| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Windows Defender schließt Laufwerk C in der Überprüfung ausWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
Gestern, 11:04
| #1 |
 |  Windows Defender schließt Laufwerk C in der Überprüfung aus Hallo zusammen, ich habe seit einiger Zeit das Problem, dass der Windows Defender mein Laufwerk C von der Überprüfung ausschließt, weil eine Ausnahme gesetzt ist. Nur leider habe ich diese Ausnahme nicht gesetzt und ich kann sie auch nicht entfernen. Malwarebytes bringt kein Ergebnis beim Tiefenscan. Hier sind die Logs aus der FRST.txt: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 29-10-2025
durchgeführt von ldeis (Administrator) auf LEONS-PC (ASUS System Product Name) (02-11-2025 10:51:01)
Gestartet von C:\Users\ldeis\Desktop\FRST64.exe
Geladene Profile: ldeis
Plattform: Microsoft Windows 11 Pro Version 25H2 26200.6901 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: FF
Start-Modus: Normal
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe ->) (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\EpicWebHelper.exe <2>
(C:\Program Files (x86)\Epson Software\Epson Printer Connection Checker\EPPCCMON.EXE ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe
(C:\Program Files (x86)\epson\MyEpson Portal\mepService.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\epson\MyEpson Portal\mep.exe
(C:\Program Files (x86)\Overwolf\Overwolf.exe ->) (Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.283.1.4\OverwolfHelper.exe
(C:\Program Files (x86)\Overwolf\Overwolf.exe ->) (Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.283.1.4\OverwolfHelper64.exe
(C:\Program Files (x86)\Overwolf\Overwolf.exe ->) (Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Overwolf\0.283.1.4\OverwolfBrowser.exe <4>
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe
(C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\Malwarebytes.exe
(C:\Program Files\Mozilla Firefox\firefox.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MbamBgNativeMsg.exe
(C:\Program Files\Mozilla Firefox\firefox.exe ->) (Mozilla Corporation -> Mozilla Foundation) C:\Program Files\Mozilla Firefox\crashhelper.exe
(C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.275.510.0_x64__zpdnekdrzrea0\XboxGameBarSpotify.exe ->) (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> ) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.275.510.0_x64__zpdnekdrzrea0\crashpad_handler.exe
(C:\Windows\SysWOW64\wallpaperservice32.exe ->) (Skutta Software GmbH -> ) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe
(DriverStore\FileRepository\u0400644.inf_amd64_9691c8ee1bbfcbb7\B399690\atiesrxx.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0400644.inf_amd64_9691c8ee1bbfcbb7\B399690\atieclxx.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <7>
(explorer.exe ->) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2>
(explorer.exe ->) (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(explorer.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <9>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe
(explorer.exe ->) (Open Source Developer, Robin Krom -> Greenshot) C:\Program Files\Greenshot\Greenshot.exe
(explorer.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\Epson Software\Download Navigator\EPSDNMON.EXE
(explorer.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\Epson Software\Epson Printer Connection Checker\EPPCCMON.EXE
(explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(explorer.exe ->) (Voyetra Turtle Beach, Inc. -> ROCCAT) C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\ROCCAT_Swarm_Monitor.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\25.194.1005.0003\OneDrive.Sync.Service.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <19>
(Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Overwolf\Overwolf.exe
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0400644.inf_amd64_9691c8ee1bbfcbb7\B399690\atiesrxx.exe
(services.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(services.exe ->) (Geek Software GmbH -> geek software GmbH) C:\Program Files\PDF24\pdf24.exe <2>
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Windows\System32\DriverStore\FileRepository\logi_lamparray_usb.inf_amd64_9bb7be35ea261c7b\logi_lamparray_service.exe
(services.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\25.194.1005.0003\FileSyncHelper.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25090.3009-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25090.3009-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25090.3009-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvrfi.inf_amd64_ba9b9d6c7431e4ce\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\epson\Epson Printer Driver Security Support Tool\EpSecuritySupport.exe
(services.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\epson\MyEpson Portal\mepService.exe
(services.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(services.exe ->) (Skutta Software GmbH -> ) C:\Windows\SysWOW64\wallpaperservice32.exe
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(sihost.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.6365217CE6EB4_102.2509.19002.0_x64__8wekyb3d8bbwe\MicrosoftSecurityApp\MicrosoftSecurityApp.exe
(svchost.exe ->) () [Datei ist nicht signiert] C:\Program Files\CleanZiloApp\CleanZilo.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2542.2.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> ) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.275.510.0_x64__zpdnekdrzrea0\XboxGameBarSpotify.exe
(svchost.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.Edge.GameAssist_1.0.3590.0_x64__8wekyb3d8bbwe\EdgeGameAssist.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\25.194.1005.0003\FileCoAuth.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2510.1001.55.0_x64__8wekyb3d8bbwe\XboxPcAppFT.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.SecHealthUI_1000.29429.1000.0_x64__8wekyb3d8bbwe\SecHealthUI.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.151.0.0_x64__8wekyb3d8bbwe\MicrosoftStartFeedProvider\MicrosoftStartFeedProvider.exe
(svchost.exe ->) (Microsoft Windows -> ) C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\AppActions.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\NgcIso.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealth\10.0.29429.1000-0\SecurityHealthHost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
(svchost.exe ->) (Voyetra Turtle Beach, Inc. -> ROCCAT) C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\ROCCAT_dev_service.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [Greenshot] => C:\Program Files\Greenshot\Greenshot.exe [527792 2017-08-09] (Open Source Developer, Robin Krom -> Greenshot)
HKLM\...\Run: [PDF24] => C:\Program Files\PDF24\pdf24.exe [654040 2025-04-10] (Geek Software GmbH -> geek software GmbH)
HKLM\...\Run: [EPPCCMON] => C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE [455968 2023-05-25] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKLM\...\Run: [KeePass 2 PreLoad] => C:\Program Files\KeePass Password Safe 2\KeePass.exe [3244896 2025-07-09] (Open Source Developer, Dominik Reichl -> Dominik Reichl)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [2756368 2023-08-09] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [9213376 2025-10-21] (Dropbox, Inc -> Dropbox, Inc.)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Beschränkung <==== ACHTUNG
HKU\S-1-5-19\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4735888 2025-10-31] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4735888 2025-10-31] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-651480894-1371958004-639929314-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4735888 2025-10-31] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-651480894-1371958004-639929314-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe [24378520 2025-10-19] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-651480894-1371958004-639929314-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4699288 2025-10-03] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-651480894-1371958004-639929314-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1911040 2025-10-27] (Overwolf Ltd -> Overwolf Ltd.)
HKU\S-1-5-21-651480894-1371958004-639929314-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [36981208 2024-12-05] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-651480894-1371958004-639929314-1001\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [41579480 2025-09-29] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-651480894-1371958004-639929314-1001\...\Run: [EPSDNMON] => C:\Program Files (x86)\Epson Software\Download Navigator\EPSDNMON.EXE [360776 2025-07-08] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKLM\...\Print\Monitors\EPSON ET-15000 Series 64MonitorBE: C:\WINDOWS\system32\E_YLMBW3E.DLL [187392 2018-06-15] (Microsoft Windows Hardware Compatibility Publisher -> Seiko Epson Corporation)
HKLM\...\Print\Monitors\EPSON PC-FAX Driver2 64Monitor: C:\WINDOWS\system32\EFXLM16A.DLL [182784 2023-07-20] (SEIKO EPSON CORPORATION) [Datei ist nicht signiert]
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\WINDOWS\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [Datei ist nicht signiert]
Startup: C:\Users\ldeis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\An OneNote senden.lnk [2024-06-03]
ShortcutTarget: An OneNote senden.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ROCCAT Swarm Monitor.lnk [2023-12-16]
ShortcutTarget: ROCCAT Swarm Monitor.lnk -> C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\ROCCAT_Swarm_Monitor.exe (Voyetra Turtle Beach, Inc. -> ROCCAT)
HKLM\SOFTWARE\Policies\Microsoft\Edge: Beschränkung <==== ACHTUNG
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {973A0DAE-21DC-4C95-8C9A-B3D61D0C99E5} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1581568 2025-08-24] (Adobe Inc. -> Adobe Inc.)
Task: {B582C509-DF60-4DCC-939C-EE7071AC2195} - System32\Tasks\AutoClickerUpdateTask => C:\Program Files\AutoClicker\AutoClickerUpdate.bat [89 2024-10-09] () [Datei ist nicht signiert] <==== ACHTUNG
Task: {91E010CA-3C8C-47F3-8B94-405303B6DC62} - System32\Tasks\ComponentUpdater => C:\Windows\System32\cmd.exe [344064 2025-10-02] (Microsoft Windows -> Microsoft Corporation) -> C:\Program Files (x86)\LocalUserHelper\node\/C start "" /min "C:\Program Files (x86)\LocalUserHelper\node\node.exe" "C:\Program Files (x86)\LocalUserHelper\helper.js" <==== ACHTUNG
Task: {BF81FB49-C2BB-4BF5-92A9-FC6191FCDDA8} - System32\Tasks\DropboxSystem\DropboxUpdater\DropboxUpdaterTaskSystem123.0.6299.129{611C95A8-8DE4-4D6F-BF7A-9534B0BE6C7D} => C:\Program Files\Dropbox\DropboxUpdater\123.0.6299.129\updater.exe [5898104 2025-05-26] (Dropbox, Inc -> Dropbox, Inc.)
Task: {896816BB-4C9C-46D1-9E2B-A950F90A5EA0} - System32\Tasks\EPSON ET-15000 Series Update {D01FF912-9294-4114-B90C-874CC5DAF341} => C:\Windows\System32\spool\drivers\x64\3\E_YTSW3E.EXE [680440 2017-06-07] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
Task: {435BED64-D2DA-4D00-8048-028C521A7559} - System32\Tasks\Microsoft\Office\Copilot Optimization => C:\ProgramData\Microsoft\Windows\Tools\OfficeAI\aisvchost.exe (Keine Datei) <==== ACHTUNG
Task: {DEE67C60-55E5-4AE0-8481-593D780685FB} - System32\Tasks\Microsoft\Office\Office Actions Server => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ActionsServer\ActionsServer.exe [16961440 2025-11-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {2479ADF4-9B00-472E-A6F8-E7650A8116C6} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [29173168 2025-10-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {DAF0E83D-7682-4D6A-85C2-93D6A24AAE21} - System32\Tasks\Microsoft\Office\Office Background Push Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\opushutil.exe [70464 2025-11-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {89F0BDFB-0F69-4F46-9244-B33366AD6A38} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [29173168 2025-10-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {3C0DF52D-62F2-44C2-826F-2F0BD051AA83} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [316680 2025-11-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {3A882F5B-A99C-4059-AD26-BD37B457B089} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [316680 2025-11-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {3236E60E-0862-4BB7-83D3-2B12AAD2E2BF} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [1365280 2025-10-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {43469A5C-B785-482A-8F2A-58A56CFCA3D8} - System32\Tasks\Microsoft\Windows\Bluetooth\BluetoothDeviceStatus => C:\Program Files\nodejs\node.exe [69852816 2024-11-11] (OpenJS Foundation -> Node.js) -> "C:\Windows\System32\27bcf43d-1783-48af-bf41-3ffdcf7fee9f-73191377\a77b0aae-8bbd-4ec5-bed7-3f442c312e92" <==== ACHTUNG
Task: {62DABF32-4467-48C1-84DF-14360FE30B33} - System32\Tasks\Microsoft\Windows\Experimental\Experimental Host => C:\ProgramData\Microsoft\Windows\Tools\{d4d28289-9326-4fd7-b9da-7e64704f289c}\sdkhost.exe (Keine Datei) <==== ACHTUNG
Task: {327BBDCD-631F-4055-9C68-810E90025EF1} - System32\Tasks\Microsoft\Windows\InternalNetwork\LAN Network Status => C:\Program Files\CleanZiloApp\CleanZilo.exe [129949 2025-06-19] () [Datei ist nicht signiert]
Task: {077BA067-7C15-40F0-B22E-C9DC2A54B4A2} - System32\Tasks\Microsoft\Windows\Location\Notifications => %windir%\System32\LocationNotificationWindows.exe (Keine Datei)
Task: {F9FA07AA-5828-41EF-86CF-DCA7E4964FC3} - System32\Tasks\Microsoft\Windows\Maps\MapsShowTask => C:\Program Files\nodejs\node.exe [69852816 2024-11-11] (OpenJS Foundation -> Node.js) -> "C:\Windows\System32\741de7b5-14db-4c02-a5a2-8867f357be95-93500353\dab2fe82-f3c9-4036-9e89-b43e4681a52d" <==== ACHTUNG
Task: {E8407A45-F7B7-4CD6-B133-5AB1C1F9BAB0} - System32\Tasks\Microsoft\Windows\Registry\RegIdleStatus => C:\Program Files\nodejs\node.exe [69852816 2024-11-11] (OpenJS Foundation -> Node.js) -> "C:\Windows\System32\9dce1fde-742f-4fcb-9d4d-bc6ead20699c-38572000\9a588a5d-a043-40d8-9de5-0d9161fc766f" <==== ACHTUNG
Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Keine Datei)
Task: {3B36A07D-8550-4306-B10D-26B277B6D7F0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25090.3009-0\MpCmdRun.exe [1790640 2025-10-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2BBEB834-D664-47E2-BD03-608FE22BD716} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25090.3009-0\MpCmdRun.exe [1790640 2025-10-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E3410C39-CC90-4848-865E-6C0DDB34C77F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25090.3009-0\MpCmdRun.exe [1790640 2025-10-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {0C3D7501-36C0-424A-A00B-9F577436F554} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25090.3009-0\MpCmdRun.exe [1790640 2025-10-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C3CB0C53-D328-4514-BCA1-0066CAE16C59} - System32\Tasks\Microsoft\Windows\WlanSvc\DNSSync => C:\Program Files\nodejs\node.exe [69852816 2024-11-11] (OpenJS Foundation -> Node.js) -> "C:\ProgramData\Microsoft\Wlansvc\Profiles\Interfaces\{77a49e22-9293-42db-82cf-f194581c021a}\04bcf918-face-4242-8750-357bbc5ec88b" <==== ACHTUNG
Task: {DC5CBE80-A555-46AD-99DD-B5C13E4B0EC7} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [693888 2025-11-02] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (Der Dateneintrag hat 6 weitere Zeichen).
