9B63B9C755}] => (Allow) C:\Users\marce\AppData\Local\Warframe\Downloaded\Public\Warframe.x64.exe => Keine Datei
FirewallRules: [{6B2ADAAA-47B4-4113-9162-FAF864223778}] => (Allow) C:\Users\marce\AppData\Local\Warframe\Downloaded\Public\Warframe.x64.exe => Keine Datei
FirewallRules: [{104FCD71-8787-4C3D-8CE3-FD681DECF9C6}] => (Allow) C:\Users\marce\AppData\Local\Warframe\Downloaded\Public\Tools\Launcher.exe => Keine Datei
FirewallRules: [UDP Query User{56CDA3E4-7D04-493B-9748-CBBE573DC8D3}C:\users\marce\appdata\roaming\premid\premid.exe] => (Allow) C:\users\marce\appdata\roaming\premid\premid.exe (GitHub, Inc.) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{F4809714-46E1-4D4A-962F-CB5B435F003B}C:\users\marce\appdata\roaming\premid\premid.exe] => (Allow) C:\users\marce\appdata\roaming\premid\premid.exe (GitHub, Inc.) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{1BEA456C-81D4-41E9-B6F4-6DB8C2C346DA}C:\programdata\badlionclient\jre1.8.0_202\bin\javaw.exe] => (Allow) C:\programdata\badlionclient\jre1.8.0_202\bin\javaw.exe
FirewallRules: [TCP Query User{A9D024D0-D8AD-4BF6-A202-B2E9C927E28A}C:\programdata\badlionclient\jre1.8.0_202\bin\javaw.exe] => (Allow) C:\programdata\badlionclient\jre1.8.0_202\bin\javaw.exe
FirewallRules: [{ADFD9BA1-5681-4990-AD1C-F3359C248B21}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{C2410F9A-6A6D-484F-BCE7-97E469EBB5C0}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{16AD3DA3-4C3B-41EC-8E2A-21DE76AD99A2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Terraria\Terraria.exe (Re-Logic) [Datei ist nicht signiert]
FirewallRules: [{B9675C85-16F9-47C2-B69A-B7809DC59701}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Terraria\Terraria.exe (Re-Logic) [Datei ist nicht signiert]
FirewallRules: [{E930BBB0-832F-47F8-BE7B-A4AF5D12DE29}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Keine Datei
FirewallRules: [{8A14C270-B7DE-4F9A-BE5B-F463C0472AE5}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Keine Datei
FirewallRules: [{631CA3D7-99D3-4992-8B70-16CE0DB1A9BD}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{B7CB9AFA-042C-4625-82CA-150769521B8E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [TCP Query User{519FFF67-22B4-40B2-9AE1-C3EC26B8945C}C:\program files (x86)\windscribe\wsappcontrol.exe] => (Allow) C:\program files (x86)\windscribe\wsappcontrol.exe (Windscribe Limited -> Windscribe Limited)
FirewallRules: [UDP Query User{934EDE3A-982D-4A69-A69A-C944BAF35087}C:\program files (x86)\windscribe\wsappcontrol.exe] => (Allow) C:\program files (x86)\windscribe\wsappcontrol.exe (Windscribe Limited -> Windscribe Limited)
FirewallRules: [{2EED9C4A-B9F3-46EE-9443-91463A83B0A0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BloonsTD6\BloonsTD6.exe () [Datei ist nicht signiert]
FirewallRules: [{C00D2B96-DF0F-4CFB-8FFB-51613AC351B8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BloonsTD6\BloonsTD6.exe () [Datei ist nicht signiert]
