| |
| |||||||
Log-Analyse und Auswertung: PC plötzlich sehr langsamWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
11.05.2020, 17:33
| #1 |
 |  PC plötzlich sehr langsam Guten Abend, ich habe meinen PC einige Zeit nicht genutzt. Heute habe ich die Mühle mal wieder angeschmissen und plötzlich ist der PC langsamer als ich es gewohnt bin. Hat sich da eventuell etwas eingeschlichen? Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 11-05-2020
durchgeführt von Marcel (Administrator) auf MARCELS-PC (ASUS All Series) (11-05-2020 18:24:27)
Gestartet von C:\Users\Marcel\Desktop
Geladene Profile: Marcel
Platform: Windows 8.1 (Update) (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: Opera
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.154.333\AvastBrowserCrashHandler.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.154.333\AvastBrowserCrashHandler64.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Digital Wave Ltd -> Digital Wave Ltd.) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
(Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.22013_x64__8wekyb3d8bbwe\livecomm.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.19537_none_fa5691419b168859\TiWorker.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\68.0.3618.63\opera.exe <16>
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\68.0.3618.63\opera_crashreporter.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Piriform Software Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [268680 2019-09-18] (AVAST Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [601784 2019-07-17] (Razer USA Ltd. -> Razer Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-12-19] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Opera Browser Assistant] => c:\program files (x86)\opera\assistant\browser_assistant.exe [3004440 2020-04-29] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-594468629-384485566-424415787-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3137816 2019-11-19] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-594468629-384485566-424415787-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-14] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-594468629-384485566-424415787-1001\...\Run: [AvastBrowserAutoLaunch_501C78E7EC65A0AA0B8A8E0454EA6768] => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1853360 2020-04-19] (Avast Software s.r.o. -> AVAST Software)
HKU\S-1-5-21-594468629-384485566-424415787-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\STARWA~1.SCR
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\81.0.4053.113\Installer\chrmstp.exe [2020-05-11] (Avast Software s.r.o. -> AVAST Software)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.71\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Beschränkung <==== ACHTUNG
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {099976BE-B187-46B8-AD64-7801728153A7} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [662464 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {24BFEF05-230A-4822-8C1A-76D04DF20713} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-14] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {2886FF05-7312-42C5-950A-81EDD9A4A7FC} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [569416 2016-02-23] (Apple Inc. -> Apple Inc.)
Task: {2F87D588-2069-4520-9FDC-3B45814AD1EE} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1853360 2020-04-19] (Avast Software s.r.o. -> AVAST Software)
Task: {31A15378-2CB7-45EA-BB3E-9CEEB4406450} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_363_pepper.exe [1454136 2020-05-11] (Adobe Inc. -> Adobe)
Task: {397E4425-66EE-4F1E-BEDA-268A4BC54C32} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe [469952 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {3A3D253B-C87E-4E39-A5F4-901159AAE96F} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3933576 2019-09-18] (AVAST Software s.r.o. -> AVAST Software)
Task: {61CDB3D6-C7FA-4AD4-AEDD-45E04426320D} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\avast software\overseer\overseer.exe [1660520 2020-03-14] (Avast Software s.r.o. -> Avast Software)
Task: {6887B7AE-5218-4A0F-AD71-F1545FBA270A} - System32\Tasks\{0E0007BD-37E1-4757-95E7-23C4F2CE52D1} => c:\program files (x86)\opera\launcher.exe [1517592 2020-04-29] (Opera Software AS -> Opera Software)
Task: {6CDCEF21-A47F-4C18-9935-50BD2AAFE06C} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_363_Plugin.exe [1458232 2020-05-11] (Adobe Inc. -> Adobe)