Task: {C3E88686-954D-4082-AB1C-85071E9100AC} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-651480894-1371958004-639929314-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [693888 2025-11-02] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (Der Dateneintrag hat 6 weitere Zeichen).
Task: {D5ADF7D3-D26D-4FE8-AADE-4F8607AD0BA6} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34944 2025-11-02] (Mozilla Corporation -> Mozilla Foundation)
Task: {9F2F1F98-BC12-4BDD-8EC4-245C79B0A2C3} - System32\Tasks\MQKhonRThka => C:\Windows\System32\cmd.exe [344064 2025-10-02] (Microsoft Windows -> Microsoft Corporation) -> C:\Users\ldeis\AppData\Roaming\NTC5onRThka\/C start "" /min "C:\Users\ldeis\AppData\Roaming\NTC5onRThka\node\node.exe" "C:\Users\ldeis\AppData\Roaming\NTC5onRThka\NTy5onRThka.js" "drive.localuserhelper.com" "49ae2c14-d76c-4bab-b640-dea211e548c8" "HkKhonRThka" "HRKhonRThka" "Hn6honRThka" <==== ACHTUNG
Task: {88F98958-6D8E-4062-B666-AC6EC838690E} - System32\Tasks\NVIDIA App SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\NVIDIA App.exe [3275808 2025-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C4E2EE5A-DDE5-4BAE-B526-D2AF768EDD1B} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4393320 2025-10-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {F271551C-8865-4BF6-85F7-14584594AB55} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-651480894-1371958004-639929314-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4393320 2025-10-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {0E09377A-B142-48B0-AF8F-EEFC285B8617} - System32\Tasks\OneDrive Startup Task-S-1-5-21-651480894-1371958004-639929314-1001 => C:\Program Files\Microsoft OneDrive\25.194.1005.0003\OneDriveLauncher.exe [725864 2025-10-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {850DE766-C86D-491D-B86C-9E03C6B3BA49} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2398016 2025-10-27] (Overwolf Ltd -> Overwolf LTD) -> C:\Program Files (x86)\Overwolf\/RunningFrom Schedule
Task: {4AABFE6C-4C54-4A21-A9E2-20A097B40C8E} - System32\Tasks\ROCCAT DEVICE SERVICE => C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\ROCCAT_dev_service.exe [453168 2025-05-13] (Voyetra Turtle Beach, Inc. -> ROCCAT)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\EPSON ET-15000 Series Update {D01FF912-9294-4114-B90C-874CC5DAF341}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSW3E.EXE:/EXE:{D01FF912-9294-4114-B90C-874CC5DAF341} /F:UpdateWORKGROUP\LEONS-PC$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.8.1
Tcpip\..\Interfaces\{b565791d-4a83-47f9-af5f-bb21ac513a29}: [DhcpNameServer] 192.168.8.1
Tcpip\..\Interfaces\{b565791d-4a83-47f9-af5f-bb21ac513a29}: [DhcpDomain] lan
Edge:
=======
Edge Profile: C:\Users\ldeis\AppData\Local\Microsoft\Edge\User Data\Default [2025-11-02]
Edge Extension: (Google Docs Offline) - C:\Users\ldeis\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-11-02]
Edge Extension: (Edge relevant text changes) - C:\Users\ldeis\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-25]
FireFox:
========
FF DefaultProfile: mw6i8y3r.default
FF ProfilePath: C:\Users\ldeis\AppData\Roaming\Mozilla\Firefox\Profiles\mw6i8y3r.default [2023-12-16]
FF ProfilePath: C:\Users\ldeis\AppData\Roaming\Mozilla\Firefox\Profiles\7104wpbu.default-release [2025-11-02]
FF Extension: (Keepa - Amazon Price Tracker) - C:\Users\ldeis\AppData\Roaming\Mozilla\Firefox\Profiles\7104wpbu.default-release\Extensions\amptra@keepa.com.xpi [2025-07-13]
FF Extension: (BetterTTV) - C:\Users\ldeis\AppData\Roaming\Mozilla\Firefox\Profiles\7104wpbu.default-release\Extensions\firefox@betterttv.net.xpi [2025-10-23]
FF Extension: (Honey) - C:\Users\ldeis\AppData\Roaming\Mozilla\Firefox\Profiles\7104wpbu.default-release\Extensions\jid1-93CWPmRbVPjRQA@jetpack.xpi [2023-12-16]
FF Extension: (Privacy Badger) - C:\Users\ldeis\AppData\Roaming\Mozilla\Firefox\Profiles\7104wpbu.default-release\Extensions\jid1-MnnxcxisBPnSXQ@jetpack.xpi [2025-09-10]
FF Extension: (DuckDuckGo Privacy Essentials) - C:\Users\ldeis\AppData\Roaming\Mozilla\Firefox\Profiles\7104wpbu.default-release\Extensions\jid1-ZAdIEUB7XOzOJw@jetpack.xpi [2025-09-27]
FF Extension: (Grammatik- und Rechtschreibprüfung - LanguageTool) - C:\Users\ldeis\AppData\Roaming\Mozilla\Firefox\Profiles\7104wpbu.default-release\Extensions\languagetool-webextension@languagetool.org.xpi [2025-07-25]
FF Extension: (uBlock Origin) - C:\Users\ldeis\AppData\Roaming\Mozilla\Firefox\Profiles\7104wpbu.default-release\Extensions\uBlock0@raymondhill.net.xpi [2025-10-24]
FF Extension: (Malwarebytes Browser Guard) - C:\Users\ldeis\AppData\Roaming\Mozilla\Firefox\Profiles\7104wpbu.default-release\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2025-10-23]
FF Extension: (LiteFox) - C:\Users\ldeis\AppData\Roaming\Mozilla\Firefox\Profiles\7104wpbu.default-release\Extensions\{39e34a35-15de-4e40-9353-d4ec1c91b9d2}.xpi [2023-12-16]
FF Extension: (foxtrot1) - C:\Users\ldeis\AppData\Roaming\Mozilla\Firefox\Profiles\7104wpbu.default-release\Extensions\{deab936e-81f7-45b0-95d7-66667dbac0ee}.xpi [2023-12-16]
FF Extension: (Data Leak Blocker) - C:\Users\ldeis\AppData\Roaming\Mozilla\Firefox\Profiles\7104wpbu.default-release\features\{10852293-5f38-4156-a480-2c2b4db25ec0}\data-leak-blocker@mozilla.com.xpi [2025-10-07]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2025-10-25] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.21 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2025-09-29] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2025-10-25] (Microsoft Corporation -> Microsoft Corporation)
==================== Dienste (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [174584 2025-08-24] (Adobe Inc. -> Adobe Inc.)
S2 AsusUpdateCheck; C:\WINDOWS\System32\AsusUpdateCheck.exe [845256 2025-11-02] (ASUSTeK Computer Inc. -> )
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [18663720 2025-05-18] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13366704 2025-10-30] (Microsoft Corporation -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [5898104 2025-05-26] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [5898104 2025-05-26] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\System32\DbxSvc.exe [58984 2025-04-29] (Dropbox, Inc -> Dropbox, Inc.)
S3 DropboxElevationService; C:\Program Files (x86)\Dropbox\Client\235.4.5905\DropboxElevationService.exe [1659344 2025-10-21] (Dropbox, Inc -> Dropbox, Inc.)
S2 DropboxUpdaterInternalService123.0.6299.129; C:\Program Files\Dropbox\DropboxUpdater\123.0.6299.129\updater.exe [5898104 2025-05-26] (Dropbox, Inc -> Dropbox, Inc.)
S2 DropboxUpdaterService123.0.6299.129; C:\Program Files\Dropbox\DropboxUpdater\123.0.6299.129\updater.exe [5898104 2025-05-26] (Dropbox, Inc -> Dropbox, Inc.)
S3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [18734688 2024-10-24] (Electronic Arts, Inc. -> Electronic Arts)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [964336 2025-09-10] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2023-08-02] (Epic Games Inc. -> Epic Games, Inc.)
R2 EpSecuritySupport; C:\Program Files (x86)\Epson\Epson Printer Driver Security Support Tool\EpSecuritySupport.exe [280904 2025-06-19] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [222768 2024-09-25] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
R3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\25.194.1005.0003\FileSyncHelper.exe [3604880 2025-10-31] (Microsoft Corporation -> Microsoft Corporation)
S3 GameInputRedistService; C:\Program Files\Microsoft GameInput\x64\GameInputRedistService.exe [141680 2025-10-20] (Microsoft Corporation -> Microsoft Corporation)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [18847896 2025-10-19] (Logitech Inc -> Logitech, Inc.)
R2 logi_lamparray_service; C:\WINDOWS\System32\DriverStore\FileRepository\logi_lamparray_usb.inf_amd64_9bb7be35ea261c7b\logi_lamparray_service.exe [11525160 2025-09-18] (Logitech Inc -> Logitech, Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [11146712 2025-11-02] (Malwarebytes Inc -> Malwarebytes)
S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [2788304 2025-01-18] (Malwarebytes Inc. -> Malwarebytes)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25090.3009-0\MpDefenderCoreService.exe [2026144 2025-10-23] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 MyEpson Portal Service; C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe [714712 2017-06-28] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [13809968 2025-09-06] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvrfi.inf_amd64_ba9b9d6c7431e4ce\Display.NvContainer\NVDisplay.Container.exe [1275560 2025-04-14] (NVIDIA Corporation -> NVIDIA Corporation)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\25.194.1005.0003\OneDriveUpdaterService.exe [3888488 2025-10-31] (Microsoft Corporation -> Microsoft Corporation)
S3 OverwolfUpdater; C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2398016 2025-10-27] (Overwolf Ltd -> Overwolf LTD)
R2 PDF24; C:\Program Files\PDF24\pdf24.exe [654040 2025-04-10] (Geek Software GmbH -> geek software GmbH)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1463848 2025-10-08] (Rockstar Games, Inc. -> Rockstar Games)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [803064 2025-10-02] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 Wallpaper Engine Service; C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe [3647928 2025-03-06] (Skutta Software GmbH -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25090.3009-0\NisSrv.exe [4418608 2025-10-23] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25090.3009-0\MsMpEng.exe [282440 2025-10-23] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R3 amdfendrmgr; C:\WINDOWS\System32\drivers\amdfendrmgr.sys [56504 2024-02-27] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 amduw23g; C:\WINDOWS\System32\DriverStore\FileRepository\u0400644.inf_amd64_9691c8ee1bbfcbb7\B399690\amdkmdag.sys [100084632 2024-02-27] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [573440 2024-12-13] (Microsoft Corporation) [Datei ist nicht signiert]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [204800 2024-12-13] (Microsoft Corporation) [Datei ist nicht signiert]
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [110592 2024-12-13] (Microsoft Corporation) [Datei ist nicht signiert]
S3 GuiHidUsbDevLowerTFH; C:\WINDOWS\System32\Drivers\GuiHidUsbDevLowerTFH.sys [207016 2023-11-06] (Microsoft Windows Hardware Compatibility Publisher -> © Guillemot R&D, 2020. All rights reserved.)
