| |
| |||||||
Log-Analyse und Auswertung: Versuchter Teamviewer missbrauch auf meinen PCWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
03.11.2019, 12:47
| #1 |
 |  Versuchter Teamviewer missbrauch auf meinen PC Guten Tag, nachdem mein Hoster vom Netz genommen wurde, wollte ich etwas neues ausprobieren. Dabei wollte ich die NZB Funktion meines neuen Anbieters testen. Schnell über einen NZB-Indexer eine Datei rausgesucht und angefangen. Die Datei war überraschend klein und als .exe verfügbar, da ich mit NZB noch keine Erfahrung hatte, habe ich blauäugig die Datei angeklickt. Nichts hat sich geöffnet. (Es war eine angebliche Bordlerlands 3 Setup Datei,eine Verlinkung wäre möglich, bin mir aber nicht sicher ob erwünscht) Nun, es ist nichts passiert. Habe die NZB-Sache also liegengelassen und zum altbewährten JDownloader zurückgegangen. Ab hier wird es dann interessant, nachdem ich den PC ca 5 Minuten allein gelassen habe, komme ich also zurück und sehe wie meine Maus selbstständig in Opera auf Amazon spazieren geht. Es wurde sich über Auto-Fill-In-Formular eingeloggt und... ab hier habe ich die Maus übernommen  Opera beendet, ein kleines Teamviewer Fenster gesehen, ebenfalls beendet. Ich wollte sofort die Borderlands Setup Datei löschen, dieses hat nicht funktioniert. Es erschien eine Fehlermeldung... Derzeit nicht möglich da geöffnet. Ich habe im Taskmanager nichts gefunden also neugestartet und erneut versucht zu löschen, mit Erfolg. Lasse derzeit Bitdefender Internet Security laufen, bisher keine Funde. Übrigens, ich habe bewusst gar kein Teamviewer installiert, wahrscheinlich eine Portable Version in der angeblichen Borderlands Setup Datei? Jetzt meine Frage, was sollte ich prüfen, wie kann ich mir wieder sicher sein, meinen PC ohne Fremdübernahme allein zu lassen? Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 01-11-2019
durchgeführt von sasch (Administrator) auf DESKTOP-FOHP40Q (03-11-2019 12:43:39)
Gestartet von C:\Users\sasch\Desktop
Geladene Profile: sasch (Verfügbare Profile: sasch & OVRLibraryService)
Platform: Windows 10 Pro Version 1809 17763.805 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: Opera
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Ashampoo GmbH & Co. KG -> ) C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 16\LiveTunerService.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\DiscoverySrv.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdagent.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdwtxag.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\odscanui.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\seccenter.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender VPN\BdVpnService.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.CpuIdRemote64.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.DisplayAdapter.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.exe
(Dassault Systemes SolidWorks Corp. -> Dassault Systèmes) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Visualize Boost\SWVisualize.BoostService.exe
(Dassault Systemes SolidWorks Corp. -> Dassault Systèmes) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Visualize\SWVisualize.Queue.Server.exe
(Dassault Systèmes SolidWorks Corp.) [Datei ist nicht signiert] C:\SolidWorks_Flexnet_Server\sw_d.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Even Balance, Inc. -> ) C:\Windows\System32\PnkBstrA.exe
(Flexera Software LLC -> Flexera Software LLC) C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe
(Flexera Software LLC -> Flexera Software LLC) C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
(Flexera Software LLC -> Flexera Software LLC) C:\SolidWorks_Flexnet_Server\lmgrd.exe
(Flexera Software LLC -> Flexera Software LLC) C:\SolidWorks_Flexnet_Server\lmgrd.exe
(Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(IObit Information Technology -> IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\Pub\PubMonitor.exe
(IObit Information Technology -> IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
(Mentor Graphics Corporation -> Mentor Graphics Corporation) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Flow Simulation\binCFW\dispatcher.exe
(Mentor Graphics Corporation -> Mentor Graphics Corporation) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Flow Simulation\binCFW\remotesolverdispatcherservice.exe
(Microsoft Corporation -> ) C:\Windows\System32\Kinect\KinectMonitor.exe
(Microsoft Corporation -> ) C:\Windows\System32\Kinect\KinectService.exe
(Microsoft Corporation -> ) C:\Windows\System32\Kinect\KStudioHostService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corporation -> Microsoft Corporation) C:\ProgramData\SOLIDWORKS Electrical\MSSQL12.TEW_SQLEXPRESS\MSSQL\Binn\sqlservr.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12026.20218.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12026.20218.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> ) C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Oculus VR, LLC -> ) C:\Program Files\Oculus\Support\oculus-runtime\OVRRedir.exe
(Oculus VR, LLC -> Facebook Technologies, LLC) C:\Program Files\Oculus\Support\oculus-runtime\OVRServer_x64.exe
(Oculus VR, LLC -> Facebook Technologies, LLC) C:\Program Files\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe
(Opera Software AS -> Opera Software) C:\Program Files\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files\Opera\63.0.3368.107\opera_crashreporter.exe
(Razer USA Ltd. -> ) C:\Windows\System32\RZSurroundHelper.exe
(Trace Software International -> ) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Electrical\server\EwServer.exe
(Trend Micro Inc.) [Datei ist nicht signiert] C:\Users\sasch\Desktop\HijackThis.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 01-11-2019
durchgeführt von sasch (03-11-2019 12:21:56)
Gestartet von C:\Users\sasch\Desktop
Windows 10 Pro Version 1809 17763.805 (X64) (2019-02-08 19:48:52)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-1368799669-3117233153-4274516567-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1368799669-3117233153-4274516567-503 - Limited - Disabled)
Gast (S-1-5-21-1368799669-3117233153-4274516567-501 - Limited - Disabled)
golem-docker (S-1-5-21-1368799669-3117233153-4274516567-1003 - Limited - Enabled)
sasch (S-1-5-21-1368799669-3117233153-4274516567-1001 - Administrator - Enabled) => C:\Users\sasch
WDAGUtilityAccount (S-1-5-21-1368799669-3117233153-4274516567-504 - Limited - Disabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Bitdefender Antivirus (Enabled - Up to date) {0E17DB7D-A20F-62CE-B95B-17DB0CDFE318}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Bitdefender Antispyware (Enabled - Up to date) {B5763A99-8435-6D40-83EB-2CA97758A9A5}
FW: Bitdefender Firewall (Disabled) {362C5A58-E860-6396-9204-BEEEF20CA463}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.270 - Adobe)
Ashampoo WinOptimizer 14 (HKLM-x32\...\{4209F371-DEAB-BE89-2E8A-9643100258DD}_is1) (Version: 14.00.05 - Ashampoo GmbH & Co. KG)
Ashampoo WinOptimizer 16 (HKLM-x32\...\{4209F371-C47A-1204-F2BA-6FD6E5BB1B50}_is1) (Version: 16.00.21 - Ashampoo GmbH & Co. KG)
Audacity 2.3.2 (HKLM-x32\...\Audacity_is1) (Version: 2.3.2 - Audacity Team)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.8.2.48475 - Electronic Arts)
Battlefield™ 1 (HKLM-x32\...\{335B50BC-6130-4BAF-9A6A-F1561270587B}) (Version: 1.0.57.44284 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.0 - EA Digital Illusions CE AB)
beatdrop 2.5.9 (HKU\S-1-5-21-1368799669-3117233153-4274516567-1001\...\5a38d27a-3f69-5264-ba9a-effba89c0b95) (Version: 2.5.9 - Nathaniel Johns)
Binance version 1.8.0 (HKLM-x32\...\{F7C9C013-C42C-440F-979C-46BA1F534351}_is1) (Version: 1.8.0 - Binance)
Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 21.0.25.49 - Bitdefender)
Bitdefender Internet Security (HKLM\...\Bitdefender) (Version: 22.0.1.1 - Bitdefender)
Bitdefender VPN (HKLM\...\Bitdefender VPN) (Version: 24.0.2.693 - Bitdefender)
Core Temp 1.13 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.13 - ALCPU)
CORSAIR iCUE Software (HKLM-x32\...\{37E2CEEA-E7E8-44C4-B3E6-D214543D9DA9}) (Version: 3.13.94 - Corsair)
Corsair LINK 4 (HKLM-x32\...\{40036d0c-634b-4fc0-be89-13343b4bea96}) (Version: 4.9.7.35 - Corsair Components, Inc.)
Corsair LINK 4 (HKLM-x32\...\{D97F4B31-5A7D-4A07-AC85-16D64FAB93E1}) (Version: 4.9.7.35 - Corsair Components, Inc.) Hidden
CPUID CPU-Z 1.87 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.87 - CPUID, Inc.)
Discord (HKU\S-1-5-21-1368799669-3117233153-4274516567-1001\...\Discord) (Version: 0.0.305 - Discord Inc.)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 419.17 - NVIDIA Corporation) Hidden
DOOM VFR MULTi2 1.0 (HKLM-x32\...\DOOM VFR MULTi2 1.0) (Version: 1.0 - .x.X.RIDDICK.X.x.)
Epic Games Launcher (HKLM-x32\...\{6E35ADC1-C951-4FD2-B81F-D37CCE0B5D84}) (Version: 1.1.220.0 - Epic Games, Inc.)
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB)
Futuremark SystemInfo (HKLM-x32\...\{3DD053E0-EA08-459A-B615-567B86A01132}) (Version: 5.16.701.0 - Futuremark)
Geeks3D FurMark 1.20.4.0 (HKLM-x32\...\{2397CAD4-2263-4CD0-96BE-E43A980B9C9A}_is1) (Version: - Geeks3D)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Grand Theft Auto V Digital Deluxe Edition MULTi11 1.0 (HKLM-x32\...\Grand Theft Auto V Digital Deluxe Edition MULTi11 1.0) (Version: - )
Heaven Benchmark version 4.0 (HKLM-x32\...\Unigine Heaven Benchmark (Basic Edition)_is1) (Version: 4.0 - Unigine Corp.)