Task: {8955A44A-02B2-4A47-8021-0C78A7DD1FFD} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [976832 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9CC793D9-4CD6-4A41-B757-EB4822066E64} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [522688 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A224B898-7153-40B9-ADE9-C7DC1BF27C2F} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [510912 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A2369954-DED0-4E92-9053-5030884A0470} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-09-25] (AVAST Software s.r.o. -> AVAST Software)
Task: {A313AE4F-2D6E-4B26-8D6E-C7D0A34EC776} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [979024 2019-02-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {A62EB4BE-9EEC-4A58-8F9D-8A1EC63DE193} - System32\Tasks\{D4EC168F-4292-4CA2-B6C7-5ABEEC1A2189} => C:\Windows\system32\pcalua.exe -a D:\setup.exe -d D:\
Task: {AFA174D5-31D8-4E92-BFC4-BA33564C3933} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [662464 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {BDE613CE-5E5C-42F5-8F47-A30836BDA4B1} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [979024 2019-02-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {C66C06D6-37D7-424F-A1F5-363C648B1580} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [757184 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CD22FD52-DACB-4842-B52C-4CF8963CA9A6} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1853360 2020-04-19] (Avast Software s.r.o. -> AVAST Software)
Task: {D10A69A6-273B-486B-8A59-31003BB3D561} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2069952 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D6B3A04A-CEEA-4CB1-87AB-E9A03AC23E34} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-14] (Piriform Software Ltd -> Piriform Ltd)
Task: {DE36B454-E670-48C0-9FBF-3A286DAD95D4} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-09-25] (AVAST Software s.r.o. -> AVAST Software)
Task: {E19E8E03-895B-4DDD-A2BC-2374B54B68EF} - System32\Tasks\Opera scheduled assistant Autoupdate 1589191738 => c:\program files (x86)\opera\launcher.exe [1517592 2020-04-29] (Opera Software AS -> Opera Software)
Task: {E26327E2-48FB-48EF-BC11-E5B6F8478B1A} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-05-11] (Adobe Inc. -> Adobe)
Task: {E68A913E-A380-4038-B522-89F3F8BB23FE} - System32\Tasks\Opera scheduled Autoupdate 1401989751 => c:\program files (x86)\opera\launcher.exe [1517592 2020-04-29] (Opera Software AS -> Opera Software)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Winsock: Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 07 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.115.11
Tcpip\..\Interfaces\{367711D4-82B7-447D-88E0-ABC8C471CAD1}: [DhcpNameServer] 192.168.115.11
Internet Explorer:
==================
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=AV01
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
SearchScopes: HKLM-x32 -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-594468629-384485566-424415787-1001 -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2019-09-02] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_161\bin\ssv.dll [2018-03-31] (Oracle America, Inc. -> Oracle Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2019-10-14] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_161\bin\jp2ssv.dll [2018-03-31] (Oracle America, Inc. -> Oracle Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2017-07-18] (Microsoft Corporation -> Microsoft Corporation)
FireFox:
========
FF HKU\S-1-5-21-594468629-384485566-424415787-1001\...\Firefox\Extensions: [{B64D9B05-48E1-4CEB-BF58-E0643994E900}] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff => nicht gefunden
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_363.dll [2020-05-11] (Adobe Inc. -> )
FF Plugin: @esn/npbattlelog,version=2.5.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.1\npbattlelogx64.dll [Keine Datei]
FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll [Keine Datei]
FF Plugin: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelogx64.dll [2015-04-30] (Electronic Arts -> EA Digital Illusions CE AB)
FF Plugin: @java.com/DTPlugin,version=11.161.2 -> C:\Program Files\Java\jre1.8.0_161\bin\dtplugin\npDeployJava1.dll [2018-03-31] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.161.2 -> C:\Program Files\Java\jre1.8.0_161\bin\plugin2\npjp2.dll [2018-03-31] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_363.dll [2020-05-11] (Adobe Inc. -> )
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB) [Datei ist nicht signiert]
FF Plugin-x32: @esn/npbattlelog,version=2.4.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.4.0\npbattlelog.dll [Keine Datei]