R3 KslD; C:\WINDOWS\System32\drivers\wd\KslD.sys [333216 2025-09-18] (Microsoft Windows -> Microsoft Corporation)
R3 logi_generic_hid_filter; C:\WINDOWS\system32\drivers\logi_generic_hid_filter.sys [62400 2025-09-18] (Logitech Inc -> Logitech)
R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [44880 2024-09-24] (Logitech Inc -> Logitech)
R3 logi_joy_hid_filter; C:\WINDOWS\system32\drivers\logi_joy_hid_filter.sys [63936 2025-09-18] (Logitech Inc -> Logitech)
R3 logi_joy_hid_lo; C:\WINDOWS\system32\drivers\logi_joy_hid_lo.sys [51648 2025-09-18] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [32080 2023-12-16] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [73040 2024-09-24] (Logitech Inc -> Logitech)
R3 logi_lamparray; C:\WINDOWS\System32\DriverStore\FileRepository\logi_lamparray_usb.inf_amd64_9bb7be35ea261c7b\logi_lamparray.sys [89640 2025-09-18] (Logitech Inc -> Logitech, Inc.)
R2 mbamchameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [234088 2025-11-02] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [22120 2025-03-21] (Microsoft Windows Early Launch Anti-Malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [245336 2025-11-02] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 rt25cx21; C:\WINDOWS\System32\DriverStore\FileRepository\rt25cx21x64sta.inf_amd64_eddbebb052f7ae1b\rt25cx21x64.sys [905216 2025-08-27] (Realtek Semiconductor Corp. -> Realtek)
S3 rtcx21; C:\WINDOWS\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_feec7a9662e785f0\rtcx21x64.sys [539648 2024-03-28] (Microsoft Windows -> Realtek)
R3 VirtualHID; C:\WINDOWS\System32\drivers\VirtualHID.sys [26768 2022-08-15] (Voyetra Turtle Beach, Inc. -> TurtleBeach)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [20888 2025-10-23] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [629128 2025-10-23] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [102832 2025-10-23] (Microsoft Windows -> Microsoft Corporation)
S3 RT-USB; \SystemRoot\system32\drivers\RT-USB64.SYS [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat (erstellte) (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2025-11-02 10:51 - 2025-11-02 10:52 - 000037874 _____ C:\Users\ldeis\Desktop\FRST.txt
2025-11-02 10:49 - 2025-11-02 10:51 - 000000000 ____D C:\FRST
2025-11-02 10:44 - 2025-11-02 10:44 - 002443264 _____ (Farbar) C:\Users\ldeis\Desktop\FRST64.exe
2025-11-02 10:43 - 2025-11-02 10:43 - 000000000 ____D C:\Users\ldeis\AppData\LocalLow\IGDump
2025-11-02 10:35 - 2025-11-02 10:35 - 000745650 _____ C:\WINDOWS\system32\perfh007.dat
2025-11-02 10:35 - 2025-11-02 10:35 - 000158752 _____ C:\WINDOWS\system32\perfc007.dat
2025-11-02 10:34 - 2025-11-02 10:35 - 000000000 ____D C:\Program Files\Mozilla Firefox
2025-11-02 10:28 - 2025-11-02 10:28 - 000000000 ____D C:\WINDOWS\CbsTemp
2025-10-31 14:53 - 2025-10-31 14:53 - 000000000 ____D C:\Program Files\Windows Kits
2025-10-31 14:53 - 2025-10-31 14:53 - 000000000 ____D C:\Program Files\Microsoft GameInput
2025-10-25 18:21 - 2025-10-25 18:21 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2025-10-24 15:33 - 2025-10-24 15:33 - 000000000 ____D C:\Program Files (x86)\Realtek
2025-10-23 17:11 - 2025-10-23 17:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2025-10-19 09:40 - 2025-10-19 09:40 - 000000856 _____ C:\Users\Public\Desktop\Logitech G HUB.lnk
2025-10-19 09:40 - 2025-10-19 09:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2025-10-19 09:40 - 2025-10-19 09:40 - 000000000 ____D C:\Program Files\LGHUB
2025-10-08 12:47 - 2025-10-08 12:47 - 000000000 ____D C:\ProgramData\Whesvc
2025-10-08 12:28 - 2025-10-08 12:28 - 000000000 ____D C:\Program Files (x86)\VulkanRT
==================== Ein Monat (geänderte) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2025-11-02 10:49 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SystemTemp
2025-11-02 10:47 - 2023-12-16 16:13 - 000000000 ____D C:\Users\ldeis\AppData\Local\Malwarebytes
2025-11-02 10:44 - 2023-12-16 16:53 - 000000000 ____D C:\Program Files (x86)\Steam
2025-11-02 10:43 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\AppReadiness
2025-11-02 10:43 - 2024-04-01 08:26 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-11-02 10:36 - 2023-12-16 16:04 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2025-11-02 10:35 - 2024-12-14 12:12 - 001729512 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2025-11-02 10:35 - 2024-12-13 12:29 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2025-11-02 10:35 - 2024-04-01 08:26 - 000000000 ___HD C:\Program Files\WindowsApps
2025-11-02 10:35 - 2024-04-01 08:24 - 000000000 ____D C:\WINDOWS\INF
2025-11-02 10:35 - 2023-12-16 21:38 - 000002452 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-11-02 10:35 - 2023-12-16 16:04 - 000001065 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2025-11-02 10:35 - 2023-12-16 16:04 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2025-11-02 10:34 - 2023-12-16 16:49 - 000000000 ____D C:\Program Files\Microsoft Office
2025-11-02 10:31 - 2023-12-16 16:13 - 000245336 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2025-11-02 10:31 - 2023-12-16 14:49 - 000000000 ____D C:\Users\ldeis\AppData\Local\D3DSCache
2025-11-02 10:29 - 2024-03-28 18:40 - 000000000 ____D C:\Users\ldeis\AppData\Roaming\Dropbox
2025-11-02 10:29 - 2024-03-28 18:40 - 000000000 ____D C:\Users\ldeis\AppData\Local\Dropbox
2025-11-02 10:29 - 2024-01-07 21:05 - 000000000 ____D C:\Users\ldeis\AppData\Local\Overwolf
2025-11-02 10:29 - 2024-01-07 21:05 - 000000000 ____D C:\Program Files (x86)\Overwolf
2025-11-02 10:29 - 2023-12-16 14:47 - 000000000 ___RD C:\Users\ldeis\OneDrive
2025-11-02 10:28 - 2024-12-13 12:29 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2025-11-02 10:28 - 2024-12-13 12:27 - 000018980 _____ C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2
2025-11-02 10:28 - 2024-12-13 12:27 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2025-11-02 10:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\ServiceState
2025-11-02 10:28 - 2023-12-17 16:56 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2025-11-02 10:28 - 2023-12-16 21:38 - 000901328 _____ () C:\WINDOWS\system32\wpbbin.exe
2025-11-02 10:28 - 2023-12-16 21:38 - 000845256 _____ C:\WINDOWS\system32\AsusUpdateCheck.exe
2025-11-02 10:28 - 2023-12-16 21:38 - 000012288 ___SH C:\DumpStack.log.tmp
2025-11-02 10:28 - 2023-12-16 14:45 - 000000000 ____D C:\ProgramData\NVIDIA
2025-10-31 14:53 - 2025-09-21 08:59 - 000436592 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy_b.dll
2025-10-31 14:53 - 2023-12-16 17:07 - 004581752 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2025-10-31 14:53 - 2023-12-16 17:07 - 000878968 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2025-10-31 14:53 - 2023-12-16 17:07 - 000285048 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2025-10-31 14:53 - 2023-12-16 17:07 - 000244088 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2025-10-31 14:53 - 2023-12-16 17:07 - 000166264 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2025-10-31 14:53 - 2023-12-16 17:07 - 000153976 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe
2025-10-31 14:53 - 2023-12-16 17:07 - 000076152 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe
2025-10-31 14:34 - 2025-09-16 17:29 - 000000000 ____D C:\Users\ldeis\AppData\Local\BeamNG
2025-10-31 14:33 - 2025-02-07 20:29 - 000003540 _____ C:\WINDOWS\system32\Tasks\OneDrive Startup Task-S-1-5-21-651480894-1371958004-639929314-1001
2025-10-31 14:33 - 2024-12-13 12:29 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-651480894-1371958004-639929314-1001
2025-10-31 14:33 - 2024-12-13 12:29 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2025-10-31 14:33 - 2023-12-16 16:51 - 000002132 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2025-10-31 14:32 - 2023-12-16 16:48 - 000000000 ____D C:\Users\ldeis\AppData\Local\LGHUB
2025-10-29 08:31 - 2024-04-01 08:21 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2025-10-29 08:30 - 2023-12-16 14:46 - 000000000 ____D C:\Users\ldeis\AppData\Local\Packages
2025-10-25 18:04 - 2024-12-13 12:29 - 000003754 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2025-10-25 18:04 - 2024-12-13 12:29 - 000003628 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2025-10-25 18:04 - 2023-12-16 18:37 - 000000000 ____D C:\Users\ldeis\AppData\Roaming\Microsoft\Excel
2025-10-25 11:22 - 2023-12-16 16:32 - 000000000 ____D C:\Users\ldeis\AppData\Roaming\KeePass
2025-10-24 19:31 - 2024-01-05 22:48 - 000000000 ____D C:\Users\ldeis\AppData\Roaming\Microsoft\PowerPoint
2025-10-24 18:43 - 2023-12-16 16:52 - 000000000 ____D C:\Users\ldeis\AppData\Roaming\Microsoft\Word
2025-10-24 15:35 - 2024-12-13 12:27 - 000001623 _____ C:\WINDOWS\system32\config\VSMIDK
2025-10-24 15:35 - 2024-04-01 08:26 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2025-10-24 15:35 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\bcastdvr
2025-10-24 15:33 - 2023-12-16 16:53 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2025-10-24 14:40 - 2023-12-16 16:46 - 000000000 ____D C:\Users\ldeis\AppData\Local\Greenshot
2025-10-24 14:28 - 2024-12-13 12:20 - 000000000 ____D C:\Users\ldeis\AppData\Roaming\Microsoft\Windows
2025-10-23 17:38 - 2024-12-13 12:27 - 003276800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2025-10-23 17:27 - 2023-12-16 21:38 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2025-10-23 17:11 - 2024-03-28 18:40 - 000000000 ____D C:\Program Files (x86)\Dropbox
2025-10-20 11:32 - 2025-09-21 08:59 - 000981368 _____ (Microsoft Corporation) C:\WINDOWS\system32\GameInputRedist.dll
2025-10-20 11:32 - 2025-09-21 08:59 - 000022904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GameInputRedist.dll
2025-10-19 11:46 - 2024-12-13 12:27 - 000472912 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2025-10-19 11:45 - 2024-12-13 12:15 - 000000000 ____D C:\WINDOWS\system32\Drivers\en-GB
2025-10-19 11:45 - 2024-04-01 17:36 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2025-10-19 11:45 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2025-10-19 11:45 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2025-10-19 11:45 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2025-10-19 11:45 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SystemResources
2025-10-19 11:45 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2025-10-19 11:45 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\setup
2025-10-19 11:45 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2025-10-19 11:45 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\oobe
2025-10-19 11:45 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\migwiz
2025-10-19 11:45 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\Dism
2025-10-19 11:45 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2025-10-19 11:01 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2025-10-19 11:01 - 2023-12-16 16:33 - 000000000 ____D C:\Users\ldeis\AppData\Local\CrashDumps
2025-10-19 09:50 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\SecurityHealth
2025-10-19 09:50 - 2023-12-16 14:41 - 000000000 ____D C:\ProgramData\Packages
2025-10-19 09:41 - 2023-12-16 16:48 - 000000000 ____D C:\Users\ldeis\AppData\Roaming\G HUB
2025-10-19 09:40 - 2023-12-16 16:48 - 000000000 ____D C:\Users\ldeis\AppData\Roaming\lghub
2025-10-17 16:53 - 2023-12-16 14:50 - 000000000 ____D C:\WINDOWS\system32\MRT
2025-10-17 16:52 - 2023-12-16 14:50 - 214534944 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2025-10-08 23:35 - 2024-12-13 12:20 - 000000000 ____D C:\Users\ldeis
2025-10-08 22:55 - 2023-12-16 16:43 - 000000000 ____D C:\Users\ldeis\AppData\Roaming\discord
2025-10-08 22:47 - 2023-12-16 16:43 - 000000000 ____D C:\Users\ldeis\AppData\Local\Discord
2025-10-08 20:47 - 2023-12-16 16:43 - 000002243 _____ C:\Users\ldeis\Desktop\Discord.lnk
2025-10-08 12:29 - 2023-12-16 21:28 - 000000000 ____D C:\Users\ldeis\OneDrive\Dokumente\Rockstar Games
2025-10-08 12:29 - 2023-12-16 21:28 - 000000000 ____D C:\Users\ldeis\AppData\Local\Rockstar Games
2025-10-08 12:08 - 2023-12-16 16:17 - 000000963 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeePass 2.lnk
2025-10-08 12:08 - 2023-12-16 16:17 - 000000000 ____D C:\Program Files\KeePass Password Safe 2
2025-10-07 14:07 - 2025-06-11 13:33 - 000000000 ____D C:\Users\ldeis\AppData\Local\TramSimNext
2025-10-07 14:07 - 2023-12-16 20:44 - 000000000 ____D C:\Users\ldeis\AppData\Local\UnrealEngine
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========
2024-10-09 16:47 - 2024-10-09 16:47 - 000001332 _____ () C:\Users\ldeis\AppData\Roaming\AutoClick_Logs.txt
==================== SigCheck ============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
==================== Ende von FRST.txt ========================
Könntet Ihr mal prüfen, was ich mir hier eventuell eingefangen habe? Vielen Dank bereits im Voraus.  |
|
Gestern, 11:16
| #2 |
| | Windows Defender schließt Laufwerk C in der Überprüfung aus Hier sind noch die Logs der Addition.txt:
__________________Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 29-10-2025
durchgeführt von ldeis (02-11-2025 10:53:35)
Gestartet von C:\Users\ldeis\Desktop
Microsoft Windows 11 Pro Version 25H2 26200.6901 (X64) (2024-12-13 11:29:09)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
Administrator (S-1-5-21-651480894-1371958004-639929314-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-651480894-1371958004-639929314-503 - Limited - Disabled)
Gast (S-1-5-21-651480894-1371958004-639929314-501 - Limited - Disabled)
ldeis (S-1-5-21-651480894-1371958004-639929314-1001 - Administrator - Enabled) => C:\Users\ldeis
WDAGUtilityAccount (S-1-5-21-651480894-1371958004-639929314-504 - Limited - Disabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1031-1033-7760-BC15014EA700}) (Version: 25.001.20756 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601120}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Core Temp 1.18.1 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.18.1 - ALCPU)
CPUID CPU-Z 2.08 (HKLM\...\CPUID CPU-Z_is1) (Version: 2.08 - CPUID, Inc.)