HP Officejet 2620 series - Grundlegende Software für das Gerät (HKLM\...\{CED70530-FA0D-4A58-BBF0-1588B38247A0}) (Version: 32.2.188.47710 - Hewlett-Packard Co.)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
IObit Uninstaller 9 (HKLM-x32\...\IObitUninstall) (Version: 9.0.2.40 - IObit)
Java 8 Update 211 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180211F0}) (Version: 8.0.2110.12 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Joulemeter (HKLM-x32\...\{E043568C-1745-4C69-9D52-43F6E79EB03B}) (Version: 1.2.0 - Microsoft Research)
Kinect for Windows Drivers v2.0_1409 (DAILY) (HKLM\...\{7C9F054E-F742-4DAD-B7E0-9A280F1F0ACB}) (Version: 2.0.1410.19000 - Microsoft Corporation) Hidden
Kinect for Windows Runtime v2.2_1811 (HKLM\...\{87941EDF-6084-42AD-B5EF-36A44667A64C}) (Version: 2.2.1811.10000 - Microsoft Corporation)
Kinect for Windows SDK v2.0 (HKLM\...\{77FBF502-4136-4BC8-B754-6A01C02598C9}) (Version: 2.0.1410.19000 - Microsoft Corporation) Hidden
Kinect for Windows SDK v2.0_1409 (HKLM-x32\...\{2f7f3dc4-de9a-4605-821f-b686f26392d8}) (Version: 2.0.1410.19000 - Microsoft Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Metro: Last Light Redux (HKLM-x32\...\Metro: Last Light Redux_is1) (Version: - Deep Silver)
Microsoft ODBC Driver 11 for SQL Server (HKLM\...\{BF5ABBDB-D3AA-4BCB-8D10-FCD4A4BB7F93}) (Version: 12.1.4100.1 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 - de-de (HKLM\...\ProplusRetail - de-de) (Version: 16.0.12026.20344 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 - en-us (HKLM\...\ProplusRetail - en-us) (Version: 16.0.12026.20344 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1368799669-3117233153-4274516567-1001\...\OneDriveSetup.exe) (Version: 19.174.0902.0013 - Microsoft Corporation)
Microsoft Project Professional 2016 - de-de (HKLM\...\ProjectProRetail - de-de) (Version: 16.0.12026.20344 - Microsoft Corporation)
Microsoft Project Professional 2016 - en-us (HKLM\...\ProjectProRetail - en-us) (Version: 16.0.12026.20344 - Microsoft Corporation)
Microsoft Server Speech Platform Runtime (x86) (HKLM-x32\...\{22CB8ED7-DF57-4864-BD04-F63B9CE4B494}) (Version: 11.0.7400.345 - Microsoft Corporation)
Microsoft Server Speech Recognition Language - TELE (en-US) (HKLM-x32\...\{66D57636-BD4B-402F-9E7D-5E89C28C8136}) (Version: 11.0.7400.335 - Microsoft Corporation)
Microsoft SQL Server 2008 Setup Support Files (HKLM\...\{6292D514-17A4-403F-98F9-E150F10C043D}) (Version: 10.3.5500.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client (HKLM\...\{13146756-9716-4843-84CA-053916D2FCF9}) (Version: 11.3.6538.0 - Microsoft Corporation)
Microsoft SQL Server 2014 (64-bit) (HKLM\...\Microsoft SQL Server SQLServer2014) (Version: - Microsoft Corporation)
Microsoft SQL Server 2014 Setup (English) (HKLM\...\{C7E2483C-10A4-41E3-A2F6-240186FE3E41}) (Version: 12.1.4100.1 - Microsoft Corporation)
Microsoft SQL Server 2014 Transact-SQL ScriptDom (HKLM\...\{FF7DDA05-6EA7-4C01-B44A-3E57F8B9B97B}) (Version: 12.1.4100.1 - Microsoft Corporation)
Microsoft Visio Professional 2016 - de-de (HKLM\...\VisioProRetail - de-de) (Version: 16.0.12026.20344 - Microsoft Corporation)
Microsoft Visio Professional 2016 - en-us (HKLM\...\VisioProRetail - en-us) (Version: 16.0.12026.20344 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.16.27033 (HKLM-x32\...\{cc3a7c63-31fb-4129-9024-63ebefd86a95}) (Version: 14.16.27033.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 (HKLM-x32\...\{5c045b7f-e561-4794-91f8-c6cda0893107}) (Version: 14.13.26020.0 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2015 (HKLM-x32\...\{ab213ab7-4792-4c6f-a3fa-8485d06c3475}) (Version: 14.0.23829 - Microsoft Corporation)
Microsoft VSS Writer for SQL Server 2014 (HKLM\...\{366CD715-2FF4-40B4-A8B4-A05E5D21A945}) (Version: 12.1.4100.1 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Minecraft1.8 (HKLM-x32\...\Minecraft1.8) (Version: - )
MixMeister BPM Analyzer 1.0 (HKLM-x32\...\MixMeister BPM Analyzer_is1) (Version: - MixMeister Technology LLC)
Mozilla Firefox 68.0.2 (x64 de) (HKLM\...\Mozilla Firefox 68.0.2 (x64 de)) (Version: 68.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 68.0.2 - Mozilla)
MSI Afterburner 4.6.0 (HKLM-x32\...\Afterburner) (Version: 4.6.0 - MSI Co., LTD)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.55.8 - Black Tree Gaming)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.15 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.19.0.107 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.19.0.107 - NVIDIA Corporation)
NVIDIA Grafiktreiber 430.64 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 430.64 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.38.16 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.16 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
NZBGet (HKLM-x32\...\NZBGet) (Version: - Andrey Prygunkov)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 23.2.1 - OBS Project)
OBS-VirtualCam version 2.0.2 (HKLM-x32\...\{7B7182E6-D22D-4E5A-BCA2-EC985A4BD588}_is1) (Version: 2.0.2 - OBS)
Oculus (HKLM\...\Oculus) (Version: <3 - Facebook Technologies, LLC)
Oculus Tray Tool v0.86.0 (HKLM-x32\...\Oculus Tray Tool_is1) (Version: - )
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.12026.20344 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.12026.20344 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.12026.20344 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0407-0000-0000000FF1CE}) (Version: 16.0.12026.20344 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0409-0000-0000000FF1CE}) (Version: 16.0.12026.20344 - Microsoft Corporation) Hidden
OnScreen Control (HKLM-x32\...\{E5C1B339-0E4E-49A5-859E-5E1DE1938706}) (Version: 4.29 - LG Electronics Inc)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenIV (HKU\S-1-5-21-1368799669-3117233153-4274516567-1001\...\OpenIV) (Version: 3.0.1006 - .black/OpenIV Team)
OpenVR Advanced Settings (HKLM-x32\...\OpenVRAdvancedSettings) (Version: - )
OpenVR Input Emulator (HKLM-x32\...\OpenVRInputEmulator) (Version: - )
Opera Stable 63.0.3368.107 (HKLM-x32\...\Opera 63.0.3368.107) (Version: 63.0.3368.107 - Opera Software)
Origin (HKLM-x32\...\Origin) (Version: 10.5.52.32372 - Electronic Arts, Inc.)
Outward Day One Edition MULTi5 1.0 (HKLM-x32\...\Outward Day One Edition MULTi5 1.0) (Version: 1.0 - x.X.RIDDICK.X.x)
Outward Update 1 (HKLM\...\b3V0d2FyZA_is1) (Version: 1 - )
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 3.0.2 - pdfforge GmbH)
PhonerLite 2.72 (HKLM-x32\...\PhonerLite_is1) (Version: 2.72 - Heiko Sommerfeldt)
Platform (HKLM-x32\...\{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.42 - VIA Technologies, Inc.) Hidden
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
Quick CPU (HKLM-x32\...\{41F4C8EE-903D-4EB5-B6EB-75413BF496DE}) (Version: 3.0.1.0 - CoderBag)
Rainmeter (HKLM-x32\...\Rainmeter) (Version: 4.0 beta r2613 - Win10 Widgets)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8372 - Realtek Semiconductor Corp.)
Revo Uninstaller 2.1.0 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.1.0 - VS Revo Group, Ltd.)