FF Plugin-x32: @esn/npbattlelog,version=2.5.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.1\npbattlelog.dll [Keine Datei]
FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll [Keine Datei]
FF Plugin-x32: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelog.dll [2015-04-30] (Electronic Arts -> EA Digital Illusions CE AB)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2014-06-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin HKU\S-1-5-21-594468629-384485566-424415787-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Marcel\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-06-11] (Unity Technologies ApS -> Unity Technologies ApS)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Marcel\AppData\Local\Google\Chrome\User Data\Default [2020-05-11]
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Extension: (Avast SafePrice | Vergleich, Angebote, Gutscheine) - C:\Users\Marcel\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2019-03-10]
CHR Extension: (Heroes & Generals) - C:\Users\Marcel\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbophcdhblbipoaacgchllkobdaolpge [2015-07-24]
CHR Extension: (Avast Online Security) - C:\Users\Marcel\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2019-03-10]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Marcel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-05-01]
CHR Extension: (Chrome Media Router) - C:\Users\Marcel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-03-10]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <nicht gefunden>
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl]
Opera:
=======
OPR Notifications: hxxps://www.razer.com; hxxps://www.zalon.de
OPR Extension: (Honey) - C:\Users\Marcel\AppData\Roaming\Opera Software\Opera Stable\Extensions\bdbghbgbindbkaainmmmekddaokgbffn [2018-04-12]
OPR Extension: (Amazon Assistant for Opera) - C:\Users\Marcel\AppData\Roaming\Opera Software\Opera Stable\Extensions\mmmbddcnnndpbdflpccgcknaaabgldak [2020-05-11]
OPR Extension: (YouTube Unblocker) - C:\Users\Marcel\AppData\Roaming\Opera Software\Opera Stable\Extensions\npnkeeiehehhefofiekoflfedgehcdhl [2016-09-13]
OPR Extension: (Adblock Plus - free ad blocker) - C:\Users\Marcel\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2020-05-11]
==================== Dienste (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-03-02] (Apple Inc. -> Apple Inc.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe [936728 2013-07-04] (ASUSTeK Computer Inc. -> )
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6259592 2020-01-15] (AVAST Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-09-25] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [996880 2019-09-18] (AVAST Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-09-25] (AVAST Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\81.0.4053.113\elevation_service.exe [954600 2020-04-19] (Avast Software s.r.o. -> AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [6875688 2018-06-22] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3058256 2019-02-13] (Microsoft Corporation -> Microsoft Corporation)
R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [391656 2016-07-22] (Digital Wave Ltd -> Digital Wave Ltd.)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2019-06-21] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 HnGSteamService; C:\Program Files (x86)\Steam\steamapps\common\Heroes & Generals\hngservice.exe [788264 2020-05-11] (Reto-Moto ApS -> Reto-Moto ApS)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6744288 2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [522688 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [522688 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2466608 2019-11-19] (Electronic Arts, Inc. -> Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3344176 2019-11-19] (Electronic Arts, Inc. -> Electronic Arts)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2017-06-27] (Even Balance, Inc. -> )
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvTelemetry\plugins" -r
===================== Treiber (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2013-07-04] (ASUSTeK Computer Inc. -> )
R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [37616 2019-09-18] (AVAST Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [204824 2019-09-18] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [274456 2019-09-18] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [209552 2019-09-18] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [65120 2019-09-18] (AVAST Software s.r.o. -> AVAST Software)
