| |
| |||||||
Log-Analyse und Auswertung: PUP.Adware.Heuristic auf Win 11 PCWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
30.11.2025, 17:44
| #16 |
 |  PUP.Adware.Heuristic auf Win 11 PCCode:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 20-11-2025
durchgeführt von merli (Administrator) auf MERLIN (Micro-Star International Co., Ltd MS-7B86) (30-11-2025 17:28:19)
Gestartet von C:\Users\merli\Downloads\FRST64.exe
Geladene Profile: merli
Plattform: Microsoft Windows 11 Home Version 23H2 22631.6199 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: FF
Start-Modus: Normal
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(C:\Program Files\Bitdefender Agent\ProductAgentService.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\27.1.1.23_0\DiscoverySrv.exe
(C:\Program Files\Bitdefender\Bitdefender Security App\bdservicehost.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security App\bdagent.exe
(C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdntwrk.exe
(C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bduserhost.exe <2>
(C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe ->) (S.C. BITDEFENDER S.R.L. -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\wsccommunicator.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA app\CEF\NVIDIA Overlay.exe <5>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA app\ShadowPlay\nvsphelper64.exe
(C:\Program Files\Oculus\Support\oculus-remote-desktop\RemoteDesktopCompanion.exe ->) () [Datei ist nicht signiert] C:\Program Files\Oculus\Support\oculus-remote-desktop\MQRDCrashpadHandler.exe
(C:\Program Files\Oculus\Support\oculus-runtime\OVRServer_x64.exe ->) (Meta Platforms, Inc. -> Meta Platforms Technologies LLC) C:\Program Files\Oculus\Support\oculus-remote-desktop\RemoteDesktopCompanion.exe
(C:\Program Files\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe ->) (Meta Platforms, Inc. -> Facebook Technologies, LLC) C:\Program Files\Oculus\Support\oculus-runtime\OVRRedir.exe
(C:\Program Files\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe ->) (Meta Platforms, Inc. -> Facebook Technologies, LLC) C:\Program Files\Oculus\Support\oculus-runtime\OVRServer_x64.exe
(C:\Program Files\Streaming Service\ps_server.exe ->) (Qingdao Pico Technology Co.,Ltd. -> ) C:\Program Files\Streaming Service\parfait_crash_handler.exe
(C:\Program Files\Streaming Service\ps_service_launcher.exe ->) (Qingdao Pico Technology Co.,Ltd. -> ) C:\Program Files\Streaming Service\ps_server.exe
(C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_525.31002.150.0_x64__cw5n1h2txyewy\WidgetBoard.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\142.0.3595.94\msedgewebview2.exe <7>
(Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\CNMNSST2.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe
(Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\UUS\Packages\Preview\amd64\MoNotificationUx.exe
(PrintCtrl.exe ->) (ActMask Group Co., Ltd -> ActMask Co.,Ltd - hxxp://www.all2pdf.com) C:\WINDOWS\System32\PrintDisp.exe <2>
(services.exe ->) (ActMask Group Co., Ltd -> ActMask Co.,Ltd - hxxp://WWW.ALL2PDF.COM) C:\WINDOWS\System32\PrintCtrl.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\redline\bdredline.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security App\bdservicehost.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security App\Safepay\bdservicehost.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe <3>
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender VPN\bdvpnService.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe
(services.exe ->) (Canon Inc. -> ) C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(services.exe ->) (Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\IJ Scan Utility\SETEVENT.exe
(services.exe ->) (Even Balance, Inc. -> ) C:\WINDOWS\System32\PnkBstrA.exe
(services.exe ->) (Geek Software GmbH -> geek software GmbH) C:\Program Files\PDF24\pdf24.exe
(services.exe ->) (Meta Platforms, Inc. -> Facebook Technologies, LLC) C:\Program Files\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\25.206.1021.0003\FileSyncHelper.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\msiexec.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <4>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_20ae8f14a487d5db\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Qingdao Pico Technology Co.,Ltd. -> ) C:\Program Files\Streaming Service\ps_service_launcher.exe
(services.exe ->) (Surfshark B.V. -> Surfshark.Service) C:\Program Files\Surfshark\Surfshark.Service.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\25.206.1021.0003\FileCoAuth.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.179.1.0_x64__8wekyb3d8bbwe\MicrosoftStartFeedProvider\MicrosoftStartFeedProvider.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\LocationNotificationWindows.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [PrintDisp] => C:\Windows\system32\PrintDisp.exe [595080 2019-03-21] (ActMask Group Co., Ltd -> ActMask Co.,Ltd - hxxp://www.all2pdf.com)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-10] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [PDF24] => C:\Program Files\PDF24\pdf24.exe [641752 2025-01-13] (Geek Software GmbH -> geek software GmbH)
HKLM\...\Run: [Bdagent] => C:\Program Files\Bitdefender\Bitdefender Security App\bdagent.exe [1088832 2025-11-26] (Bitdefender SRL -> Bitdefender)
HKLM\...\Run: [BdVpnApp] => C:\Program Files\Bitdefender\Bitdefender VPN\BdVpnApp.exe [501424 2025-03-20] (Bitdefender SRL -> Bitdefender)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX2] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\CNMNSST2.exe [271496 2017-11-02] (Canon Inc. -> CANON INC.)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [133128 2024-12-01] (Adobe Inc. -> Adobe Inc.)
HKLM-x32\...\Run: [] => [X]
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Beschränkung <==== ACHTUNG
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Beschränkung <==== ACHTUNG
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Beschränkung <==== ACHTUNG
HKU\S-1-5-21-1417567037-3132848013-3212831320-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4736872 2025-11-15] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1417567037-3132848013-3212831320-1001\...\Run: [Toolkit] => C:\Program Files (x86)\Toolkit\Toolkit.exe [1619816 2021-11-22] (SEAGATE TECHNOLOGY LLC -> Seagate Technology LLC)
HKU\S-1-5-21-1417567037-3132848013-3212831320-1001\...\Run: [CiscoMeetingDaemon] => C:\Users\merli\AppData\Local\WebEx\WebexHost.exe [8080480 2023-07-03] (Cisco WebEx LLC -> Cisco Webex LLC)
HKU\S-1-5-21-1417567037-3132848013-3212831320-1001\...\Run: [EADM] => C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALauncher.exe [3754144 2025-10-17] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-1417567037-3132848013-3212831320-1002\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4736872 2025-11-15] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1417567037-3132848013-3212831320-1002\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4736872 2025-11-15] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1417567037-3132848013-3212831320-1003\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4736872 2025-11-15] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\ActMaskR: C:\Windows\System32\spool\prtprocs\x64\ActPrint.dll [51848 2018-09-14] (ActMask Group Co., Ltd -> ActMask Co.,Ltd)
HKLM\...\Windows x64\Print Processors\Canon TR4500 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDEU.DLL [506368 2023-06-15] (CANON INC.) [Datei ist nicht signiert]
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\Windows\system32\AdobePDF.dll [65488 2020-05-30] (Adobe Inc. -> Adobe Systems Inc)
HKLM\...\Print\Monitors\Canon BJ FAX Language Monitor TR4500 series: C:\Windows\system32\CNCALEU.DLL [254464 2018-03-22] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor TR4500 series: C:\Windows\system32\CNMLMEU.DLL [1326080 2023-06-15] (CANON INC.) [Datei ist nicht signiert]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{49210152-871f-4ffa-961d-a172abcbc09d}] -> C:\Program Files\Google\Chrome\Application\PlatformExperienceHelper\platform_experience_helper.exe [2025-11-06] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\142.0.7444.176\Installer\chrmstp.exe [2025-11-20] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
Startup: C:\Users\merli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Light Host.exe - Verknüpfung.lnk [2022-02-15]
ShortcutTarget: Light Host.exe - Verknüpfung.lnk -> C:\Users\merli\OneDrive\Desktop\Light Host 1.2.1 Win64\Light Host.exe (Rolando Islas) [Datei ist nicht signiert]
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {917BAC06-A328-4155-A9D1-FF543E986091} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Keine Datei)
Task: {13E8199B-CDF2-4359-A472-A3BE7ECE823A} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\27.1.1.23_0\WatchDog.exe [1171960 2025-11-11] (Bitdefender SRL -> Bitdefender) -> C:\Program Files\Bitdefender Agent\27.1.1.23_0\repair
Task: {D00F5C9B-F8C5-4497-ACFE-05AC93375C44} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe [5620984 2025-11-12] (Microsoft Windows -> Microsoft Corporation)
Task: {63E83349-514B-406A-A776-FF775CF3247C} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem143.0.7482.0{CC4F8FBD-6621-41D5-B763-357ACD3A00FE} => C:\Program Files (x86)\Google\GoogleUpdater\143.0.7482.0\updater.exe [6933656 2025-10-19] (Google LLC -> Google LLC)
Task: {A9DE5704-6AB8-4905-BCB8-D10C24E66193} - System32\Tasks\GoogleUserPEH\RunPlatformExperienceHelper_FirstRun => C:\Program Files\Google\Chrome\Application\PlatformExperienceHelper\platform_experience_helper.exe [2630296 2025-11-06] (Google LLC -> Google LLC)
Task: {0730ABD6-34B0-404E-B42C-96E4E3B38813} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-1417567037-3132848013-3212831320-1001 => "C:\Users\merli\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe" (Keine Datei)
Task: {FAEC9CA8-70F4-4797-9CD8-9DED81AA9000} - System32\Tasks\Microsoft\Office\Office Actions Server => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\ActionsServer\ActionsServer.exe [16961360 2025-11-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {FC472C72-2263-4C5B-BABA-696231B67354} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [29178296 2025-11-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {B084C62E-2BF2-46BE-A46B-2836220AD279} - System32\Tasks\Microsoft\Office\Office Background Push Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\OFFICE16\opushutil.exe [70488 2025-11-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {B3844997-2C9C-41FF-AC4B-9CAA20B77A8F} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [29178296 2025-11-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {CBBD2A42-4F40-47D7-A43F-DDA70903C3E7} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [316696 2025-11-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {9388D175-4540-4DF6-AFCF-2C72E043CF8C} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [316696 2025-11-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {9E5F8136-9FC9-4550-9522-863263A69819} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\operfmon.exe [1365280 2025-11-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (Keine Datei)
Task: {82C7BDE0-8D5C-4744-811F-0338AB4A80E1} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_LogonUpdateResults => %systemroot%\system32\MusNotification.exe LogonUpdateResults (Keine Datei)
Task: {5757B6F3-3197-4184-8C8E-D9C35203E993} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe /RunOnAC ReadyToReboot (Keine Datei)
Task: {930D37B6-409E-465B-B537-CBB8EA26F10E} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe /RunOnBattery ReadyToReboot (Keine Datei)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Keine Datei)
Task: {8D5F1BA1-9AAE-4824-AA7E-B54AF2F64B58} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [695424 2025-11-26] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (Der Dateneintrag hat 6 weitere Zeichen).
Task: {5F6F3A6D-4F3E-4532-84F9-544EFF0BDCD1} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-1417567037-3132848013-3212831320-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [695424 2025-11-26] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (Der Dateneintrag hat 6 weitere Zeichen).
Task: {A254FA31-7E81-4934-AF23-C9E11DCE0A16} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-1417567037-3132848013-3212831320-1003 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [695424 2025-11-26] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (Der Dateneintrag hat 6 weitere Zeichen).
Task: {0A253900-4D6F-4893-9134-556CBCD220C4} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34944 2025-11-26] (Mozilla Corporation -> Mozilla Foundation)
Task: {AA6DA9D3-9BB2-4C72-9280-4F76D532D5AD} - System32\Tasks\NVIDIA App SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\NVIDIA App.exe [3324528 2025-10-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7E0FCE99-D538-4AAF-806B-57B42AF13734} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4395920 2025-11-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {CF6E7946-92DF-48A6-A02E-A095521EF652} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1417567037-3132848013-3212831320-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4395920 2025-11-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {614BA518-319C-4CB0-8AE6-5BD126EF3A7F} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1417567037-3132848013-3212831320-1002 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4395920 2025-11-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {103288D3-9BE3-4861-B99F-B784753D023D} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1417567037-3132848013-3212831320-1003 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4395920 2025-11-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {15E2699B-0E2C-4864-BD0D-0D3AAF6A3A14} - System32\Tasks\OneDrive Startup Task-S-1-5-21-1417567037-3132848013-3212831320-1001 => C:\Program Files\Microsoft OneDrive\25.206.1021.0003\OneDriveLauncher.exe [727440 2025-11-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {3936B399-4A52-48FD-B2E7-CFEAB97C14EA} - System32\Tasks\OneDrive Startup Task-S-1-5-21-1417567037-3132848013-3212831320-1002 => C:\Program Files\Microsoft OneDrive\25.206.1021.0003\OneDriveLauncher.exe [727440 2025-11-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {2FA7C4AD-A4C9-406A-BB68-DA8FB0A01338} - System32\Tasks\OneDrive Startup Task-S-1-5-21-1417567037-3132848013-3212831320-1003 => C:\Program Files\Microsoft OneDrive\25.206.1021.0003\OneDriveLauncher.exe [727440 2025-11-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {11BA6456-9D9E-4925-960A-18C2C8054327} - System32\Tasks\ZoomUpdateTaskUser-S-1-5-21-1417567037-3132848013-3212831320-1003 => C:\Users\astri\AppData\Roaming\Zoom\bin\Zoom.exe [451512 2025-11-25] (Zoom Video Communications, Inc. -> Zoom Communications, Inc.)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{ff707509-bfc1-4ce4-bc44-a97a87c7536d}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{ff707509-bfc1-4ce4-bc44-a97a87c7536d}: [DhcpDomain] speedport.ip
Edge:
=======
Edge Profile: C:\Users\merli\AppData\Local\Microsoft\Edge\User Data\Default [2025-10-23]
Edge StartupUrls: Default -> "hxxps://google.de/"
Edge Extension: (Bitdefender Anti-tracker) - C:\Users\merli\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\dbconhplchnbippmjabbcedokimacfjl [2025-07-18]
Edge Extension: (Google Docs Offline) - C:\Users\merli\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-09-23]
Edge Extension: (Edge relevant text changes) - C:\Users\merli\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]
Edge HKLM-x32\...\Edge\Extension: [dbconhplchnbippmjabbcedokimacfjl]
FireFox:
========
FF DefaultProfile: 1iz8bu7v.default
FF ProfilePath: C:\Users\merli\AppData\Roaming\Mozilla\Firefox\Profiles\1iz8bu7v.default [2021-11-30]
FF Homepage: Mozilla\Firefox\Profiles\1iz8bu7v.default -> hxxp://www.mozilla.org
FF ProfilePath: C:\Users\merli\AppData\Roaming\Mozilla\Firefox\Profiles\2ny5nhyf.default-release-1763821955654 [2025-11-30]
FF Homepage: Mozilla\Firefox\Profiles\2ny5nhyf.default-release-1763821955654 -> www.google.de
FF Notifications: Mozilla\Firefox\Profiles\2ny5nhyf.default-release-1763821955654 -> hxxps://login.schulmanager-online.de
FF Extension: (AdGuard Werbeblocker) - C:\Users\merli\AppData\Roaming\Mozilla\Firefox\Profiles\2ny5nhyf.default-release-1763821955654\Extensions\adguardadblocker@adguard.com.xpi [2025-11-22]
FF Extension: (New Tab) - C:\Users\merli\AppData\Roaming\Mozilla\Firefox\Profiles\2ny5nhyf.default-release-1763821955654\Extensions\newtab@mozilla.org.xpi [2025-11-24]
FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi => nicht gefunden
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi => nicht gefunden
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2025-11-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2024-12-01] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB) [Datei ist nicht signiert]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2025-11-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [Keine Datei]
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2024-12-01] (Adobe Inc. -> Adobe Systems)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\bd_js_config.js [2025-07-17] <==== ACHTUNG (Zeigt auf eine *.cfg Datei)
FF ExtraCheck: C:\Program Files\mozilla firefox\bd_config.cfg [2025-07-17] <==== ACHTUNG
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\merli\AppData\Local\Google\Chrome\User Data\Default [2025-11-30]
CHR Extension: (Video Downloader Professional) - C:\Users\merli\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2024-06-20]
CHR Extension: (ExpressVPN: VPN proxy for a better internet) - C:\Users\merli\AppData\Local\Google\Chrome\User Data\Default\Extensions\fgddmllnllkalaagkghckoinaemmogpe [2025-11-28]
CHR Extension: (Google Docs Offline) - C:\Users\merli\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-11-18]
CHR Extension: (Bitdefender Anti-tracker) - C:\Users\merli\AppData\Local\Google\Chrome\User Data\Default\Extensions\khndhdhbebhaddchcgnalcjlaekbbeof [2025-07-17]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\merli\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Profile: C:\Users\merli\AppData\Local\Google\Chrome\User Data\Guest Profile [2025-10-09]
CHR Profile: C:\Users\merli\AppData\Local\Google\Chrome\User Data\Profile 1 [2025-10-09]
CHR Extension: (Sicherer Browser Kindersicherung) - C:\Users\merli\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apenkcejfcelomfjdnmcokpihikjonmh [2025-05-24]
CHR Extension: (AdsKiller Adblocker) - C:\Users\merli\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\daekmmlfbbfdbbhaagleepahmepoiafk [2024-11-25]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\merli\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2025-05-24]
CHR Extension: (Google Docs Offline) - C:\Users\merli\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-07-15]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\merli\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-09-06]
CHR Profile: C:\Users\merli\AppData\Local\Google\Chrome\User Data\Profile 3 [2025-10-20]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\merli\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2025-06-05]
CHR Extension: (Google Docs Offline) - C:\Users\merli\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-06-03]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\merli\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2025-01-26]
CHR Profile: C:\Users\merli\AppData\Local\Google\Chrome\User Data\System Profile [2025-11-30]
CHR HKU\S-1-5-21-1417567037-3132848013-3212831320-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKU\S-1-5-21-1417567037-3132848013-3212831320-1003\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [khndhdhbebhaddchcgnalcjlaekbbeof]
==================== Dienste (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [944048 2024-12-01] (Adobe Inc. -> Adobe Inc.)
S3 battlenet_helpersvc; C:\ProgramData\Battle.net_components\battlenet_helpersvc\AgentHelper.exe [3386064 2025-09-23] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
R2 BDAppSrv; C:\Program Files\Bitdefender\Bitdefender Security App\bdservicehost.exe [851704 2025-11-03] (Bitdefender SRL -> Bitdefender)
R2 BDAuxSrv; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [851704 2025-11-26] (Bitdefender SRL -> Bitdefender)
R2 BDProtSrv; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [851704 2025-11-26] (Bitdefender SRL -> Bitdefender)
R2 bdredline; C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe [2966176 2023-07-20] (Bitdefender SRL -> Bitdefender)
R2 bdredline_agent; C:\Program Files\Bitdefender Agent\redline\bdredline.exe [2426992 2025-07-03] (Bitdefender SRL -> Bitdefender)
R2 BDSafepaySrv; C:\Program Files\Bitdefender\Bitdefender Security App\Safepay\bdservicehost.exe [851704 2025-11-26] (Bitdefender SRL -> Bitdefender)
R2 bdvpnservice; C:\Program Files\Bitdefender\Bitdefender VPN\bdvpnservice.exe [516928 2025-03-20] (Bitdefender SRL -> Bitdefender)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [15772456 2023-12-04] (BattlEye Innovations e.K. -> )
R2 CIJSRegister; C:\Program Files (x86)\Canon\IJ Scan Utility\SETEVENT.exe [144784 2018-04-18] (Canon Inc. -> CANON INC.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13366624 2025-11-20] (Microsoft Corporation -> Microsoft Corporation)
S3 EAAntiCheatService; C:\Program Files\EA\AC\eaanticheat.gameservice.exe [118805240 2025-07-28] (Electronic Arts, Inc. -> Electronic Arts)
S3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [19295904 2025-10-17] (Electronic Arts, Inc. -> Electronic Arts)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1135648 2023-03-22] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [965872 2024-10-28] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 EpicGamesUpdater; C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesUpdater.exe [3071904 2025-09-23] (Epic Games Inc. -> Epic Games, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [375248 2023-10-26] (Epic Games Inc. -> Epic Games, Inc.)
S3 FACEITService; C:\Program Files\FACEIT AC\faceitservice.exe [68357000 2023-10-27] (FACE IT LIMITED -> )
R3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\25.206.1021.0003\FileSyncHelper.exe [3606376 2025-11-15] (Microsoft Corporation -> Microsoft Corporation)
S3 GameInputRedistService; C:\Program Files\Microsoft GameInput\x64\GameInputRedistService.exe [137616 2025-09-16] (Microsoft Corporation -> Microsoft Corporation)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [443344 2020-05-25] (Canon Inc. -> )
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [11172008 2025-11-30] (Malwarebytes Inc -> Malwarebytes)
S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [2788304 2025-11-30] (Malwarebytes Inc. -> Malwarebytes)
S3 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25050.5-0\MpDefenderCoreService.exe [2071592 2025-06-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 mracsvc; C:\WINDOWS\System32\mracsvc.exe [30059792 2023-06-24] (VK Play LLC -> VK Play LLC)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_20ae8f14a487d5db\Display.NvContainer\NVDisplay.Container.exe [1275624 2025-10-30] (NVIDIA Corporation -> NVIDIA Corporation)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\25.206.1021.0003\OneDriveUpdaterService.exe [3890536 2025-11-15] (Microsoft Corporation -> Microsoft Corporation)
S3 OVRLibraryService; C:\Program Files\Oculus\Support\oculus-librarian\OVRLibraryService.exe [58624 2025-10-27] (Meta Platforms, Inc. -> Facebook Technologies, LLC)
R2 OVRService; C:\Program Files\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe [435448 2025-10-27] (Meta Platforms, Inc. -> Facebook Technologies, LLC)
R2 PDF24; C:\Program Files\PDF24\pdf24.exe [641752 2025-01-13] (Geek Software GmbH -> geek software GmbH)
R2 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [76152 2025-01-23] (Even Balance, Inc. -> )
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [756640 2025-11-11] (Bitdefender SRL -> Bitdefender)
R2 ps_service; C:\Program Files\Streaming Service\ps_service_launcher.exe [131864 2024-06-04] (Qingdao Pico Technology Co.,Ltd. -> )
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [6792176 2024-07-12] (Rockstar Games, Inc. -> Rockstar Games)
R2 Surfshark Service; C:\Program Files\Surfshark\Surfshark.Service.exe [150784 2025-11-06] (Surfshark B.V. -> Surfshark.Service)
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe [303648 2025-11-26] (Bitdefender SRL -> Bitdefender)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [851704 2025-11-26] (Bitdefender SRL -> Bitdefender)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25050.5-0\NisSrv.exe [4513624 2025-06-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25050.5-0\MsMpEng.exe [278328 2025-06-13] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S0 272x_1x; C:\WINDOWS\System32\drivers\272x_1x.sys [633072 2015-04-15] (HighPoint Technologies, Inc. -> HighPoint Technologies, Inc.)