RivaTuner Statistics Server 7.2.1 (HKLM-x32\...\RTSS) (Version: 7.2.1 - Unwinder)
Roblox Player for sasch (HKU\S-1-5-21-1368799669-3117233153-4274516567-1001\...\roblox-player) (Version: - Roblox Corporation)
Roblox Studio for sasch (HKU\S-1-5-21-1368799669-3117233153-4274516567-1001\...\roblox-studio) (Version: - Roblox Corporation)
ROCCAT Juke (HKLM\...\C-Media CM108 Like Sound Driver) (Version: - )
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.5.6 - Rockstar Games)
SeaTools for Windows 1.4.0.7 (HKLM-x32\...\SeaTools for Windows) (Version: 1.4.0.7 - Seagate Technology)
Service Pack 1 for SQL Server 2014 (KB3058865) (64-bit) (HKLM\...\KB3058865) (Version: 12.1.4100.1 - Microsoft Corporation)
SKILLER SGK4 (HKLM-x32\...\{B1B8775B-8449-4F04-9773-C34384AE405F}_is1) (Version: 1.3.18.6 - Sharkoon Technologies)
SOLIDWORKS 2019 German Resources (HKLM\...\{A3551568-7512-4052-8B69-9F295CE0252A}) (Version: 27.110.0072 - Ihr Firmenname) Hidden
SOLIDWORKS 2019 SP01 (HKLM\...\{F261BF5C-81C4-4E81-9ED6-D7EBFA2A9A5B}) (Version: 27.110.0072 - Dassault Systemes SolidWorks Corp) Hidden
SOLIDWORKS 2019 SP01 (HKLM-x32\...\SolidWorks Installation Manager 20190-40100-1100-100) (Version: 27.1.0.72 - SolidWorks Corporation)
SOLIDWORKS CAM 2019 SP01 (HKLM\...\{FF62C344-015F-4A9F-8F49-7F02CBAB288E}) (Version: 27.10.0072 - Dassault Systèmes SolidWorks Corp) Hidden
SOLIDWORKS Composer 2019 SP01 (HKLM\...\{661FCA7C-4962-46FD-84CD-CB72459058A4}) (Version: 27.10.0072 - Ihr Firmenname) Hidden
SOLIDWORKS eDrawings 2019 SP01 (HKLM\...\{49641C8E-5ADA-42A8-8019-90CBDC933F86}) (Version: 27.10.0092 - Dassault Systèmes SolidWorks Corp) Hidden
SOLIDWORKS Electrical 2019 SP01 (HKLM\...\{D47DBAC4-C1AB-4B16-B431-01120E8BB141}) (Version: 27.10.0072 - Ihr Firmenname) Hidden
SOLIDWORKS Explorer 2019 SP01 (HKLM\...\{ED3F46FA-EF6F-4633-AA94-5C44815EA2B2}) (Version: 27.10.0072 - Dassault Systèmes SolidWorks Corp) Hidden
SOLIDWORKS Flow Simulation 2019 SP01 (HKLM\...\{5D9A5C34-85FD-40FE-8C1A-ACA3C8CF423E}) (Version: 27.10.0073 - Dassault Systèmes SolidWorks Corp) Hidden
SOLIDWORKS Inspection 2019 SP01 (HKLM\...\{974A87F0-517F-480A-A87F-218649E02880}) (Version: 27.10.0072 - Ihr Firmenname) Hidden
SOLIDWORKS PCB 2019 SP01 (HKLM\...\{BF11D72C-9B96-4B91-BF1E-AC2137BBB604}) (Version: 27.10.0072 - Ihr Firmenname) Hidden
SOLIDWORKS Plastics 2019 SP01 (HKLM\...\{6BC5795E-314F-4BA6-9A2D-A8DE4A35C688}) (Version: 27.10.0072 - Ihr Firmenname) Hidden
SOLIDWORKS Visualize 2019 SP01 (HKLM\...\{CD7FCE59-87E4-4C32-AB24-DCA29802CBA5}) (Version: 27.10.0072 - Ihr Firmenname) Hidden
SOLIDWORKS Visualize Boost 2019 SP01 (HKLM\...\{D67F8A59-1F6E-422E-AD34-1A66751CD44D}) (Version: 27.10.0072 - Ihr Firmenname) Hidden
SQL Server 2014 Common Files (HKLM\...\{BD1CD96B-FE4B-4EAE-83D4-6EF55AB5779C}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server 2014 Common Files (HKLM\...\{F7012F84-80F5-4C25-852E-B1BA03276FE6}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Services (HKLM\...\{17531BCD-C627-46A2-9F1E-7CC920E0E94A}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Services (HKLM\...\{5082A9F3-AEE5-4639-9BA7-C19661BA7331}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Shared (HKLM\...\{ACC530B8-B6B4-40D6-B59B-152468CF47D0}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Shared (HKLM\...\{D1B847A9-B06B-4264-9EF0-78E6E1571E65}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server Browser for SQL Server 2014 (HKLM-x32\...\{3204DE95-97D2-4261-A286-98A262E171D4}) (Version: 12.1.4100.1 - Microsoft Corporation)
Sql Server Customer Experience Improvement Program (HKLM\...\{6476DB81-F263-4C04-8574-AAD31136C304}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Streamlabs OBS 0.17.1 (HKLM\...\029c4619-0385-5543-9426-46f9987161d9) (Version: 0.17.1 - General Workings, Inc.)
Superhot Incl. Update 3 MULTi9 1.0 (HKLM-x32\...\Superhot Incl. Update 3 MULTi9 1.0) (Version: - )
TeighaX 3.09 (HKLM-x32\...\{3D63579F-2398-418B-9227-A852FB201D2D}) (Version: 3.9.0 - Open Design Alliance)
Telegram Desktop version 1.7.7 (HKU\S-1-5-21-1368799669-3117233153-4274516567-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 1.7.7 - Telegram Messenger LLP)
The Witcher 3: Wild Hunt (HKLM-x32\...\1207664643_is1) (Version: 1.32 - GOG.com)
Trackmania Turbo (HKLM-x32\...\Trackmania Turbo_is1) (Version: - )
TreeSize Free V4.2.2 (HKLM-x32\...\TreeSize Free_is1) (Version: 4.2.2 - JAM Software)
Twitch (HKU\S-1-5-21-1368799669-3117233153-4274516567-1001\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 8.0.0 - Twitch Interactive, Inc.)
UE4 Prerequisites (x64) (HKLM\...\{F9EC45F9-074A-48BF-92E9-A8CADD56F693}) (Version: 1.0.11.0 - Epic Games, Inc.) Hidden
UE4 Prerequisites (x64) (HKLM-x32\...\{4e242cc8-5e3c-4b08-9d55-dbc62ddd1208}) (Version: 1.0.13.0 - Epic Games, Inc.) Hidden
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{F814D094-197F-43C8-87FA-3210BB780486}) (Version: 2.53.0.0 - Microsoft Corporation)
Updater (HKLM-x32\...\Updater) (Version: 1.0 - Updater) <==== ACHTUNG
uRage Reaper nxt. Version 1.0.3 (HKLM-x32\...\{2F606408-495F-4772-A3A7-BE0A31C4B261}_is1) (Version: 1.0.3 - )
Vegas Pro 13.0 (64-bit) (HKLM\...\{1F8D8040-0BC8-11E5-85C5-F04DA23A5C58}) (Version: 13.0.453 - Sony)
VIA Plattform-Geräte-Manager (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.42 - VIA Technologies, Inc.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.6 - VideoLAN)
Vortex (HKLM\...\57979c68-f490-55b8-8fed-8b017a5af2fe) (Version: 1.0.3 - Black Tree Gaming Ltd.)
VSDC Free Video Editor Version 6.3.6.18 (HKLM\...\VSDC Free Video Editor_is1) (Version: 6.3.6.18 - Flash-Integro LLC)
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1-2) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
WhatsApp (HKU\S-1-5-21-1368799669-3117233153-4274516567-1001\...\WhatsApp) (Version: 0.3.557 - WhatsApp)
Windows 10-Update-Assistent (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22807 - Microsoft Corporation)
Windows-Treiberpaket - Corsair Components, Inc. (SIUSBXP) USB (07/14/2017 3.3) (HKLM\...\A2206C09905C467F30CB24DCBB49F056D7F0A290) (Version: 07/14/2017 3.3 - Corsair Components, Inc.)
Windows-Treiberpaket - STMicroelectronics (STTub30) USB (07/05/2012 3.0.4.0) (HKLM\...\4A1A85C6E9813B77863C2401251A5284B1923DA4) (Version: 07/05/2012 3.0.4.0 - STMicroelectronics)
WinRAR 5.50 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)
Wireshark 3.0.4 64-bit (HKLM-x32\...\Wireshark) (Version: 3.0.4 - The Wireshark developer community, hxxps://www.wireshark.org)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
World of Warcraft Classic (HKLM-x32\...\World of Warcraft Classic) (Version: - Blizzard Entertainment)
WPTx64 (HKLM-x32\...\{0B2C58EB-67A2-225B-60B2-D1990E55DD33}) (Version: 8.100.26866 - Microsoft)
Packages:
=========
3D Scan -> C:\Program Files\WindowsApps\Microsoft.3DScan_2.0.47.0_x64__8wekyb3d8bbwe [2019-08-23] (Microsoft Corporation)
Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_6.1.4.0_x86__kgqvnymyfvs32 [2019-09-23] (king.com)
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.150.300.0_x86__kgqvnymyfvs32 [2019-10-17] (king.com)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_105.1.618.0_x64__v10z8vjag6ke6 [2019-10-16] (HP Inc.)
Mail und Kalender -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12026.20218.0_x64__8wekyb3d8bbwe [2019-09-26] (Microsoft Corporation) [MS Ad]
March of Empires: War of Lords -> C:\Program Files\WindowsApps\A278AB0D.MarchofEmpires_4.3.1.1_x86__h6adky7gbf63m [2019-09-14] (Gameloft.)