Discord (HKU\S-1-5-21-651480894-1371958004-639929314-1001\...\Discord) (Version: 1.0.9027 - Discord Inc.)
Dropbox (HKLM-x32\...\Dropbox) (Version: 235.4.5905 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.983.1 - Dropbox, Inc.) Hidden
Druckerdeinstallation für EPSON ET-15000 Series (HKLM\...\EPSON ET-15000 Series) (Version: - Seiko Epson Corporation)
EA app (HKLM\...\{C2622085-ABD2-49E5-8AB9-D3D6A642C091}) (Version: 13.324.0.5837 - Electronic Arts) Hidden
EA app (HKLM-x32\...\{9b664098-4fe0-42aa-93ef-5b93a3c4fac5}) (Version: 13.324.0.5837 - Electronic Arts)
Epic Games Launcher (HKLM-x32\...\{9483ABD9-C772-487B-ADF8-09347CF8F2D2}) (Version: 1.3.93.0 - Epic Games, Inc.)
Epic Online Services (HKLM-x32\...\{57A956AB-4BCC-45C6-9B40-957E4E125568}) (Version: 2.0.44.0 - Epic Games, Inc.)
Epson Connect Printer Setup (HKLM-x32\...\{D9B1D51B-EB56-410D-AEB5-1CCFAC4B6C8C}) (Version: 1.4.10 - Seiko Epson Corporation)
Epson Event Manager (HKLM-x32\...\{F42B0C81-0AE9-491D-9B1F-6EA2F2A8A9C9}) (Version: 3.11.77 - Seiko Epson Corporation)
Epson Printer Connection Checker (HKLM-x32\...\{3E43D194-E18D-4C8A-B36D-15F14395A0A6}) (Version: 3.4.1.0 - Seiko Epson Corporation)
Epson Printer Driver Security Support Tool (HKLM-x32\...\{2395000B-DF3F-40E1-8D49-E73341296948}) (Version: 1.0.1.0 - Seiko Epson Corporation)
Epson Scan 2 (HKLM-x32\...\Epson Scan 2) (Version: - Seiko Epson Corporation)
EPSON Scan OCR Component (HKLM-x32\...\{C37347BC-7549-47A6-8E7A-806A6751981E}) (Version: 3.00.06 - Seiko Epson Corporation)
EPSON Scan PDF Extensions (HKLM-x32\...\{E4C6B326-8218-4FC2-8B48-85A19DAB3AE4}) (Version: 1.03.02.01 - Seiko Epson Corporation)
Epson ScanSmart (HKLM-x32\...\{1A1B60BB-F156-4F6D-AD79-8A096B67E9AB}) (Version: 3.7.10 - Seiko Epson Corporation)
Epson Software Updater (HKLM-x32\...\{0184AB6D-F2CA-4338-A12C-1D8858BFD2FF}) (Version: 4.6.10 - Seiko Epson Corporation)
EpsonNet Print (HKLM\...\{96ED1D58-440C-4345-8FEE-C4781366C67F}) (Version: 3.1.4.0 - SEIKO EPSON Corporation)
Greenshot 1.2.10.6 (HKLM\...\Greenshot_is1) (Version: 1.2.10.6 - Greenshot)
KeePass Password Safe 2.59 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version: 2.59 - Dominik Reichl)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: 2025.8.789376 - Logitech)
Malwarebytes version 5.4.3.221 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 5.4.3.221 - Malwarebytes)
Microsoft 365 - de-de (HKLM\...\O365HomePremRetail - de-de) (Version: 16.0.19328.20158 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 142.0.3595.53 - Microsoft Corporation)
Microsoft Edge WebView2-Laufzeit (HKLM-x32\...\Microsoft EdgeWebView) (Version: 141.0.3537.99 - Microsoft Corporation) Hidden
Microsoft GameInput (HKLM\...\{ECB4BDD1-984C-9F25-299C-A9EF75C14197}) (Version: 10.1.26100.6879 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 25.194.1005.0003 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{C6FD611E-7EFE-488C-A0E0-974C09EF6473}) (Version: 5.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.44.35211 (HKLM-x32\...\{d8bbe9f9-7c5b-42c6-b715-9ee898a2e515}) (Version: 14.44.35211.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.44.35211 (HKLM-x32\...\{0b5169e3-39da-4313-808e-1f9c0407f3bf}) (Version: 14.44.35211.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.44.35211 (HKLM\...\{86AB2CC9-08BD-4643-B0F9-F82D006D72FF}) (Version: 14.44.35211 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.44.35211 (HKLM\...\{43B0D101-A022-48F4-9D04-BA404CEB1D53}) (Version: 14.44.35211 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.44.35211 (HKLM-x32\...\{C18FB403-1E88-43C8-AD8A-CED50F23DE8B}) (Version: 14.44.35211 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.44.35211 (HKLM-x32\...\{922480B5-CAEB-4B1B-AAA4-9716EFDCE26B}) (Version: 14.44.35211 - Microsoft Corporation) Hidden
Mozilla Firefox (x64 de) (HKLM\...\Mozilla Firefox 144.0.2 (x64 de)) (Version: 144.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 120.0.1 - Mozilla)
MyEpson Portal (HKLM-x32\...\{3361D415-BA35-4143-B301-661991BA6219}) (Version: 1.1.3.6 - SEIKO EPSON CORPORATION) Hidden
MyEpson Portal (HKLM-x32\...\MyEpson Portal) (Version: - Seiko Epson Corporation)
Node.js (HKLM\...\{CD45BC04-FEE6-41E9-A979-1632B8F82758}) (Version: 18.20.5 - Node.js Foundation)
NVIDIA FrameView SDK 1.5.10920.35420203 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.5.10920.35420203 - NVIDIA Corporation)
NVIDIA Grafiktreiber 576.02 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 576.02 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.4.3.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.4.3.2 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.23.1019 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.23.1019 - NVIDIA Corporation)
NVIDIA-App 11.0.3.232 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NvApp) (Version: 11.0.3.232 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.19328.20106 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.19029.20208 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0407-1000-0000000FF1CE}) (Version: 16.0.19328.20106 - Microsoft Corporation) Hidden
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.283.1.4 - Overwolf Ltd.)
PDF24 Creator 11.25.0 (HKLM\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version: 11.25.0 - geek software GmbH)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 11.26.20.2025 - Realtek)
ROCCAT SWARM (HKLM-x32\...\{E9CA669A-8FB1-4F3D-A771-2E0767D20F89}) (Version: 1.94.780 - ROCCAT GmbH) Hidden
ROCCAT SWARM (HKLM-x32\...\InstallShield_{E9CA669A-8FB1-4F3D-A771-2E0767D20F89}) (Version: 1.94.780 - ROCCAT GmbH)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.104.2632 - Rockstar Games)
Rockstar Games SDK (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.4.0.118 - Rockstar Games)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.6.1 - TeamSpeak Systems GmbH)
Thunderstore Mod Manager (HKU\S-1-5-21-651480894-1371958004-639929314-1001\...\Overwolf_ahpflogoookodlegojjphcjpjaejgghjnfcdjdmi) (Version: 1.100.0 - Overwolf app)
UE Prerequisites (x64) (HKLM\...\{9F18D9CE-84C9-4AEA-9421-38FD2AC30B77}) (Version: 1.0.21.0 - Epic Games, Inc.) Hidden
UE Prerequisites (x64) (HKLM-x32\...\{e9d9f387-657e-40d8-8f5b-4fc1aa768343}) (Version: 1.0.21.0 - Epic Games, Inc.) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 3.0.21 - VideoLAN)
WinRAR 6.24 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 6.24.0 - win.rar GmbH)
Zoom (HKU\S-1-5-21-651480894-1371958004-639929314-1001\...\ZoomUMX) (Version: 5.17.1 (28914) - Zoom Video Communications, Inc.)
Packages:
=========
@{MicrosoftWindows.55182690.Taskbar_1000.26100.3624.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.55182690.Taskbar/Resources/ProductPkgDisplayName} -> C:\WINDOWS\SystemApps\SxS\MicrosoftWindows.55182690.Taskbar_cw5n1h2txyewy [2025-05-31] ()
@{MicrosoftWindows.55182690.Taskbar_1000.26100.3775.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.55182690.Taskbar/Resources/ProductPkgDisplayName} -> C:\WINDOWS\SystemApps\SxS\MicrosoftWindows.55182690.Taskbar_cw5n1h2txyewy [2025-05-31] ()
@{MicrosoftWindows.55182690.Taskbar_1000.26100.3912.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.55182690.Taskbar/Resources/ProductPkgDisplayName} -> C:\WINDOWS\SystemApps\SxS\MicrosoftWindows.55182690.Taskbar_cw5n1h2txyewy [2025-05-31] ()
@{MicrosoftWindows.58683691.InpApp_1000.26100.6725.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.58683691.InpApp/Resources/ProductPkgDisplayName} -> C:\WINDOWS\SystemApps\SxS\MicrosoftWindows.58683691.InpApp_cw5n1h2txyewy [2025-10-24] (Microsoft Windows)
@{MicrosoftWindows.58683691.InpApp_1000.26100.6899.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.58683691.InpApp/Resources/ProductPkgDisplayName} -> C:\WINDOWS\SystemApps\SxS\MicrosoftWindows.58683691.InpApp_cw5n1h2txyewy [2025-10-24] (Microsoft Windows)
Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Assets [2025-10-02] ()
Dropbox -> C:\Program Files (x86)\Dropbox\Client\PackageAssets [2025-10-23] (Dropbox Inc.)