S0 archba; C:\WINDOWS\System32\drivers\archba.sys [210104 2019-08-19] (Microsemi Storage Solutions, Inc. -> Microsemi, Inc.)
S0 arcsas; C:\WINDOWS\System32\drivers\arcsas.sys [198232 2020-06-01] (Microsemi Storage Solutions, Inc. -> Microsemi, Inc.)
R1 atc; C:\WINDOWS\System32\drivers\atc.sys [8502344 2025-11-03] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender S.R.L. Bucharest, ROMANIA)
S3 atvi-hrist_msstore; D:\xbox\Call of Duty- Modern Warfare 2\Content\Randgrid.sys [9684248 2025-09-23] (Activision Publishing Inc -> Activision Blizzard, Inc.)
S3 atvi-randgrid; C:\ProgramData\Battle.net_components\randgridauks\randgrid.sys [9684248 2025-09-23] (Activision Publishing Inc -> Activision Blizzard, Inc.)
R2 BdDci4; C:\WINDOWS\system32\DRIVERS\bddci4.sys [972848 2025-11-03] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender)
S0 bdelam; C:\WINDOWS\System32\drivers\bdelam.sys [24568 2023-05-07] (Microsoft Windows Early Launch Anti-Malware Publisher -> Bitdefender)
S3 bdprivmon; C:\WINDOWS\System32\drivers\bdprivmon.sys [49208 2025-11-03] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender)
S3 bduefiscan; C:\WINDOWS\System32\drivers\bduefiscan.sys [53808 2025-11-03] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender)
S3 bdvpn_callout; C:\Program Files\Bitdefender\Bitdefender VPN\Drivers\x64\netfilter.sys [105552 2024-07-11] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2023-02-09] (Microsoft Corporation) [Datei ist nicht signiert]
S0 DC600e; C:\WINDOWS\System32\drivers\DC600e.sys [49248 2018-07-05] (Microsoft Windows Hardware Compatibility Publisher -> Dawicontrol GmbH)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [175824 2024-10-17] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R1 FACEIT; C:\Program Files\FACEIT AC\FACEIT_AC.sys [73604144 2023-10-27] (Microsoft Windows Hardware Compatibility Publisher -> )
R1 Gemma; C:\WINDOWS\System32\DRIVERS\gemma.sys [1793112 2025-08-31] (Microsoft Windows Hardware Compatibility Publisher -> BitDefender S.R.L. Bucharest, ROMANIA)
S3 Ignisv2; C:\WINDOWS\System32\drivers\ignisv2.sys [848456 2025-11-03] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender)
S3 KslD; C:\WINDOWS\System32\drivers\wd\KslD.sys [330112 2025-06-13] (Microsoft Windows -> Microsoft Corporation)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [22120 2025-11-30] (Microsoft Windows Early Launch Anti-Malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [245336 2025-11-30] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 megasas35; C:\WINDOWS\System32\drivers\megasas35.sys [107688 2020-03-25] (AVAGO TECHNOLOGIES U.S. INC. -> Avago Technologies)
S3 mracdrv; C:\WINDOWS\System32\drivers\mracdrv1.sys [29287768 2023-06-24] (My.Com B.V. -> My.com B.V.)
R3 oculusvad_oculusvad; C:\WINDOWS\System32\drivers\oculusvad.sys [75280 2022-06-25] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R3 Oculus_ViGEmBus; C:\WINDOWS\System32\drivers\Oculus_ViGEmBus.sys [32856 2022-06-25] (Oculus VR, LLC -> Facebook Inc.)
R3 ovpn-dco; C:\WINDOWS\System32\drivers\ovpn-dco.sys [131984 2025-03-03] (WDKTestCert lev,133391533294737317 -> OpenVPN, Inc)
R3 PicoStreamingMicrophone_73ea7a0e-5166-2156-a0b4-28c44fda1f1a; C:\WINDOWS\System32\drivers\ps_microphone.sys [40568 2024-04-25] (WDKTestCert Administrator,133086542592472428 -> )
R3 PicoStreamingSpeaker; C:\WINDOWS\System32\DriverStore\FileRepository\picostreamingspeaker.inf_amd64_48b855c6458f96cf\picostreamingspeaker.sys [73024 2024-05-24] (WDKTestCert Administrator,133086542592472428 -> Windows (R) Win 7 DDK provider)
S0 rr62x; C:\WINDOWS\System32\drivers\rr62x.sys [160096 2012-06-06] (HighPoint Technologies, Inc. -> HighPoint Technologies, Inc.)
S0 rr640l; C:\WINDOWS\System32\drivers\rr640l.sys [173296 2016-05-13] (HighPoint Technologies, Inc. -> HighPoint Technologies, Inc.)
R3 rtcx21; C:\WINDOWS\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_516e5c9b75c49dc2\rtcx21x64.sys [539648 2022-05-06] (Microsoft Windows -> Realtek)
S3 SharkDivert; C:\Program Files\Surfshark\Resources\x64\sharkdivert.sys [184480 2025-11-06] (Microsoft Windows Hardware Compatibility Publisher -> Surfshark)
S3 SIVDriver; C:\Windows\system32\Drivers\SIVX64.sys [205568 2021-01-13] (RH Software Ltd -> Ray Hinchliffe)
R3 sshid; C:\WINDOWS\System32\drivers\sshid.sys [48800 2022-02-23] (SteelSeries ApS -> SteelSeries ApS)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174264 2024-10-17] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [50720 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 SteamStreamingMicrophone; C:\WINDOWS\system32\drivers\SteamStreamingMicrophone.sys [40736 2020-06-01] (Valve Corp. -> )
R3 SteamStreamingSpeakers; C:\WINDOWS\system32\drivers\SteamStreamingSpeakers.sys [40736 2020-06-01] (Valve Corp. -> )
R2 Trufos; C:\WINDOWS\System32\drivers\Trufos.sys [630320 2025-11-03] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2021-02-23] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
R0 vlflt; C:\WINDOWS\System32\drivers\vlflt.sys [1445936 2025-11-03] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender)
S3 VOICEMOD_Driver; C:\WINDOWS\system32\drivers\vmdrv.sys [48136 2021-12-28] (Voicemod Sociedad Limitada -> Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [20032 2025-06-13] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [612768 2025-06-13] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [100744 2025-06-13] (Microsoft Windows -> Microsoft Corporation)
S3 WireGuard; C:\WINDOWS\System32\drivers\wireguard.sys [489368 2024-05-08] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S3 ace-game-0; \SystemRoot\System32\drivers\ace-game-0.sys [X]
S3 ACE-SSC-DRV64; \??\C:\Program Files\AntiCheatExpert\SGuard\x64\plugins\ACE-SSC-DRV64.sys [X]
S3 atvi-randgrid_msstore; \??\C:\XboxGames\Call of Duty\Content\Randgrid.sys [X]
S3 EAAntiCheat; system32\drivers\eaanticheat.sys [X]
S4 NvModuleTracker; \SystemRoot\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_ea6cec41fc5b2a8b\NvModuleTracker.sys [X]
S3 tapnordvpn; \SystemRoot\System32\drivers\tapnordvpn.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat (erstellte) (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2025-11-30 17:01 - 2025-11-30 17:26 - 000000000 ____D C:\Users\merli\AppData\Local\Malwarebytes
2025-11-30 17:01 - 2025-11-30 17:01 - 000002060 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2025-11-30 17:01 - 2025-11-30 17:01 - 000000000 ____D C:\ProgramData\Malwarebytes
2025-11-30 17:01 - 2025-11-30 17:01 - 000000000 ____D C:\Program Files\Malwarebytes
2025-11-30 17:00 - 2025-11-30 17:00 - 002844952 _____ (Malwarebytes) C:\Users\merli\Downloads\MBSetup.exe
2025-11-30 15:49 - 2025-11-30 17:28 - 000042065 _____ C:\Users\merli\Downloads\FRST.txt
2025-11-30 15:49 - 2025-11-30 17:28 - 000000000 ____D C:\FRST
2025-11-30 15:48 - 2025-11-30 15:48 - 002444288 _____ (Farbar) C:\Users\merli\Downloads\FRST64.exe
2025-11-30 15:01 - 2025-11-30 15:01 - 000143092 _____ C:\ProgramData\agent.update.1764511288.bdinstall.v2.bin
2025-11-30 14:50 - 2025-11-30 14:50 - 000758838 _____ C:\WINDOWS\system32\perfh007.dat
2025-11-30 14:50 - 2025-11-30 14:50 - 000157058 _____ C:\WINDOWS\system32\perfc007.dat
2025-11-30 14:43 - 2025-11-30 14:45 - 000267860 _____ C:\WINDOWS\ntbtlog.txt
2025-11-30 14:43 - 2025-11-30 14:43 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2025-11-30 13:59 - 2025-11-30 13:59 - 011528728 _____ (VS Revo Group ) C:\Users\merli\Downloads\revosetup.exe
2025-11-30 13:59 - 2025-11-30 13:59 - 000000000 ____D C:\Users\merli\AppData\Local\VS Revo Group
2025-11-29 23:10 - 2025-11-30 15:04 - 000001426 _____ C:\Users\merli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2025-11-29 23:10 - 2025-11-30 15:04 - 000001326 _____ C:\Users\merli\OneDrive\Desktop\ESET Online Scanner.lnk
2025-11-29 23:10 - 2025-11-29 23:10 - 008412528 _____ (ESET) C:\Users\merli\OneDrive\Desktop\esetonlinescanner.exe
2025-11-29 23:10 - 2025-11-29 23:10 - 000000000 ____D C:\Users\merli\AppData\Local\ESET
2025-11-26 17:44 - 2025-11-30 14:17 - 000000000 ____D C:\Program Files\Mozilla Firefox
2025-11-25 09:50 - 2025-11-25 09:50 - 000000000 ____D C:\Users\astri\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2025-11-24 20:09 - 2025-11-24 20:09 - 000000000 ____D C:\Users\merli\AppData\LocalLow\Deep Water Studio
2025-11-24 18:20 - 2025-11-24 18:20 - 000000222 _____ C:\Users\merli\OneDrive\Desktop\UBOAT.url
2025-11-24 12:59 - 2025-11-24 13:07 - 000000000 ____D C:\Users\merli\AppData\Local\Battle.net
2025-11-24 12:59 - 2025-11-24 12:59 - 000000000 ____D C:\Users\merli\AppData\Roaming\Battle.net
2025-11-24 12:59 - 2025-11-24 12:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2025-11-24 12:59 - 2025-11-24 12:59 - 000000000 ____D C:\Program Files (x86)\Battle.net
2025-11-22 18:53 - 2025-11-30 14:17 - 000000000 ____D C:\WINDOWS\Panther
2025-11-22 15:52 - 2025-11-22 15:53 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2025-11-22 15:49 - 2025-10-30 16:59 - 002402696 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2025-11-22 15:49 - 2025-10-30 16:59 - 002402696 _____ C:\WINDOWS\system32\vulkaninfo.exe
2025-11-22 15:49 - 2025-10-30 16:59 - 001908104 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2025-11-22 15:49 - 2025-10-30 16:59 - 001908104 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2025-11-22 15:49 - 2025-10-30 16:59 - 001581968 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2025-11-22 15:49 - 2025-10-30 16:59 - 001581968 _____ C:\WINDOWS\system32\vulkan-1.dll
2025-11-22 15:49 - 2025-10-30 16:59 - 001395592 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2025-11-22 15:49 - 2025-10-30 16:59 - 001395592 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2025-11-22 15:49 - 2025-10-30 16:59 - 000478440 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2025-11-22 15:49 - 2025-10-30 16:59 - 000375016 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2025-11-22 15:49 - 2025-10-30 16:55 - 001322216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2025-11-22 15:49 - 2025-10-30 16:55 - 000675048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvofapi64.dll
2025-11-22 15:49 - 2025-10-30 16:55 - 000509160 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvofapi.dll
2025-11-22 15:49 - 2025-10-30 16:54 - 026354920 _____ C:\WINDOWS\system32\nvidia-pcc.exe
2025-11-22 15:49 - 2025-10-30 16:54 - 002317544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2025-11-22 15:49 - 2025-10-30 16:54 - 001715944 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2025-11-22 15:49 - 2025-10-30 16:54 - 001599720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2025-11-22 15:49 - 2025-10-30 16:54 - 001572584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2025-11-22 15:49 - 2025-10-30 16:54 - 001223400 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2025-11-22 15:49 - 2025-10-30 16:54 - 001057512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2025-11-22 15:49 - 2025-10-30 16:54 - 000813288 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2025-11-22 15:49 - 2025-10-30 16:53 - 024676584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2025-11-22 15:49 - 2025-10-30 16:53 - 021714152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2025-11-22 15:49 - 2025-10-30 16:53 - 007683304 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2025-11-22 15:49 - 2025-10-30 16:53 - 005918952 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2025-11-22 15:49 - 2025-10-30 16:53 - 005469928 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll
2025-11-22 15:49 - 2025-10-30 16:53 - 004175080 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2025-11-22 15:49 - 2025-10-30 16:53 - 000468712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2025-11-22 15:49 - 2025-10-30 16:52 - 005625560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2025-11-22 15:49 - 2025-10-30 16:52 - 004924160 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2025-11-22 15:49 - 2025-10-30 16:52 - 000853736 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2025-11-22 15:49 - 2025-10-30 02:33 - 000148966 _____ C:\WINDOWS\system32\nvinfo.pb
2025-11-22 15:36 - 2025-11-22 15:38 - 000000000 ____D C:\AdwCleaner
2025-11-22 15:36 - 2025-11-22 15:36 - 009616736 _____ (Malwarebytes) C:\Users\merli\OneDrive\Desktop\adwcleaner.exe
2025-11-22 15:32 - 2025-11-22 15:33 - 000000000 ___RD C:\Users\merli\OneDrive\Desktop\Alte Firefox-Daten
2025-11-15 12:00 - 2025-11-15 12:00 - 000000000 ____D C:\Users\merli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Firefox Web-Apps
2025-11-14 20:49 - 2025-11-14 20:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Surfshark
2025-11-14 20:49 - 2025-11-14 20:49 - 000000000 ____D C:\Program Files\Common Files\ovpn-dco
2025-11-09 16:03 - 2025-11-21 20:23 - 000000000 ____D C:\Users\merli\AppData\Local\Discord
2025-11-09 16:03 - 2025-11-21 20:19 - 000002297 _____ C:\Users\merli\OneDrive\Desktop\Discord.lnk
2025-11-09 14:15 - 2025-11-09 14:15 - 000000218 _____ C:\Users\merli\AppData\Local\recently-used.xbel
2025-11-09 13:05 - 2025-11-09 13:05 - 000000000 ____D C:\Users\merli\AppData\Roaming\AdbAppControl
2025-11-03 09:02 - 2025-11-03 09:02 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
==================== Ein Monat (geänderte) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2025-11-30 17:27 - 2022-02-08 17:38 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2025-11-30 17:25 - 2025-05-04 20:11 - 000000000 ____D C:\ProgramData\Surfshark
2025-11-30 17:25 - 2024-11-19 10:27 - 000000000 ____D C:\Users\merli\AppData\Roaming\Oculus Remote Desktop
2025-11-30 17:25 - 2023-02-09 17:55 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2025-11-30 17:25 - 2022-06-25 08:49 - 000000000 ____D C:\Users\merli\AppData\Local\Oculus
2025-11-30 17:25 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2025-11-30 17:25 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ServiceState
2025-11-30 17:25 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2025-11-30 17:25 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-11-30 17:25 - 2021-01-22 19:58 - 000000000 ___RD C:\Users\merli\OneDrive
2025-11-30 17:25 - 2021-01-18 15:34 - 000000000 ____D C:\ProgramData\NVIDIA
2025-11-30 17:25 - 2020-11-27 18:32 - 000012288 ___SH C:\DumpStack.log.tmp
2025-11-30 17:24 - 2022-05-07 06:17 - 001310720 _____ C:\WINDOWS\system32\config\BBI
2025-11-30 17:01 - 2022-05-07 06:24 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2025-11-30 17:01 - 2022-05-07 06:24 - 000000000 ___HD C:\Program Files\WindowsApps
2025-11-30 17:01 - 2022-05-07 06:22 - 000000000 ____D C:\WINDOWS\INF
2025-11-30 17:01 - 2021-01-22 19:57 - 000000000 ____D C:\Users\merli\AppData\Local\Packages
2025-11-30 17:01 - 2020-11-19 08:33 - 000000000 ____D C:\ProgramData\Packages
2025-11-30 15:04 - 2021-01-23 19:23 - 000000000 ____D C:\Users\merli\AppData\Local\CrashDumps
2025-11-30 15:01 - 2025-07-17 19:19 - 000003850 _____ C:\WINDOWS\system32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864
2025-11-30 15:01 - 2025-07-17 19:17 - 000000000 ____D C:\Program Files\Bitdefender Agent
2025-11-30 14:50 - 2023-02-09 17:57 - 001754660 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2025-11-30 14:46 - 2023-02-09 17:51 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2025-11-30 14:18 - 2022-05-07 06:17 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2025-11-30 14:17 - 2021-01-22 20:25 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2025-11-30 14:16 - 2021-09-14 15:05 - 000000000 ____D C:\Program Files\Adobe
2025-11-30 14:16 - 2021-01-22 19:57 - 000000000 ____D C:\Users\merli\AppData\Roaming\Adobe
2025-11-30 14:03 - 2021-04-26 11:56 - 000000000 ____D C:\Program Files (x86)\Adobe
2025-11-30 13:59 - 2022-02-10 13:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2025-11-29 23:14 - 2021-01-23 13:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiniTool Power Data Recovery
2025-11-29 23:14 - 2021-01-23 13:40 - 000000000 ____D C:\Program Files (x86)\MiniTool PowerDataRecovery
2025-11-29 22:49 - 2021-01-22 20:49 - 000000000 ____D C:\Program Files (x86)\Steam
2025-11-29 22:25 - 2023-02-09 17:55 - 000003754 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2025-11-29 22:25 - 2023-02-09 17:55 - 000003628 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2025-11-29 18:55 - 2023-02-09 17:54 - 000064773 _____ C:\WINDOWS\diagwrn.xml
2025-11-29 18:55 - 2023-02-09 17:54 - 000064773 _____ C:\WINDOWS\diagerr.xml
2025-11-29 12:38 - 2021-01-22 23:14 - 000000000 ____D C:\Users\merli\AppData\Roaming\Microsoft\Word
2025-11-27 12:50 - 2024-06-18 13:00 - 000000000 ____D C:\Users\astri\AppData\Local\D3DSCache
2025-11-27 12:48 - 2024-06-18 12:54 - 000000000 ____D C:\Users\astri\AppData\Local\Oculus
2025-11-27 12:48 - 2024-06-18 12:53 - 000000000 ___RD C:\Users\astri\OneDrive
2025-11-27 12:47 - 2024-06-18 12:54 - 000000000 ____D C:\Users\astri\AppData\Local\Packages
2025-11-26 18:01 - 2021-01-22 20:25 - 000001072 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2025-11-26 13:52 - 2021-01-22 20:53 - 000000000 ____D C:\Users\merli\AppData\Local\Steam
2025-11-25 19:34 - 2025-01-13 12:06 - 000000000 ____D C:\Users\astri\AppData\Roaming\Zoom
2025-11-25 09:56 - 2024-06-19 09:47 - 000000000 ____D C:\Users\astri\AppData\Roaming\Microsoft\Word
2025-11-25 09:55 - 2024-06-18 12:54 - 000000000 ____D C:\Users\astri\AppData\Local\NVIDIA
2025-11-25 09:50 - 2025-01-13 12:06 - 000004256 _____ C:\WINDOWS\system32\Tasks\ZoomUpdateTaskUser-S-1-5-21-1417567037-3132848013-3212831320-1003
2025-11-24 13:01 - 2022-01-15 13:29 - 000000000 ____D C:\Users\merli\AppData\Local\D3DSCache
2025-11-23 19:49 - 2025-05-12 13:21 - 000000000 ____D C:\Users\merli\.dbus-keyrings
2025-11-23 16:15 - 2020-11-28 01:07 - 000000000 ____D C:\Program Files\Microsoft Office
2025-11-22 17:40 - 2021-01-22 20:33 - 000000000 ____D C:\Users\merli\AppData\Roaming\Microsoft\Office
2025-11-22 17:36 - 2021-01-22 19:56 - 000000000 ____D C:\Users\merli\AppData\Local\NVIDIA
2025-11-22 15:32 - 2023-02-09 17:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2025-11-22 11:23 - 2020-11-19 08:32 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-11-21 22:42 - 2022-11-25 10:59 - 000000000 ____D C:\Users\merli\OneDrive\Dokumente\CostaRica_2022_2023
2025-11-21 22:40 - 2021-01-22 19:58 - 000000000 ____D C:\Users\merli\OneDrive\Dokumente\Benutzerdefinierte Office-Vorlagen
2025-11-21 20:54 - 2021-01-22 23:16 - 000000000 ____D C:\Users\merli\AppData\Roaming\discord
2025-11-21 18:05 - 2021-01-25 14:38 - 000000000 ____D C:\Users\merli\AppData\Roaming\Microsoft\Excel
2025-11-21 15:33 - 2025-09-23 14:02 - 000436592 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy_b.dll
2025-11-21 15:33 - 2022-10-22 09:00 - 000153976 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe
2025-11-21 15:33 - 2022-10-22 09:00 - 000076152 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe
2025-11-21 15:33 - 2022-01-27 12:16 - 004581752 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2025-11-21 15:33 - 2022-01-27 12:16 - 000878968 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2025-11-21 15:33 - 2022-01-27 12:16 - 000285040 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2025-11-21 15:33 - 2022-01-27 12:16 - 000244088 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2025-11-21 15:33 - 2022-01-27 12:16 - 000166264 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2025-11-20 19:15 - 2025-10-09 19:13 - 000002206 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2025-11-20 16:27 - 2025-10-09 16:32 - 000000000 ____D C:\ProgramData\Piriform
2025-11-20 14:21 - 2023-02-09 14:32 - 000000000 ____D C:\Users\merli
2025-11-17 13:32 - 2022-06-25 09:34 - 000000000 ____D C:\Program Files\Oculus
2025-11-16 19:01 - 2024-04-01 18:11 - 000000000 ___HD C:\$WINDOWS.~BT
2025-11-16 18:16 - 2025-02-06 15:23 - 000000000 ____D C:\Users\defaultuser100000
2025-11-16 18:16 - 2024-06-18 12:53 - 000000000 ____D C:\Users\astri
2025-11-16 18:16 - 2023-07-29 09:28 - 000000000 ____D C:\Users\trist