Media Engine-Add-On für Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-08-23] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Minecraft for Windows 10 -> C:\Program Files\WindowsApps\Microsoft.MinecraftUWP_1.12.101.0_x64__8wekyb3d8bbwe [2019-09-08] (Microsoft Studios)
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.95.602.0_x64__mcm4njqhnhss8 [2019-10-26] (Netflix, Inc.)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.117.543.0_x86__zpdnekdrzrea0 [2019-10-13] (Spotify AB) [Startup Task]
XING -> C:\Program Files\WindowsApps\XINGAG.XING_3.140.89.0_x86__xpfg3f7e9an52 [2019-10-08] (New Work SE)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
ContextMenuHandlers1: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2019-07-30] (IObit Information Technology -> IObit)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers4: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2019-07-30] (IObit Information Technology -> IObit)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2019-05-06] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2019-07-30] (IObit Information Technology -> IObit)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Drivers32: [VIDC.RTV1] => c:\windows\system32\rtvcvfw64.dll [246272 2012-09-28] () [Datei ist nicht signiert]
HKLM\...\Drivers32: [VIDC.FPS1] => c:\windows\system32\frapsv64.dll [71680 2013-02-26] (Beepa P/L) [Datei ist nicht signiert]
HKLM\...\Drivers32: [msacm.voxacm160] => c:\windows\system32\vct3216.acm [82944 2003-05-21] (Voxware, Inc.) [Datei ist nicht signiert]
HKLM\...\Drivers32: [msacm.scg726] => c:\windows\system32\scg726.acm [13239 2000-03-14] (SHARP Corporation) [Datei ist nicht signiert]
HKLM\...\Drivers32: [msacm.alf2cd] => c:\windows\system32\alf2cd.acm [38912 2003-05-21] (NCT Company) [Datei ist nicht signiert]
HKLM\...\Drivers32: [msacm.ac3acm] => c:\windows\system32\AC3ACM.acm [81920 2004-02-04] (fccHandler) [Datei ist nicht signiert]
HKLM\...\Drivers32: [msacm.lame] => c:\windows\system32\lame.ax [245760 2005-08-01] () [Datei ist nicht signiert]
HKLM\...\Drivers32: [vidc.dvsd] => c:\windows\system32\mcdvd_32.dll [261632 2003-05-21] (MainConcept) [Datei ist nicht signiert]
HKLM\...\Drivers32: [vidc.mpg4] => c:\windows\system32\mpg4c32.dll [413760 2002-08-19] (Microsoft Corporation) [Datei ist nicht signiert]
HKLM\...\Drivers32: [vidc.mp42] => c:\windows\system32\mpg4c32.dll [413760 2002-08-19] (Microsoft Corporation) [Datei ist nicht signiert]
HKLM\...\Drivers32: [vidc.mp43] => c:\windows\system32\mpg4c32.dll [413760 2002-08-19] (Microsoft Corporation) [Datei ist nicht signiert]
HKLM\...\Drivers32: [vidc.xvid] => c:\windows\system32\xvidvfw.dll [139264 2004-07-03] () [Datei ist nicht signiert]
HKLM\...\Drivers32: [vidc.DIVX] => c:\windows\system32\DivX.dll [638976 2003-05-22] (DivXNetworks, Inc.) [Datei ist nicht signiert]
HKLM\...\Drivers32: [vidc.VP60] => c:\windows\system32\vp6vfw.dll [438272 2004-12-10] (On2.com) [Datei ist nicht signiert]
HKLM\...\Drivers32: [vidc.VP61] => c:\windows\system32\vp6vfw.dll [438272 2004-12-10] (On2.com) [Datei ist nicht signiert]
HKLM\...\Drivers32: [vidc.VP62] => c:\windows\system32\vp6vfw.dll [438272 2004-12-10] (On2.com) [Datei ist nicht signiert]
HKLM\...\Drivers32: [vidc.LAGS] => c:\windows\system32\lagarith.dll [216064 2011-12-07] ( ) [Datei ist nicht signiert]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [Datei ist nicht signiert]
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [65536 2013-02-26] (Beepa P/L) [Datei ist nicht signiert]
==================== Verknüpfungen & WMI ========================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
Shortcut: C:\Users\sasch\Desktop\Spiele\startdesktopmode.bat - Verknüpfung.lnk -> C:\Program Files\OpenVR-AdvancedSettings\startdesktopmode.bat ()
Shortcut: C:\Users\sasch\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft\Minecraft Debugger.lnk -> C:\Users\sasch\AppData\Roaming\.minecraft\minecraft launcher\Debug.bat ()
==================== Geladene Module (Nicht auf der Ausnahmeliste) =============
2019-03-05 15:06 - 2019-03-05 15:06 - 000232448 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\MSI Afterburner\RTCore.dll
2019-03-05 15:06 - 2019-03-05 15:06 - 000057344 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\MSI Afterburner\RTFC.dll
2019-03-05 15:07 - 2019-03-05 15:07 - 000642048 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\MSI Afterburner\RTHAL.dll
2019-03-05 15:06 - 2019-03-05 15:06 - 000072704 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\MSI Afterburner\RTMUI.dll
2019-03-05 15:06 - 2019-03-05 15:06 - 000364544 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\MSI Afterburner\RTUI.dll
2019-08-24 15:49 - 2018-10-16 21:35 - 000107520 _____ () [Datei ist nicht signiert] C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Visualize Boost\NETAPI32.dll
2019-08-24 15:39 - 2019-08-24 15:39 - 000116224 _____ (pdfforge GmbH) [Datei ist nicht signiert] C:\WINDOWS\System32\pdfcmon.dll
2019-01-10 10:44 - 2019-01-10 10:44 - 000090112 _____ (Silicon Laboratories, Inc.) [Datei ist nicht signiert] C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\SiUSBXp.dll
2018-04-01 13:53 - 2019-10-30 17:02 - 001277440 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\LIBEAY32.dll
2018-04-01 13:53 - 2019-10-30 17:02 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\ssleay32.dll
2018-04-01 13:53 - 2019-10-30 17:02 - 001611264 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2018-04-01 13:53 - 2019-10-30 17:02 - 005487104 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Core.dll
2018-04-01 13:53 - 2019-10-30 17:02 - 005841920 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Gui.dll
2018-04-01 13:53 - 2019-10-30 17:02 - 001179136 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Network.dll
2018-04-01 13:53 - 2019-10-30 17:02 - 005089792 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2018-04-01 13:53 - 2019-10-30 17:02 - 000184832 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Xml.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\Users\Public\AppData:CSM [236]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [476]
AlternateDataStreams: C:\Users\sasch\Anwendungsdaten:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\sasch\OneDrive:${3D0CE612-FDEE-43f7-8ACA-957BEC0CCBA0}.SyncRootIdentity [108]
AlternateDataStreams: C:\Users\sasch\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\sasch\AppData\Local\Temp:$DATA [16]
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ==========
==================== Hosts Inhalt: =========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2017-09-29 14:46 - 2019-11-03 12:14 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
2019-05-28 19:13 - 2019-05-28 19:14 - 000000443 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
172.18.70.1 DESKTOP-FOHP40Q.mshome.net # 2024 5 0 26 18 14 23 458
==================== Andere Bereiche ===========================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Oculus\Support\oculus-runtime;c:\program files (x86)\common files\oracle\java\javapath;c:\windows\system32;c:\windows;c:\windows\system32\wbem;c:\windows\system32\windowspowershell\v1.0\;c:\windows\system32\openssh\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files\Microsoft SQL Server\Client SDK\ODBC\110\Tools\Binn\;C:\Program Files (x86)\Microsoft SQL Server\120\Tools\Binn\;C:\Program Files\Microsoft SQL Server\120\Tools\Binn\;C:\Program Files\Microsoft SQL Server\120\DTS\Binn\;C:\Program Files (x86)\Windows Kits\8.1\Windows Performance Toolkit\
HKU\S-1-5-21-1368799669-3117233153-4274516567-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\sasch\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\earth multiscreen widescreen 5760x1080 wallpaper_www.paperhi.com_58.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
HKLM\...\StartupApproved\StartupFolder: => "SOLIDWORKS Hintergrund-Downloader.lnk"
HKLM\...\StartupApproved\StartupFolder: => "SOLIDWORKS 2019 Fast Start.lnk"
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "BdVpnApp"
HKLM\...\StartupApproved\Run: => "RTHDVCPL"
HKLM\...\StartupApproved\Run: => "HP Software Update"
HKLM\...\StartupApproved\Run: => "Ashampoo WinOptimizer Live-Tuner2"
HKLM\...\StartupApproved\Run32: => "Updater"
HKLM\...\StartupApproved\Run32: => "CORSAIR iCUE Software"
HKLM\...\StartupApproved\Run32: => "SE61T-UserTools"
HKLM\...\StartupApproved\Run32: => "SKILLER SGK4"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "OculusTrayTool"
HKLM\...\StartupApproved\Run32: => "OnScreen Control"
HKU\S-1-5-21-1368799669-3117233153-4274516567-1001\...\StartupApproved\StartupFolder: => "Twitch.lnk"