FirewallRules: [{F7FCF4E1-214F-4BED-AFD6-DC8C8B8F7B42}] => (Allow) C:\Users\marce\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{9613191E-0D23-469D-A4A8-0E93A28B5990}] => (Allow) C:\Users\marce\AppData\Roaming\Zoom\bin\airhost.exe => Keine Datei
FirewallRules: [{E17663BF-5B41-40F0-B268-7585B8F56A12}] => (Allow) C:\Users\marce\AppData\Roaming\Zoom\bin\airhost.exe => Keine Datei
FirewallRules: [TCP Query User{31FF4ABC-8EE5-466E-B9B6-22DDA8F6F3A5}C:\users\marce\curseforge\minecraft\install\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Allow) C:\users\marce\curseforge\minecraft\install\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe
FirewallRules: [UDP Query User{7A3999B3-4D20-4406-A53B-26A05FCE0E6E}C:\users\marce\curseforge\minecraft\install\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Allow) C:\users\marce\curseforge\minecraft\install\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe
FirewallRules: [TCP Query User{69A24133-C8F6-4AA7-85A0-65F6B9038F07}C:\program files\epic games\gtav\gta5.exe] => (Allow) C:\program files\epic games\gtav\gta5.exe => Keine Datei
FirewallRules: [UDP Query User{B5EAAA4D-C4F1-424D-8AE8-A3F28CCDB349}C:\program files\epic games\gtav\gta5.exe] => (Allow) C:\program files\epic games\gtav\gta5.exe => Keine Datei
FirewallRules: [{CDE9592B-D16A-4AE7-9EE5-BD31A9ACDA28}] => (Allow) C:\Program Files\Oculus\Software\Software\vrchat-vrchat\install.exe => Keine Datei
FirewallRules: [{6F3FD66F-8011-4188-829D-0C57B025F24C}] => (Allow) C:\Program Files\Oculus\Software\Software\vrchat-vrchat\install.exe => Keine Datei
FirewallRules: [{3A517214-54AA-4960-ACD5-6A04B583691A}] => (Allow) C:\Program Files\Oculus\Software\Software\vrchat-vrchat\launch.exe => Keine Datei
FirewallRules: [{7F933D26-4164-46CA-9436-2ACEBA1F8D94}] => (Allow) C:\Program Files\Oculus\Software\Software\vrchat-vrchat\launch.exe => Keine Datei
FirewallRules: [{70AB39E4-DB34-455A-B0E3-16E6464F302D}] => (Allow) C:\Program Files\Oculus\Software\Software\vrchat-vrchat\UnityCrashHandler64.exe => Keine Datei
FirewallRules: [{F309A6FA-188B-4018-B9D9-94CB99DA1E86}] => (Allow) C:\Program Files\Oculus\Software\Software\vrchat-vrchat\UnityCrashHandler64.exe => Keine Datei
FirewallRules: [{180AF186-463B-4DAB-A0E8-6FEBD138A21B}] => (Allow) C:\Program Files\Oculus\Software\Software\vrchat-vrchat\VRChat.exe => Keine Datei
FirewallRules: [{841E31C4-2DDE-4904-B4A0-5D3D75252504}] => (Allow) C:\Program Files\Oculus\Software\Software\vrchat-vrchat\VRChat.exe => Keine Datei
FirewallRules: [{A1648C1F-1FA5-410C-AA4C-D7D2C1F5305E}] => (Allow) C:\Users\marce\AppData\Roaming\uTorrent Web\utweb.exe => Keine Datei
FirewallRules: [{BBC72E24-3E1D-4DE5-B696-7570F0AC5F64}] => (Allow) C:\Users\marce\AppData\Roaming\uTorrent Web\utweb.exe => Keine Datei
FirewallRules: [TCP Query User{BAE4BB0E-E6AF-4D05-B3C1-035DA0FB911E}C:\users\marce\appdata\roaming\utorrent web\utweb.exe] => (Block) C:\users\marce\appdata\roaming\utorrent web\utweb.exe => Keine Datei