2025-11-15 18:26 - 2023-10-19 10:26 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2025-11-15 12:56 - 2025-02-05 21:45 - 000003552 _____ C:\WINDOWS\system32\Tasks\OneDrive Startup Task-S-1-5-21-1417567037-3132848013-3212831320-1003
2025-11-15 12:56 - 2025-02-05 21:45 - 000003552 _____ C:\WINDOWS\system32\Tasks\OneDrive Startup Task-S-1-5-21-1417567037-3132848013-3212831320-1002
2025-11-15 12:56 - 2025-02-05 21:45 - 000003552 _____ C:\WINDOWS\system32\Tasks\OneDrive Startup Task-S-1-5-21-1417567037-3132848013-3212831320-1001
2025-11-15 12:56 - 2024-06-18 12:54 - 000003596 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1417567037-3132848013-3212831320-1003
2025-11-15 12:56 - 2023-10-19 10:26 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2025-11-15 12:56 - 2023-10-19 10:26 - 000002139 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2025-11-15 12:56 - 2023-07-29 09:29 - 000003596 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1417567037-3132848013-3212831320-1002
2025-11-15 12:56 - 2023-02-09 17:55 - 000003596 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1417567037-3132848013-3212831320-1001
2025-11-14 20:55 - 2025-05-04 20:11 - 000000000 ____D C:\Users\merli\AppData\Roaming\Surfshark
2025-11-14 20:49 - 2025-09-09 15:19 - 000000000 ____D C:\Users\merli\AppData\Local\Surfshark
2025-11-14 20:49 - 2025-05-04 20:10 - 000000000 ____D C:\Program Files\Surfshark
2025-11-14 12:49 - 2025-07-17 19:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender VPN
2025-11-14 12:49 - 2025-07-17 19:19 - 000000000 ____D C:\WINDOWS\system32\elambkup
2025-11-14 12:49 - 2025-07-17 19:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender Security
2025-11-14 12:49 - 2025-02-06 15:23 - 000000000 ____D C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Spelling
2025-11-14 12:49 - 2025-02-03 17:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF24
2025-11-14 12:49 - 2025-01-08 12:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Remove Empty Directories
2025-11-14 12:49 - 2024-12-21 16:48 - 000000000 ____D C:\Users\merli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Venice Unleashed
2025-11-14 12:49 - 2024-11-24 17:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2025-11-14 12:49 - 2024-08-21 13:36 - 000000000 ____D C:\Users\merli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PICO Streaming Team
2025-11-14 12:49 - 2024-08-21 13:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Streaming Service
2025-11-14 12:49 - 2024-06-18 12:53 - 000000000 ____D C:\Users\astri\AppData\Roaming\Microsoft\Spelling
2025-11-14 12:49 - 2024-06-07 18:05 - 000000000 ____D C:\WINDOWS\system32\%userprofile%
2025-11-14 12:49 - 2023-11-27 11:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Call of Duty Black Ops Cold War
2025-11-14 12:49 - 2023-11-13 09:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Call of Duty
2025-11-14 12:49 - 2023-10-27 10:24 - 000000000 ____D C:\Users\merli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FACEIT Ltd
2025-11-14 12:49 - 2023-07-29 09:28 - 000000000 ____D C:\Users\trist\AppData\Roaming\Microsoft\Spelling
2025-11-14 12:49 - 2023-03-11 12:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA
2025-11-14 12:49 - 2023-02-09 14:32 - 000000000 ____D C:\Users\merli\AppData\Roaming\Microsoft\Spelling
2025-11-14 12:49 - 2023-02-09 14:31 - 000000000 ____D C:\WINDOWS\system32\Samsung
2025-11-14 12:49 - 2022-06-25 09:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Oculus
2025-11-14 12:49 - 2022-06-20 15:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ghostscript
2025-11-14 12:49 - 2022-06-20 14:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XnView
2025-11-14 12:49 - 2022-05-09 13:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2025-11-14 12:49 - 2022-05-07 11:39 - 000000000 ____D C:\WINDOWS\system32\Hydrogen
2025-11-14 12:49 - 2022-05-07 06:24 - 000000000 __RHD C:\Users\Public\Libraries
2025-11-14 12:49 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2025-11-14 12:49 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\InstallShield
2025-11-14 12:49 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2025-11-14 12:49 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\SecurityHealth
2025-11-14 12:49 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2025-11-14 12:49 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\NDF
2025-11-14 12:49 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\Keywords
2025-11-14 12:49 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2025-11-14 12:49 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\DiagTrack
2025-11-14 12:49 - 2022-05-07 06:24 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2025-11-14 12:49 - 2022-03-06 11:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TomTom
2025-11-14 12:49 - 2022-01-13 10:48 - 000000000 ____D C:\Users\merli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wargaming.net
2025-11-14 12:49 - 2021-09-14 15:17 - 000000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2025-11-14 12:49 - 2021-08-09 11:08 - 000000000 ____D C:\Users\merli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2025-11-14 12:49 - 2021-05-23 18:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2025-11-14 12:49 - 2021-03-16 11:36 - 000000000 ____D C:\Users\merli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rockstar Games
2025-11-14 12:49 - 2021-03-03 16:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2025-11-14 12:49 - 2021-02-27 00:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2025-11-14 12:49 - 2021-01-23 10:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon TR4500 series On-Screen-Handbuch
2025-11-14 12:49 - 2021-01-22 23:16 - 000000000 ____D C:\Users\merli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2025-11-14 12:49 - 2021-01-22 20:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2025-11-14 12:49 - 2020-11-19 08:33 - 000000000 __RHD C:\Users\Public\AccountPictures
2025-11-14 12:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\ta-lk
2025-11-14 12:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\ta-in
2025-11-14 12:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\si-lk
2025-11-14 12:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\osa-Osge-001
2025-11-14 12:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\my-mm
2025-11-14 12:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2025-11-14 12:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\ff-Adlm-SN
2025-11-14 12:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\ContainerSettingsProviders
2025-11-14 12:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\am-et
2025-11-14 12:48 - 2025-02-06 15:23 - 000000000 ___SD C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Crypto
2025-11-14 12:48 - 2025-02-06 15:23 - 000000000 ____D C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Windows
2025-11-14 12:48 - 2024-06-18 12:54 - 000000000 ___SD C:\Users\astri\AppData\Roaming\Microsoft\Crypto
2025-11-14 12:48 - 2023-07-29 09:28 - 000000000 ___SD C:\Users\trist\AppData\Roaming\Microsoft\Crypto
2025-11-14 12:48 - 2023-02-09 14:37 - 000000000 ____D C:\Users\merli\AppData\Roaming\Microsoft\Crypto
2025-11-14 12:48 - 2022-05-07 06:24 - 000000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Windows
2025-11-13 20:30 - 2025-02-03 14:51 - 000000000 ___RD C:\Users\merli\OneDrive\Dokumente\Familien Lebenskosten
2025-11-13 13:29 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\USOPrivate
2025-11-12 22:32 - 2023-02-09 17:51 - 000407080 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2025-11-12 22:31 - 2023-10-11 18:04 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2025-11-12 22:31 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2025-11-12 22:31 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemResources
2025-11-12 22:31 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\setup
2025-11-12 22:31 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2025-11-12 19:23 - 2020-11-27 19:53 - 000000000 ____D C:\WINDOWS\system32\MRT
2025-11-12 19:21 - 2022-05-07 06:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2025-11-12 19:21 - 2020-11-27 19:53 - 215625816 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2025-11-12 19:19 - 2023-02-09 17:53 - 003214848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2025-11-09 16:03 - 2021-01-22 23:16 - 000000000 ____D C:\Users\merli\AppData\Local\SquirrelTemp
2025-11-08 14:14 - 2021-01-22 19:58 - 000000000 ____D C:\Users\merli\OneDrive\Dokumente\Belege
2025-11-03 15:19 - 2025-07-17 19:19 - 008502344 _____ (Bitdefender S.R.L. Bucharest, ROMANIA) C:\WINDOWS\system32\Drivers\atc.sys
2025-11-03 15:19 - 2025-07-17 19:19 - 001445936 _____ (Bitdefender) C:\WINDOWS\system32\Drivers\vlflt.sys
2025-11-03 15:19 - 2025-07-17 19:19 - 000972848 _____ (Bitdefender) C:\WINDOWS\system32\Drivers\bddci4.sys
2025-11-03 15:19 - 2025-07-17 19:19 - 000848456 _____ (Bitdefender) C:\WINDOWS\system32\Drivers\Ignisv2.sys
2025-11-03 15:19 - 2025-07-17 19:19 - 000630320 _____ (Bitdefender) C:\WINDOWS\system32\Drivers\Trufos.sys
2025-11-03 15:19 - 2025-07-17 19:19 - 000053808 _____ (Bitdefender) C:\WINDOWS\system32\Drivers\bduefiscan.sys
2025-11-03 15:19 - 2025-07-17 19:19 - 000049208 _____ (Bitdefender) C:\WINDOWS\system32\Drivers\bdprivmon.sys
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========
2022-02-12 01:47 - 2022-06-26 14:48 - 000043086 _____ () C:\Users\merli\AppData\Roaming\VoiceMeeterBananaDefault.xml
2021-09-14 15:17 - 2025-11-30 14:09 - 000000410 _____ () C:\Users\merli\AppData\Local\oobelibMkey.log
2025-11-09 14:15 - 2025-11-09 14:15 - 000000218 _____ () C:\Users\merli\AppData\Local\recently-used.xbel
==================== SigCheck ============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
==================== Ende von FRST.txt ========================
|
|
30.11.2025, 17:54
| #17 |
| | PUP.Adware.Heuristic auf Win 11 PCCode:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 20-11-2025
durchgeführt von merli (30-11-2025 17:29:21)
Gestartet von C:\Users\merli\Downloads
Microsoft Windows 11 Home Version 23H2 22631.6199 (X64) (2023-02-09 16:55:30)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
Administrator (S-1-5-21-1417567037-3132848013-3212831320-500 - Administrator - Disabled)
astri (S-1-5-21-1417567037-3132848013-3212831320-1003 - Limited - Enabled) => C:\Users\astri
DefaultAccount (S-1-5-21-1417567037-3132848013-3212831320-503 - Limited - Disabled)
Gast (S-1-5-21-1417567037-3132848013-3212831320-501 - Limited - Disabled)
merli (S-1-5-21-1417567037-3132848013-3212831320-1001 - Administrator - Enabled) => C:\Users\merli
trist (S-1-5-21-1417567037-3132848013-3212831320-1002 - Limited - Enabled) => C:\Users\trist
WDAGUtilityAccount (S-1-5-21-1417567037-3132848013-3212831320-504 - Limited - Disabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Malwarebytes (Enabled - Up to date) {0D452135-A081-B000-D6B6-132E52638543}
AV: Bitdefender Antivirus (Enabled - Up to date) {0F59B032-EA77-E3A8-2382-74A4346E5522}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 2.10.13.408 - Advanced Micro Devices, Inc.)
AMD GPIO2 Driver (HKLM-x32\...\{E9DD399F-21A3-479E-A7DF-D6CF4B2ADBF3}) (Version: 2.2.0.130 - Advanced Micro Devices, Inc.) Hidden
AMD PCI Driver (HKLM-x32\...\{80EC3CEE-2940-42A1-A776-B5D810D39F1E}) (Version: 1.0.0.81 - Advanced Micro Devices, Inc.) Hidden
AMD PSP Driver (HKLM-x32\...\{988F14B8-79A8-475D-BAC7-83F96AD3D821}) (Version: 4.13.0.0 - Advanced Micro Devices, Inc.) Hidden
AMD Ryzen Balanced Driver (HKLM-x32\...\{A171D320-C42C-4F3B-A2D8-C6A09F6788CC}) (Version: 6.0.0.7 - Advanced Micro Devices, Inc.) Hidden
AMD SBxxx SMBus Driver Alpha (HKLM-x32\...\{AAE0E27D-C88A-49BA-8715-77ADCD4286A3}) (Version: 5.12.0.38 - Advanced Micro Devices, Inc.) Hidden
AMD_Chipset_Drivers (HKLM-x32\...\{4fedae1b-6980-4848-9ba0-229c946a3dac}) (Version: 2.10.13.408 - Advanced Micro Devices, Inc.) Hidden
AusweisApp2 (HKLM-x32\...\{C04EA002-0878-4DBA-810E-8FE84CE35CB5}) (Version: 1.22.2 - Governikus GmbH & Co. KG)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.8.2.48475 - Electronic Arts)
Battlefield™ 6 (HKLM-x32\...\{c508544b-57bd-4c6c-96ed-8f57235285b4}) (Version: 1.0.389.2454 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.0 - EA Digital Illusions CE AB)
BattlEye Uninstall (HKLM-x32\...\BattlEye for A2) (Version: - )
Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 27.1.1.23 - Bitdefender)
Bitdefender Antivirus Plus (HKLM\...\Bitdefender) (Version: 27.0.53.265 - Bitdefender)
Bitdefender VPN (HKLM\...\Bitdefender VPN) (Version: 27.2.3.8 - Bitdefender)
Call of Duty (HKLM-x32\...\Call of Duty) (Version: - Blizzard Entertainment)
Call of Duty Black Ops Cold War (HKLM-x32\...\Call of Duty Black Ops Cold War) (Version: - Blizzard Entertainment)
Canon Easy-PhotoPrint Editor (HKLM-x32\...\Canon Easy-PhotoPrint Editor) (Version: 1.5.5 - Canon Inc.)
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.7.0.0 - Canon Inc.)
Canon IJ Network Scanner Selector EX2 (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX2) (Version: 2.0.10.2 - Canon Inc.)
Canon IJ Printer Assistant Tool (HKLM-x32\...\Canon IJ Printer Assistant Tool) (Version: 1.10.1.51 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.5.0.69 - Canon Inc.)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 6.3.0 - Canon Inc.)
Canon Kurzwahlprogramm2 (HKLM-x32\...\Speed Dial Utility2) (Version: 2.2.0 - Canon Inc.)
Canon TR4500 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_TR4500_series) (Version: 1.01 - Canon Inc.)
Canon TR4500 series On-Screen-Handbuch (HKLM-x32\...\Canon TR4500 series On-Screen-Handbuch) (Version: 1.0.0 - Canon Inc.)
Cisco Webex Meetings (HKU\S-1-5-21-1417567037-3132848013-3212831320-1001\...\ActiveTouchMeetingClient) (Version: 42.4.1 - Cisco Webex LLC)
Discord (HKU\S-1-5-21-1417567037-3132848013-3212831320-1001\...\Discord) (Version: 1.0.9213 - Discord Inc.)
Druckerregistrierung (HKLM-x32\...\Canon EISRegistration) (Version: 1.7.0 - Canon Inc.)
EA app (HKLM\...\{C2622085-ABD2-49E5-8AB9-D3D6A642C091}) (Version: 13.575.0.6088 - Electronic Arts) Hidden
EA app (HKLM-x32\...\{e731fa20-93d0-45c0-9e70-54f690fe087e}) (Version: 13.575.0.6088 - Electronic Arts)
EA SPORTS FC 25 (HKLM-x32\...\{E06B70DD-D5C9-458A-9518-2AE2C4C1AF34}) (Version: 1.0.127.15348 - Electronic Arts)
Epic Games Launcher (HKLM-x32\...\{07D9F8F3-EC99-4133-919D-DA341C62937C}) (Version: 1.1.298.0 - Epic Games, Inc.)
Epic Online Services (HKLM-x32\...\{758842D2-1538-4008-A8E3-66F65A061C52}) (Version: 2.0.33.0 - Epic Games, Inc.)
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB)
FACEIT (HKU\S-1-5-21-1417567037-3132848013-3212831320-1001\...\FACEIT) (Version: 1.31.16 - FACEIT Ltd.)
FACEIT Anti-Cheat (HKLM\...\{1419E44C-0EF4-4822-9194-9F1A4D43973D}_is1) (Version: 2.1 - FACEIT LTD)
foobar2000 v1.6.5 (HKLM-x32\...\foobar2000) (Version: 1.6.5 - Peter Pawlowski)
GIMP 2.10.38-1 (HKLM\...\GIMP-2_is1) (Version: 2.10.38 - The GIMP Team)
GIMP 3.0.4 (HKLM\...\GIMP-3_is1) (Version: 3.0.4.0 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 142.0.7444.176 - Google LLC)
GPL Ghostscript (HKLM-x32\...\GPL Ghostscript 9.56.1) (Version: 9.56.1 - Artifex Software Inc.)
iPod-Unterstützung (HKLM\...\{5530CCC4-99F6-4198-BB1B-F1F78D6BCA76}) (Version: 12.11.3.7 - Apple Inc.)
K-Lite Codec Pack 16.0.5 Basic (HKLM-x32\...\KLiteCodecPack_is1) (Version: 16.0.5 - KLCP)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Malwarebytes version 5.4.4.225 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 5.4.4.225 - Malwarebytes)
MapUpdateTool 2.6.0.1627 (HKLM-x32\...\MapUpdateTool) (Version: 2.6.0.1627 - TomTom)
Medal of Honor (TM) (HKLM-x32\...\{415030B8-3E8B-462A-8C03-41D95AA3AB3B}) (Version: 1.0.0.0 - Electronic Arts)
Microsoft .NET Host - 5.0.11 (x64) (HKLM\...\{15150450-57AB-4186-B520-329EED51AF7A}) (Version: 40.44.30523 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 5.0.11 (x64) (HKLM\...\{303BF805-644E-4A76-8964-B39786190EAC}) (Version: 40.44.30523 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 5.0.11 (x64) (HKLM\...\{9E190CBD-B034-491A-BD02-BDDBB4D67F74}) (Version: 40.44.30523 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 5.0.11 (x64) (HKLM-x32\...\{6f602f6c-621c-4ff0-afb8-1b774666115a}) (Version: 5.0.11.30523 - Microsoft Corporation)
Microsoft 365 - de-de (HKLM\...\O365HomePremRetail - de-de) (Version: 16.0.19328.20244 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 142.0.3595.94 - Microsoft Corporation)
Microsoft Edge WebView2-Laufzeit (HKLM-x32\...\Microsoft EdgeWebView) (Version: 142.0.3595.94 - Microsoft Corporation) Hidden
Microsoft GameInput (HKLM\...\{F563DC73-9550-F772-B4BF-2F72C83F9F30}) (Version: 10.1.26100.6114 - Microsoft Corporation)
Microsoft GameInput (HKLM-x32\...\{1F2B6AF3-C260-8666-5950-E3FEDBC851D6}) (Version: 10.1.22621.3036 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 25.206.1021.0003 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-1417567037-3132848013-3212831320-1001\...\Teams) (Version: 1.6.00.16472 - Microsoft Corporation)
Microsoft Teams Meeting Add-in for Microsoft Office (HKLM\...\{A7AB73A3-CB10-4AA5-9D38-6AEFFBDE4C91}) (Version: 1.24.25503 - Microsoft)
Microsoft Update Health Tools (HKLM\...\{C6FD611E-7EFE-488C-A0E0-974C09EF6473}) (Version: 5.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.44.35211 (HKLM-x32\...\{d8bbe9f9-7c5b-42c6-b715-9ee898a2e515}) (Version: 14.44.35211.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.44.35211 (HKLM-x32\...\{0b5169e3-39da-4313-808e-1f9c0407f3bf}) (Version: 14.44.35211.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.44.35211 (HKLM\...\{86AB2CC9-08BD-4643-B0F9-F82D006D72FF}) (Version: 14.44.35211 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.44.35211 (HKLM\...\{43B0D101-A022-48F4-9D04-BA404CEB1D53}) (Version: 14.44.35211 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.44.35211 (HKLM-x32\...\{C18FB403-1E88-43C8-AD8A-CED50F23DE8B}) (Version: 14.44.35211 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.44.35211 (HKLM-x32\...\{922480B5-CAEB-4B1B-AAA4-9716EFDCE26B}) (Version: 14.44.35211 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 5.0.11 (x64) (HKLM\...\{EB19F3DA-DB90-4269-BBD9-0FDC8056B372}) (Version: 40.44.30524 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 5.0.11 (x64) (HKLM-x32\...\{59d2a8eb-a667-428d-a393-42df4da226a4}) (Version: 5.0.11.30524 - Microsoft Corporation)
MiniTool Power Data Recovery 9.2 (HKLM\...\{E1BCD081-4BF4-4E2F-832A-911EC42EF3C5}_is1) (Version: 9.2 - MiniTool Software Limited)
Mozilla Firefox (x64 de) (HKLM\...\Mozilla Firefox 145.0.2 (x64 de)) (Version: 145.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 134.0.2 - Mozilla)
NVIDIA App 11.0.5.420 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NvApp) (Version: 11.0.5.420 - NVIDIA Corporation)
NVIDIA FrameView SDK 1.5.11504.36206172 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.5.11504.36206172 - NVIDIA Corporation)
NVIDIA Grafiktreiber 581.80 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 581.80 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.4.5.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.4.5.0 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.23.1019 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.23.1019 - NVIDIA Corporation)
Oculus (HKLM\...\Oculus) (Version: <3 - Facebook Technologies, LLC)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.19328.20106 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.19029.20208 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0407-1000-0000000FF1CE}) (Version: 16.0.19328.20106 - Microsoft Corporation) Hidden
PDF24 Creator 11.23.0 (HKLM\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version: 11.23.0 - geek software GmbH)
PICO Connect (HKU\S-1-5-21-1417567037-3132848013-3212831320-1001\...\4c4786f6-9fbe-11ee-8c90-0242ac120002) (Version: 10.1.5 - PICO Streaming Team)
PlayStation(R) PC SDK Runtime (HKLM\...\{0664B665-622E-490B-87CB-45EF0B52DA46}) (Version: 3.50.0011 - Sony Interactive Entertainment Inc.)