HKU\S-1-5-21-1368799669-3117233153-4274516567-1001\...\StartupApproved\StartupFolder: => "DesktopHut.lnk"
HKU\S-1-5-21-1368799669-3117233153-4274516567-1001\...\StartupApproved\StartupFolder: => "Rainmeter.lnk"
HKU\S-1-5-21-1368799669-3117233153-4274516567-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-1368799669-3117233153-4274516567-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-1368799669-3117233153-4274516567-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-1368799669-3117233153-4274516567-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-1368799669-3117233153-4274516567-1001\...\StartupApproved\Run: => "Argus Monitor"
HKU\S-1-5-21-1368799669-3117233153-4274516567-1001\...\StartupApproved\Run: => "CorsairLink4"
HKU\S-1-5-21-1368799669-3117233153-4274516567-1001\...\StartupApproved\Run: => "GalaxyClient"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{0740E682-1F83-4FAD-B54A-DAAF94B61BD7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{5C243317-3B6B-47E2-A311-8A3E95904140}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{9B31F1B3-43B4-4A9E-8B52-B3CB0390558D}] => (Allow) C:\Program Files\HP\HP Officejet 2620 series\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{3B3E03A3-4BF8-4468-81F8-60273D1B0652}] => (Allow) C:\Program Files\HP\HP Officejet 2620 series\Bin\USBSetup.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{DC2B08A1-7048-4335-9536-A2FE80B22D29}] => (Allow) C:\Program Files\HP\HP Officejet 2620 series\bin\SendAFax.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{ACD69343-1FFF-4AAC-888E-A1B325D6C58E}] => (Allow) C:\Program Files\HP\HP Officejet 2620 series\bin\DigitalWizards.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{5B7EFE95-AF2A-4407-99DE-1B714B3F5CF0}] => (Allow) C:\Program Files\HP\HP Officejet 2620 series\bin\FaxApplications.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{2926D9FF-8085-4B05-B3F9-A068BCBE6589}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{B119755F-53BB-4912-993B-2D0034642C03}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{A68589C6-CE2A-4685-86A3-91A965FECEFA}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.3.0\DriverBooster.exe Keine Datei
FirewallRules: [{287FF9E7-CBBD-4BFB-A533-C085FEE51F43}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.3.0\DriverBooster.exe Keine Datei
FirewallRules: [{8C32AB04-804F-4544-AB21-AA8961EFC463}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.3.0\DBDownloader.exe Keine Datei
FirewallRules: [{02928025-9AF7-4E38-A658-B0D13AE92D23}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.3.0\DBDownloader.exe Keine Datei
FirewallRules: [{14AC329C-96DE-419B-8D2A-D5C5D09C95AD}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.3.0\AutoUpdate.exe Keine Datei
FirewallRules: [{132BC8D5-6B34-42BB-9D7E-06809933E2E0}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.3.0\AutoUpdate.exe Keine Datei
FirewallRules: [{5D136926-BF5F-4ED8-9DEE-701B82FF1C27}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{37D4D204-1534-467B-9CF5-31487D488767}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{2F46E517-7A8F-44B0-B7EB-9072CDCF06DC}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{42D70C77-D1BD-4ABF-9A4A-A91A61F45B0A}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{40E831A5-4689-4E79-8348-E90C48CB539C}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{98287F36-F3E7-40FF-9A23-8867CBEFB7D5}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{AD32DEE1-58EA-4224-87E4-EA0583A948DE}C:\program files (x86)\steam\steamapps\common\7 days to die\7daystodie.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\7 days to die\7daystodie.exe () [Datei ist nicht signiert]
FirewallRules: [UDP Query User{417E877D-496E-4066-8477-8A5938E23774}C:\program files (x86)\steam\steamapps\common\7 days to die\7daystodie.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\7 days to die\7daystodie.exe () [Datei ist nicht signiert]
FirewallRules: [DNS Server Forward Rule - TCP - A2918A61-5D01-4BBD-BDBB-CEBE9E9C6511 - 0] => (Allow) LPort=53
FirewallRules: [DNS Server Forward Rule - UDP - A2918A61-5D01-4BBD-BDBB-CEBE9E9C6511 - 0] => (Allow) LPort=53
FirewallRules: [DNS Server Forward Rule - TCP - CD8B8542-DEF3-4E52-A908-8E6FBC2125BF - 0] => (Allow) LPort=53
FirewallRules: [DNS Server Forward Rule - UDP - CD8B8542-DEF3-4E52-A908-8E6FBC2125BF - 0] => (Allow) LPort=53
FirewallRules: [{94933B1A-2289-4DBB-8E4F-A00CE7FD829F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\bin\win32\vrstartup.exe (Valve -> )
FirewallRules: [{39876E1F-0A04-4ED9-A8DC-C58D8D6A95F5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\bin\win32\vrstartup.exe (Valve -> )
FirewallRules: [{2B5004E3-0383-4975-845F-C911CFCAF264}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtours.exe (Valve -> )
FirewallRules: [{22C21BB7-A0F4-4B79-B66C-46B243346958}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtours.exe (Valve -> )
FirewallRules: [{FD5AA058-690C-4067-9985-2F88A0334CA6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtourscfg.exe (Valve -> )
FirewallRules: [{26F2F6CD-5D0C-4C3A-ACD2-7B9B019934AE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtourscfg.exe (Valve -> )
FirewallRules: [{0AF4755F-B58E-4248-A261-B91130CEC729}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Beat Saber\Beat Saber.exe () [Datei ist nicht signiert]
FirewallRules: [{A4E44422-C7F4-4E77-8A3E-142A41C85C45}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Beat Saber\Beat Saber.exe () [Datei ist nicht signiert]
FirewallRules: [{3C2EBDD9-7A1B-42E6-9F03-32F7756AB8FA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\VRChat\VRChat.exe () [Datei ist nicht signiert]
FirewallRules: [{2D678C7D-5AF9-4BED-AD85-75E4872517AB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\VRChat\VRChat.exe () [Datei ist nicht signiert]
FirewallRules: [{2A53B5C8-113F-436A-9AD3-0C4C54F0FD74}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Forest\TheForest.exe () [Datei ist nicht signiert]
FirewallRules: [{7D753089-180E-428F-8ABF-378BF050405E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Forest\TheForest.exe () [Datei ist nicht signiert]
FirewallRules: [{65BB94D9-3967-4BA5-9CA8-EAFDC253D9DC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Forest\TheForestVR.exe () [Datei ist nicht signiert]
FirewallRules: [{40051D45-C677-4B79-8E90-497BE913BDF9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Forest\TheForestVR.exe () [Datei ist nicht signiert]
FirewallRules: [{170F38BC-9EA3-406E-B712-279DE6CE8A4B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PavlovVR\Pavlov.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [{D8237A19-A7A4-480E-8009-7EBBF027F44C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PavlovVR\Pavlov.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [{1A487B10-842E-431B-941B-16B764ECD443}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Space Pirate Trainer VR\SpacePirateVR.exe () [Datei ist nicht signiert]
FirewallRules: [{B6821163-09CB-4420-9761-69D0B8A48345}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Space Pirate Trainer VR\SpacePirateVR.exe () [Datei ist nicht signiert]
FirewallRules: [{7ACE9B64-D42D-460B-82A1-BE53B9BA14F4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Steam360VideoPlayer\Steam360VideoPlayer.exe () [Datei ist nicht signiert]
FirewallRules: [{78F40822-AC3B-44C4-8AFB-EDC6FBA4C480}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Steam360VideoPlayer\Steam360VideoPlayer.exe () [Datei ist nicht signiert]
FirewallRules: [{8DF97BAC-F571-4C19-B098-C966882F8395}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\RecRoom\Recroom_Release.exe () [Datei ist nicht signiert]
FirewallRules: [{203B78AD-52DE-4BAF-8171-D81BD464EBEA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\RecRoom\Recroom_Release.exe () [Datei ist nicht signiert]
FirewallRules: [{403150D1-81F4-4B33-A3A3-3A8AF621813C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sparc\Sparc.exe () [Datei ist nicht signiert]
FirewallRules: [{60D70BDF-64CD-495D-8A21-529AA91F3A6A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sparc\Sparc.exe () [Datei ist nicht signiert]
FirewallRules: [{7B4A954D-F3EC-4E42-A779-C1A54CDBB85B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\No Man's Sky\Binaries\NMS.exe (Hello Games) [Datei ist nicht signiert]
FirewallRules: [{24F2845A-CCA3-46FF-96DB-1F2887137872}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\No Man's Sky\Binaries\NMS.exe (Hello Games) [Datei ist nicht signiert]
FirewallRules: [{0F39A282-9A26-49A6-B5DD-78B369D5B0EF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\LIV\LIV.App.exe (LIV Inc -> LIV Inc.)
FirewallRules: [{DAC58D3F-0852-46DC-857C-BF9914B4127D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\LIV\LIV.App.exe (LIV Inc -> LIV Inc.)