Thema geschlossen

Themen zu Alle Konten gehackt, Trojan.Multi.Penguish.b, Trojan.Win32.Hosts.Gen, Fremder zugriff auf PC?
antivirus, autorun, computer, desktop, fehlermeldung, google, heur, home, hosts2.gen, internet, kaspersky, konten gehackt, mozilla, openvpn, penguish.b, performance, prozesse, realtek, registry, rundll, scan, services.exe, svchost.exe, system, trojan, trojaner, virus, werbung, windows


« Popup: Kritischer Virenalarm / Avira: Warnung vor kritischem Virus | Windows 11: Webseite von AV Antivirus wird plötzlich geöffnet und zeigt an, dass der PC infiziert ist. »


Ähnliche Themen: Alle Konten gehackt, Trojan.Multi.Penguish.b, Trojan.Win32.Hosts.Gen, Fremder zugriff auf PC?


  1. Trojaner Trojan.Multi.BroSubsc.gen
    Plagegeister aller Art und deren Bekämpfung - 05.08.2023 (28)
  2. Windows 10 - Google Acc. gehackt und "Trojan:Win32/Wacatac.H!ml" + "Trojan:Win32/Tnega!MSR"
    Log-Analyse und Auswertung - 10.09.2022 (20)
  3. Win 10 Kaspersky meldet:PDM:Trojan.Win32.Generic und Trojan.Multi.GenAutorunReg.a
    Log-Analyse und Auswertung - 04.11.2021 (9)
  4. Trojan.Multi.GenAutorunReg.a bzw. Trjan.Win32.Generic gefunden
    Log-Analyse und Auswertung - 16.10.2020 (21)
  5. Trojan.Multi.BroSubsc.gen in Systemspeicher wirklich entfernt?
    Log-Analyse und Auswertung - 05.12.2019 (1)
  6. Windows 10 home / Kaspersky findet: TROJAN.MULTI.BROSUBSC.GEN
    Log-Analyse und Auswertung - 21.02.2019 (4)
  7. Windows 10: Trojan.MultiStartPageTask.a & Trojan.Multi.GenAutorunTask.b
    Log-Analyse und Auswertung - 04.04.2017 (24)
  8. moegliche-root-kit-infektion-trojan-multi-proxychanger-gen
    Plagegeister aller Art und deren Bekämpfung - 14.12.2016 (7)
  9. Mögliche Root-Kit Infektion Trojan.Multi.ProxyChanger.gen
    Plagegeister aller Art und deren Bekämpfung - 12.12.2016 (14)
  10. Win7 - Packed-multi-multi-packed.gen und HEUR:Trojan.script.iframer
    Log-Analyse und Auswertung - 13.12.2015 (10)
  11. Alle E-Mail Konten auf dem Pc gehackt
    Log-Analyse und Auswertung - 25.03.2015 (11)
  12. Windows 8.1: Trojan:Win32/Meredrop, Trojan:Win32/Malagent, Trojan:Win32/Matsnu.L und Worm:Win32/Ainslot.A
    Log-Analyse und Auswertung - 19.01.2014 (5)
  13. Desinfizierung durch Kaspersky nicht möglich: Trojan.Win32.Bromngr.k, HEUR:Trojan.Win32.Generic, Trojan-Downloader.Win32.MultiDL.I
    Plagegeister aller Art und deren Bekämpfung - 28.11.2013 (1)
  14. WinXp Trojan.Agent/Gen-Reputation Stolen.Data Trojan.Agent/Gen-DunDun Win32/Spy.Banker.YPK trojan
    Log-Analyse und Auswertung - 29.10.2013 (7)
  15. Trojaner: Trojan-PSW.Win32.Coced.219 sowie Trojan-BNK.Win32.Keylogger.gen
    Log-Analyse und Auswertung - 24.01.2012 (42)
  16. Trojan.Win32.Cosmu.jnu/Trojan/Win32.Cosmu.gen Befall !!! Kann ihn nicht entfernen !!!
    Log-Analyse und Auswertung - 01.02.2010 (49)
  17. brauch hilfe bei: Win32/Oleloa.gen!, Trojan.Win32.Golid.g, Trojan.Win32.Small.ev
    Plagegeister aller Art und deren Bekämpfung - 29.11.2005 (1)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Alle Konten gehackt, Trojan.Multi.Penguish.b, Trojan.Win32.Hosts.Gen, Fremder zugriff auf PC? - Addition Code: Alles auswählen Aufklappen ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 12-08.2024 durchgeführt von marce (14-08-2024 15:02:41) Gestartet von C:\Users\marce\Downloads Microsoft Windows 10 Home Version 22H2 - Alle Konten gehackt, Trojan.Multi.Penguish.b, Trojan.Win32.Hosts.Gen, Fremder zugriff auf PC?...
Archiv
Du betrachtest: Alle Konten gehackt, Trojan.Multi.Penguish.b, Trojan.Win32.Hosts.Gen, Fremder zugriff auf PC? auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55