Promontory_GPIO Driver (HKLM-x32\...\{B5512BCC-F4CD-4159-86A4-B2AD7D38FFA9}) (Version: 2.0.1.0 - Advanced Micro Devices, Inc.) Hidden
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8716.1 - Realtek Semiconductor Corp.)
ReaPlugs/x64 (HKLM\...\ReaPlugs) (Version: - )
REDlauncher (HKU\S-1-5-21-1417567037-3132848013-3212831320-1001\...\{7258BA11-600C-430E-A759-27E2C691A335}-REDlauncher_is1) (Version: - GOG.com)
Remove Empty Directories version 2.2 (HKLM-x32\...\{06F25DC8-71E2-44E2-805A-F15E15B51C74}_is1) (Version: 2.2 - Jonas John)
Revo Uninstaller 2.6.2 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.6.2 - VS Revo Group, Ltd.)
Roblox Player for merli (HKU\S-1-5-21-1417567037-3132848013-3212831320-1001\...\roblox-player) (Version: - Roblox Corporation)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.92.2003 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.3.3.1 - Rockstar Games)
SeaTools for Windows 1.4.0.7 (HKLM-x32\...\SeaTools for Windows) (Version: 1.4.0.7 - Seagate Technology)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Streaming Service version 2.0.3.5 (HKLM-x32\...\"{92E27620-93C4-4221-9EEF-802067CF0A9C}"}_is1) (Version: 2.0.3.5 - PICO)
Surfshark (HKLM\...\{941692BD-B987-43AB-B82D-DB1389E80425}) (Version: 6.2.0999 - Surfshark) Hidden
Surfshark (HKLM\...\Surfshark 6.2.0999) (Version: 6.2.0999 - Surfshark)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.5.6 - TeamSpeak Systems GmbH)
Toolkit (HKLM-x32\...\Toolkit) (Version: 1.27.0.72 - Seagate)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 118.0.10358 - Ubisoft)
UE4 Prerequisites (x64) (HKLM-x32\...\{0d995f46-317b-4b5f-bf3e-9f98bae9d339}) (Version: 1.0.14.0 - Epic Games, Inc.) Hidden
UXP WebView Support (HKLM-x32\...\UXPW_1_2_0) (Version: 1.2.0 - Adobe Inc.)
VdhCoApp 1.6.1 (HKLM\...\weh-iss-net.downloadhelper.coapp_is1) (Version: - DownloadHelper)
Venice Unleashed version 1.0 (HKU\S-1-5-21-1417567037-3132848013-3212831320-1001\...\VeniceUnleashed_is1) (Version: 1.0 - )
VLC media player (HKLM\...\VLC media player) (Version: 3.0.12 - VideoLAN)
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
Wargaming.net Game Center (HKU\S-1-5-21-1417567037-3132848013-3212831320-1001\...\Wargaming.net Game Center) (Version: 21.9.0.7903 - Wargaming.net)
Windows*11-Installationsassistent (HKLM-x32\...\{115DF11E-4B4C-4EA9-9A79-00DB0C7EF02D}) (Version: 1.4.19041.5003 - Microsoft Corporation)
Windows-PC-Integritätsprüfung (HKLM\...\{68C9C2A4-C212-4310-AB68-12F97050A416}) (Version: 3.2.2110.14001 - Microsoft Corporation)
Windows-PC-Integritätsprüfung (HKLM\...\{E06F96B5-4369-4BDC-B64D-2A8A02FE069B}) (Version: 4.0.2410.23001 - Microsoft Corporation)
Wondershare Recoverit(Build 10.2.1.4) (HKLM-x32\...\{829555DC-31E5-4FEA-B350-8FCF24CECD95}_is1) (Version: 10.2.1.4 - Wondershare Software Co.,Ltd.)
World of Tanks EU (HKU\S-1-5-21-1417567037-3132848013-3212831320-1001\...\WOT.EU.PRODUCTION) (Version: - Wargaming.net)
XnView 2.51.0 (HKLM-x32\...\XnView_is1) (Version: 2.51.0 - Gougelet Pierre-e)
Zoom Workplace (HKU\S-1-5-21-1417567037-3132848013-3212831320-1003\...\ZoomUMX) (Version: 6.5.12 (14128) - Zoom Communications, Inc.)
Chrome apps:
============
Sheets (HKU\S-1-5-21-1417567037-3132848013-3212831320-1001\...\028c24fb5132f2358cdd52f43f24154a) (Version: 1.0 - Google\Chrome)
Packages:
=========
Acrobat Notification Client -> C:\Program Files\WindowsApps\AcrobatNotificationClient_1.0.4.0_x86__e1rzdqpraam7r [2024-12-16] (Adobe Systems Incorporated)
Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC [2024-10-20] ()
Adobe Notification Client -> C:\Program Files\WindowsApps\AdobeNotificationClient_6.0.0.1_x86__enpm4xejd91yc [2024-12-01] (Adobe Systems Incorporated)
Amazon Music -> C:\Program Files\WindowsApps\AmazonMobileLLC.AmazonMusic_9.5.2.0_x86__kc6t79cpj4tp0 [2025-09-30] (AMZN Mobile LLC)
Audio Recorder & Voice Recorder Pro -> C:\Program Files\WindowsApps\37309CoolLeGetInc.AudioVoiceRecorderPro_2.2.2.0_neutral__g0y9d13zmhd68 [2022-05-12] (CoolLeGet Inc)
Bitdefender CL Contextual Menu -> C:\Program Files\Bitdefender\Bitdefender Security App [2025-11-30] (Bitdefender)
Call of Duty® Modern Warfare 2 -> C:\Program Files\WindowsApps\38985CA0.MWIIGame_1.0.9.0_x64_ww_5bkah9njm3e9g [2025-10-09] (Activision Publishing Inc.)
Canon Inkjet Print Utility -> C:\Program Files\WindowsApps\34791E63.CanonInkjetPrintUtility_3.1.0.0_neutral__6e5tt8cgb93ep [2025-01-25] (Canon Inc.)
Disney+ -> C:\Program Files\WindowsApps\Disney.37853FC22B2CE_2024.3.211.0_neutral__6rarf9sa4v8jt [2025-11-22] (Disney)
GIMP -> C:\Program Files\WindowsApps\GIMP.43237F745459_3.0.60.0_x64__nq49gba4h4mx8 [2025-11-09] (GIMP)
Ink.Handwriting.de-DE.1.0 -> C:\Program Files\WindowsApps\Microsoft.Ink.Handwriting.de-DE.1.0_0.850.1840.0_x64__8wekyb3d8bbwe [2025-05-02] (Microsoft Corporation)
Ink.Handwriting.de-DE.1.0 -> C:\Program Files\WindowsApps\Microsoft.Ink.Handwriting.de-DE.1.0_0.850.1840.0_x86__8wekyb3d8bbwe [2025-05-02] (Microsoft Corporation)
Ink.Handwriting.Main.de-DE.1.0 -> C:\Program Files\WindowsApps\Microsoft.Ink.Handwriting.Main.de-DE.1.0_0.850.1840.0_x64__8wekyb3d8bbwe [2025-05-23] (Microsoft Corporation)
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12139.1.59021.0_x64__nzyj5cx40ttqa [2025-10-17] (Apple Inc.) [Startup Task]
Local AI Manager for Microsoft 365 -> C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\AI [2025-11-23] ()
Malwarebytes Anti-Malware -> C:\Program Files\Malwarebytes\Anti-Malware [2025-11-30] ()
Microsoft Defender -> C:\Program Files\WindowsApps\Microsoft.6365217CE6EB4_102.2509.19002.0_x64__8wekyb3d8bbwe [2025-11-03] (Microsoft Corporation) [Startup Task]
Microsoft Family -> C:\Program Files\WindowsApps\MicrosoftCorporationII.MicrosoftFamily_0.2.40.0_x64__8wekyb3d8bbwe [2024-06-18] (Microsoft Corp.)
Microsoft Jenny (Natural) - English (United States) -> C:\Program Files\WindowsApps\MicrosoftWindows.Voice.en-US.Jenny.1_1.0.8.0_x64__cw5n1h2txyewy [2025-09-23] (Microsoft Windows)
Microsoft.Office.ActionsServer -> C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\ActionsServer [2025-11-23] ()
Microsoft.Photos.MediaEngineDLC -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2025-09-13] (Microsoft Corporation)
Microsoft.Windows.Photos.DLC.Main -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2025-09-13] (Microsoft Corporation)
Minecraft Launcher -> C:\Program Files\WindowsApps\Microsoft.4297127D64EC6_2.2.2.0_x64__8wekyb3d8bbwe [2025-09-28] (Microsoft Studios)
MWII PC MS DLC01 Game Stub 01 -> C:\Program Files\WindowsApps\38985CA0.MWIIPCMSDLC01GameStub01_0.0.11.0_x64__5bkah9njm3e9g [2025-09-23] (Activision Publishing Inc.)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.969.0_x64__56jybvy8sckqj [2025-11-25] (NVIDIA Corp.)
OfficePushNotificationsUtility -> C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16 [2025-11-23] ()
Prime Video for Windows -> C:\Program Files\WindowsApps\AmazonVideo.PrimeVideo_1.1.5.0_x64__pwbj9vvecjh7j [2025-11-22] (Amazon Development Centre (London) Ltd)
Roblox -> C:\Program Files\WindowsApps\ROBLOXCORPORATION.ROBLOX_2.699.877.0_x64__55nm5eh3cm0pr [2025-11-27] (Roblox Corporation)
Speech Pack - English (United States) -> C:\Program Files\WindowsApps\MicrosoftWindows.Speech.en-US.1_1.0.23.0_x64__cw5n1h2txyewy [2025-09-23] (Microsoft Windows)
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2546.3.0_x64__cv1g1gvanyjgm [2025-11-21] (WhatsApp Inc.) [Startup Task]
WinAppRuntime.Main.1.5 -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Main.1.5_5001.373.1736.0_x64__8wekyb3d8bbwe [2025-01-23] (Microsoft Corp.)
WinAppRuntime.Singleton -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Singleton_8000.675.1142.0_x64__8wekyb3d8bbwe [2025-11-19] (Microsoft Corp.)
Wintoys -> C:\Program Files\WindowsApps\11413PtruceanBogdan.Wintoys_2.4.12.0_x64__ankwhmsh70gj6 [2025-10-06] (Bogdan Pătrăucean)
Xbox Zubehör -> C:\Program Files\WindowsApps\Microsoft.XboxDevices_2506.2505.28001.0_x64__8wekyb3d8bbwe [2025-06-20] (Microsoft Corporation)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-1417567037-3132848013-3212831320-1001_Classes\CLSID\{13357088-9834-0409-1600-134951500000}\localserver32 -> "C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe" -ToastActivated => Keine Datei
CustomCLSID: HKU\S-1-5-21-1417567037-3132848013-3212831320-1001_Classes\CLSID\{32E26FD9-F435-4A20-A561-35D4B987CFDC}\InprocServer32 -> C:\Users\merli\AppData\Local\WebEx\WebEx64\Meetings\atucfobj.dll (Cisco WebEx LLC -> Cisco WebEx LLC)
CustomCLSID: HKU\S-1-5-21-1417567037-3132848013-3212831320-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> "C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe" -ToastActivated => Keine Datei
CustomCLSID: HKU\S-1-5-21-1417567037-3132848013-3212831320-1001_Classes\CLSID\{4e6f7264-5650-4e00-0000-000000000000}\localserver32 -> "C:\Program Files\NordVPN\NordVPN.exe" -ToastActivated => Keine Datei
CustomCLSID: HKU\S-1-5-21-1417567037-3132848013-3212831320-1001_Classes\CLSID\{79BD5381-049D-4253-B908-43FFADDDAEE8} -> [S23 von Merlin] => C:\Users\merli\CrossDevice\S23 von Merlin [2025-10-27 08:13]
CustomCLSID: HKU\S-1-5-21-1417567037-3132848013-3212831320-1001_Classes\CLSID\{89b2b650-c4dd-d68b-46e7-3176f1973c8b}\localserver32 -> "C:\Program Files\Voicemod Desktop\VoicemodDesktop.exe" -ToastActivated => Keine Datei
CustomCLSID: HKU\S-1-5-21-1417567037-3132848013-3212831320-1001_Classes\CLSID\{d1b22d3d-8585-53a6-acb3-0e803c7e8d2a}\localserver32 -> C:\Users\merli\AppData\Local\Microsoft\Teams\current\Teams.exe (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1417567037-3132848013-3212831320-1001_Classes\CLSID\{DFF20505-B08F-455B-AD70-4FBD055088E0}\localserver32 -> C:\Program Files\Google\Chrome\Application\PlatformExperienceHelper\platform_experience_helper.exe (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-1417567037-3132848013-3212831320-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\25.206.1021.0003\FileSyncShell64.dll [2025-11-15] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\25.206.1021.0003\FileSyncShell64.dll [2025-11-15] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\25.206.1021.0003\FileSyncShell64.dll [2025-11-15] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\25.206.1021.0003\FileSyncShell64.dll [2025-11-15] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\25.206.1021.0003\FileSyncShell64.dll [2025-11-15] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\25.206.1021.0003\FileSyncShell64.dll [2025-11-15] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\25.206.1021.0003\FileSyncShell64.dll [2025-11-15] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-12-01] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-12-01] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-12-01] (Adobe Inc. -> )
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\25.206.1021.0003\FileSyncShell64.dll [2025-11-15] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\25.206.1021.0003\FileSyncShell64.dll [2025-11-15] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\25.206.1021.0003\FileSyncShell64.dll [2025-11-15] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\25.206.1021.0003\FileSyncShell64.dll [2025-11-15] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\25.206.1021.0003\FileSyncShell64.dll [2025-11-15] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\25.206.1021.0003\FileSyncShell64.dll [2025-11-15] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\25.206.1021.0003\FileSyncShell64.dll [2025-11-15] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\25.206.1021.0003\FileSyncShell64.dll [2025-11-15] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-12-01] (Adobe Inc. -> )
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2025-11-30] (Malwarebytes Inc -> Malwarebytes)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\25.206.1021.0003\FileSyncShell64.dll [2025-11-15] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\25.206.1021.0003\FileSyncShell64.dll [2025-11-15] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_20ae8f14a487d5db\nvshext.dll [2025-10-30] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-12-01] (Adobe Inc. -> )
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2025-11-30] (Malwarebytes Inc -> Malwarebytes)
==================== Codecs (Nicht auf der Ausnahmeliste) ====================
==================== Verknüpfungen & WMI ========================
==================== Geladene Module (Nicht auf der Ausnahmeliste) =============
2025-11-25 12:05 - 2025-11-25 12:05 - 004501728 _____ (Bitdefender SRL -> Bitdefender) [Datei ist nicht signiert] C:\Program Files\Bitdefender\Bitdefender Security\guster\guster_00313_030\sav\smb.dll
2021-01-23 10:15 - 2016-10-21 16:06 - 000318976 _____ (CANON INC) [Datei ist nicht signiert] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\scchmpm.dll
2021-01-23 10:15 - 2017-06-27 10:59 - 000219648 _____ (CANON INC.) [Datei ist nicht signiert] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\cnmpu2.dll
2021-01-23 10:15 - 2017-11-02 15:36 - 000008704 _____ (CANON INC.) [Datei ist nicht signiert] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\CNS2_DEU.DLL
2021-01-23 10:15 - 2017-11-02 15:36 - 000104960 _____ (CANON INC.) [Datei ist nicht signiert] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\CNS2_IMG.dll
2023-09-02 16:59 - 2023-06-15 04:00 - 001326080 _____ (CANON INC.) [Datei ist nicht signiert] C:\WINDOWS\System32\CNMLMEU.DLL
2021-01-23 10:12 - 2023-06-15 04:00 - 000506368 _____ (CANON INC.) [Datei ist nicht signiert] C:\WINDOWS\system32\spool\PRTPROCS\x64\CNMPDEU.DLL
2025-10-29 15:52 - 2025-10-29 15:52 - 000000000 ___JL (NVIDIA Corporation) [symlink -> C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\PlugIns\NVIDIA App\MessageBusRouter.dll] C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\plugins\NVIDIA Overlay\MessageBusRouter.dll
2024-11-24 17:54 - 2025-10-29 15:52 - 000000000 ___JL (NVIDIA Corporation) [symlink -> C:\Program Files\NVIDIA Corporation\NVIDIA App\MessageBus\NvMessageBusBroadcast.dll] C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem\NvMessageBusBroadcast.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\Intel:err [1504]
AlternateDataStreams: C:\WINDOWS\tracing:? [16]
AlternateDataStreams: C:\ProgramData\mntemp:8EAD8B3507 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\desktop.ini:B1DA6C571C [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk:A1B76439FE [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AusweisApp2.lnk:73D08CB982 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\desktop.ini:41964AA945 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk:BE32D07BC5 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk:B96E9B8455 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Uninstall Oculus.lnk:3E1FCB1CF0 [3442]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [6450]
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================
==================== Internet Explorer (Nicht auf der Ausnahmeliste) =============
HKU\S-1-5-21-1417567037-3132848013-3212831320-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://localoem.msn.com
HKU\S-1-5-21-1417567037-3132848013-3212831320-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://localoem.msn.com
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2020-05-30] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2020-05-30] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2025-11-03] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2020-05-30] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2020-05-30] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2020-05-30] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2020-05-30] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-11-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-11-03] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-11-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-11-03] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-11-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-11-03] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-11-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-11-03] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts Inhalt: =========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2019-12-07 10:14 - 2019-12-07 10:12 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Network ===========================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
DNS Servers: 192.168.2.1
ist aktiviert.