FirewallRules: [{BD9CD2C6-BDBF-494B-9C8E-E3EC5F878FF1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\EarthVR\Earth.exe (Google Inc -> Google Inc)
FirewallRules: [{09FDAB7C-8953-427C-836F-440C7A922BB9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\EarthVR\Earth.exe (Google Inc -> Google Inc)
FirewallRules: [{6A89D5E1-8A28-4770-9E1B-75C2227B9F7D}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{0675F42F-F727-48A7-92CD-1ECF4802EA23}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{F8D3F73F-8C0E-4658-8C65-7C45BF6A8CB9}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 1\bf1Trial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{905758A4-99EE-4A58-A647-E48434BF5391}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 1\bf1Trial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{BF1C68BC-3EDD-4300-903E-5A3646F1E395}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 1\bf1.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{A7E58B70-540D-44C9-B72A-E5C90E07879B}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 1\bf1.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{F1595CF3-888D-4A73-B171-A309D796C2E7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{5075C7AA-E3D6-42D1-810B-807E24B34C56}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{502B7574-E188-4F9C-BA7C-DE77B5F2FB58}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{E9446889-83DB-4BE3-94FA-D1F4474B7244}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{E7B25816-80BC-4106-8A92-69A0CD0104F6}] => (Allow) C:\Program Files\FlashIntegro\VideoEditor\VideoEditor.exe (Vector Ltd. -> Flash-Integro LLC)
FirewallRules: [{0F348082-5969-429B-A255-47BE1CD5E2DF}] => (Allow) C:\Program Files\FlashIntegro\VideoEditor\VideoEditor.exe (Vector Ltd. -> Flash-Integro LLC)
FirewallRules: [{2CD85A61-18BA-4ABA-BA1F-0E80A5E8B437}] => (Allow) C:\Program Files\FlashIntegro\VideoEditor\Activation.exe (Vector Ltd. -> Flash-Integro LLC)
FirewallRules: [{B1395916-5D64-4DAF-AF06-A30844FEADEC}] => (Allow) C:\Program Files\FlashIntegro\VideoEditor\Activation.exe (Vector Ltd. -> Flash-Integro LLC)
FirewallRules: [{CC2E3010-017D-43CB-8F47-EC773CC07902}] => (Allow) C:\Program Files\FlashIntegro\VideoEditor\Updater.exe (Vector Ltd. -> Flash-Integro LLC)
FirewallRules: [{1EAE3853-521B-42CE-A885-98E6775E739E}] => (Allow) C:\Program Files\FlashIntegro\VideoEditor\Updater.exe (Vector Ltd. -> Flash-Integro LLC)
FirewallRules: [{A4FC4F01-56D2-43D5-8D97-1F7B3DC1AB3A}] => (Allow) LPort=8027
FirewallRules: [{5214D303-B8F4-4A8F-85E1-21A22483C6F2}] => (Allow) LPort=8027
FirewallRules: [{AF2BC330-AED4-47D1-9A01-FB8634214F09}] => (Allow) LPort=8027
FirewallRules: [{43E2493B-9A4E-4C0A-9076-554D6E131256}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{9D28B1DA-C902-477B-AFFD-51C595FDD1DA}] => (Allow) LPort=8027
FirewallRules: [{372821C7-D852-4544-B569-7320035202F3}] => (Allow) LPort=8027
FirewallRules: [{5902DD16-657D-4E4F-87ED-2BADDE3E6562}] => (Allow) LPort=8027
FirewallRules: [{1039D7DF-C3FD-47E8-BD62-FCAD62FAACEB}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{D91A5413-719A-469D-A91E-DFF47E626793}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{D177C423-B229-4035-8453-F633FA27DD00}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{A3A36CEC-E1D7-4FCD-8F4B-94ABDD62E51D}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{C6ADF639-0B0A-4243-AE41-CEDD2E6E8BFB}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FirewallRules: [{A87B6FD3-62AC-4426-979C-036E933B8B14}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FirewallRules: [{3A501E89-37B9-4E5F-911F-332A989DF2D9}] => (Allow) D:\Games\Battlefield 4\BFLauncher.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{2258E533-64AB-4CCD-A0C3-9FCF0A8C6171}] => (Allow) D:\Games\Battlefield 4\BFLauncher.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{58DD4DCC-B967-40C1-86C3-1B1FFF1BB909}] => (Allow) D:\Games\Battlefield 4\BFLauncher_x86.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{E6C46A1B-DD61-418B-A527-2E85BA66A52B}] => (Allow) D:\Games\Battlefield 4\BFLauncher_x86.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{4372EFF5-2D73-4681-B970-0DC8D9CC01AD}] => (Allow) LPort=8027
FirewallRules: [{4A9C0C46-8BFB-4E60-9101-B3A45B536362}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\7 Days To Die\7dLauncher.exe () [Datei ist nicht signiert]
FirewallRules: [{BC485528-26C9-46C5-9F4D-EF108C68741C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\7 Days To Die\7dLauncher.exe () [Datei ist nicht signiert]
FirewallRules: [{8515539D-90E6-4747-B547-B042280D2827}] => (Allow) LPort=8027
FirewallRules: [{247E5E19-6A37-439B-BCA7-C9397174C50B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SkyrimVR\SkyrimVR.exe (Bethesda Softworks) [Datei ist nicht signiert]
FirewallRules: [{974EDA6A-9B30-48E4-816D-2EDC1B39F051}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SkyrimVR\SkyrimVR.exe (Bethesda Softworks) [Datei ist nicht signiert]
FirewallRules: [{7AD88789-2895-449A-9041-E9F2DEAE861E}] => (Allow) C:\Program Files\Opera\63.0.3368.94\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{229AFEF2-8A24-425A-86B1-5B5D49B63F14}] => (Allow) LPort=8027
FirewallRules: [{C51F7625-84D9-48BA-BF9F-109EFE9AD1CD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\skyrim\skse_steam_boot.exe () [Datei ist nicht signiert]
FirewallRules: [{C1F426A7-7724-4A3A-AA22-9D231DF01CB2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\skyrim\skse_steam_boot.exe () [Datei ist nicht signiert]
FirewallRules: [{802DDF0E-DC51-4AC8-95EF-F7D06FE4EBB8}] => (Allow) D:\steam\steamapps\common\Destiny 2\destiny2.exe (Bungie Inc. -> Bungie)
FirewallRules: [{757AA0DE-9C61-4EFA-953E-A6EE75C4A659}] => (Allow) D:\steam\steamapps\common\Destiny 2\destiny2.exe (Bungie Inc. -> Bungie)
FirewallRules: [{E730DFD8-C4F2-4D90-AF1F-E47383E82DCF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ArizonaSunshine\ArizonaSunshine.exe () [Datei ist nicht signiert]
FirewallRules: [{B9DA83CE-3E14-4715-9F70-32D70EDD092E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ArizonaSunshine\ArizonaSunshine.exe () [Datei ist nicht signiert]
FirewallRules: [{3323FE0A-DB23-412F-ADF7-BBB66B2006DD}] => (Allow) LPort=8027
FirewallRules: [{A7399E1E-CA23-4485-930F-44CEC35CE5D0}] => (Allow) LPort=8027
FirewallRules: [{C031F3DC-E105-41C6-A5A1-386FD0919B84}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark\bin\x86\3DMark.exe Keine Datei
FirewallRules: [{7037C5AD-4A33-450C-A121-FFA5A5A7FC69}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark\bin\x86\3DMark.exe Keine Datei
FirewallRules: [{1F92F6EF-DDDD-4903-997B-17C330F3F669}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark\bin\x64\3DMark.exe Keine Datei
FirewallRules: [{B92DFD7B-E615-4738-A124-FE077365D115}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark\bin\x64\3DMark.exe Keine Datei
FirewallRules: [{9B5C6CC2-9544-4E83-A529-F77280D5B48B}] => (Allow) LPort=8027
FirewallRules: [{F033AF30-69D8-42B6-9D9E-A25B1FC2FD93}] => (Allow) C:\Program Files\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe (Oculus VR, LLC -> Facebook Technologies, LLC)
FirewallRules: [{8A2701D5-9116-428E-A361-320F091D2E55}] => (Allow) C:\Program Files\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe (Oculus VR, LLC -> Facebook Technologies, LLC)
FirewallRules: [{C34DF57D-F1B6-477A-949C-9434AD72BA5D}] => (Allow) C:\Program Files\Oculus\Support\oculus-runtime\OVRServer_x64.exe (Oculus VR, LLC -> Facebook Technologies, LLC)
FirewallRules: [{C02B5304-3C95-493F-BCD1-3740E4ED8222}] => (Allow) C:\Program Files\Oculus\Support\oculus-runtime\OVRServer_x64.exe (Oculus VR, LLC -> Facebook Technologies, LLC)
FirewallRules: [{60F36C3B-48E5-43B0-8CFB-0EBED47E6F11}] => (Allow) C:\Program Files\Oculus\Support\oculus-runtime\OVRRedir.exe (Oculus VR, LLC -> )
FirewallRules: [{0139A4A1-F639-4343-8F07-60C2C2386685}] => (Allow) C:\Program Files\Oculus\Support\oculus-runtime\OVRRedir.exe (Oculus VR, LLC -> )
FirewallRules: [{4F9A28DB-010B-4626-B5B8-936142B04892}] => (Allow) C:\Program Files\Oculus\Support\oculus-dash\dash\bin\OculusDash.exe (Oculus VR, LLC -> )
FirewallRules: [{A1F32280-91E9-46FF-9EDD-24C48EAA4BC6}] => (Allow) C:\Program Files\Oculus\Support\oculus-dash\dash\bin\OculusDash.exe (Oculus VR, LLC -> )
FirewallRules: [{3CD93529-F035-4918-843D-1A9EB5E8A831}] => (Allow) C:\Program Files\Oculus\Support\oculus-worlds\Home2.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [{08716381-CF14-4184-8849-459445098475}] => (Allow) C:\Program Files\Oculus\Support\oculus-worlds\Home2.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [{1FA78D26-20A8-4C03-9AF3-14544156D2DA}] => (Allow) C:\Program Files\Oculus\Support\oculus-worlds\Home2\Binaries\Win64\Home2-Win64-Shipping.exe (Oculus VR, LLC -> Epic Games, Inc.)
FirewallRules: [{322DCE80-1F93-4DC7-8B8D-DB9B88BD6EBA}] => (Allow) C:\Program Files\Oculus\Support\oculus-worlds\Home2\Binaries\Win64\Home2-Win64-Shipping.exe (Oculus VR, LLC -> Epic Games, Inc.)