Local AI Manager for Microsoft 365 -> C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\AI [2025-11-02] ()
Malwarebytes Anti-Malware -> C:\Program Files\Malwarebytes\Anti-Malware [2025-11-02] ()
Microsoft Defender -> C:\Program Files\WindowsApps\Microsoft.6365217CE6EB4_102.2509.19002.0_x64__8wekyb3d8bbwe [2025-10-23] (Microsoft Corporation) [Startup Task]
Microsoft Flight Simulator -> C:\Program Files\WindowsApps\Microsoft.FlightSimulator_1.39.9.0_x64__8wekyb3d8bbwe [2025-08-08] (Microsoft Studios)
Microsoft Flight Simulator Digital Ownership -> C:\Program Files\WindowsApps\Microsoft.DigitalOwnership_1.0.1.0_x64__8wekyb3d8bbwe [2023-12-16] (Microsoft Studios)
Microsoft.Office.ActionsServer -> C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\ActionsServer [2025-11-02] ()
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.968.0_x64__56jybvy8sckqj [2025-06-28] (NVIDIA Corp.)
OfficePushNotificationsUtility -> C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16 [2025-11-02] ()
SpotifyAB.SpotifyMusic -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.275.510.0_x64__zpdnekdrzrea0 [2025-10-24] (Spotify AB) [Startup Task]
The Northern Lights -> C:\Program Files\WindowsApps\Microsoft.TheNorthernLights_1.0.0.0_neutral__8wekyb3d8bbwe [2023-12-16] (Microsoft Corporation)
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2542.2.0_x64__cv1g1gvanyjgm [2025-10-24] (WhatsApp Inc.) [Startup Task]
WinAppRuntime.Main.1.5 -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Main.1.5_5001.373.1736.0_x64__8wekyb3d8bbwe [2025-02-03] (Microsoft Corp.)
WinAppRuntime.Singleton -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Singleton_8000.642.119.0_x64__8wekyb3d8bbwe [2025-10-19] (Microsoft Corp.)
Windows Feature Experience Pack -> C:\WINDOWS\SystemApps\SxS\MicrosoftWindows.58683691.InpApp_cw5n1h2txyewy [2025-10-24] (Microsoft Windows)
WinRAR -> C:\Program Files\WinRAR [2023-12-16] (win.rar GmbH)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-651480894-1371958004-639929314-1001_Classes\CLSID\{13357088-9834-0409-1600-134951500000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-651480894-1371958004-639929314-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-651480894-1371958004-639929314-1001_Classes\CLSID\{480D17DB-081C-4F02-BCEA-EE513FE2B2A8} -> [S23 Ultra von Leon] => C:\Users\ldeis\CrossDevice\S23 Ultra von Leon [2024-10-24 19:09]
CustomCLSID: HKU\S-1-5-21-651480894-1371958004-639929314-1001_Classes\CLSID\{5C4D8D77-5B87-40CA-884E-F56858227E5C}\localserver32 -> C:\Users\ldeis\AppData\Local\Programs\TeamSpeak\notification_helper.exe => Keine Datei
CustomCLSID: HKU\S-1-5-21-651480894-1371958004-639929314-1001_Classes\CLSID\{86ca1aa0-34aa-4e8b-a509-50c905bae2a2}\InprocServer32 -> => Keine Datei
CustomCLSID: HKU\S-1-5-21-651480894-1371958004-639929314-1001_Classes\CLSID\{C263A1A6-947A-48D2-9B4C-CA7F885E2258} -> [Dropbox] => C:\Users\ldeis\Dropbox [2024-03-28 18:43]
CustomCLSID: HKU\S-1-5-21-651480894-1371958004-639929314-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\ldeis\Dropbox [2024-03-28 18:43]
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\25.194.1005.0003\FileSyncShell64.dll [2025-10-31] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\25.194.1005.0003\FileSyncShell64.dll [2025-10-31] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\25.194.1005.0003\FileSyncShell64.dll [2025-10-31] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\25.194.1005.0003\FileSyncShell64.dll [2025-10-31] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\25.194.1005.0003\FileSyncShell64.dll [2025-10-31] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\25.194.1005.0003\FileSyncShell64.dll [2025-10-31] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\25.194.1005.0003\FileSyncShell64.dll [2025-10-31] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.87.0.dll [2025-10-21] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.87.0.dll [2025-10-21] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.87.0.dll [2025-10-21] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.87.0.dll [2025-10-21] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.87.0.dll [2025-10-21] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.87.0.dll [2025-10-21] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.87.0.dll [2025-10-21] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.87.0.dll [2025-10-21] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.87.0.dll [2025-10-21] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.87.0.dll [2025-10-21] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\25.194.1005.0003\FileSyncShell64.dll [2025-10-31] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\25.194.1005.0003\FileSyncShell64.dll [2025-10-31] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\25.194.1005.0003\FileSyncShell64.dll [2025-10-31] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\25.194.1005.0003\FileSyncShell64.dll [2025-10-31] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\25.194.1005.0003\FileSyncShell64.dll [2025-10-31] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\25.194.1005.0003\FileSyncShell64.dll [2025-10-31] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\25.194.1005.0003\FileSyncShell64.dll [2025-10-31] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.87.0.dll [2025-10-21] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.87.0.dll [2025-10-21] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.87.0.dll [2025-10-21] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.87.0.dll [2025-10-21] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.87.0.dll [2025-10-21] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.87.0.dll [2025-10-21] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.87.0.dll [2025-10-21] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.87.0.dll [2025-10-21] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.87.0.dll [2025-10-21] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.87.0.dll [2025-10-21] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\25.194.1005.0003\FileSyncShell64.dll [2025-10-31] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2025-09-08] (Adobe Inc. -> Adobe Systems Inc.)
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.87.0.dll [2025-10-21] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2025-11-02] (Malwarebytes Inc -> Malwarebytes)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\25.194.1005.0003\FileSyncShell64.dll [2025-10-31] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.87.0.dll [2025-10-21] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\25.194.1005.0003\FileSyncShell64.dll [2025-10-31] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.87.0.dll [2025-10-21] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvrfi.inf_amd64_ba9b9d6c7431e4ce\nvshext.dll [2025-04-14] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2025-11-02] (Malwarebytes Inc -> Malwarebytes)
==================== Codecs (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Drivers32: [MidisrvTransferComplete] => 0
HKLM\...\Drivers32-x32: [vidc.VP60] => C:\Windows\system32\vp6vfw.dll
HKLM\...\Drivers32-x32: [vidc.VP61] => C:\Windows\system32\vp6vfw.dll
==================== Verknüpfungen & WMI ========================
==================== Geladene Module (Nicht auf der Ausnahmeliste) =============
2015-12-29 06:25 - 2015-12-28 23:25 - 000120334 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\libgcc_s_dw2-1.dll
2015-12-29 06:25 - 2015-12-28 23:25 - 001540622 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\libstdc++-6.dll
2022-08-30 19:45 - 2024-05-16 03:51 - 007984128 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\resource.dll
2025-06-19 18:23 - 2025-06-19 18:23 - 006551040 _____ () [Datei ist nicht signiert] C:\Program Files\CleanZiloApp\infatica_agent.dll
2025-09-30 00:10 - 2025-09-30 00:10 - 000030720 _____ (Adobe Systems Inc.) [Datei ist nicht signiert] C:\Program Files\Adobe\Acrobat DC\Acrobat\locale\de_de\Acrobat Elements\ContextMenuShim64.deu
2023-12-16 16:50 - 2023-12-16 16:50 - 000000000 ___JL (Microsoft Corporation) [symlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems64.dll] C:\Program Files\Microsoft Office\root\Office16\AppVIsvSubsystems64.dll
2023-12-16 16:50 - 2023-12-16 16:50 - 000000000 ___JL (Microsoft Corporation) [symlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R64.dll] C:\Program Files\Microsoft Office\root\Office16\c2r64.dll
2015-12-29 06:25 - 2015-12-28 23:25 - 000079360 _____ (MingW-W64 Project. All rights reserved.) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\libwinpthread-1.dll
2024-12-18 17:54 - 2025-04-19 18:23 - 000000000 ___JL (NVIDIA Corporation) [symlink -> C:\Program Files\NVIDIA Corporation\NVIDIA App\MessageBus\NvMessageBusBroadcast.dll] C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem\NvMessageBusBroadcast.dll
2023-08-08 19:59 - 2023-08-08 19:59 - 000242688 _____ (Seiko Epson Corporation) [Datei ist nicht signiert] C:\Program Files (x86)\Epson Software\Event Manager\epnsm.dll
2023-08-08 19:59 - 2023-08-08 19:59 - 000057856 _____ (Seiko Epson Corporation) [Datei ist nicht signiert] C:\Program Files (x86)\Epson Software\Event Manager\EPNWPSHDevFinder.DLL
2023-08-08 19:59 - 2023-08-08 19:59 - 000291328 _____ (SEIKO EPSON CORPORATION) [Datei ist nicht signiert] C:\Program Files (x86)\Epson Software\Event Manager\LcMgr.dll
2021-10-26 16:58 - 2021-10-26 16:58 - 000647168 _____ (Seiko Epson Corporation) [Datei ist nicht signiert] C:\Program Files (x86)\EPSON\MyEpson Portal\Condition Viewer_00000012\ConView.dll
2021-10-26 10:00 - 2021-10-26 10:00 - 000708608 _____ (Seiko Epson Corporation) [Datei ist nicht signiert] C:\Program Files (x86)\EPSON\MyEpson Portal\Configration_00000171\MepCfg.dll
2020-04-17 10:15 - 2020-04-17 10:15 - 000577536 _____ (Seiko Epson Corporation) [Datei ist nicht signiert] C:\Program Files (x86)\EPSON\MyEpson Portal\MepUploader_00000542\MepUploader.dll
2019-02-22 15:09 - 2019-02-22 15:09 - 000475136 _____ (Seiko Epson Corporation) [Datei ist nicht signiert] C:\Program Files (x86)\EPSON\MyEpson Portal\Online Manual_00000013\MepFAQ.dll
2023-07-20 04:02 - 2023-07-20 04:02 - 000182784 _____ (SEIKO EPSON CORPORATION) [Datei ist nicht signiert] C:\WINDOWS\System32\EFXLM16A.DLL
2016-09-14 14:31 - 2016-09-14 14:31 - 000500736 ____S (SEIKO EPSON CORPORATION) [Datei ist nicht signiert] C:\WINDOWS\System32\enppmon.dll
2015-12-29 06:52 - 2015-12-28 23:52 - 002177536 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\LIBEAY32.dll
2015-12-29 06:52 - 2015-12-28 23:52 - 000462336 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\ssleay32.dll
2016-06-11 02:15 - 2016-06-10 19:15 - 000058880 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\imageformats\qdds.dll
2016-06-10 15:32 - 2016-06-10 08:32 - 000033792 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\imageformats\qgif.dll
2016-06-11 02:15 - 2016-06-10 19:15 - 000046592 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\imageformats\qicns.dll
2016-06-10 15:33 - 2016-06-10 08:33 - 000036352 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\imageformats\qico.dll
2016-06-10 15:32 - 2016-06-10 08:32 - 000258560 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\imageformats\qjpeg.dll
2016-06-11 01:51 - 2016-06-10 18:51 - 000028672 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\imageformats\qsvg.dll
2016-06-11 02:15 - 2016-06-10 19:15 - 000028672 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\imageformats\qtga.dll
2016-06-11 02:15 - 2016-06-10 19:15 - 000495616 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\imageformats\qtiff.dll
2016-06-11 02:15 - 2016-06-10 19:15 - 000027648 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\imageformats\qwbmp.dll
2016-06-11 02:16 - 2016-06-10 19:16 - 000416768 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\imageformats\qwebp.dll
2016-06-13 03:38 - 2016-06-12 20:38 - 000317440 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\mediaservice\dsengine.dll
2016-06-10 15:34 - 2016-06-10 08:34 - 001489920 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\platforms\qwindows.dll
2020-01-13 09:29 - 2020-01-13 02:29 - 005384704 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\Qt5Core.dll
2016-06-10 15:23 - 2016-06-10 08:23 - 005283840 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\Qt5Gui.dll
2016-06-13 03:29 - 2016-06-12 20:29 - 000853504 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\Qt5Multimedia.dll
2016-06-10 15:17 - 2016-06-10 08:17 - 001610240 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\Qt5Network.dll
2016-06-11 01:51 - 2016-06-10 18:51 - 000348160 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\Qt5Svg.dll
2016-06-13 03:27 - 2016-06-12 20:27 - 000188416 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\Qt5WebSockets.dll
2016-06-10 15:29 - 2016-06-10 08:29 - 006358528 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\Qt5Widgets.dll
2022-08-15 17:23 - 2022-08-15 10:23 - 000110207 _____ (Un4seen Developments) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\BASS.dll
2022-08-15 17:23 - 2022-08-15 10:23 - 000012166 _____ (Un4seen Developments) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\BASSWASAPI.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================
==================== Internet Explorer (Nicht auf der Ausnahmeliste) =============
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2025-10-25] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-10-25] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-10-25] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-10-25] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-10-25] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-10-25] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-10-25] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-10-25] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-10-25] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts Inhalt: =========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2022-05-07 06:24 - 2022-05-07 06:22 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Network ===========================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
DNS Servers: 192.168.8.1
ist aktiviert.