Network Binding:
=============
Ethernet: Realtek PCIe GbE Family Controller -> rtcx21x64.sys
LAN-Verbindung: Xbox Wireless Adapter for Windows -> mt7612US.sys
OpenVPN Data Channel Offload for Surfshark: OpenVPN Data Channel Offload -> ovpn-dco.sys
Bluetooth-Netzwerkverbindung 2: Bluetooth Device (Personal Area Network) #2 -> bthpan.sys
==================== Andere Bereiche ===========================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Oculus\Support\oculus-runtime;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\dotnet\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files (x86)\gs\gs9.56.1\bin;C:\Program Files\NVIDIA Corporation\NVIDIA app\NvDLISR
HKU\S-1-5-21-1417567037-3132848013-3212831320-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\merli\OneDrive\Bilder\wallpapers\20250826_135108.jpg
HKU\S-1-5-21-1417567037-3132848013-3212831320-1002\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
HKU\S-1-5-21-1417567037-3132848013-3212831320-1003\Control Panel\Desktop\\Wallpaper -> C:\Users\astri\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\LocalCache\Microsoft\IrisService\3584366196209204347\134086273650821210.jpg
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows Defender\Features => (TamperProtection: 1) (TamperProtectionSource: 5)
HKLM\SOFTWARE\Microsoft\Windows Defender\Real-Time Protection => (DpaDisabled: 0)
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run: => "PrintDisp"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "BdVpnApp"
HKLM\...\StartupApproved\Run: => "PDF24"
HKLM\...\StartupApproved\Run32: => "o2 my Service Suite"
HKLM\...\StartupApproved\Run32: => "Adobe CCXProcess"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run32: => "ExpressVPNNotificationService"
HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0"
HKU\S-1-5-21-1417567037-3132848013-3212831320-1001\...\StartupApproved\StartupFolder: => "Light Host.exe - Verknüpfung.lnk"
HKU\S-1-5-21-1417567037-3132848013-3212831320-1001\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-1417567037-3132848013-3212831320-1001\...\StartupApproved\Run: => "Toolkit"
HKU\S-1-5-21-1417567037-3132848013-3212831320-1001\...\StartupApproved\Run: => "EADM"
HKU\S-1-5-21-1417567037-3132848013-3212831320-1001\...\StartupApproved\Run: => "CiscoMeetingDaemon"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{9ED16073-9774-4FD5-9276-97B0BBC459EF}] => (Allow) D:\SteamLibrary\steamapps\common\Ready Or Not\Engine\Binaries\Win64\CrashReporter.exe => Keine Datei
FirewallRules: [{6A405D30-507A-4301-9EC6-AA63AFDBCDEF}] => (Allow) D:\SteamLibrary\steamapps\common\Ready Or Not\Engine\Binaries\Win64\CrashReporter.exe => Keine Datei
FirewallRules: [UDP Query User{46A15F1B-2386-4108-9EF6-AEA5A7B30497}C:\users\merli\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Allow) C:\users\merli\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe
FirewallRules: [TCP Query User{44FDD5BE-F09C-441D-A07F-5D29CAE02447}C:\users\merli\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Allow) C:\users\merli\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe
FirewallRules: [UDP Query User{1163580E-A7F6-496E-98DD-F154FB2BEF67}C:\users\merli\appdata\local\discord\app-1.0.9007\discord.exe] => (Allow) C:\users\merli\appdata\local\discord\app-1.0.9007\discord.exe => Keine Datei
FirewallRules: [TCP Query User{E74500DB-220D-4F82-948A-5A561E1BA344}C:\users\merli\appdata\local\discord\app-1.0.9007\discord.exe] => (Allow) C:\users\merli\appdata\local\discord\app-1.0.9007\discord.exe => Keine Datei
FirewallRules: [{BEE8916E-02D0-4D74-A3F3-F491A2DD8234}] => (Allow) D:\SteamLibrary\steamapps\common\Human Fall Flat\Human.exe () [Datei ist nicht signiert]
FirewallRules: [{07943AEB-2F42-4CA9-A2E7-5E60ACA5C38E}] => (Allow) D:\SteamLibrary\steamapps\common\Human Fall Flat\Human.exe () [Datei ist nicht signiert]
FirewallRules: [UDP Query User{C51BE52A-B163-4763-B068-8B0AE05C298B}D:\steamlibrary\steamapps\common\call of duty hq\sp22\sp22-cod.exe] => (Allow) D:\steamlibrary\steamapps\common\call of duty hq\sp22\sp22-cod.exe => Keine Datei
FirewallRules: [TCP Query User{C0ACAEE3-0043-4537-B51B-9111B83166CD}D:\steamlibrary\steamapps\common\call of duty hq\sp22\sp22-cod.exe] => (Allow) D:\steamlibrary\steamapps\common\call of duty hq\sp22\sp22-cod.exe => Keine Datei
FirewallRules: [UDP Query User{898285F3-0102-4213-9DA9-305ABB81130B}D:\fifa20\fifa 22\fifa22.exe] => (Allow) D:\fifa20\fifa 22\fifa22.exe => Keine Datei
FirewallRules: [TCP Query User{E620B909-4199-4D77-915D-DD1615DF6350}D:\fifa20\fifa 22\fifa22.exe] => (Allow) D:\fifa20\fifa 22\fifa22.exe => Keine Datei
FirewallRules: [UDP Query User{AA4815C4-5DCE-4FDE-BCC5-A2BD6247DA99}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [TCP Query User{5B92182A-E15C-4444-B4DA-0F520FFACCBC}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{7FDCF3B8-80CF-493A-B3A3-ABA4D2495479}] => (Allow) D:\SteamLibrary\steamapps\common\FPS Game Dev Test\FPSSteamGame.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [{164714B5-EF1B-42EC-8DC3-7391B9CE3EDD}] => (Allow) D:\SteamLibrary\steamapps\common\FPS Game Dev Test\FPSSteamGame.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{890821FD-DF2F-4C2D-93B3-7C9A33D43384}D:\fifa20\fifa 21\fifa21.exe] => (Allow) D:\fifa20\fifa 21\fifa21.exe => Keine Datei
FirewallRules: [TCP Query User{66F06B79-383C-45F1-819F-4E71533CE1C6}D:\fifa20\fifa 21\fifa21.exe] => (Allow) D:\fifa20\fifa 21\fifa21.exe => Keine Datei
FirewallRules: [UDP Query User{5CBB4E4E-3907-4C38-A629-B446330F0711}C:\users\merli\appdata\local\discord\app-1.0.9006\discord.exe] => (Allow) C:\users\merli\appdata\local\discord\app-1.0.9006\discord.exe => Keine Datei
FirewallRules: [TCP Query User{B878A9DA-4322-4F15-8FA0-11D6B188227C}C:\users\merli\appdata\local\discord\app-1.0.9006\discord.exe] => (Allow) C:\users\merli\appdata\local\discord\app-1.0.9006\discord.exe => Keine Datei
FirewallRules: [UDP Query User{09ED0396-9029-4631-8E0E-23788B1E88C8}D:\steamlibrary\steamapps\common\max payne 3\max payne 3\maxpayne3.exe] => (Allow) D:\steamlibrary\steamapps\common\max payne 3\max payne 3\maxpayne3.exe => Keine Datei
FirewallRules: [TCP Query User{D39A13CA-C8C8-46B4-AA6F-9BF5364A3586}D:\steamlibrary\steamapps\common\max payne 3\max payne 3\maxpayne3.exe] => (Allow) D:\steamlibrary\steamapps\common\max payne 3\max payne 3\maxpayne3.exe => Keine Datei
FirewallRules: [UDP Query User{FC198FF1-EC9B-4DAB-973C-69D03F5F0D83}D:\steamlibrary\steamapps\common\star wars squadrons\starwarssquadrons.exe] => (Allow) D:\steamlibrary\steamapps\common\star wars squadrons\starwarssquadrons.exe => Keine Datei
FirewallRules: [TCP Query User{285994CC-7094-4C1E-A602-2D40662AD789}D:\steamlibrary\steamapps\common\star wars squadrons\starwarssquadrons.exe] => (Allow) D:\steamlibrary\steamapps\common\star wars squadrons\starwarssquadrons.exe => Keine Datei
FirewallRules: [UDP Query User{8870F00B-0B2C-41C4-AF08-0AF4B06E5A3A}D:\steamlibrary\steamapps\common\spidermanhcvr\smhcvr\binaries\win64\smhcvr-win64-shipping.exe] => (Allow) D:\steamlibrary\steamapps\common\spidermanhcvr\smhcvr\binaries\win64\smhcvr-win64-shipping.exe => Keine Datei
FirewallRules: [TCP Query User{4255EA82-C721-4BED-9E14-8348269241FC}D:\steamlibrary\steamapps\common\spidermanhcvr\smhcvr\binaries\win64\smhcvr-win64-shipping.exe] => (Allow) D:\steamlibrary\steamapps\common\spidermanhcvr\smhcvr\binaries\win64\smhcvr-win64-shipping.exe => Keine Datei
FirewallRules: [UDP Query User{3B2248E8-49C5-480D-BA35-1EECE687438F}D:\steamlibrary\steamapps\common\pavlovvr\pavlov\binaries\win64\pavlov-win64-shipping.exe] => (Allow) D:\steamlibrary\steamapps\common\pavlovvr\pavlov\binaries\win64\pavlov-win64-shipping.exe => Keine Datei
FirewallRules: [TCP Query User{C2AD7F84-2F5C-4BAF-83AD-2FDBD34779BB}D:\steamlibrary\steamapps\common\pavlovvr\pavlov\binaries\win64\pavlov-win64-shipping.exe] => (Allow) D:\steamlibrary\steamapps\common\pavlovvr\pavlov\binaries\win64\pavlov-win64-shipping.exe => Keine Datei
FirewallRules: [{302EC9D7-0DBE-45A2-B3BB-D22C9503E0DB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtourscfg.exe (Valve Corp. -> )
FirewallRules: [{41FDAB0D-4A6C-42B1-87AB-BD444708F30E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtourscfg.exe (Valve Corp. -> )
FirewallRules: [{96C7D251-8CF7-4281-B5D3-94203C40F94A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtours.exe (Valve Corp. -> )
FirewallRules: [{6F76485F-C5BF-4245-8D50-C9C877AF50A4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtours.exe (Valve Corp. -> )
FirewallRules: [{07644D94-4B06-4D13-B6B5-DF2D30CEB109}] => (Allow) C:\Program Files\Oculus\Support\oculus-client\OculusClient.exe (Oculus VR, LLC) [Datei ist nicht signiert]
FirewallRules: [{21832AFE-10E8-4922-9462-7474959D5361}] => (Allow) C:\Program Files\Oculus\Support\oculus-client\OculusClient.exe (Oculus VR, LLC) [Datei ist nicht signiert]
FirewallRules: [{4FE4C1DB-AAD8-4E01-B1FF-A2351F183A4D}] => (Allow) C:\Program Files\Oculus\Support\oculus-worlds\Engine\Binaries\Win64\UnrealCEFSubProcess.exe => Keine Datei
FirewallRules: [{ECE98829-C21F-431E-837C-57C02B4EA5ED}] => (Allow) C:\Program Files\Oculus\Support\oculus-worlds\Engine\Binaries\Win64\UnrealCEFSubProcess.exe => Keine Datei
FirewallRules: [{8C2B2BB9-9C6D-4580-8A7F-9DFEEB3B642E}] => (Allow) C:\Program Files\Oculus\Support\oculus-worlds\Home2\Binaries\Win64\Home2-Win64-Shipping.exe => Keine Datei
FirewallRules: [{0B550366-DF32-46F5-8E90-429FEE7253EC}] => (Allow) C:\Program Files\Oculus\Support\oculus-worlds\Home2\Binaries\Win64\Home2-Win64-Shipping.exe => Keine Datei
FirewallRules: [{AFBF0CE2-FD9A-4D0E-99FC-9B0AEF522846}] => (Allow) C:\Program Files\Oculus\Support\oculus-worlds\Home2.exe => Keine Datei
FirewallRules: [{75226170-95D2-4615-9F3C-9DA761FCA457}] => (Allow) C:\Program Files\Oculus\Support\oculus-worlds\Home2.exe => Keine Datei
FirewallRules: [{65A3DB4B-4517-46B0-9799-EA64D6BF7E8F}] => (Allow) C:\Program Files\Oculus\Support\oculus-dash\dash\bin\OculusDash.exe (Meta Platforms, Inc. -> )
FirewallRules: [{9A68DC7F-8F37-4161-B1FA-E9DE0C6362EF}] => (Allow) C:\Program Files\Oculus\Support\oculus-dash\dash\bin\OculusDash.exe (Meta Platforms, Inc. -> )
FirewallRules: [{9206620B-B018-4433-9ED7-B2B0A9C956C5}] => (Allow) C:\Program Files\Oculus\Support\oculus-runtime\OVRRedir.exe (Meta Platforms, Inc. -> Facebook Technologies, LLC)
FirewallRules: [{3BB19662-B284-4ACB-992D-5DF8DCB16A13}] => (Allow) C:\Program Files\Oculus\Support\oculus-runtime\OVRRedir.exe (Meta Platforms, Inc. -> Facebook Technologies, LLC)
FirewallRules: [{C05411BA-AE52-4DA8-8A7C-065260623857}] => (Allow) C:\Program Files\Oculus\Support\oculus-runtime\OVRServer_x64.exe (Meta Platforms, Inc. -> Facebook Technologies, LLC)
FirewallRules: [{F775558E-3CAA-4336-99EA-D0A7D539F9EE}] => (Allow) C:\Program Files\Oculus\Support\oculus-runtime\OVRServer_x64.exe (Meta Platforms, Inc. -> Facebook Technologies, LLC)
FirewallRules: [{EA431E30-52B5-4382-85E9-94BDB50400A9}] => (Allow) C:\Program Files\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe (Meta Platforms, Inc. -> Facebook Technologies, LLC)
FirewallRules: [{74303D22-CD65-4ED7-B87B-F33517C7566A}] => (Allow) C:\Program Files\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe (Meta Platforms, Inc. -> Facebook Technologies, LLC)
FirewallRules: [{65C9708D-1EA2-4363-9453-6F50BF07A3AB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\bin\win32\vrstartup.exe => Keine Datei
FirewallRules: [{6F43EACA-0775-4816-8843-8E2A69D9053F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\bin\win32\vrstartup.exe => Keine Datei
FirewallRules: [UDP Query User{3648E0AD-AB0B-4FC4-9F33-C93C6F24FFE9}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{76E3BB8E-A5FA-44F5-99E9-EC7381D44445}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{29828B93-8689-4392-ABE0-135E5D00CD1B}] => (Allow) D:\SteamLibrary\steamapps\common\Stalker Call of Pripyat\bin\xrEngine.exe (GSC Game World -> GSC Game World)
FirewallRules: [{06153F83-A9EA-4A15-8767-E8E19E69F9FC}] => (Allow) D:\SteamLibrary\steamapps\common\Stalker Call of Pripyat\bin\xrEngine.exe (GSC Game World -> GSC Game World)
FirewallRules: [{470928D6-1BE9-46E4-90B4-3C8382BE03A8}] => (Allow) D:\SteamLibrary\steamapps\common\Fall Guys\FallGuys_client_game.exe () [Datei ist nicht signiert]
FirewallRules: [{F8C234E2-5C93-4DBD-A042-E88C5EF8933F}] => (Allow) D:\SteamLibrary\steamapps\common\Fall Guys\FallGuys_client_game.exe () [Datei ist nicht signiert]
FirewallRules: [{74192E8F-355C-4B55-9458-C3C0AE143717}] => (Allow) D:\SteamLibrary\steamapps\common\Fall Guys\FallGuys_client.exe () [Datei ist nicht signiert]
FirewallRules: [{500A86AE-7CC6-45DF-908C-7103B9292789}] => (Allow) D:\SteamLibrary\steamapps\common\Fall Guys\FallGuys_client.exe () [Datei ist nicht signiert]
FirewallRules: [{BCB9A01D-474B-48F0-A427-8A0590559652}] => (Allow) LPort=50053
FirewallRules: [{EEEA22BE-F8F8-48E4-BD16-78507CDAE2ED}] => (Allow) LPort=50053
FirewallRules: [{64627DB0-20CE-45CD-8B63-A93D2BBA395C}] => (Allow) LPort=53016
FirewallRules: [{E1067011-BDE3-4D16-9158-D05730F9185C}] => (Allow) LPort=53015
FirewallRules: [{8403591F-59F6-448E-A731-FBC7D9A02155}] => (Allow) LPort=53014
FirewallRules: [{DC3BDAC4-B789-436B-9AF0-4475D76389FD}] => (Allow) LPort=43013
FirewallRules: [{27393D87-E9A4-4EF2-8744-712500B05D5F}] => (Allow) LPort=43012
FirewallRules: [{5DDA8A40-C500-4917-A951-18B938444344}] => (Allow) LPort=33011
FirewallRules: [{72FE3097-629F-451D-AB24-6B32056C305D}] => (Allow) LPort=33010
FirewallRules: [{F7759AF2-9EB2-447C-8369-0660658FD320}] => (Allow) LPort=33009
FirewallRules: [{58C72CBA-F8C9-4536-A347-415135B8F6DD}] => (Allow) LPort=23008
FirewallRules: [{F8ADAE38-E95E-443F-9CB9-6678AB456958}] => (Allow) LPort=23007
FirewallRules: [{4A5FF8A8-BBD1-4A32-BCB4-E23C43A15583}] => (Allow) LPort=53016
FirewallRules: [{0FE1977E-2F7D-4C69-9BC0-E72C1C141D99}] => (Allow) LPort=53015
FirewallRules: [{B81DE626-0E91-4416-85E3-DB9410216FC8}] => (Allow) LPort=53014
FirewallRules: [{E14B69E9-522C-4B9C-B141-346CBE4B62E6}] => (Allow) LPort=43013
FirewallRules: [{07EA8ECF-1710-46B0-925F-46FAD132FF86}] => (Allow) LPort=43012
FirewallRules: [{236BB12D-874F-40F9-B57B-BCE88D0BD4BA}] => (Allow) LPort=33011
FirewallRules: [{A7641BA2-609A-426F-867D-AA1AC307A58D}] => (Allow) LPort=33010
FirewallRules: [{CFF6BC8D-1A7F-4D39-BD97-A3318F571C19}] => (Allow) LPort=33009
FirewallRules: [{6F667029-DC06-45CC-AC8B-5D08DD14AFFC}] => (Allow) LPort=23008
FirewallRules: [{C448AB59-BE9D-4CBC-8030-765E213FF6B2}] => (Allow) LPort=23007
FirewallRules: [{1E6467A2-C08F-4D3D-BCD3-E5FE8A7AD920}] => (Allow) LPort=57218
FirewallRules: [{0FE6364E-710A-4E69-9C54-C9FBE1908BF8}] => (Allow) LPort=57217
FirewallRules: [{648F7492-47E0-4FBB-BFFB-37C0CC856C0F}] => (Allow) LPort=57216
FirewallRules: [{AC0BB086-7231-4F15-86C5-EF1BE4DAD77B}] => (Allow) LPort=57215
FirewallRules: [{903BD3A9-6F41-4724-9095-08FBF0D90E0C}] => (Allow) LPort=57214
FirewallRules: [{AD62CB4D-8286-4C34-A1E2-AB992D132F14}] => (Allow) LPort=57213
FirewallRules: [{D41C1F81-1079-492D-AA54-420A10BFD9A5}] => (Allow) LPort=57212
FirewallRules: [{B0A4B232-60E1-41EF-993F-B585AD4205A3}] => (Allow) LPort=57211
FirewallRules: [{0870DB3E-F847-433D-BF6D-8CB672E0E25A}] => (Allow) LPort=57210
FirewallRules: [{D6BB730F-E126-4F2F-A0B1-F68C3B2DB877}] => (Allow) LPort=57209
FirewallRules: [{2EB99E6B-6B6F-4172-BD6D-EFD327C2DBD6}] => (Allow) LPort=57218
FirewallRules: [{F248C1C7-1051-497F-B753-8121E699FFAB}] => (Allow) LPort=57217
FirewallRules: [{DB932E43-B988-409D-A4FC-AAF09553FE78}] => (Allow) LPort=57216
FirewallRules: [{4E0C9325-E91D-42A9-AAF9-0C927E1CAB45}] => (Allow) LPort=57215
FirewallRules: [{869F0C1D-0F8E-4641-ACBD-FAB4E49BFD91}] => (Allow) LPort=57214
FirewallRules: [{6D591852-7D3D-4C20-B04E-BD893FB208F8}] => (Allow) LPort=57213
FirewallRules: [{B7E9D239-C185-412C-9B8A-B95E262C0D66}] => (Allow) LPort=57212
FirewallRules: [{50619C84-BAE3-414F-A6E1-2CED8823AB8C}] => (Allow) LPort=57211
FirewallRules: [{0BD7AFD9-0309-4425-8E0D-45F1DD82A842}] => (Allow) LPort=57210
FirewallRules: [{6F22CC1B-F9E0-40A3-AFBD-D6E15D837A1E}] => (Allow) LPort=57209
FirewallRules: [UDP Query User{3EC59677-E239-43AC-BEFA-47E6E8A61A57}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{82BABF32-F9D6-45A9-BB9D-CE5FF56B659B}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{25D2947E-75E3-4CF8-A352-849B731CC6F8}D:\steamlibrary\steamapps\common\sandstorm\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe] => (Allow) D:\steamlibrary\steamapps\common\sandstorm\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe (New World Interactive) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{B1CA2CA4-8B78-4FC4-8840-B6F26052B477}D:\steamlibrary\steamapps\common\sandstorm\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe] => (Allow) D:\steamlibrary\steamapps\common\sandstorm\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe (New World Interactive) [Datei ist nicht signiert]
FirewallRules: [{4BC9AE1B-4190-4DC6-96B7-EE00ED9B767B}] => (Allow) D:\SteamLibrary\steamapps\common\sandstorm\Insurgency.exe (SABER INTERACTIVE INC. -> Epic Games, Inc.)
FirewallRules: [{DC3C2EDB-A9E4-4912-B8CC-683F953907EB}] => (Allow) D:\SteamLibrary\steamapps\common\sandstorm\Insurgency.exe (SABER INTERACTIVE INC. -> Epic Games, Inc.)
FirewallRules: [{BD44DEAD-E973-4335-ACB1-98D12A78FB5D}] => (Allow) D:\SteamLibrary\steamapps\common\sandstorm\InsurgencyEAC.exe (EasyAntiCheat Oy -> Epic Games, Inc.)
FirewallRules: [{081392D9-C805-41D3-9159-E663117A8F49}] => (Allow) D:\SteamLibrary\steamapps\common\sandstorm\InsurgencyEAC.exe (EasyAntiCheat Oy -> Epic Games, Inc.)