FirewallRules: [{E9EA684E-D352-4B71-82A9-3B9036DEFE8E}] => (Allow) C:\Program Files\Oculus\Support\oculus-client\OculusClient.exe (Oculus VR, LLC) [Datei ist nicht signiert]
FirewallRules: [{FA36CC9C-2F2A-4AEB-8584-607EEAE48F48}] => (Allow) C:\Program Files\Oculus\Support\oculus-client\OculusClient.exe (Oculus VR, LLC) [Datei ist nicht signiert]
FirewallRules: [{0E52E449-243C-4519-BEF4-E35A3FD6EEF7}] => (Allow) LPort=8027
FirewallRules: [{DCB0F3E3-B130-4C6D-84CC-58A75D553DE5}] => (Allow) C:\Program Files\Opera\63.0.3368.107\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{38962F38-1793-42BC-A10E-8257D6114D7B}] => (Allow) LPort=8027
FirewallRules: [{811F2136-0E52-4CFB-BC21-4049B6B49643}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.117.543.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{1D8BA397-1870-44AA-9260-85D4FB06066F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.117.543.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{BFF5297D-2415-4DBC-AD55-367B2E70F5A6}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.117.543.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{9702396E-5B2D-44AB-855D-EC683DCB3405}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.117.543.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{392450AE-D6DC-40AD-AD3B-E2BE3D9185D1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.117.543.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{1879C90E-BF88-4B2E-B0AB-AA3002726F97}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.117.543.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{C7DD4EA7-19B3-42EB-97C8-932C1C783B5A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.117.543.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{7BC14455-058A-4404-8DB9-B0C3DFC8342E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.117.543.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{4E507679-CFA9-4C09-B74C-D00FF7511814}] => (Allow) LPort=8027
FirewallRules: [{4EC20FEA-9C8E-48B4-B272-DF4CD9BC6EBA}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.118.611.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{C2A68C28-907E-494C-8739-110470EE847A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.118.611.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{1DA10DF9-ABEC-4509-B472-71B05B25BB4A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.118.611.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{FBEC7B5F-1849-43E0-A1DF-15D690C46BCA}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.118.611.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{BFEB41B6-7A4F-42FF-8AD1-34B1F8AABF62}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.118.611.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{85128EC7-11AF-44C1-AEAC-4CB7AD1A3E9F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.118.611.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{5474CDB4-3B78-4690-A998-178703FE2244}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.118.611.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{D46C2EE3-6EBB-4DDD-99EE-3BD4DE75A2CC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.118.611.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{B4035018-04D1-44A8-967E-52BF65D50ABC}C:\program files\nzbget\nzbget.exe] => (Block) C:\program files\nzbget\nzbget.exe () [Datei ist nicht signiert]
FirewallRules: [UDP Query User{EF2DB5A2-F4EB-45A6-96C8-9CAC5F772CCE}C:\program files\nzbget\nzbget.exe] => (Block) C:\program files\nzbget\nzbget.exe () [Datei ist nicht signiert]
FirewallRules: [{47BB0284-57DC-49DA-8051-E0A63FF7A64F}] => (Allow) C:\Users\sasch\AppData\Local\Temp\downloaded.exe (TeamViewer GmbH -> TeamViewer)
FirewallRules: [{1A5EDF56-92C4-4EAF-A493-D47263FC2E37}] => (Allow) C:\Users\sasch\AppData\Local\Temp\downloaded.exe (TeamViewer GmbH -> TeamViewer)
FirewallRules: [{519D1845-687A-4B2F-BFBD-DDC00C9B22D1}] => (Allow) C:\Users\sasch\AppData\Local\Temp\downloaded.exe (TeamViewer GmbH -> TeamViewer)
FirewallRules: [{58C68B9E-3FAB-4EBE-92D2-B6843A347CD2}] => (Allow) C:\Users\sasch\AppData\Local\Temp\downloaded.exe (TeamViewer GmbH -> TeamViewer)
FirewallRules: [{4897EC8F-B674-4000-94B1-3DC51B11192C}] => (Allow) LPort=8027
FirewallRules: [{9AB82D20-D696-46CD-8602-0CDEA1FB371D}] => (Allow) LPort=8027
FirewallRules: [{08A5C124-26A4-4882-A458-73DEF6B0BAD4}] => (Allow) LPort=8027
==================== Wiederherstellungspunkte =========================
02-11-2019 18:16:04 Geplanter Prüfpunkt
==================== Fehlerhafte Geräte im Gerätemanager ============
==================== Fehlereinträge in der Ereignisanzeige: ========================
Applikationsfehler:
==================
Error: (11/03/2019 12:16:41 PM) (Source: .NET Runtime) (EventID: 1022) (User: )
Description: .NET Runtime version 4.0.30319.0 - Fehler beim Initialisieren der Profilerstellungs-API-Anfügeinfrastruktur. Dieser Prozess ermöglicht einem Profiler das Anfügen nicht. HRESULT: 0x80004005. Prozess-ID (dezimal): 11276. Meldungs-ID: [0x2509].
Error: (11/03/2019 12:14:43 PM) (Source: OVRServiceLauncher) (EventID: 0) (User: )
Description: Event-ID 0
Error: (11/03/2019 12:11:24 PM) (Source: OVRServiceLauncher) (EventID: 0) (User: )
Description: Event-ID 0
Error: (11/03/2019 12:06:31 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: HxAccounts.exe, Version: 16.0.12026.20218, Zeitstempel: 0x5d81ddff
Name des fehlerhaften Moduls: Windows.UI.Xaml.dll, Version: 10.0.17763.802, Zeitstempel: 0x322dae8f
Ausnahmecode: 0xc000027b
Fehleroffset: 0x0000000000701a52
ID des fehlerhaften Prozesses: 0x168c
Startzeit der fehlerhaften Anwendung: 0x01d5923542ab9e49
Pfad der fehlerhaften Anwendung: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12026.20218.0_x64__8wekyb3d8bbwe\HxAccounts.exe
Pfad des fehlerhaften Moduls: C:\Windows\System32\Windows.UI.Xaml.dll
Berichtskennung: 08bb2cd2-1722-4276-8eb3-369be6cdc972
Vollständiger Name des fehlerhaften Pakets: microsoft.windowscommunicationsapps_16005.12026.20218.0_x64__8wekyb3d8bbwe
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: microsoft.windowslive.manageaccounts
Error: (11/03/2019 11:54:42 AM) (Source: OVRServiceLauncher) (EventID: 0) (User: )
Description: Event-ID 0
Error: (11/02/2019 11:02:49 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Beat Saber.exe, Version: 2018.4.4.16502, Zeitstempel: 0x5d23e6af
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000021399fb7300
ID des fehlerhaften Prozesses: 0xdc0
Startzeit der fehlerhaften Anwendung: 0x01d591c45509e62d
Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\Steam\steamapps\common\Beat Saber\Beat Saber.exe
Pfad des fehlerhaften Moduls: unknown
Berichtskennung: 00a7de21-caec-4766-834e-df68a6cf9605
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (11/02/2019 10:25:15 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Beat Saber.exe, Version: 2018.4.4.16502, Zeitstempel: 0x5d23e6af
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000002eb47bc77d0
ID des fehlerhaften Prozesses: 0x4af4
Startzeit der fehlerhaften Anwendung: 0x01d591bf02640381
Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\Steam\steamapps\common\Beat Saber\Beat Saber.exe
Pfad des fehlerhaften Moduls: unknown
Berichtskennung: 0890802c-f189-4781-8a7f-3abc7e1c952e
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (11/02/2019 09:44:44 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Das Programm Steam.exe Version 5.45.49.1 hat die Interaktion mit Windows beendet und wurde geschlossen. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 2638
Startzeit: 01d591bd8bf6485d
Beendigungszeit: 19
Anwendungspfad: C:\Program Files (x86)\Steam\Steam.exe
Bericht-ID: 443ada50-9f13-411a-98d5-35f535ff30b8
Vollständiger Name des fehlerhaften Pakets:
Relative Anwendungs-ID des fehlerhaften Pakets:
Absturztyp: Cross-process
Systemfehler:
=============
Error: (11/03/2019 12:17:32 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-FOHP40Q)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "DESKTOP-FOHP40Q\sasch" (SID: S-1-5-21-1368799669-3117233153-4274516567-1001) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
und der APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.
Error: (11/03/2019 12:16:48 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-FOHP40Q)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "DESKTOP-FOHP40Q\sasch" (SID: S-1-5-21-1368799669-3117233153-4274516567-1001) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
und der APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.
Error: (11/03/2019 12:16:27 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-FOHP40Q)
Description: Der Server "Microsoft.YourPhone_1.19092.399.0_x64__8wekyb3d8bbwe!App.AppXvctmff39365zg14pgmystcwtys462fpa.mca" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (11/03/2019 12:16:22 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-FOHP40Q)
Description: Der Server "Microsoft.YourPhone_1.19092.399.0_x64__8wekyb3d8bbwe!App.AppXvctmff39365zg14pgmystcwtys462fpa.mca" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (11/03/2019 12:14:16 PM) (Source: Service Control Manager) (EventID: 7016) (User: )
Description: Der Dienst "SOLIDWORKS Electrical Collaborative Server" hat einen ungültigen aktuellen Status gemeldet: 0
Error: (11/03/2019 12:12:14 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-FOHP40Q)
Description: Der Server "Microsoft.WindowsStore_11910.1001.4.0_x64__8wekyb3d8bbwe!App" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (11/03/2019 12:11:45 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-FOHP40Q)
Description: Der Server "Microsoft.YourPhone_1.19092.399.0_x64__8wekyb3d8bbwe!App.AppXvctmff39365zg14pgmystcwtys462fpa.mca" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (11/03/2019 12:11:40 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-FOHP40Q)
Description: Der Server "Microsoft.YourPhone_1.19092.399.0_x64__8wekyb3d8bbwe!App.AppXvctmff39365zg14pgmystcwtys462fpa.mca" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
CodeIntegrity:
===================================
Date: 2019-11-03 12:14:50.273
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bitdefender\Bitdefender Security\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-11-03 12:11:25.049
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bitdefender\Bitdefender Security\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-11-03 11:54:42.573
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bitdefender\Bitdefender Security\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-10-28 19:38:13.968
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\NVIDIA Corporation\Ansel\Tools\NvCameraWhitelisting64.dll because the set of per-page image hashes could not be found on the system.
Date: 2019-10-28 19:15:01.526
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\NVIDIA Corporation\Ansel\Tools\NvCameraWhitelisting64.dll because the set of per-page image hashes could not be found on the system.