Network Binding:
=============
Ethernet: Realtek Gaming 2.5GbE Family Controller -> rt25cx21x64.sys
==================== Andere Bereiche ===========================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-651480894-1371958004-639929314-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img19.jpg
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows Defender\Features => (TamperProtection: 1) (TamperProtectionSource: 5)
HKLM\SOFTWARE\Microsoft\Windows Defender\Real-Time Protection => (DpaDisabled: 0)
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [UDP Query User{ABDDE800-200C-4FD7-804D-F9ECB4C3AC90}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{99A58A53-BE35-4EA3-93DF-DAC1E3C9703C}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{06D53CA7-FD8F-48D1-B158-67B58A7F3249}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALaunchHelper.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{103BD05E-D931-4102-9B59-52EF5BB69262}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{B18B743E-191A-45AC-9872-1641DFF0A82A}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{411BB543-8F4B-4AA1-8DD4-16E3A4A6C4E2}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{AF40949B-F475-4641-957C-8D8F0047A782}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{DC5179C7-4ADE-4D57-BD91-FA0C2FC56724}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{5EFF563D-D0D9-4CC4-BC0A-A55DD12018C8}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{B689213D-837B-4075-98C9-E157DFE884D1}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{19383C29-8536-4238-82EE-2E5FCBFACB5A}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{32DDB54D-4DB1-462D-A382-1F4018C61359}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{BA13EEF6-9462-48F6-A359-0708BA2FA722}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{670A3A18-724B-4CAA-AA6B-0CD0A127006E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hunt Showdown 1896\hunt.exe (EasyAntiCheat Oy -> Epic Games, Inc.)
FirewallRules: [{17FDFD50-5499-4678-82AF-0FE4C2269CBF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hunt Showdown 1896\hunt.exe (EasyAntiCheat Oy -> Epic Games, Inc.)
FirewallRules: [UDP Query User{B65E622C-4AEF-4C18-989A-E35CA2F0DF23}C:\program files (x86)\steam\steamapps\common\beamng.drive\bin64\beamng.x64.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\beamng.drive\bin64\beamng.x64.exe => Keine Datei
FirewallRules: [TCP Query User{2F0E4300-F65A-430B-AAB1-3A86BA1BDD46}C:\program files (x86)\steam\steamapps\common\beamng.drive\bin64\beamng.x64.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\beamng.drive\bin64\beamng.x64.exe => Keine Datei
FirewallRules: [{7C7923B3-3499-4F5C-8136-86C1714A7BA9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Elite Dangerous\EDLaunch.exe (Frontier Developments Plc -> Frontier Developments Ltd)
FirewallRules: [{59373236-15C6-4752-AA18-B260A895EACE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Elite Dangerous\EDLaunch.exe (Frontier Developments Plc -> Frontier Developments Ltd)
FirewallRules: [{8D62B610-89D2-41AE-A3A6-B78F2F8E4FED}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Survival Fountain of Youth\Survival Fountain of Youth.exe () [Datei ist nicht signiert]
FirewallRules: [{21A7E089-720F-4849-9046-136E7E7B2BF9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Survival Fountain of Youth\Survival Fountain of Youth.exe () [Datei ist nicht signiert]
FirewallRules: [UDP Query User{AD22BC41-D0A2-4DB2-B6DC-9F6A9158C2F1}C:\program files (x86)\steam\steamapps\common\beamng.drive\bin64\beamng.drive.x64.exe] => (Block) C:\program files (x86)\steam\steamapps\common\beamng.drive\bin64\beamng.drive.x64.exe (BeamNG GmbH -> BeamNG GmbH)
FirewallRules: [TCP Query User{9E1A8265-FC7E-4689-849C-4B7C9B2B3673}C:\program files (x86)\steam\steamapps\common\beamng.drive\bin64\beamng.drive.x64.exe] => (Block) C:\program files (x86)\steam\steamapps\common\beamng.drive\bin64\beamng.drive.x64.exe (BeamNG GmbH -> BeamNG GmbH)
FirewallRules: [{9CD288AB-D478-4B6B-A0F9-CDE9CC189A33}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BeamNG.drive\BeamNG.drive.exe (BeamNG GmbH -> BeamNG GmbH)
FirewallRules: [{926DFD06-4DC3-4E16-93B9-9822E4ADDA2E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BeamNG.drive\BeamNG.drive.exe (BeamNG GmbH -> BeamNG GmbH)
FirewallRules: [{3F6AE372-9AAA-4F0E-9C3C-077E0CDC0C30}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Helldivers 2\bin\helldivers2.exe (Arrowhead Game Studios AB -> Arrowhead Game Studios AB)
FirewallRules: [{3464F6BB-AC28-4BDD-9F41-828FDB986E2C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Helldivers 2\bin\helldivers2.exe (Arrowhead Game Studios AB -> Arrowhead Game Studios AB)
FirewallRules: [{654D16C9-41C1-450C-9603-B9E8A557118A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe => Keine Datei
FirewallRules: [{67ACC63D-B6BD-4B2D-AEE9-990DC1676554}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe => Keine Datei
FirewallRules: [{CC4BE4C0-F743-4ED7-BAC5-DF97B92E0E11}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{A04DCBD6-BCAC-409B-A91A-D574C0C63115}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{499E1452-69F8-40FA-9A2C-08B562AD2D41}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Lethal Company\Lethal Company.exe () [Datei ist nicht signiert]
FirewallRules: [{5042507B-B511-4D67-BA6D-FB63DF3BA51D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Lethal Company\Lethal Company.exe () [Datei ist nicht signiert]
FirewallRules: [{EF4DFCBC-54E0-4257-B947-36CE0988C69F}] => (Allow) C:\Users\ldeis\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{928AAC85-81EC-4355-9C42-961B35DE210C}] => (Allow) C:\Users\ldeis\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{A8AF8F48-26BE-41A7-AA76-7C24AD7DF1CA}] => (Allow) C:\Users\ldeis\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{57F30D18-3624-4D43-9310-3C92AAC34B54}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
FirewallRules: [{4CCE0E18-B0C7-42D5-B8A8-3427D61EDC54}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
FirewallRules: [{51B697BF-361D-4441-A486-448B5C9148E9}] => (Allow) C:\Users\ldeis\AppData\Local\Temp\EpInsNav\DL\3013\Network\EpsonNetSetup\Data\ENEasyApp.exe => Keine Datei
FirewallRules: [{9DA2BD8C-6006-43F8-91D7-E5EC6B58849E}] => (Allow) C:\Users\ldeis\AppData\Local\Temp\EpInsNav\DL\3013\Network\EpsonNetSetup\Data\ENEasyApp.exe => Keine Datei
FirewallRules: [UDP Query User{0B80215F-072A-4CC7-92F0-3E07EC905390}C:\program files (x86)\steam\steamapps\common\kerbal space program 2\ksp2_x64.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\kerbal space program 2\ksp2_x64.exe (Take-Two Interactive Software, Inc. -> )
FirewallRules: [TCP Query User{E2AEC000-8DD5-4658-A126-C79F3B31AA71}C:\program files (x86)\steam\steamapps\common\kerbal space program 2\ksp2_x64.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\kerbal space program 2\ksp2_x64.exe (Take-Two Interactive Software, Inc. -> )
FirewallRules: [{0AA20E57-CEFB-456C-9382-82BF06A3876F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Kerbal Space Program 2\PDLauncher\LauncherPatcher.exe => Keine Datei
FirewallRules: [{D0592B3E-0543-4581-837F-521ADBD08CEB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Kerbal Space Program 2\PDLauncher\LauncherPatcher.exe => Keine Datei
FirewallRules: [{B60B240C-4FBD-4AAB-94AA-B842C70D223D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Stranded Alien Dawn\StrandedSteam.exe (Haemimont Games) [Datei ist nicht signiert]
FirewallRules: [{C34535E9-0E59-47B4-8DA7-41D16E81163C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Stranded Alien Dawn\StrandedSteam.exe (Haemimont Games) [Datei ist nicht signiert]
FirewallRules: [{3FA0AE8F-554F-424B-8EAA-EDA08AF629C7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\launcher.exe (Skutta Software GmbH -> )
FirewallRules: [{29E348BE-81E8-4498-B010-98A5A95CED11}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\launcher.exe (Skutta Software GmbH -> )
FirewallRules: [{BC46B6D4-1B65-4F5E-9F78-CB4A761AFE61}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Deep Rock Galactic\FSD.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [{07DD73FE-A03E-42DE-B371-CA8E9868A06A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Deep Rock Galactic\FSD.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [{849EAB6E-443B-40E2-B5B5-1187461E955B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Red Dead Redemption 2\PlayRDR2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{D39ACC80-57D2-43A5-AA2A-3D1B685D917C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Red Dead Redemption 2\PlayRDR2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{0DCCC5B4-1CBF-419C-9EDE-533892DDC611}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GTFO\GTFO.exe () [Datei ist nicht signiert]
FirewallRules: [{2678DD9A-205F-4686-BD49-09464597E045}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GTFO\GTFO.exe () [Datei ist nicht signiert]
FirewallRules: [UDP Query User{69D3F5CD-CF28-4BCB-B7EC-3C03BB5DAC98}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe => Keine Datei
FirewallRules: [TCP Query User{918F9221-4E33-4C04-879D-778B21ADDC72}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe => Keine Datei
FirewallRules: [{3F6A0215-FE53-4DD5-96EB-C8D52EA5E9C8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grounded\Grounded.exe (Obsidian Entertainment, Inc. -> Epic Games, Inc.)
FirewallRules: [{5673B5C5-DA24-4AEA-A8E8-1F6C926889B9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grounded\Grounded.exe (Obsidian Entertainment, Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{B60C6980-2ED4-47EF-9BAC-531992A29CD3}C:\xboxgames\microsoft flight simulator\content\flightsimulator.exe] => (Allow) C:\xboxgames\microsoft flight simulator\content\flightsimulator.exe (Zugriff verweigert) [Datei ist nicht signiert?]
FirewallRules: [TCP Query User{B77B8BC4-7786-44A4-ADE2-84C9A788FA70}C:\xboxgames\microsoft flight simulator\content\flightsimulator.exe] => (Allow) C:\xboxgames\microsoft flight simulator\content\flightsimulator.exe (Zugriff verweigert) [Datei ist nicht signiert?]