FirewallRules: [UDP Query User{19E0F88B-0216-4BA8-9215-40C444AE39F2}D:\gtav\gta5.exe] => (Allow) D:\gtav\gta5.exe => Keine Datei
FirewallRules: [TCP Query User{82C5D023-A9BE-4B7B-A529-86E7F74EEB26}D:\gtav\gta5.exe] => (Allow) D:\gtav\gta5.exe => Keine Datei
FirewallRules: [UDP Query User{4764DF5C-EBD6-46F3-BCCB-635C6A3A092B}C:\program files (x86)\call of duty modern warfare\modernwarfare.exe] => (Allow) C:\program files (x86)\call of duty modern warfare\modernwarfare.exe => Keine Datei
FirewallRules: [TCP Query User{BFF61A16-7679-43EA-A8F7-6D7A557F46DF}C:\program files (x86)\call of duty modern warfare\modernwarfare.exe] => (Allow) C:\program files (x86)\call of duty modern warfare\modernwarfare.exe => Keine Datei
FirewallRules: [UDP Query User{12D11C49-D7F1-479E-8AAB-B1A509E4660D}D:\fortnite\engine\binaries\win64\epicwebhelper.exe] => (Allow) D:\fortnite\engine\binaries\win64\epicwebhelper.exe => Keine Datei
FirewallRules: [TCP Query User{49E808C3-0438-4ADF-A8C0-BAFAAE31A277}D:\fortnite\engine\binaries\win64\epicwebhelper.exe] => (Allow) D:\fortnite\engine\binaries\win64\epicwebhelper.exe => Keine Datei
FirewallRules: [UDP Query User{5118EE1B-03BC-4522-AB26-1FC6DA4AD222}C:\users\merli\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\merli\appdata\roaming\spotify\spotify.exe => Keine Datei
FirewallRules: [TCP Query User{B63A31F2-58D2-48BB-9D9B-C4F0BCFB5A43}C:\users\merli\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\merli\appdata\roaming\spotify\spotify.exe => Keine Datei
FirewallRules: [UDP Query User{0583F2A9-2235-437E-8F5D-BE732D2B17B1}D:\gtav\gta5.exe] => (Allow) D:\gtav\gta5.exe => Keine Datei
FirewallRules: [TCP Query User{AB346749-188C-4060-BB23-2A515B1A724E}D:\gtav\gta5.exe] => (Allow) D:\gtav\gta5.exe => Keine Datei
FirewallRules: [UDP Query User{D2DADD4F-111C-401D-ACAB-5401896A0890}C:\users\merli\onedrive\desktop\light host 1.2.1 win64\light host.exe] => (Allow) C:\users\merli\onedrive\desktop\light host 1.2.1 win64\light host.exe (Rolando Islas) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{69F69113-C39F-4FCA-A324-FA3E5CB4DC38}C:\users\merli\onedrive\desktop\light host 1.2.1 win64\light host.exe] => (Allow) C:\users\merli\onedrive\desktop\light host 1.2.1 win64\light host.exe (Rolando Islas) [Datei ist nicht signiert]
FirewallRules: [{365014FA-7A89-4E6B-AB9A-51D7D63E8A7F}] => (Allow) C:\Program Files\Voicemod Desktop\VoicemodDesktop.exe => Keine Datei
FirewallRules: [{4030AC06-9DE0-48C8-8039-71A92190A1B3}] => (Allow) C:\Program Files\Voicemod Desktop\VoicemodDesktop.exe => Keine Datei
FirewallRules: [{CB44ED3F-2A5A-4D9E-826A-E7136DD28262}] => (Allow) C:\Program Files\Voicemod Desktop\VoicemodDesktop.exe => Keine Datei
FirewallRules: [{3CC2798C-853A-4954-A82A-F4FFA71370B0}] => (Allow) C:\Program Files\Voicemod Desktop\VoicemodDesktop.exe => Keine Datei
FirewallRules: [UDP Query User{CDA09494-2633-46EE-AD72-FFA4B7EAAABA}D:\fortnite\engine\binaries\win64\epicwebhelper.exe] => (Allow) D:\fortnite\engine\binaries\win64\epicwebhelper.exe => Keine Datei
FirewallRules: [TCP Query User{80279756-7B46-4E86-B179-5F2630261350}D:\fortnite\engine\binaries\win64\epicwebhelper.exe] => (Allow) D:\fortnite\engine\binaries\win64\epicwebhelper.exe => Keine Datei
FirewallRules: [UDP Query User{13056F18-81AD-454E-93DA-659142DABE15}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{72017561-B4AF-4216-BD96-7397E92F77EE}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{C681A4D0-1F6F-4569-9A2B-2497B0FEE671}D:\games\world_of_tanks_eu\win64\worldoftanks.exe] => (Allow) D:\games\world_of_tanks_eu\win64\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [TCP Query User{1CEFA629-9AA1-4E90-B7DD-0B7DA88B2CE8}D:\games\world_of_tanks_eu\win64\worldoftanks.exe] => (Allow) D:\games\world_of_tanks_eu\win64\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{9BEF89BD-E6BC-4A9E-B91B-2A2D10A55B97}C:\users\merli\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe] => (Allow) C:\users\merli\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe
FirewallRules: [TCP Query User{F08CC95E-BCC5-4F15-9A84-4D83BF71428F}C:\users\merli\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe] => (Allow) C:\users\merli\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe
FirewallRules: [UDP Query User{355945DF-333B-45FF-B615-06C4C86E48C3}D:\alienisolation\ai.exe] => (Allow) D:\alienisolation\ai.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{1FFA93BC-DD32-4AFF-AB4B-E5D731DD1D10}D:\alienisolation\ai.exe] => (Allow) D:\alienisolation\ai.exe () [Datei ist nicht signiert]
FirewallRules: [UDP Query User{F0AFA7F9-98FF-4EA6-B131-430A515E1E46}D:\fifa20\fifa 20\fifa20.exe] => (Allow) D:\fifa20\fifa 20\fifa20.exe => Keine Datei
FirewallRules: [TCP Query User{9A62AE56-E89B-4FF9-AF7B-31B9F9A36F85}D:\fifa20\fifa 20\fifa20.exe] => (Allow) D:\fifa20\fifa 20\fifa20.exe => Keine Datei
FirewallRules: [{19F1B320-8880-4853-8C01-1995F9CAC3C5}] => (Allow) D:\SteamLibrary\steamapps\common\SuperSmash\SuperSmash\SuperSmash.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [{13035501-BFCA-48E2-9AF0-596B628CC02E}] => (Allow) D:\SteamLibrary\steamapps\common\SuperSmash\SuperSmash\SuperSmash.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [{E96F2269-2BD7-4EF2-BB71-B6B1D76CFD1F}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{5329E13E-C6DC-4B60-881A-F1B57E4BAD2D}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{9EE79744-9F7B-4F04-B22C-2F5A79E048EC}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{38759DDF-7BC2-4DEB-A23E-FDA63316D3B9}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{09AE1A11-2A98-4E86-80E6-047231BD2839}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Keine Datei
FirewallRules: [{02B2FD07-0195-4C2D-86E3-894B49C59795}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Keine Datei
FirewallRules: [{6202463A-9A45-4D01-98C9-7E26AE27C91D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe => Keine Datei
FirewallRules: [{C2C5CA17-9E88-48B9-8F17-0878DA867023}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe => Keine Datei
FirewallRules: [TCP Query User{839BD97B-0D4E-4B4C-9E74-AD50F7AAC449}C:\program files (x86)\toolkit\toolkit.exe] => (Allow) C:\program files (x86)\toolkit\toolkit.exe (SEAGATE TECHNOLOGY LLC -> Seagate Technology LLC)
FirewallRules: [UDP Query User{F57A2C0B-8558-4ACF-A6A2-98B87C50FB78}C:\program files (x86)\toolkit\toolkit.exe] => (Allow) C:\program files (x86)\toolkit\toolkit.exe (SEAGATE TECHNOLOGY LLC -> Seagate Technology LLC)
FirewallRules: [{2693ED51-5206-4611-B2A9-7EE94785196B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe => Keine Datei
FirewallRules: [{1CE8F5B8-A192-496E-B957-0DA7C2CCD1E6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe => Keine Datei
FirewallRules: [TCP Query User{24280023-1C59-41F6-9BFC-F9A6789AF648}C:\users\merli\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\merli\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{7499993A-1D68-4AD6-9DC9-6C11364E7D65}C:\users\merli\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\merli\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{2FB42CC8-1CF1-41E1-9543-26AB8DA10252}C:\program files (x86)\steam\steamapps\common\hell let loose\hll\binaries\win64\hll-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\hell let loose\hll\binaries\win64\hll-win64-shipping.exe => Keine Datei
FirewallRules: [UDP Query User{BB4EEEED-8FB3-448B-AD96-2CF963EF9417}C:\program files (x86)\steam\steamapps\common\hell let loose\hll\binaries\win64\hll-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\hell let loose\hll\binaries\win64\hll-win64-shipping.exe => Keine Datei
FirewallRules: [{C893ED80-1523-4945-9EEC-15B68564C864}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{8DF91DB7-D98B-4666-A8CA-A961B31DCC7F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [TCP Query User{297DCD8C-B34A-43E2-BAEA-2EB4446745D3}C:\program files (x86)\call of duty modern warfare\modernwarfare.exe] => (Allow) C:\program files (x86)\call of duty modern warfare\modernwarfare.exe => Keine Datei
FirewallRules: [UDP Query User{1CFCB30B-51E3-46C4-BB4E-51EE95C5E6F7}C:\program files (x86)\call of duty modern warfare\modernwarfare.exe] => (Allow) C:\program files (x86)\call of duty modern warfare\modernwarfare.exe => Keine Datei
FirewallRules: [{31D15C8D-6CAF-4A77-817D-2701A602F239}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Battlefield Bad Company 2\BFBC2Game.exe (EA Digital Illusions CE AB -> EA Digital Illusions CE AB)
FirewallRules: [{397749D0-A556-4A14-AB14-294B51D1EB50}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Battlefield Bad Company 2\BFBC2Game.exe (EA Digital Illusions CE AB -> EA Digital Illusions CE AB)
FirewallRules: [{63191F31-1ACF-4D91-B435-B18DBD523387}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{56BD06D8-414E-44AA-81EF-55D36D10CCBC}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [TCP Query User{1F161695-FC03-4C7C-A1E3-5F26AAA8A956}C:\program files\rockstar games\red dead redemption 2\rdr2.exe] => (Allow) C:\program files\rockstar games\red dead redemption 2\rdr2.exe => Keine Datei
FirewallRules: [UDP Query User{8F6B52D3-F973-4CF7-9AE5-637B249BC79C}C:\program files\rockstar games\red dead redemption 2\rdr2.exe] => (Allow) C:\program files\rockstar games\red dead redemption 2\rdr2.exe => Keine Datei
FirewallRules: [{1FA856BE-BF20-43B1-BBB5-A972F63BB14D}] => (Allow) C:\Program Files (x86)\AusweisApp2\AusweisApp2.exe (Governikus GmbH & Co. KG -> Governikus GmbH & Co. KG)
FirewallRules: [AusweisApp2-Firewall-Rule] => (Allow) C:\Program Files (x86)\AusweisApp2\AusweisApp2.exe (Governikus GmbH & Co. KG -> Governikus GmbH & Co. KG)
FirewallRules: [TCP Query User{BDC6CFF7-41A6-46C1-B391-8C4653544EE7}D:\bf4\battlefield 4\bf4.exe] => (Allow) D:\bf4\battlefield 4\bf4.exe => Keine Datei
FirewallRules: [UDP Query User{E5E109C3-F5C8-4EA7-ABD3-1D8F32C9129C}D:\bf4\battlefield 4\bf4.exe] => (Allow) D:\bf4\battlefield 4\bf4.exe => Keine Datei
FirewallRules: [TCP Query User{485BC211-26B2-427D-A5E7-06D27D09F3B3}D:\bf hl\bfh\bfh.exe] => (Allow) D:\bf hl\bfh\bfh.exe => Keine Datei
FirewallRules: [UDP Query User{3849528E-A2AF-4383-8B8E-807A46157863}D:\bf hl\bfh\bfh.exe] => (Allow) D:\bf hl\bfh\bfh.exe => Keine Datei
FirewallRules: [{97F41317-D3F6-4B18-A54D-158209558096}] => (Allow) D:\SteamLibrary\steamapps\common\WormsWMD\Worms W.M.D.exe () [Datei ist nicht signiert]
FirewallRules: [{FDF38DE2-5F24-4E15-9C51-68E040E4DE9D}] => (Allow) D:\SteamLibrary\steamapps\common\WormsWMD\Worms W.M.D.exe () [Datei ist nicht signiert]
FirewallRules: [{1660DEF0-7FBD-454B-AECB-BEBBFFE73834}] => (Allow) D:\SteamLibrary\steamapps\common\Hunt Showdown (Test Server)\hunt.exe => Keine Datei
FirewallRules: [{2B694178-6004-4E6E-BC9A-5B8C0F10CD51}] => (Allow) D:\SteamLibrary\steamapps\common\Hunt Showdown (Test Server)\hunt.exe => Keine Datei
FirewallRules: [{1992AE46-8FFF-4938-B837-8D5D4051B648}] => (Allow) D:\SteamLibrary\steamapps\common\Quake 3 Arena\quake3.exe () [Datei ist nicht signiert]
FirewallRules: [{2E14D355-69F6-4047-ABE4-2EB286367B7D}] => (Allow) D:\SteamLibrary\steamapps\common\Quake 3 Arena\quake3.exe () [Datei ist nicht signiert]
FirewallRules: [{25E71807-A866-4DD3-BA78-E82FAB2FF4AA}] => (Allow) D:\SteamLibrary\steamapps\common\DOOMEternal\idTechLauncher.exe => Keine Datei
FirewallRules: [{D336212B-ABB4-4313-9056-B702CCEBD5B5}] => (Allow) D:\SteamLibrary\steamapps\common\DOOMEternal\idTechLauncher.exe => Keine Datei
FirewallRules: [TCP Query User{385C2B8E-D31C-46D3-B175-0F17497142C7}C:\program files (x86)\q3arenahires\ioquake3.x86_64.exe] => (Allow) C:\program files (x86)\q3arenahires\ioquake3.x86_64.exe () [Datei ist nicht signiert]
FirewallRules: [UDP Query User{12A4A77D-A7B3-4388-B3E2-81EDE7FE92B0}C:\program files (x86)\q3arenahires\ioquake3.x86_64.exe] => (Allow) C:\program files (x86)\q3arenahires\ioquake3.x86_64.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{1D8E6D6D-3B02-451D-A889-2BBACB245AEA}C:\program files (x86)\call of duty vanguard\vanguard.exe] => (Allow) C:\program files (x86)\call of duty vanguard\vanguard.exe => Keine Datei
FirewallRules: [UDP Query User{E102A0AF-DB24-494B-8C91-233A2036C1BC}C:\program files (x86)\call of duty vanguard\vanguard.exe] => (Allow) C:\program files (x86)\call of duty vanguard\vanguard.exe => Keine Datei
FirewallRules: [TCP Query User{89756E8F-E0BC-4186-AEDC-9FD2E82F8EFE}D:\cod bo\call of duty black ops cold war\blackopscoldwar.exe] => (Allow) D:\cod bo\call of duty black ops cold war\blackopscoldwar.exe (Activision Publishing Inc -> Activision Publishing, Inc.)
FirewallRules: [UDP Query User{CAC419C4-B1DB-46BB-B8E6-2760523B72FC}D:\cod bo\call of duty black ops cold war\blackopscoldwar.exe] => (Allow) D:\cod bo\call of duty black ops cold war\blackopscoldwar.exe (Activision Publishing Inc -> Activision Publishing, Inc.)
FirewallRules: [TCP Query User{0C63C690-0413-4895-92BE-BC19AA793BF0}C:\users\merli\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\merli\appdata\roaming\spotify\spotify.exe => Keine Datei
FirewallRules: [UDP Query User{6AC67373-9EE1-43A2-9052-B3305040F893}C:\users\merli\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\merli\appdata\roaming\spotify\spotify.exe => Keine Datei
FirewallRules: [TCP Query User{B2DCFE7D-D05A-4045-9BB9-0103F23C1912}D:\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => Keine Datei
FirewallRules: [UDP Query User{F16F1FBA-0A4D-485F-BE77-B3E886591245}D:\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => Keine Datei
FirewallRules: [TCP Query User{D70D7FF2-6D53-42A3-9306-2D6EDF0BDD4E}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{85579150-A2B4-4BD8-853F-FACD11D38436}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [{664C3F32-CEBB-4D2C-9D64-B96ED664EA2C}] => (Allow) D:\SteamLibrary\steamapps\common\Wobbly Life\Wobbly Life.exe () [Datei ist nicht signiert]
FirewallRules: [{03BB2A3B-EDEC-4B25-A5CA-D237FCE34A11}] => (Allow) D:\SteamLibrary\steamapps\common\Wobbly Life\Wobbly Life.exe () [Datei ist nicht signiert]
FirewallRules: [{3A07DA5E-2E31-428B-B441-4A8A164A02A3}] => (Allow) D:\SteamLibrary\steamapps\common\Broforce\Broforce_beta.exe () [Datei ist nicht signiert]
FirewallRules: [{EC10CCB0-3C34-45E6-977E-B74DF7D45FAB}] => (Allow) D:\SteamLibrary\steamapps\common\Broforce\Broforce_beta.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{6387D15D-9A1D-47C2-8E0F-9432B9C5BB64}C:\program files\ea games\bfh\bfh.exe] => (Allow) C:\program files\ea games\bfh\bfh.exe => Keine Datei
FirewallRules: [UDP Query User{B9494C84-30EC-42A2-8AD3-2ABD03C24B15}C:\program files\ea games\bfh\bfh.exe] => (Allow) C:\program files\ea games\bfh\bfh.exe => Keine Datei
FirewallRules: [TCP Query User{E5A56FFA-76B3-4C2A-93D0-40A7380E9EEA}D:\battlefield 2042\bf2042.exe] => (Allow) D:\battlefield 2042\bf2042.exe => Keine Datei
FirewallRules: [UDP Query User{5444793B-9971-42E0-B607-54A2A2A57B8B}D:\battlefield 2042\bf2042.exe] => (Allow) D:\battlefield 2042\bf2042.exe => Keine Datei
FirewallRules: [{7F17E1C1-D7C2-4FAE-B245-8BFE1B07796D}] => (Allow) D:\SteamLibrary\steamapps\common\Among Us\Among Us.exe () [Datei ist nicht signiert]
FirewallRules: [{EA849970-2A8B-46BA-BAEA-DD1FEC616E89}] => (Allow) D:\SteamLibrary\steamapps\common\Among Us\Among Us.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{0E1028EB-F828-41EC-856C-14D210D192B0}D:\xbox\thehunter™- call of the wild - windows 10\content\thehuntercotw_f.exe] => (Allow) D:\xbox\thehunter™- call of the wild - windows 10\content\thehuntercotw_f.exe => Keine Datei
FirewallRules: [UDP Query User{69DEE329-73A4-4FF4-BBCE-56E27150CD34}D:\xbox\thehunter™- call of the wild - windows 10\content\thehuntercotw_f.exe] => (Allow) D:\xbox\thehunter™- call of the wild - windows 10\content\thehuntercotw_f.exe => Keine Datei
FirewallRules: [{35E9DC31-50D5-4FE9-851C-998F241BBE48}] => (Allow) D:\SteamLibrary\steamapps\common\ALTF4\ALTF4_F.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [{2816778E-492E-470A-92C5-CBC8639E0012}] => (Allow) D:\SteamLibrary\steamapps\common\ALTF4\ALTF4_F.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [{0A317DD7-9FB0-4CA4-9999-C990C6826E22}] => (Allow) D:\SteamLibrary\steamapps\common\HITMAN 3\Launcher.exe (IO INTERACTIVE A/S -> )
FirewallRules: [{C329EAF4-0B1C-4AB3-9FCC-5DDD0293B95A}] => (Allow) D:\SteamLibrary\steamapps\common\HITMAN 3\Launcher.exe (IO INTERACTIVE A/S -> )
FirewallRules: [{DD6D57C3-3A51-4B66-A1C2-D692B71F9292}] => (Allow) D:\SteamLibrary\steamapps\common\Warface\WarfaceMycomSteamLoader.exe => Keine Datei
FirewallRules: [{6358A69A-E954-4933-83AE-E6267D43EC5C}] => (Allow) D:\SteamLibrary\steamapps\common\Warface\WarfaceMycomSteamLoader.exe => Keine Datei
FirewallRules: [TCP Query User{F2759853-B2FA-4E86-B0CF-1B338B90D09D}D:\steamlibrary\steamapps\common\warface\mglauncher\mgl.exe] => (Allow) D:\steamlibrary\steamapps\common\warface\mglauncher\mgl.exe => Keine Datei
FirewallRules: [UDP Query User{6A7D6FE1-83A9-4F83-8E58-36BE53737A19}D:\steamlibrary\steamapps\common\warface\mglauncher\mgl.exe] => (Allow) D:\steamlibrary\steamapps\common\warface\mglauncher\mgl.exe => Keine Datei
FirewallRules: [TCP Query User{21C423E5-1202-4F11-A955-2FC9A08DB73D}D:\steamlibrary\steamapps\common\warface\13_2000076\bin64release\game.exe] => (Allow) D:\steamlibrary\steamapps\common\warface\13_2000076\bin64release\game.exe => Keine Datei