Date: 2019-10-28 19:08:50.034
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\NVIDIA Corporation\Ansel\Tools\NvCameraWhitelisting64.dll because the set of per-page image hashes could not be found on the system.
Date: 2019-10-28 19:08:29.410
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bitdefender\Bitdefender Security\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-10-28 18:49:31.791
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\NVIDIA Corporation\Ansel\Tools\NvCameraWhitelisting64.dll because the set of per-page image hashes could not be found on the system.
==================== Speicherinformationen ===========================
BIOS: American Megatrends Inc. 2003 09/19/2016
Hauptplatine: ASUSTeK COMPUTER INC. H110M-A/M.2
Prozessor: Intel(R) Core(TM) i7-6700 CPU @ 3.40GHz
Prozentuale Nutzung des RAM: 40%
Installierter physikalischer RAM: 16324.48 MB
Verfügbarer physikalischer RAM: 9725.93 MB
Summe virtueller Speicher: 20676.48 MB
Verfügbarer virtueller Speicher: 12343.22 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:475.64 GB) (Free:36.54 GB) NTFS
Drive d: () (Fixed) (Total:920.1 GB) (Free:187.49 GB) NTFS
\\?\Volume{1a022361-6a33-451c-a3dc-4f38368cdc3f}\ () (Fixed) (Total:0.48 GB) (Free:0.08 GB) NTFS
\\?\Volume{5e8405a9-996a-4ff1-8dc3-9f318ece2991}\ () (Fixed) (Total:0.82 GB) (Free:0.34 GB) NTFS
\\?\Volume{a93a4bec-3861-4942-a1dd-c8f8c8d9fb93}\ (Windows RE tools) (Fixed) (Total:0.29 GB) (Free:0.28 GB) NTFS
\\?\Volume{37692e76-e640-4ae3-a7db-50945538aca7}\ (Recovery) (Fixed) (Total:10.74 GB) (Free:1.27 GB) NTFS
\\?\Volume{d4153ab6-a4ff-4bb1-b6b1-a5696cd51fee}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32
==================== MBR & Partitionstabelle ====================
==========================================================
Disk: 0 (Size: 476.9 GB) (Disk ID: 8038C2AD)
Partition: GPT.
==========================================================
Disk: 1 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
==================== Ende von Addition.txt =======================
Code:
ATTFilter Logfile of Trend Micro HijackThis v2.0.5 Scan saved at 12:36:40, on 03.11.2019 Platform: Unknown Windows (WinNT 6.02.1008) MSIE: Internet Explorer v11.0 (11.00.17763.0771) Boot mode: Normal Running processes: C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe C:\Windows\SysWOW64\rundll32.exe C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe C:\Program Files (x86)\Steam\Steam.exe C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe C:\Users\sasch\Desktop\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://go.microsoft.com/fwlink/p/?LinkId=620947&OCID=AVRES000&pc=UE00 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = F2 - REG:system.ini: UserInit= O2 - BHO: Bitdefender Trackers Blocking - {159ff5d5-55f1-4d2f-b706-767a55f77abb} - C:\Program Files\Bitdefender\Bitdefender Security\antispam32\bdtbie.dll O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [SE61T-UserTools] C:\Program Files (x86)\uRage Reaper nxt\uRage Reaper nxt..exe /s O4 - HKLM\..\Run: [SKILLER SGK4] C:\Program Files (x86)\SKILLER SGK4\Monitor.exe O4 - HKLM\..\Run: [CORSAIR iCUE Software] "C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\iCUE Launcher.exe" --autorun O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [OculusTrayTool] C:\Program Files (x86)\Oculus Tray Tool\OculusTrayTool.exe O4 - HKLM\..\Run: [OnScreen Control] C:\Program Files (x86)\LG Electronics\OnScreen Control\bin\OnScreenStartUpApp.exe O4 - HKCU\..\Run: [OneDrive] "C:\Users\sasch\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent O4 - HKCU\..\Run: [EADM] "C:\Program Files (x86)\Origin\Origin.exe" -AutoStart O4 - HKCU\..\Run: [Discord] C:\Users\sasch\AppData\Local\Discord\app-0.0.305\Discord.exe O4 - HKCU\..\Run: [CorsairLink4] C:\Program Files (x86)\CorsairLink4\CorsairLink4.exe -startup O4 - HKCU\..\Run: [GalaxyClient] C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe /launchViaAutoStart O4 - Startup: FileHoster.url O4 - Startup: Rainmeter.lnk = C:\Program Files\Rainmeter\Rainmeter.exe O4 - Startup: Twitch.lnk = sasch\AppData\Roaming\Twitch\Bin\Twitch.exe O4 - Global Startup: SOLIDWORKS 2019 Fast Start.lnk = ? O4 - Global Startup: SOLIDWORKS Hintergrund-Downloader.lnk = ? O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000 O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105 O9 - Extra button: Bitdefender Anti-tracker - {159ff5d5-55f1-4d2f-b706-767a55f77abb} - C:\Program Files\Bitdefender\Bitdefender Security\antispam32\bdtbie.dll O9 - Extra button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe O9 - Extra 'Tools' menuitem: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\MSOXMLMF.DLL O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: AfVpnService - AnchorFree Inc. - C:\Program Files\Bitdefender\Bitdefender VPN\vpnservice.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing) O23 - Service: Bitdefender Auxiliary Service (BDAuxSrv) - Bitdefender - C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe O23 - Service: Bitdefender Protected Service (BDProtSrv) - Bitdefender - C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe O23 - Service: Bitdefender RedLine Service (bdredline) - Bitdefender - C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe O23 - Service: Bitdefender Vpn Service (BdVpnService) - Bitdefender - C:\Program Files\Bitdefender\Bitdefender VPN\bdvpnservice.exe O23 - Service: BattlEye Service (BEService) - Unknown owner - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe O23 - Service: Corsair LINK 4 (CLink4Service) - Corsair Components, Inc. - C:\Program Files (x86)\CorsairLink4\CorsairLink4.Service.exe O23 - Service: DTSInterops (CoordinatorServiceHost) - Dassault Systèmes SolidWorks Corporation - C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS\swScheduler\DTSCoordinatorService.exe O23 - Service: Corsair Service (CorsairService) - Corsair Memory, Inc. - C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.exe O23 - Service: Defragmentation-Service (DfSdkS) - mst software GmbH, Germany - C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 16\DfsdkS.exe O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing) O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing) O23 - Service: SOLIDWORKS Electrical Collaborative Server (ewserver) - Unknown owner - C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Electrical\server\EwServer.exe O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing) O23 - Service: FlexNet Licensing Service - Flexera Software LLC - C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe O23 - Service: FlexNet Licensing Service 64 - Flexera Software LLC - C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe O23 - Service: Futuremark SystemInfo Service - Futuremark - C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe O23 - Service: GalaxyClientService - GOG.com - C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe O23 - Service: GalaxyCommunication - GOG.com - C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe O23 - Service: Intel(R) MPI Library Hydra Process Manager (impi_hydra) - Intel Corporation - C:\Program Files\Common Files\SolidWorks Shared\Simulation Worker Agent\hydra_service.exe O23 - Service: IObit Uninstaller Service (IObitUnSvr) - IObit - C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: Kinect Monitor (KinectMonitor) - Unknown owner - C:\WINDOWS\system32\Kinect\KinectMonitor.exe (file missing) O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe O23 - Service: NVIDIA NetworkService Container (NvContainerNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe O23 - Service: Origin Web Helper Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginWebHelperService.exe O23 - Service: Oculus VR Library Service (OVRLibraryService) - Facebook Technologies, LLC - C:\Program Files\Oculus\Support\oculus-librarian\OVRLibraryService.exe O23 - Service: Oculus VR Runtime Service (OVRService) - Facebook Technologies, LLC - C:\Program Files\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing) O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe O23 - Service: ProductAgentService - Bitdefender - C:\Program Files\Bitdefender Agent\ProductAgentService.exe O23 - Service: Remote Solver for Flow Simulation 2018 (RemoteSolverDispatcher) - Mentor Graphics Corporation - C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Flow Simulation\binCFW\remotesolverdispatcherservice.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001 (Sense) - Unknown owner - C:\Program Files (x86)\Windows Defender Advanced Threat Protection\MsSense.exe (file missing) O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing) O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing) O23 - Service: @firewallapi.dll,-50323 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing) O23 - Service: SolidWorks Flexnet Server - Flexera Software LLC - C:\SolidWorks_Flexnet_Server\lmgrd.exe O23 - Service: SolidWorks Licensing Service - SolidWorks - C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing) O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe O23 - Service: SWVisualize2019.BoostService - Dassault Systèmes - C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Visualize Boost\SWVisualize.BoostService.exe O23 - Service: SWVisualize2019.Queue.Server - Dassault Systèmes - C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Visualize\SWVisualize.Queue.Server.exe O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing) O23 - Service: Bitdefender Desktop Update Service (UPDATESRV) - Bitdefender - C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing) O23 - Service: Bitdefender Virus Shield (VSSERV) - Bitdefender - C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) O23 - Service: Ashampoo LiveTuner 2 Service (WO_LiveService2) - Unknown owner - C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 16\LiveTunerService.exe -- End of file - 15782 bytes |
| Themen zu Versuchter Teamviewer missbrauch auf meinen PC |
| amazon, beendet, bewusst, bitdefender, datei, defender, ebenfalls, erneut, fenster, frage, guten, installiert, internet, kleines, löschen, maus, neuen, neues, nichts, node.js, opera, prüfen, schnell, security, setup, taskmanager, teamviewer, version, windowsapps |
Baum-Darstellung