FirewallRules: [{7A67ACF8-DA81-472C-9355-E2CE63C2386F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{E66086F2-0ED9-428A-AD67-E0ADF18FF17A}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{E4712AE8-DC7F-4255-8069-E0E9BF23BB1A}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{3195BF00-401C-46AC-BA69-C108B596320D}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{26B76CC0-00A9-4DB4-B857-0C880ABBB0B8}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{9FDFB282-914B-4BDC-A7D3-F2965E09927B}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{7128B9BE-1DC2-4B1D-9287-E7091C6C36CB}] => (Allow) C:\Ross-Tech\VCDS\VCDS.EXE => Keine Datei
FirewallRules: [{60D4CA7C-172D-4FC6-842E-21F27CD14ECA}] => (Allow) C:\Ross-Tech\VCDS\VCIConfig.EXE => Keine Datei
FirewallRules: [{B7DCB27D-3CE7-4951-B19A-981F0EF68D4F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto V Enhanced\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{A8BC2320-EDA3-4B86-A26F-438D7B1036AE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto V Enhanced\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{13001177-6963-4664-B27A-FEC39EE2444B}C:\program files (x86)\steam\steamapps\common\grand theft auto v enhanced\gta5_enhanced.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v enhanced\gta5_enhanced.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{E7D9350E-24AC-4471-99A5-0AC7C519A333}C:\program files (x86)\steam\steamapps\common\grand theft auto v enhanced\gta5_enhanced.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v enhanced\gta5_enhanced.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{04314339-C8E6-4112-ADAA-242CE3B0253D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\CityTransportSim\TramSimNext.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [{ABE6A78D-AAB4-4F2E-BBB5-C6CDBD50333F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\CityTransportSim\TramSimNext.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{071DD18A-D75B-4E84-83FF-9C6EAA3CCD7A}C:\program files (x86)\steam\steamapps\common\citytransportsim\tramsimnext\binaries\win64\tramsimnext-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\citytransportsim\tramsimnext\binaries\win64\tramsimnext-win64-shipping.exe (ViewApp GmbH) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{6576C46F-433B-4AF7-AA33-7FD3C590EAC2}C:\program files (x86)\steam\steamapps\common\citytransportsim\tramsimnext\binaries\win64\tramsimnext-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\citytransportsim\tramsimnext\binaries\win64\tramsimnext-win64-shipping.exe (ViewApp GmbH) [Datei ist nicht signiert]
FirewallRules: [{1059FC97-57AA-46BD-A87C-3EBB0EB79C59}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\OMSI 2\Omsi.exe (MR-Software) [Datei ist nicht signiert]
FirewallRules: [{FA47EAE4-A084-424F-8F54-9041F278245F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\OMSI 2\Omsi.exe (MR-Software) [Datei ist nicht signiert]
FirewallRules: [{6418944E-A53C-41F8-BF02-45084C554450}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{BABEAC12-91F4-4B22-9960-42DC3FA7753F}C:\program files (x86)\steam\steamapps\common\red dead redemption 2\rdr2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\red dead redemption 2\rdr2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{CB2C7F29-F1D0-436B-A0F2-41D8BE8B4EF7}C:\program files (x86)\steam\steamapps\common\red dead redemption 2\rdr2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\red dead redemption 2\rdr2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{015BFA6A-347B-4CDB-A3E5-4BFA2CE79079}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
FirewallRules: [{A6CA57C8-9424-4CB4-B93F-5419FA4E273D}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
FirewallRules: [{129097BB-D6E7-470D-AFB0-B82A3D90E482}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.275.510.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{24314946-8CBC-46E9-9B56-D1B90D7E6FF5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.275.510.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{61C354B2-5BED-48A9-9D44-1F5A29A2AF8A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.275.510.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{751AC1E4-D0EA-4F18-AD6E-944032601522}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.275.510.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{C73F3E55-16ED-43D8-A43A-B9541E27B558}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.275.510.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{E83A07F5-3A04-47CD-B58B-C75151731415}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.275.510.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{2D3134F1-FE92-4851-8749-D5B72ACC052D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.275.510.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{0833EC2A-C27F-421E-856F-3A8E26250346}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.275.510.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{FA2473DF-B4D1-4A44-9016-93E04638D48A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.275.510.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{DC8AFF3E-95CC-4CB9-8E47-2D25C83BB18D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.275.510.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{C43DB840-7E00-42CC-AF0C-30A06CF5BA77}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.275.510.0_x64__zpdnekdrzrea0\SpotifyLauncher.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{47FFF819-8CFC-4C03-8DA7-A9DC27EE82D9}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.275.510.0_x64__zpdnekdrzrea0\SpotifyLauncher.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{04C6281D-D110-4472-9CBC-CE609A1F9B8A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.275.510.0_x64__zpdnekdrzrea0\SpotifyLauncher.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{1461D03F-F1B7-4A4F-9D1D-52D3B110D102}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DayZ\DayZLauncher.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive a.s.)
FirewallRules: [{905FCEEE-DC5E-4DA2-9439-BE0BB532B501}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DayZ\DayZLauncher.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive a.s.)
FirewallRules: [{9B9373FB-758E-47C4-8F2B-802431B4E950}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DayZ\DayZ_BE.exe (BOHEMIA INTERACTIVE a.s. -> BattlEye Innovations)
FirewallRules: [{5BB9E894-D739-455B-A560-0139B9102307}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DayZ\DayZ_BE.exe (BOHEMIA INTERACTIVE a.s. -> BattlEye Innovations)
FirewallRules: [{FD74DBB3-34C9-4208-A333-B4DCFCBE3B17}] => (Allow) C:\Program Files (x86)\Overwolf\0.283.0.12\OverwolfBrowser.exe => Keine Datei
FirewallRules: [{2F99C0D7-7A58-4C18-BD4F-384B6C375AE4}] => (Allow) C:\Program Files (x86)\Overwolf\0.283.0.12\OverwolfBrowser.exe => Keine Datei
FirewallRules: [{BE2FB754-9D00-452E-B156-E34F76A3500C}] => (Block) C:\Program Files (x86)\Overwolf\0.283.0.12\OverwolfBrowser.exe => Keine Datei
FirewallRules: [{37BA2A6A-C7CC-495C-AD51-E0DAED93C0DC}] => (Block) C:\Program Files (x86)\Overwolf\0.283.0.12\OverwolfBrowser.exe => Keine Datei
FirewallRules: [{674BC256-D2D0-484B-9C63-DAB7C503E008}] => (Allow) C:\Program Files (x86)\Overwolf\0.283.1.4\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{2CC842E7-B907-4C05-B81F-20E2DD86AFDB}] => (Allow) C:\Program Files (x86)\Overwolf\0.283.1.4\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
==================== Wiederherstellungspunkte =========================
31-10-2025 14:49:08 Windows Modules Installer
==================== Fehlerhafte Geräte im Gerätemanager ============
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Fehlereinträge in der Ereignisanzeige: ========================
Applikationsfehler:
==================
Error: (10/31/2025 02:38:52 PM) (Source: .NET Runtime) (EventID: 1022) (User: )
Description: .NET Runtime version 4.0.30319.0 - Fehler beim Initialisieren der Profilerstellungs-API-Anfügeinfrastruktur. Dieser Prozess ermöglicht einem Profiler das Anfügen nicht. HRESULT: 0x80004005. Prozess-ID (dezimal): 10484. Meldungs-ID: [0x2509].
Error: (10/29/2025 08:28:42 AM) (Source: .NET Runtime) (EventID: 1022) (User: )
Description: .NET Runtime version 4.0.30319.0 - Fehler beim Initialisieren der Profilerstellungs-API-Anfügeinfrastruktur. Dieser Prozess ermöglicht einem Profiler das Anfügen nicht. HRESULT: 0x80004005. Prozess-ID (dezimal): 29500. Meldungs-ID: [0x2509].
Error: (10/25/2025 06:27:30 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volumenschattenkopie-Dienst-Informationen: Der COM-Server mit CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} und dem Namen "CEventSystem" kann nicht gestartet werden. [0x8007045b, Der Computer wird heruntergefahren.]
Error: (10/25/2025 06:15:47 PM) (Source: .NET Runtime) (EventID: 1022) (User: )
Description: .NET Runtime version 4.0.30319.0 - Fehler beim Initialisieren der Profilerstellungs-API-Anfügeinfrastruktur. Dieser Prozess ermöglicht einem Profiler das Anfügen nicht. HRESULT: 0x80004005. Prozess-ID (dezimal): 28428. Meldungs-ID: [0x2509].
Error: (10/25/2025 04:33:57 PM) (Source: .NET Runtime) (EventID: 1022) (User: )
Description: .NET Runtime version 4.0.30319.0 - Fehler beim Initialisieren der Profilerstellungs-API-Anfügeinfrastruktur. Dieser Prozess ermöglicht einem Profiler das Anfügen nicht. HRESULT: 0x80004005. Prozess-ID (dezimal): 27888. Meldungs-ID: [0x2509].
Error: (10/24/2025 03:38:50 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volumenschattenkopie-Dienst-Informationen: Der COM-Server mit CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} und dem Namen "CEventSystem" kann nicht gestartet werden. [0x8007045b, Der Computer wird heruntergefahren.]
Error: (10/24/2025 03:35:04 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Aufrufen von Routine "CoCreateInstance" ist ein unerwarteter Fehler aufgetreten. hr = 0x8007045b, Der Computer wird heruntergefahren..
Error: (10/24/2025 03:35:04 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volumenschattenkopie-Dienst-Informationen: Der COM-Server mit CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} und dem Namen "CEventSystem" kann nicht gestartet werden. [0x8007045b, Der Computer wird heruntergefahren.]
Systemfehler:
=============
Error: (11/02/2025 10:33:26 AM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1801) (User: NT-AUTORITÄT)
Description: Die Zertifizierungsstelle/Schlüssel für den sicheren Start müssen aktualisiert werden. Diese Gerätesignaturinformationen sind hier enthalten.
DeviceAttributes: BaseBoardManufacturer:ASUSTeK COMPUTER INC.;FirmwareManufacturer:American Megatrends Inc.;FirmwareVersion:1807;OEMModelBaseBoard:TUF GAMING B650M-PLUS;OEMManufacturerName:ASUS;OSArchitecture:amd64;
BucketId: 43e4ca25213157d048a764f3e7e172613326f91118b339f6af3185690110122c
BucketConfidenceLevel:
UpdateType: 0
HResult: 0
Error: (11/02/2025 10:30:26 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Dropbox-Update-Service (dbupdate)" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Dienst antwortete nicht rechtzeitig auf die Start- oder Steuerungsanforderung.
Error: (11/02/2025 10:30:26 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (60000 ms) wurde beim Verbindungsversuch mit dem Dienst Dropbox-Update-Service (dbupdate) erreicht.
Error: (11/02/2025 10:28:25 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am 31.10.2025 um 15:12:22 unerwartet heruntergefahren.
Error: (10/31/2025 02:53:37 PM) (Source: DCOM) (EventID: 10005) (User: NT-AUTORITÄT)
Description: Fehler "87" in DCOM, als der Dienst "GamingServices" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden:
{D529741A-1BF1-4D1E-9976-35089622E758}
Error: (10/31/2025 02:53:37 PM) (Source: DCOM) (EventID: 10005) (User: NT-AUTORITÄT)
Description: Fehler "87" in DCOM, als der Dienst "GamingServices" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden:
{3E8C9ABE-9226-4609-BF5B-60288A391DEE}
Error: (10/31/2025 02:53:37 PM) (Source: DCOM) (EventID: 10005) (User: NT-AUTORITÄT)
Description: Fehler "87" in DCOM, als der Dienst "GamingServices" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden:
{D529741A-1BF1-4D1E-9976-35089622E758}
Error: (10/31/2025 02:53:37 PM) (Source: DCOM) (EventID: 10005) (User: NT-AUTORITÄT)
Description: Fehler "87" in DCOM, als der Dienst "GamingServices" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden:
{3E8C9ABE-9226-4609-BF5B-60288A391DEE}
Windows Defender:
================
Date: 2025-11-02 10:34:30
Description:
Microsoft Defender Antivirus hat Schadsoftware oder andere potenziell unerwünschte Software erkannt.
Weitere Informationen:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/NSteal.SB&threatid=2147956366&enterprise=0
Name: Trojan:Win32/NSteal.SB
Schweregrad: Schwerwiegend
Kategorie: Trojaner
Pfad: CmdLine:_C:\Windows\System32\cmd.exe /C start /min C:\Program Files (x86)\LocalUserHelper\node\node.exe C:\Program Files (x86)\LocalUserHelper\helper.js
Erkennungsursprung: Unbekannt
Erkennungstype: Konkret
Erkennungsquelle: System
Benutzer: NT-AUTORITÄT\SYSTEM
Prozessname: Unknown
Sicherheitsversion: AV: 1.439.590.0, AS: 1.439.590.0, NIS: 1.439.590.0
Modulversion: AM: 1.1.25090.3001, NIS: 1.1.25090.3001
Date: 2025-11-02 10:28:38
Description:
Microsoft Defender Antivirus hat Schadsoftware oder andere potenziell unerwünschte Software erkannt.
Weitere Informationen:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/NSteal.SB&threatid=2147956366&enterprise=0
Name: Trojan:Win32/NSteal.SB
Schweregrad: Schwerwiegend
Kategorie: Trojaner
Pfad: CmdLine:_C:\Windows\System32\cmd.exe /C start /min C:\Program Files (x86)\LocalUserHelper\node\node.exe C:\Program Files (x86)\LocalUserHelper\helper.js
Erkennungsursprung: Unbekannt
Erkennungstype: Konkret
Erkennungsquelle: System
Benutzer: NT-AUTORITÄT\SYSTEM
Prozessname: Unknown
Sicherheitsversion: AV: 1.439.590.0, AS: 1.439.590.0, NIS: 1.439.590.0
Modulversion: AM: 1.1.25090.3001, NIS: 1.1.25090.3001
Date: 2025-10-23 18:39:49
Description:
Microsoft Defender Antivirus ѕčâπ ĥàŝ ъзėʼn şŧбρр℮δ вęƒõřê çоmφℓëţîôʼn.%ŋ %ţŞčąň ЇÐ:%ъ{FAC7FFAA-C8DB-477A-802A-FE5C6EE4C45D}%л %ťŚĉâη Ŧγрė:%ьAntimalware%ή %ŧŜ¢âπ Рãřάmеťέŕŝ:%вSchnellüberprüfung%л %ťŨşέř:%вNT-AUTORITÄT\SYSTEM%ŋ %ţŜťőρ Ѓėάѕøή:%ъЅĉђ℮ďµŀεď ś¢äŋ ώåś šķìрφéđ ъěсăūşэ ťђĕ ľаşť ѕµçċ℮šşƒцļ š¢áп ẁāš ẁίτĥĩń ŧħë ľаŝţ 7 ďäуѕ
Date: 2025-10-08 13:31:41
Description:
C:\Program Files (x86)\Steam\steamapps\common\Red Dead Redemption 2\RDR2.exe wurde durch den überwachten Ordnerzugriff daran gehindert, %userprofile%\OneDrive\Dokumente\Rockstar Games zu ändern.