FirewallRules: [UDP Query User{709A5618-FC35-4439-8096-FE37CDAFF3BD}D:\steamlibrary\steamapps\common\warface\13_2000076\bin64release\game.exe] => (Allow) D:\steamlibrary\steamapps\common\warface\13_2000076\bin64release\game.exe => Keine Datei
FirewallRules: [{8F993870-10BA-44EE-B7B7-904E185B9350}] => (Allow) D:\SteamLibrary\steamapps\common\We Were Here Expeditions - The FriendShip\We Were Here Expeditions The FriendShip.exe () [Datei ist nicht signiert]
FirewallRules: [{734C5210-FD3C-43E6-A1C1-B5AC292DFD6A}] => (Allow) D:\SteamLibrary\steamapps\common\We Were Here Expeditions - The FriendShip\We Were Here Expeditions The FriendShip.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{08B8E6AE-3514-4A88-B83A-A48EEF92AE3E}C:\program files (x86)\steam\steamapps\common\counter-strike global offensive\game\bin\win64\cs2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\counter-strike global offensive\game\bin\win64\cs2.exe (Valve Corp. -> )
FirewallRules: [UDP Query User{E2D806FF-FD55-4971-AE24-D7208F2835AF}C:\program files (x86)\steam\steamapps\common\counter-strike global offensive\game\bin\win64\cs2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\counter-strike global offensive\game\bin\win64\cs2.exe (Valve Corp. -> )
FirewallRules: [{14248238-1316-4436-9169-A9FB387B26EF}] => (Allow) D:\SteamLibrary\steamapps\common\Half-Life 2\hl2.exe => Keine Datei
FirewallRules: [{F52A772A-17FD-470B-A124-38A3135574EA}] => (Allow) D:\SteamLibrary\steamapps\common\Half-Life 2\hl2.exe => Keine Datei
FirewallRules: [TCP Query User{26C06FBC-96F2-42B0-A158-EADDA09F693D}D:\fifa 23\fifa23.exe] => (Allow) D:\fifa 23\fifa23.exe => Keine Datei
FirewallRules: [UDP Query User{91817F9B-7377-4C12-A6F8-AE7212C7CE12}D:\fifa 23\fifa23.exe] => (Allow) D:\fifa 23\fifa23.exe => Keine Datei
FirewallRules: [TCP Query User{884685A3-7838-48FB-A455-0E7BA3DD1A80}D:\cod bo\call of duty\_retail_\cod.exe] => (Allow) D:\cod bo\call of duty\_retail_\cod.exe (Activision Publishing Inc -> Activision)
FirewallRules: [UDP Query User{6CE84229-9172-41E3-9A4A-52FB85DF1112}D:\cod bo\call of duty\_retail_\cod.exe] => (Allow) D:\cod bo\call of duty\_retail_\cod.exe (Activision Publishing Inc -> Activision)
FirewallRules: [TCP Query User{8099F997-E6E0-43F5-86C2-BEDC5DF62FAC}D:\cod bo\call of duty\_retail_\sp23\sp23-cod.exe] => (Allow) D:\cod bo\call of duty\_retail_\sp23\sp23-cod.exe => Keine Datei
FirewallRules: [UDP Query User{A288974B-33FB-4CE0-AF6D-AB8B1EEAC0D5}D:\cod bo\call of duty\_retail_\sp23\sp23-cod.exe] => (Allow) D:\cod bo\call of duty\_retail_\sp23\sp23-cod.exe => Keine Datei
FirewallRules: [{7D439683-E89B-4FBC-B7E7-116CE0E3EEEE}] => (Allow) D:\SteamLibrary\steamapps\common\Day of Defeat Source\hl2.exe => Keine Datei
FirewallRules: [{65947C04-D970-4780-A268-F2CA57C9C6A4}] => (Allow) D:\SteamLibrary\steamapps\common\Day of Defeat Source\hl2.exe => Keine Datei
FirewallRules: [TCP Query User{D16FD035-DF69-486E-ABBF-D191489B340E}D:\ea sports fc 24\fc24.exe] => (Allow) D:\ea sports fc 24\fc24.exe => Keine Datei
FirewallRules: [UDP Query User{12665628-2CC0-4CE5-9A31-ACEEBAD4ADCB}D:\ea sports fc 24\fc24.exe] => (Allow) D:\ea sports fc 24\fc24.exe => Keine Datei
FirewallRules: [{D0B15544-00B8-494B-BDE0-6C3F6BF65F01}] => (Allow) D:\SteamLibrary\steamapps\common\Portal 2\portal2.exe () [Datei ist nicht signiert]
FirewallRules: [{B5AC9446-3357-4078-9554-7A0F1480E0C5}] => (Allow) D:\SteamLibrary\steamapps\common\Portal 2\portal2.exe () [Datei ist nicht signiert]
FirewallRules: [{7E67155C-4864-4841-ABD3-1BFEAD5F9608}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Human Fall Flat\Human.exe () [Datei ist nicht signiert]
FirewallRules: [{A317F29D-07CE-4405-A4CE-71167E245BEB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Human Fall Flat\Human.exe () [Datei ist nicht signiert]
FirewallRules: [{A345572D-6E51-462F-A6DA-05736A92F3A2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\FPS Game Dev Test\FPSSteamGame.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [{ECDB6ACF-3194-4F5D-AD30-7CF9EC64B693}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\FPS Game Dev Test\FPSSteamGame.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{4BD0A4E0-9246-4E34-AD69-3F3B3A669B11}D:\rockstargames\red dead redemption 2\rdr2.exe] => (Allow) D:\rockstargames\red dead redemption 2\rdr2.exe => Keine Datei
FirewallRules: [UDP Query User{D4D68111-C9F9-452C-8959-BC7D36120AB3}D:\rockstargames\red dead redemption 2\rdr2.exe] => (Allow) D:\rockstargames\red dead redemption 2\rdr2.exe => Keine Datei
FirewallRules: [{EAB45F93-08DA-41B9-9074-CA103C1D8D4D}] => (Allow) D:\SteamLibrary\steamapps\common\Call of Duty Modern Warfare Remastered\h1_sp64_ship.exe (Activision Publishing Inc -> Activision)
FirewallRules: [{15316BF6-D482-4C93-812E-9E845E9B61EA}] => (Allow) D:\SteamLibrary\steamapps\common\Call of Duty Modern Warfare Remastered\h1_sp64_ship.exe (Activision Publishing Inc -> Activision)
FirewallRules: [{B2E540DF-2AF9-4B14-B678-E5C892BA84AF}] => (Allow) C:\Program Files\Streaming Service\ps_server.exe (Qingdao Pico Technology Co.,Ltd. -> )
FirewallRules: [{8F2C1CFE-EC18-4010-A350-8182515E1669}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\bin\win64\vrserver.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{6875E780-5F83-42F0-8CA7-F5595E1D8D71}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\bin\win64\vrserver.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [TCP Query User{9BC1B5B6-0FDF-4303-BF32-F22EC0FCAA0C}D:\rockstargames\rocketleague\binaries\win64\rocketleague.exe] => (Allow) D:\rockstargames\rocketleague\binaries\win64\rocketleague.exe => Keine Datei
FirewallRules: [UDP Query User{93A73303-3366-4CDA-9980-DF6A96B1BCB9}D:\rockstargames\rocketleague\binaries\win64\rocketleague.exe] => (Allow) D:\rockstargames\rocketleague\binaries\win64\rocketleague.exe => Keine Datei
FirewallRules: [TCP Query User{2C008978-7681-424F-8430-99F96067A103}C:\riot games\riot client\riotclientelectron\riot client.exe] => (Allow) C:\riot games\riot client\riotclientelectron\riot client.exe => Keine Datei
FirewallRules: [UDP Query User{6E38F9EC-8496-4EEC-9CB6-035D98937F7C}C:\riot games\riot client\riotclientelectron\riot client.exe] => (Allow) C:\riot games\riot client\riotclientelectron\riot client.exe => Keine Datei
FirewallRules: [{A3DD74CA-8DF7-4D6A-9F21-A02D5652DBF3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SlapshotRebound\Slapshot.exe () [Datei ist nicht signiert]
FirewallRules: [{4C3BC907-40CE-47D8-AE7A-C9F94D783A66}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SlapshotRebound\Slapshot.exe () [Datei ist nicht signiert]
FirewallRules: [{6428D975-F46B-4B0E-BADD-6DD8808A4892}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TotallyAccurateBattlegrounds\TABG_Launcher.exe (EasyAntiCheat Oy -> Epic Games, Inc.)
FirewallRules: [{6EAB8BF1-334D-4306-8F91-715925852359}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TotallyAccurateBattlegrounds\TABG_Launcher.exe (EasyAntiCheat Oy -> Epic Games, Inc.)
FirewallRules: [{408BFECF-F5D0-4F81-9373-4BA13C2A9038}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TotallyAccurateBattlegrounds\TotallyAccurateBattlegrounds.exe () [Datei ist nicht signiert]
FirewallRules: [{0E4F3DD1-6972-4EE2-8D7A-355CA50219E9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TotallyAccurateBattlegrounds\TotallyAccurateBattlegrounds.exe () [Datei ist nicht signiert]
FirewallRules: [{FD6D6A43-CCA6-4BCB-8F3B-D84E9649D1CE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\One-armed robber\OAR.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [{31486606-7EA6-439C-91B4-9A5DABAB6E9E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\One-armed robber\OAR.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{2ADE9140-376E-4292-A353-AB99C470DCA2}C:\xboxgames\call of duty\content\cod.exe] => (Allow) C:\xboxgames\call of duty\content\cod.exe => Keine Datei
FirewallRules: [UDP Query User{151D851C-213F-4EB5-BC04-94EE484A4C7F}C:\xboxgames\call of duty\content\cod.exe] => (Allow) C:\xboxgames\call of duty\content\cod.exe => Keine Datei
FirewallRules: [TCP Query User{F5A5D6AB-4399-4F5B-B8B2-332E7890B9F2}C:\xboxgames\call of duty\content\sp24\sp24-cod.exe] => (Allow) C:\xboxgames\call of duty\content\sp24\sp24-cod.exe => Keine Datei
FirewallRules: [UDP Query User{60E98E90-7B31-41CE-BFC4-9FEB48FFC022}C:\xboxgames\call of duty\content\sp24\sp24-cod.exe] => (Allow) C:\xboxgames\call of duty\content\sp24\sp24-cod.exe => Keine Datei
FirewallRules: [TCP Query User{1500A37E-7068-4A81-8CDC-839009E4A902}D:\ea sports fc 25\fc25.exe] => (Allow) D:\ea sports fc 25\fc25.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [UDP Query User{2F9BA57E-C2ED-40DC-8924-3A63C6D8BE4A}D:\ea sports fc 25\fc25.exe] => (Allow) D:\ea sports fc 25\fc25.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [TCP Query User{762162FF-B239-4878-B65A-E706F06A3582}C:\users\merli\curseforge\minecraft\install\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Allow) C:\users\merli\curseforge\minecraft\install\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe
FirewallRules: [UDP Query User{5F31CD2B-0094-4230-913C-FD04CC9453E0}C:\users\merli\curseforge\minecraft\install\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Allow) C:\users\merli\curseforge\minecraft\install\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe
FirewallRules: [TCP Query User{A082262C-230E-472E-9C25-25ECEDD6D764}C:\users\merli\curseforge\minecraft\install\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe] => (Allow) C:\users\merli\curseforge\minecraft\install\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe
FirewallRules: [UDP Query User{2667A9D1-257B-4999-8F05-DD84EA76A79A}C:\users\merli\curseforge\minecraft\install\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe] => (Allow) C:\users\merli\curseforge\minecraft\install\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe
FirewallRules: [TCP Query User{ADFFAB1B-2428-44AC-9A05-8F86299D2B7E}C:\users\merli\appdata\local\veniceunleashed\client\vu.exe] => (Allow) C:\users\merli\appdata\local\veniceunleashed\client\vu.exe (Orfeas Ioannis Zafeiris -> Venice Unleashed)
FirewallRules: [UDP Query User{9AB7C0FA-F50B-4797-8116-D1F030B273F7}C:\users\merli\appdata\local\veniceunleashed\client\vu.exe] => (Allow) C:\users\merli\appdata\local\veniceunleashed\client\vu.exe (Orfeas Ioannis Zafeiris -> Venice Unleashed)
FirewallRules: [{910D08C2-5F48-4409-896C-8B4BC3D4AA86}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24334.1105.3318.5002_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E963A71E-C768-47E6-BF8A-4F437C097AA3}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24334.1105.3318.5002_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{8A5EF25C-7607-4A84-B446-0379393C2613}C:\users\astri\appdata\roaming\zoom\bin\zoom.exe] => (Block) C:\users\astri\appdata\roaming\zoom\bin\zoom.exe (Zoom Video Communications, Inc. -> Zoom Communications, Inc.)
FirewallRules: [UDP Query User{C28D532B-08F6-48E1-9CD7-2509C4A93E52}C:\users\astri\appdata\roaming\zoom\bin\zoom.exe] => (Block) C:\users\astri\appdata\roaming\zoom\bin\zoom.exe (Zoom Video Communications, Inc. -> Zoom Communications, Inc.)
FirewallRules: [{7C30AB3C-EFD8-4F77-A99A-BBDFCFC290E7}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FirewallRules: [{272EDA04-1AB7-45FA-B092-77FFD88E1DBD}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FirewallRules: [{55E25B0B-D86F-4E1E-ACEA-3CD968D71CE2}] => (Allow) D:\Battlefield 4\BFLauncher.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{1BB430DB-D185-446F-BDB0-D66BCDD8B54E}] => (Allow) D:\Battlefield 4\BFLauncher.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{8BCA8A6F-0736-4616-8EC0-2BB878872873}] => (Allow) D:\Battlefield 4\BFLauncher_x86.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{22E1779F-F4FE-48D1-BEE7-D3AB12EB8764}] => (Allow) D:\Battlefield 4\BFLauncher_x86.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [TCP Query User{B6974A50-319A-4046-A2A5-3878E290F1EF}D:\battlefield 4\bf4.exe] => (Allow) D:\battlefield 4\bf4.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [UDP Query User{36BEB688-785A-455B-B971-DFB121A8A945}D:\battlefield 4\bf4.exe] => (Allow) D:\battlefield 4\bf4.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{B7416BD9-8DE3-43E5-8A53-34448E52655C}] => (Allow) C:\WINDOWS\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{AD687038-52BF-4CF7-BCD8-4808B1442AE3}] => (Allow) C:\WINDOWS\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{DAA097CC-F866-4D02-B5FA-2FCED943A282}] => (Allow) C:\WINDOWS\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{010278F0-4C18-4825-90AC-4E90DF8A0867}] => (Allow) C:\WINDOWS\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{4E03E399-13B2-413C-8FCB-3CAFF0FEBA49}] => (Allow) D:\SteamLibrary\steamapps\common\Just Act Natural\JustActNatural.exe (Unity Technologies ApS) [Datei ist nicht signiert]
FirewallRules: [{1682F9CF-FD8D-48D6-8545-663840552751}] => (Allow) D:\SteamLibrary\steamapps\common\Just Act Natural\JustActNatural.exe (Unity Technologies ApS) [Datei ist nicht signiert]
FirewallRules: [{8FC9A4A6-F054-41EB-B919-70B421BC49AC}] => (Allow) D:\SteamLibrary\steamapps\common\Chivalry 2\Chivalry2Launcher.exe (EasyAntiCheat Oy -> Epic Games, Inc.)
FirewallRules: [{55B74345-971F-4088-B975-386C56565656}] => (Allow) D:\SteamLibrary\steamapps\common\Chivalry 2\Chivalry2Launcher.exe (EasyAntiCheat Oy -> Epic Games, Inc.)
FirewallRules: [{AEA0DE2C-3744-4DB4-842D-079A1022CF7D}] => (Allow) D:\SteamLibrary\steamapps\common\Split Fiction\Split\Binaries\Win64\SplitFiction.exe (Hazelight Studios AB -> Hazelight Studios)
FirewallRules: [{BF3903A1-6350-416D-B157-844DADE4D6E3}] => (Allow) D:\SteamLibrary\steamapps\common\Split Fiction\Split\Binaries\Win64\SplitFiction.exe (Hazelight Studios AB -> Hazelight Studios)
FirewallRules: [{4E6D3290-C336-4E27-97B4-24EECC334B15}] => (Allow) D:\SteamLibrary\steamapps\common\The Last of Us Part II\launcher.exe (Sony Interactive Entertainment LLC -> Sony Interactive Entertainment)
FirewallRules: [{4009B368-81B2-4AAD-A697-15DD08F13647}] => (Allow) D:\SteamLibrary\steamapps\common\The Last of Us Part II\launcher.exe (Sony Interactive Entertainment LLC -> Sony Interactive Entertainment)
FirewallRules: [{c16e38ec-2882-4059-a42a-0f839f3d8497}] => (Allow) LPort=27016
FirewallRules: [{414e2fc6-ee7f-462f-9669-570cbd58ec86}] => (Allow) LPort=27016
FirewallRules: [{6ac8a656-92fa-4ef9-ac3c-eb43fc3bac98}] => (Allow) LPort=27016
FirewallRules: [{c8982adf-db14-4d49-bab5-d4c628f948c4}] => (Allow) LPort=27016
FirewallRules: [TCP Query User{7CCB754D-D38E-4AF0-8907-ABD5E9B13FCC}D:\steamlibrary\steamapps\common\day of defeat source\dod_win64.exe] => (Allow) D:\steamlibrary\steamapps\common\day of defeat source\dod_win64.exe (Valve Corp. -> )
FirewallRules: [UDP Query User{9AEEB128-A03D-450C-A443-E2C8F2A96322}D:\steamlibrary\steamapps\common\day of defeat source\dod_win64.exe] => (Allow) D:\steamlibrary\steamapps\common\day of defeat source\dod_win64.exe (Valve Corp. -> )
FirewallRules: [{940B38DF-42FB-4A13-837C-96020F4919FE}] => (Allow) D:\SteamLibrary\steamapps\common\AlphaResponse\KillOption.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [{A47EDC1A-727E-406E-9C18-087DD18267E8}] => (Allow) D:\SteamLibrary\steamapps\common\AlphaResponse\KillOption.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [{FE4AFDB3-BF2F-4832-BB55-0837019AA610}] => (Allow) C:\Program Files\Bitdefender\Bitdefender Security\bdntwrk.exe (Bitdefender SRL -> Bitdefender)
FirewallRules: [TCP Query User{9E5FFEDE-91A2-4D9D-925B-A0A2CF5602C1}C:\program files (x86)\origin games\battlefield 3\bf3.exe] => (Allow) C:\program files (x86)\origin games\battlefield 3\bf3.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [UDP Query User{B278BDCF-6EAE-4106-9B18-C5F4FABCB239}C:\program files (x86)\origin games\battlefield 3\bf3.exe] => (Allow) C:\program files (x86)\origin games\battlefield 3\bf3.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{0840A65C-E820-408E-A651-C06C13307F17}] => (Allow) D:\EA SPORTS FC 25\EAAntiCheat.GameServiceLauncher.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{5CD4419E-D842-4F5D-A875-31942AC64000}] => (Allow) D:\EA SPORTS FC 25\EAAntiCheat.GameServiceLauncher.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [TCP Query User{32D70B56-AB43-4C27-A272-B5197BED7D03}D:\xbox\call of duty- modern warfare 2\content\cod22-cod.exe] => (Allow) D:\xbox\call of duty- modern warfare 2\content\cod22-cod.exe (Zugriff verweigert) [Datei ist nicht signiert?]
FirewallRules: [UDP Query User{13610401-9AE9-4C68-8A0A-F0DD279D0047}D:\xbox\call of duty- modern warfare 2\content\cod22-cod.exe] => (Allow) D:\xbox\call of duty- modern warfare 2\content\cod22-cod.exe (Zugriff verweigert) [Datei ist nicht signiert?]
FirewallRules: [TCP Query User{EA30EEC4-7826-40F8-94AB-7D520105BA89}D:\xbox\call of duty- modern warfare 2\content\sp22\sp22-cod.exe] => (Allow) D:\xbox\call of duty- modern warfare 2\content\sp22\sp22-cod.exe (Zugriff verweigert) [Datei ist nicht signiert?]
FirewallRules: [UDP Query User{94D96451-0C97-4D71-B581-E2763FC80024}D:\xbox\call of duty- modern warfare 2\content\sp22\sp22-cod.exe] => (Allow) D:\xbox\call of duty- modern warfare 2\content\sp22\sp22-cod.exe (Zugriff verweigert) [Datei ist nicht signiert?]