Erkennungszeit: 2025-10-08T11:31:41.832Z
Benutzer: Leons-PC\ldeis
Pfad: %userprofile%\OneDrive\Dokumente\Rockstar Games
Prozessname: C:\Program Files (x86)\Steam\steamapps\common\Red Dead Redemption 2\RDR2.exe
Sicherheitsversion: 1.439.10.0
Modulversion: 1.1.25090.3001
Produktversion: 4.18.25080.5
Date: 2025-10-08 13:30:23
Description:
C:\Program Files (x86)\Steam\steamapps\common\Red Dead Redemption 2\RDR2.exe wurde durch den überwachten Ordnerzugriff daran gehindert, %userprofile%\OneDrive\Dokumente\Rockstar Games zu ändern.
Erkennungszeit: 2025-10-08T11:30:23.042Z
Benutzer: Leons-PC\ldeis
Pfad: %userprofile%\OneDrive\Dokumente\Rockstar Games
Prozessname: C:\Program Files (x86)\Steam\steamapps\common\Red Dead Redemption 2\RDR2.exe
Sicherheitsversion: 1.439.10.0
Modulversion: 1.1.25090.3001
Produktversion: 4.18.25080.5
Event[0]
Date: 2025-08-02 16:03:22
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.
Neue Version der Sicherheitsinformationen:
%Vorherige Version der Sicherheitsinformationen: 1.433.196.0
Update Source: Microsoft Center zum Schutz vor Schadsoftware
Sicherheitstyp: AntiSpyware
Updatetyp: Voll
Benutzer: NT-AUTORITÄT\SYSTEM
Aktuelle Modulversion:
%Vorherige Modulversion: 1.1.25060.6
Fehlercode: 0x80072f8f
Fehlerbeschreibung: Es ist ein Sicherheitsfehler aufgetreten.
Date: 2025-08-02 16:03:22
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.
Neue Version der Sicherheitsinformationen:
%Vorherige Version der Sicherheitsinformationen: 1.433.196.0
Update Source: Microsoft Center zum Schutz vor Schadsoftware
Sicherheitstyp: AntiVirus
Updatetyp: Voll
Benutzer: NT-AUTORITÄT\SYSTEM
Aktuelle Modulversion:
%Vorherige Modulversion: 1.1.25060.6
Fehlercode: 0x80072f8f
Fehlerbeschreibung: Es ist ein Sicherheitsfehler aufgetreten.
Date: 2025-08-02 16:03:21
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.
Neue Version der Sicherheitsinformationen:
%Vorherige Version der Sicherheitsinformationen: 1.433.196.0
Update Source: Microsoft Update-Server
Sicherheitstyp: AntiVirus
Updatetyp: Voll
Benutzer: NT-AUTORITÄT\SYSTEM
Aktuelle Modulversion:
%Vorherige Modulversion: 1.1.25060.6
Fehlercode: 0x80240022
Fehlerbeschreibung: Die Suche des Programms nach Definitionsaktualisierungen ist nicht möglich.
Date: 2025-08-02 16:03:21
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.
Neue Version der Sicherheitsinformationen:
%Vorherige Version der Sicherheitsinformationen: 1.433.196.0
Update Source: Microsoft Update-Server
Sicherheitstyp: AntiVirus
Updatetyp: Voll
Benutzer: NT-AUTORITÄT\SYSTEM
Aktuelle Modulversion:
%Vorherige Modulversion: 1.1.25060.6
Fehlercode: 0x80240022
Fehlerbeschreibung: Die Suche des Programms nach Definitionsaktualisierungen ist nicht möglich.
Date: 2025-05-10 20:48:41
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.
Neue Version der Sicherheitsinformationen:
%Vorherige Version der Sicherheitsinformationen: 1.427.678.0
Update Source: Microsoft Malware Protection Center
Sicherheitstyp: AntiVirus
Updatetyp: Full
Benutzer: NT-AUTORITÄT\SYSTEM
Aktuelle Modulversion:
%Vorherige Modulversion: 1.1.25030.1
Fehlercode: 0x80072ee7
Fehlerbeschreibung: Der Servername oder die Serveradresse konnte nicht verarbeitet werden.
CodeIntegrity:
===============
Date: 2025-10-29 08:28:37
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\AI\aimgr.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll that did not meet the Microsoft signing level requirements.
Date: 2025-10-29 08:28:37
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\AI\aimgr.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Overwolf\0.283.0.12\OWClient.dll that did not meet the Microsoft signing level requirements.
Date: 2025-10-29 08:28:37
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\AI\aimgr.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Overwolf\0.283.0.12\ow-graphics-vulkan.dll that did not meet the Microsoft signing level requirements.
Date: 2025-10-08 21:47:21
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Users\ldeis\AppData\Local\Discord\app-1.0.9210\Discord.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Overwolf\0.282.0.9\OWClient.dll that did not meet the Microsoft signing level requirements.
Date: 2025-10-08 21:47:21
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Users\ldeis\AppData\Local\Discord\app-1.0.9210\Discord.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Overwolf\0.282.0.9\ow-graphics-vulkan.dll that did not meet the Microsoft signing level requirements.
Date: 2025-10-08 13:26:59
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Users\ldeis\AppData\Local\Discord\app-1.0.9208\Discord.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Overwolf\0.282.0.9\OWClient.dll that did not meet the Microsoft signing level requirements.
Date: 2025-10-08 13:26:59
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Users\ldeis\AppData\Local\Discord\app-1.0.9208\Discord.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Overwolf\0.282.0.9\ow-graphics-vulkan.dll that did not meet the Microsoft signing level requirements.
Date: 2025-09-16 16:34:34
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Users\ldeis\AppData\Local\Discord\app-1.0.9208\Discord.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Overwolf\0.280.2.1\OWClient.dll that did not meet the Microsoft signing level requirements.
Date: 2025-09-16 16:34:34
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Users\ldeis\AppData\Local\Discord\app-1.0.9208\Discord.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Overwolf\0.280.2.1\ow-graphics-vulkan.dll that did not meet the Microsoft signing level requirements.
==================== Speicherinformationen ===========================
BIOS: American Megatrends Inc. 1807 09/27/2023
Hauptplatine: ASUSTeK COMPUTER INC. TUF GAMING B650M-PLUS
Prozessor: AMD Ryzen 7 7800X3D 8-Core Processor
Prozentuale Nutzung des RAM: 47%
Installierter physikalischer RAM: 31965.24 MB
Verfügbarer physikalischer RAM: 16750.39 MB
Summe virtueller Speicher: 34013.24 MB
Verfügbarer virtueller Speicher: 16646.77 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:1906.79 GB) (Free:640.72 GB) (Model: KINGSTON SKC3000D2048G) NTFS
\\?\Volume{3d1924ec-4f84-42a7-bdb7-95aa38e505f9}\ () (Fixed) (Total:0.82 GB) (Free:0.18 GB) NTFS
\\?\Volume{a08a39ad-04db-43d4-9bd3-5170b9327408}\ () (Fixed) (Total:0.09 GB) (Free:0.06 GB) FAT32
==================== MBR & Partitionstabelle ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 1907.7 GB) (Disk ID: 00000000)
Partition: GPT.
==================== Ende von Addition.txt =======================
|
|
Gestern, 12:54
| #3 | |
| /// Winkelfunktion /// TB-Süch-Tiger™   | Windows Defender schließt Laufwerk C in der Überprüfung ausZitat:
Deinstalliere node.js komplett, danach nen Lauf mit adwCleaner machen. adwCleaner Führe AdwCleaner gemäß der bebilderten Anleitung aus und poste abschließend die Logdatei in CODE-Tags. adwcleaner zwecks Kontrolle bitte wiederholen, falls es Funde gab. Dann jetzt bitte mit Malwarebytes weitermachen.
__________________ |
|
Gestern, 14:19
| #4 |
| | Windows Defender schließt Laufwerk C in der Überprüfung aus Hi cosinus, danke für deine schnelle Reaktion. Ich habe node.js deinstalliert und den adwcleaner laufen lassen. Hier ist das Ergebnis: Code:
ATTFilter # -------------------------------
# Malwarebytes AdwCleaner 8.6.0.613
# -------------------------------
# Build: 08-19-2025
# Database: 2025-08-19.3 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 11-02-2025
# Duration: 00:00:00
# OS: Windows 11 (Build 26200.6901)
# Cleaned: 1
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
No malicious registry entries cleaned.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
Deleted Honey - jid1-93CWPmRbVPjRQA@jetpack
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1454 octets] - [02/11/2025 14:04:48]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
Ich habe Malwarebytes laufen lassen und es wurden keine Bedrohungen festgestellt. Im Windows Defender ist aber leider immer noch das Laufwerk C als Ausnahme deklariert und ein Virenscan nach wie vor nicht möglich  Code:
ATTFilter Malwarebytes
www.malwarebytes.com
-Protokolldetails-
Scan-Datum: 02.11.2025
Scan-Zeit: 14:11
Protokolldatei: 70398f5c-b7ed-11f0-aaab-e89c2597d384.json
-Softwaredaten-
Version: 5.4.3.221
Komponentenversion: 144.0.5414
Version des Aktualisierungspakets: 1.0.104503
Lizenz: Kostenlos
-Systemdaten-
Betriebssystem: Windows 11 (Build 26200.7019)
CPU: x64
Dateisystem: NTFS
Benutzer: Leons-PC\ldeis
-Scan-Übersicht-
Scan-Typ: Bedrohungs-Scan
Scan gestartet von: Manuell
Ergebnis: Abgeschlossen
Gescannte Objekte: 207480
Erkannte Bedrohungen: 0
In die Quarantäne verschobene Bedrohungen: 0
Abgelaufene Zeit: 1 Min., 6 Sek.
-Scan-Optionen-
Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Aktiviert
Heuristik: Aktiviert
PUP: Erkennung
PUM: Erkennung
-Scan-Details-
Prozess: 0
(keine bösartigen Elemente erkannt)
Modul: 0
(keine bösartigen Elemente erkannt)
Registrierungsschlüssel: 0
(keine bösartigen Elemente erkannt)
Registrierungswert: 0
(keine bösartigen Elemente erkannt)
Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)
Daten-Stream: 0
(keine bösartigen Elemente erkannt)
Ordner: 0
(keine bösartigen Elemente erkannt)
Datei: 0
(keine bösartigen Elemente erkannt)
Physischer Sektor: 0
(keine bösartigen Elemente erkannt)
WMI: 0
(keine bösartigen Elemente erkannt)
(end)
|
|
Gestern, 14:29
| #5 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Windows Defender schließt Laufwerk C in der Überprüfung aus Es wurde auch nicht geschrieben, dass nach adwCleaner wieder alles in Ordnung sein wird! Scripting/Repair mit FRST64 WARNUNG AN ALLE MITLESER !!! Dieses FRST-Script ist ausschließlich für diesen Nutzer gedacht und sollte niemals 1:1 für ein anderes System angewendet werden!
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
Gestern, 15:17
| #6 |
| | Windows Defender schließt Laufwerk C in der Überprüfung aus Hi cosinus, sry. Die Logdatei der fix.txt kann ich aufgrund der Anzahl Zeichen sowie der Größe nicht hochladen. Ich habe es auch schon als WinRAR gepackt, allerdings kommt beim Hochladen ein PHP-Fehler. Wie kann ich dir das Log noch zu kommen lassen? |
|
Gestern, 16:33
| #7 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Windows Defender schließt Laufwerk C in der Überprüfung aus Bei https://pastebin.com/ einfügen und hier verlinken.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
| Themen zu Windows Defender schließt Laufwerk C in der Überprüfung aus |
| administrator, adobe, computer, defender, desktop, firefox, google, installation, internet, mozilla, nvidia, performance, problem, prozesse, prüfen, realtek, registry, security, server, services.exe, software, svchost.exe, system, updates, windows |
Linear-Darstellung