FirewallRules: [{5334179B-9D16-476E-9E5F-5BF03DA61FB3}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{FE678B13-607E-47FF-A25A-8E9EA9B27A13}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{9C6986AF-353A-4696-B3DE-FEF38B59C28A}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{2E01ED1B-9DD3-4929-BD8C-3305AF4A8322}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{D3235E8C-4251-4A52-88C1-44928DAB8342}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{A32AC452-092B-46A7-827D-BBBEFBFB4D20}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{B06D2D23-0CF0-4FF8-B9F4-44920A2DAF71}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{CAF96A9D-803C-44CA-8F33-171C99A0BFB2}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{9D64A2C8-BFF1-4522-BC40-01A9EE41B59B}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{BBC6FAEA-FAC7-47B5-993D-5FEB3ACC23C2}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{C0806F8F-731F-409A-B5DA-1F7393B6533C}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALaunchHelper.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{4A65F829-9BEF-43E0-8353-A32752E3AA06}] => (Allow) C:\Program Files\WindowsApps\AmazonMobileLLC.AmazonMusic_9.5.2.0_x86__kc6t79cpj4tp0\Amazon Music Helper.exe (16916B57-7991-4968-B02A-2ADE4B5FB0DE -> Amazon.com Services LLC)
FirewallRules: [{656284C0-AC3E-4A1D-B34F-0BBA475008BE}] => (Allow) C:\Program Files\WindowsApps\AmazonMobileLLC.AmazonMusic_9.5.2.0_x86__kc6t79cpj4tp0\Amazon Music Helper.exe (16916B57-7991-4968-B02A-2ADE4B5FB0DE -> Amazon.com Services LLC)
FirewallRules: [{611BEAAC-C03D-4E37-A90C-CED3AF5760C4}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{620DAC64-B382-4108-B669-E4DB5424CD3A}D:\battlefield 6\bf6.exe] => (Allow) D:\battlefield 6\bf6.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [UDP Query User{94012B2F-A5D0-41DB-8E13-B8370D5F7AAA}D:\battlefield 6\bf6.exe] => (Allow) D:\battlefield 6\bf6.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{8D41F137-C343-4435-AC3C-874675EABAF4}] => (Allow) C:\Program Files\Fortect\MainService.exe => Keine Datei
FirewallRules: [{D7375195-D27C-43B7-9AEF-010416F65FAB}] => (Allow) C:\Program Files\Fortect\MainService.exe => Keine Datei
FirewallRules: [{636D5B88-41C1-46EE-94A9-C37EAD94550F}] => (Allow) D:\Battlefield 6\EAAntiCheat.GameServiceLauncher.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{93B66302-0E8E-4658-A5EF-2CFEB46EBBEB}] => (Allow) D:\Battlefield 6\EAAntiCheat.GameServiceLauncher.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{14CA9924-04E4-4257-8B89-D590D13CAE27}] => (Allow) D:\Battlefield 6\SP\bf6.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{B6DB7A50-491B-4048-AB70-7FEA9CE9EBD9}] => (Allow) D:\Battlefield 6\SP\bf6.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{CB33BBE4-E0B4-4690-8AE8-4FECD447BB3F}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12139.1.59021.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{1FDA9FF7-C4DA-42CC-910F-3AC8ADDC5A37}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12139.1.59021.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{692D413E-2AA6-4897-8378-DB46F58ADD8C}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12139.1.59021.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{59ACADAE-3D9A-4E1C-A106-BCC77C17D813}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12139.1.59021.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{B6112412-2C00-4061-8986-B3FC1172EF35}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12139.1.59021.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{FDF6F2C1-E6F1-4672-A52D-5B39630D07BF}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12139.1.59021.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{531665E8-8BA4-465A-BB76-FC23917C63C8}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12139.1.59021.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{BF5F425D-33FA-455D-B708-58B0884A4013}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12139.1.59021.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{FA9B8D55-D314-4764-A7EA-370970501635}] => (Allow) D:\SteamLibrary\steamapps\common\Road to Vostok Demo\Road_to_Vostok_Demo.exe (Road to Vostok) [Datei ist nicht signiert]
FirewallRules: [{097E0D28-E2D3-43E5-8352-C73320A047A9}] => (Allow) D:\SteamLibrary\steamapps\common\Road to Vostok Demo\Road_to_Vostok_Demo.exe (Road to Vostok) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{37FE09F2-E5B9-4EB2-A9E0-C988E29D2E51}D:\adb_appcontrol\adb\adb.exe] => (Allow) D:\adb_appcontrol\adb\adb.exe => Keine Datei
FirewallRules: [UDP Query User{60EB242D-C55D-429A-AF05-3C7F820392B5}D:\adb_appcontrol\adb\adb.exe] => (Allow) D:\adb_appcontrol\adb\adb.exe => Keine Datei
FirewallRules: [{2698A997-E519-48D7-885C-098D98753A85}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{4D5AAF35-3E40-4CD5-B7A1-CE421B291971}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25306.804.4102.7193_x64__8wekyb3d8bbwe\ms-teams_modulehost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{3E445D9B-4D20-41C7-BB15-4E6B15BFFA1C}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25306.804.4102.7193_x64__8wekyb3d8bbwe\ms-teams_modulehost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{9C089AC4-F423-408D-9625-708D0796CC4F}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25306.804.4102.7193_x64__8wekyb3d8bbwe\ms-teams_modulehost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{59C9C649-9176-4A96-A5C2-CE5E99070D9C}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25306.804.4102.7193_x64__8wekyb3d8bbwe\ms-teams_modulehost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{D2F34AA1-3F07-44C1-BD36-8170C1936E7D}] => (Allow) D:\SteamLibrary\steamapps\common\UBOAT\UBOAT Launcher.exe (Deep Water Studio) [Datei ist nicht signiert]
FirewallRules: [{41FC9319-0DBD-46BA-88A0-59D45805D290}] => (Allow) D:\SteamLibrary\steamapps\common\UBOAT\UBOAT Launcher.exe (Deep Water Studio) [Datei ist nicht signiert]
==================== Wiederherstellungspunkte =========================
30-11-2025 13:50:40 Removed Adobe Acrobat DC.
30-11-2025 13:50:57 Removed Adobe Acrobat Pro DC 2024
30-11-2025 13:53:49 Removed Adobe Acrobat DC.
30-11-2025 14:00:22 Revo Uninstaller's restore point - Adobe Acrobat DC
30-11-2025 14:03:33 Revo Uninstaller's restore point - Adobe Creative Cloud
30-11-2025 14:06:45 Revo Uninstaller's restore point - Adobe Genuine Service
30-11-2025 14:11:34 Revo Uninstaller's restore point - Adobe Illustrator 2022
30-11-2025 14:14:01 Revo Uninstaller's restore point - Adobe Illustrator 2023
30-11-2025 17:16:30 Revo Uninstaller's restore point - SYSCLEANER
==================== Fehlerhafte Geräte im Gerätemanager ============
==================== Fehlereinträge in der Ereignisanzeige: ========================
Applikationsfehler:
==================
Error: (11/30/2025 05:27:56 PM) (Source: .NET Runtime) (EventID: 1022) (User: )
Description: .NET Runtime version 4.0.30319.0 - Fehler beim Initialisieren der Profilerstellungs-API-Anfügeinfrastruktur. Dieser Prozess ermöglicht einem Profiler das Anfügen nicht. HRESULT: 0x80004005. Prozess-ID (dezimal): 14792. Meldungs-ID: [0x2509].
Error: (11/30/2025 05:25:45 PM) (Source: CertEnroll) (EventID: 86) (User: NT-AUTORITÄT)
Description: Fehler bei der Initialisierung der SCEP-Zertifikatregistrierung für WORKGROUP\MERLIN$ über https://AMD-KeyId-907d65e9b562315997dd5ad086b2b7598957b92c.microsoftaik.azure.net/templates/Aik/scep:
GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-907d65e9b562315997dd5ad086b2b7598957b92c.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Sun, 30 Nov 2025 16:25:45 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 96ab34e3-dc8e-4b6a-a12d-8a76f6d20551
Methode: GET(188ms)
Phase: GetCACaps
Nicht gefunden (404). 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)
Error: (11/30/2025 05:25:45 PM) (Source: CertEnroll) (EventID: 86) (User: NT-AUTORITÄT)
Description: Fehler bei der Initialisierung der SCEP-Zertifikatregistrierung für Lokales System über https://AMD-KeyId-907d65e9b562315997dd5ad086b2b7598957b92c.microsoftaik.azure.net/templates/Aik/scep:
GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-907d65e9b562315997dd5ad086b2b7598957b92c.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Sun, 30 Nov 2025 16:25:44 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 5a317f50-9d66-481b-a3dc-8224af6edd9a
Methode: GET(297ms)
Phase: GetCACaps
Nicht gefunden (404). 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)
Error: (11/30/2025 05:25:30 PM) (Source: MsiInstaller) (EventID: 11714) (User: NT-AUTORITÄT)
Description: Product: Microsoft GameInput -- Error 1714. The older version of Microsoft GameInput cannot be removed. Contact your technical support group. System Error 1612.
Error: (11/30/2025 05:25:18 PM) (Source: Windows Search Service) (EventID: 7042) (User: )
Description: Windows Search wird aufgrund eines Problems bei der Indizierung Fehler in der Wiederherstellungsphase. beendet.
Kontext: Anwendung, SystemIndex Katalog
Details:
0x%08x (0x80040d23 - Gatherer wird heruntergefahren. (HRESULT : 0x80040d23))
Error: (11/30/2025 05:25:18 PM) (Source: Windows Search Service) (EventID: 3602) (User: )
Description: Fehler-ID 1 in der Wiederherstellungsphase von Windows Search. Bitte starten Sie den Dienst erneut. Wenn dieser Fehler weiterhin besteht, führen Sie eine Neuerstellung des Index aus.
Kontext: Anwendung, SystemIndex Katalog
Details:
0x%08x (0x80040d23 - Gatherer wird heruntergefahren. (HRESULT : 0x80040d23))
Error: (11/30/2025 05:24:28 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volumenschattenkopie-Dienst-Informationen: Der COM-Server mit CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} und dem Namen "CEventSystem" kann nicht gestartet werden. [0x8007045b, Der Computer wird heruntergefahren.]
Error: (11/30/2025 05:24:26 PM) (Source: Application Error) (EventID: 1000) (User: NT-AUTORITÄT)
Description: Name der fehlerhaften Anwendung: ps_service_launcher.exe, Version: 0.0.0.0, Zeitstempel: 0x665ee67f
Name des fehlerhaften Moduls: ucrtbase.dll, Version: 10.0.22621.3593, Zeitstempel: 0x10c46e71
Ausnahmecode: 0xc0000409
Fehleroffset: 0x000000000007f6fe
ID des fehlerhaften Prozesses: 0x0x22a8
Startzeit der fehlerhaften Anwendung: 0x0x1dc61ffdc1a24a2
Pfad der fehlerhaften Anwendung: C:\Program Files\Streaming Service\ps_service_launcher.exe
Pfad des fehlerhaften Moduls: C:\WINDOWS\System32\ucrtbase.dll
Berichtskennung: 9e88913c-a25b-4204-9bdd-d82e166b5fd8
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Systemfehler:
=============
Error: (11/30/2025 05:30:15 PM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1801) (User: NT-AUTORITÄT)
Description: Die Zertifizierungsstelle/Schlüssel für den sicheren Start müssen aktualisiert werden. Diese Gerätesignaturinformationen sind hier enthalten.
DeviceAttributes: BaseBoardManufacturer:Micro-Star International Co., Ltd;FirmwareManufacturer:American Megatrends Inc.;FirmwareVersion:M.B0;OEMModelBaseBoard:B450-A PRO MAX (MS-7B86);OEMManufacturerName:Micro-Star International Co., Ltd;OSArchitecture:amd64;
BucketId: f1f4837f6a9336e3b1d012437e49c27ffbbdb8d2de870919b1e717b08b7847de
BucketConfidenceLevel:
UpdateType: 0
HResult: 0
Error: (11/30/2025 05:27:20 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Google Update-Dienst (gupdate)" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Dienst antwortete nicht rechtzeitig auf die Start- oder Steuerungsanforderung.
Error: (11/30/2025 05:27:20 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (90000 ms) wurde beim Verbindungsversuch mit dem Dienst Google Update-Dienst (gupdate) erreicht.
Error: (11/30/2025 05:25:22 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "GameInput Service" wurde unerwartet beendet. Dies ist bereits 6 Mal passiert.
Error: (11/30/2025 05:25:22 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "GameInput Service" wurde mit folgendem Fehler beendet:
Die Verbunddatei "GameInput Service" wurde mit einer neueren Version erstellt.
Error: (11/30/2025 05:25:20 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "GameInput Service" wurde unerwartet beendet. Dies ist bereits 5 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 1000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (11/30/2025 05:25:20 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "GameInput Service" wurde mit folgendem Fehler beendet:
Die Verbunddatei "GameInput Service" wurde mit einer neueren Version erstellt.
Error: (11/30/2025 05:25:20 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.
Windows Defender:
================
Date: 2025-07-17 19:06:38
Description:
Microsoft Defender Antivirus ŝçäи ĥåš вėэй šţōрρěđ вёƒσŗę сŏмρľëŧïόʼn.%л %ťЅсăй ІĐ:%ъ{3580B72D-2B79-40A3-B88A-CBEF7730199F}%ⁿ %ŧŞċăπ Тýрё:%ъAntimalware%ή %τŚςâņ Рåřám℮ţĕŗş:%ъSchnellüberprüfung%ņ %ţÛšēґ:%ъNT-AUTORITÄT\SYSTEM%ŋ %ťŠţóρ Ŗєāśøή:%вŞçђєδůĺęδ ѕçãŋ щäş śкīρρέð ъέĉâυśē ŧћэ ľάšţ śůççеŝѕƒųŀ ѕċąñ щâѕ щіţħïń ťħė ŀáşť 7 ďάγş
Date: 2025-07-15 17:32:22
Description:
Microsoft Defender Antivirus ŝçäи ĥåš вėэй šţōрρěđ вёƒσŗę сŏмρľëŧïόʼn.%л %ťЅсăй ІĐ:%ъ{8681823E-FB9B-44A2-923A-0B76E867BFF7}%ⁿ %ŧŞċăπ Тýрё:%ъAntimalware%ή %τŚςâņ Рåřám℮ţĕŗş:%ъSchnellüberprüfung%ņ %ţÛšēґ:%ъNT-AUTORITÄT\SYSTEM%ŋ %ťŠţóρ Ŗєāśøή:%вŞçђєδůĺęδ ѕçãŋ щäş śкīρρέð ъέĉâυśē ŧћэ ľάšţ śůççеŝѕƒųŀ ѕċąñ щâѕ щіţħïń ťħė ŀáşť 7 ďάγş
Date: 2025-07-14 13:07:37
Description:
Microsoft Defender Antivirus ŝçäи ĥåš вėэй šţōрρěđ вёƒσŗę сŏмρľëŧïόʼn.%л %ťЅсăй ІĐ:%ъ{43A8BCE2-2DE5-4147-89C4-411CAD413981}%ⁿ %ŧŞċăπ Тýрё:%ъAntimalware%ή %τŚςâņ Рåřám℮ţĕŗş:%ъSchnellüberprüfung%ņ %ţÛšēґ:%ъNT-AUTORITÄT\SYSTEM%ŋ %ťŠţóρ Ŗєāśøή:%вŞçђєδůĺęδ ѕçãŋ щäş śкīρρέð ъέĉâυśē ŧћэ ľάšţ śůççеŝѕƒųŀ ѕċąñ щâѕ щіţħïń ťħė ŀáşť 7 ďάγş
Date: 2025-07-13 18:01:17
Description:
Microsoft Defender Antivirus ŝçäи ĥåš вėэй šţōрρěđ вёƒσŗę сŏмρľëŧïόʼn.%л %ťЅсăй ІĐ:%ъ{10B366B9-E227-47BD-9C16-95D51D08A8C8}%ⁿ %ŧŞċăπ Тýрё:%ъAntimalware%ή %τŚςâņ Рåřám℮ţĕŗş:%ъSchnellüberprüfung%ņ %ţÛšēґ:%ъNT-AUTORITÄT\SYSTEM%ŋ %ťŠţóρ Ŗєāśøή:%вŞçђєδůĺęδ ѕçãŋ щäş śкīρρέð ъέĉâυśē ŧћэ ľάšţ śůççеŝѕƒųŀ ѕċąñ щâѕ щіţħïń ťħė ŀáşť 7 ďάγş
Date: 2025-07-12 12:12:47
Description:
Microsoft Defender Antivirus ŝçäи ĥåš вėэй šţōрρěđ вёƒσŗę сŏмρľëŧïόʼn.%л %ťЅсăй ІĐ:%ъ{C30EA36A-0A05-4BD8-8800-A44D5A01074E}%ⁿ %ŧŞċăπ Тýрё:%ъAntimalware%ή %τŚςâņ Рåřám℮ţĕŗş:%ъSchnellüberprüfung%ņ %ţÛšēґ:%ъNT-AUTORITÄT\SYSTEM%ŋ %ťŠţóρ Ŗєāśøή:%вŞçђєδůĺęδ ѕçãŋ щäş śкīρρέð ъέĉâυśē ŧћэ ľάšţ śůççеŝѕƒųŀ ѕċąñ щâѕ щіţħïń ťħė ŀáşť 7 ďάγş
Event[0]
Date: 2024-01-23 23:27:03
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Security Intelligence aufgetreten. Es wird versucht, zu einer vorherigen Version zurückzukehren.
Security Intelligence versucht: Aktuell
Fehlercode: 0x80501102
Fehlerbeschreibung: Unerwartetes Problem. Installieren Sie bei Bedarf verfügbare Updates, und starten Sie das Programm dann erneut. Informationen zum Installieren von Updates finden Sie unter "Hilfe und Support".
Security Intelligence-Version: 1.403.2580.0;1.403.2580.0
Modulversion: 1.1.23110.2
CodeIntegrity:
===============
Date: 2025-11-30 17:30:16
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\WINDOWS\System32\SecurityHealthService.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bitdefender\Bitdefender Security\bdamsi\dlls_267059357120000000\antimalware_provider64.dll that did not meet the Windows signing level requirements.
Date: 2025-11-30 17:27:21
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\WINDOWS\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bitdefender\Bitdefender Security\bdamsi\dlls_267059357120000000\antimalware_provider64.dll that did not meet the Windows signing level requirements.
==================== Speicherinformationen ===========================
BIOS: American Megatrends Inc. M.B0 12/03/2020
Hauptplatine: Micro-Star International Co., Ltd B450-A PRO MAX (MS-7B86)
Prozessor: AMD Ryzen 5 3600 6-Core Processor
Prozentuale Nutzung des RAM: 23%
Installierter physikalischer RAM: 32693.72 MB
Verfügbarer physikalischer RAM: 25107.49 MB
Summe virtueller Speicher: 34741.72 MB
Verfügbarer virtueller Speicher: 26806.58 MB
==================== Laufwerke ================================
Drive c: (Windows) (Fixed) (Total:930.37 GB) (Free:293.57 GB) (Model: CT1000P1SSD8) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive d: (Volume) (Fixed) (Total:1863 GB) (Free:599.52 GB) (Model: ST2000DM008-2FR102) NTFS
\\?\Volume{1adc2256-113c-4223-8ac1-c542c8644d5d}\ () (Fixed) (Total:0.92 GB) (Free:0.14 GB) NTFS
\\?\Volume{04b9c047-5a01-41d3-8925-13d7ed8a6f0f}\ (SYSTEM) (Fixed) (Total:0.09 GB) (Free:0.06 GB) FAT32
==================== MBR & Partitionstabelle ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: 5A54EE92)
Partition: GPT.
==================== Ende von Addition.txt =======================
|
|
30.11.2025, 18:02
| #18 |
| /// TB-Ausbilder   | PUP.Adware.Heuristic auf Win 11 PC Logs sehen gut aus.
__________________Gibt es noch Probleme? |
|
30.11.2025, 18:04
| #19 |
| | PUP.Adware.Heuristic auf Win 11 PC Sieht gut aus, keine Probleme mehr. Danke cosinus, Danke MKDB ! |
|
30.11.2025, 18:04
| #20 |
| /// TB-Ausbilder | PUP.Adware.Heuristic auf Win 11 PC FRST und alle dazugehörigen Elemente kannst du wie folgt entfernen:
Du verwendest eine veraltete Version von Windows 11, bitte updaten! Dann wären wir durch! Wenn du keine Probleme mehr mit Malware hast, dann sind wir hier fertig. Deine Logdateien sind sauber.  Wenn Du möchtest, kannst Du hier sagen, ob du mit uns und unserer Hilfe zufrieden warst...  Vielleicht möchtest du das Forum mit einer kleinen Spende  unterstützen.  Zum Schluss bitte unbedingt die Sicherheitsmaßnahmen lesen und umsetzen: Hinweis: Bitte gib mir eine kurze Rückmeldung, sobald du die oben verlinkten Informationen gelesen hast, alles erledigt ist und keine Fragen mehr vorhanden sind, so dass ich dieses Thema aus meinen Abos löschen kann. |
|
30.11.2025, 18:09
| #21 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | PUP.Adware.Heuristic auf Win 11 PCZitat:
Warum bekommen viele User das einfach nicht mit, dass da Müll in Setups gebastelt und verteilt wird? Sonstige Infos verbreiten sich doch was Schädlinge angeht ja auch extrem schnell.  DownloadquellenLade keine Software von Chip.de, Softonic.de, sourceforge.net, openoffice.de, VLC.de, audacity.de, gimp24.de oder updatestar.com. Die dort angebotene Software wird häufig mit einem sog. "Installer" verteilt, mit dem man sich nur unerwünschte Software (Potentially unwanted programs, kurz PUP) oder Adware installiert. Auf manchen Seiten wird direkt PUP / Adware zum Download angeboten. Für Windows gibt es seit einiger Zeit einen brauchbaren Paketmanager, der mit einfachen Befehlen es erlaubt, automatisiert Software herunterzuladen und zu installieren. Das erspart eine Menge Arbeit, denn ohne einen Paketmanager muss man jedes Programm selbst prüfen und separat manuell updaten, vorher manuell noch runterladen etc. pp. - siehe auch --> chocolatey Paketmanager für Windows Wir empfehlen dringend, alle Programme, sofern verfügbar, über chocolatey zu installieren. Falls du schon mit Linux zu tun hattest, wird dir die Syntax sehr vertraut sein. Die FAQs zu choco findest du da --> Chocolatey: Häufig gestellte Fragen (englisch) Selbstverständlich darfst du auch Fragen zu chocolatey im o.g. Thread zu chocolatey stellen. Für den seltenen Fall, dass du das benötigte Programm nicht im repository von chocolatey findest: Lade diese Software immer direkt beim jeweiligen Hersteller / Entwickler.
__________________ --> PUP.Adware.Heuristic auf Win 11 PC |
|
30.11.2025, 18:14
| #22 |
| | PUP.Adware.Heuristic auf Win 11 PC Ja, mal wieder eines besseren belehrt worden. Einfach ungeduldig die erste Variante zum installieren gewählt ohne nachzudenken. Ab jetzt weiß ich es besser, Danke für Eure Hilfe. Habe Alle restlichen Punkte erledigt MKDB. Habt einen schönen Abend ! |
|
30.11.2025, 19:26
| #23 |
| /// TB-Ausbilder | PUP.Adware.Heuristic auf Win 11 PC Wir sind froh, dass wir helfen konnten  Dieses Thema scheint erledigt und wird aus unseren Abos gelöscht. Solltest Du das Thema erneut brauchen, schicke uns bitte eine Erinnerung inklusive Link zum Thema. Jeder andere bitte hier klicken und ein eigenes Thema erstellen. |
|
| Themen zu PUP.Adware.Heuristic auf Win 11 PC |
| adwcleaner, helfen, meldung, neustart, pup.adware.heuristic, quara, quarantäne, schöne, schönen, sonntag, taucht, verschoben, warnmeldung, win, win 11 |
Linear-Darstellung