R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [276952 2019-09-18] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42736 2019-09-18] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [171520 2019-09-18] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [110320 2019-09-18] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [83792 2019-09-18] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [848432 2019-10-01] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [460448 2019-10-01] (AVAST Software s.r.o. -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [236024 2019-09-18] (AVAST Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [316528 2019-09-18] (AVAST Software s.r.o. -> AVAST Software)
S3 cleanhlp; C:\EEK\bin\cleanhlp64.sys [57024 2014-11-16] (Emsisoft GmbH -> Emsisoft GmbH)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [130688 2016-07-22] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [153312 2019-10-28] (Malwarebytes Corporation -> Malwarebytes)
S3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [224408 2019-09-02] (Malwarebytes Corporation -> Malwarebytes)
S3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [73584 2019-09-02] (Malwarebytes Corporation -> Malwarebytes)
S3 MBAMWebProtection; C:\Windows\system32\DRIVERS\mwac.sys [116112 2019-09-02] (Malwarebytes Corporation -> Malwarebytes)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [31168 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [59240 2017-12-15] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\drivers\nvvhci.sys [75600 2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation)
R3 RTL8168; C:\Windows\system32\DRIVERS\Rt630x64.sys [591360 2013-06-18] (Microsoft Windows -> Realtek )
R3 rzendpt; C:\Windows\System32\drivers\rzendpt.sys [50392 2015-08-13] (Razer Inc. -> Razer Inc)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [164992 2016-07-22] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
S3 xb1usb; C:\Windows\System32\drivers\xb1usb.sys [42760 2016-02-23] (Windows Central Build Account - X -> Microsoft Corporation)
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat (erstellte) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2020-05-11 18:24 - 2020-05-11 18:25 - 000027422 _____ C:\Users\Marcel\Desktop\FRST.txt
2020-05-11 18:24 - 2020-05-11 18:24 - 000000000 ____D C:\FRST
2020-05-11 18:22 - 2020-05-11 18:22 - 002285568 _____ (Farbar) C:\Users\Marcel\Desktop\FRST64.exe
2020-05-11 12:09 - 2020-05-11 12:09 - 000004054 _____ C:\Windows\system32\Tasks\Opera scheduled assistant Autoupdate 1589191738
2020-05-11 11:51 - 2020-05-11 11:51 - 001224776 _____ (Adobe Inc) C:\Users\Marcel\Downloads\flashplayer32ppau_a_install.exe
==================== Ein Monat (geänderte) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2020-05-11 18:20 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\AppReadiness
2020-05-11 18:11 - 2014-09-20 13:43 - 000000000 ____D C:\ProgramData\NVIDIA
2020-05-11 18:10 - 2014-11-18 20:31 - 000025088 ___SH C:\Users\Marcel\Desktop\Thumbs.db
2020-05-11 18:10 - 2014-06-05 18:03 - 000000000 ___DO C:\Users\Marcel\SkyDrive
2020-05-11 18:04 - 2013-08-22 17:20 - 000000000 ____D C:\Windows\CbsTemp
2020-05-11 17:58 - 2014-06-05 17:56 - 001769264 _____ C:\Windows\system32\PerfStringBackup.INI
2020-05-11 17:58 - 2013-08-23 01:24 - 000758136 _____ C:\Windows\system32\perfh007.dat
2020-05-11 17:58 - 2013-08-23 01:24 - 000156398 _____ C:\Windows\system32\perfc007.dat
2020-05-11 17:58 - 2013-08-22 15:36 - 000000000 ____D C:\Windows\Inf
2020-05-11 17:51 - 2014-06-05 19:35 - 000000000 ____D C:\Program Files (x86)\Opera
2020-05-11 17:51 - 2013-08-22 16:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-05-11 17:50 - 2014-06-05 19:05 - 000000000 ____D C:\Windows\system32\MRT
2020-05-11 17:50 - 2013-08-22 15:25 - 000524288 ___SH C:\Windows\system32\config\BBI
2020-05-11 17:48 - 2014-08-21 22:37 - 000000000 ____D C:\Program Files (x86)\Steam
2020-05-11 17:48 - 2014-06-05 19:05 - 121542864 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2020-05-11 17:16 - 2014-06-05 18:07 - 000003594 _____ C:\Windows\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-594468629-384485566-424415787-1001
2020-05-11 13:41 - 2016-10-15 06:51 - 000000000 ___HD C:\Program Files\Common Files\EAInstaller
2020-05-11 13:41 - 2014-06-05 21:33 - 000000000 ____D C:\Program Files (x86)\Origin Games
2020-05-11 13:40 - 2017-07-10 23:18 - 000000000 ____D C:\Program Files (x86)\Grey Box
2020-05-11 13:39 - 2014-06-05 20:31 - 000000000 ____D C:\Program Files (x86)\Google
2020-05-11 13:38 - 2014-06-22 12:12 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2020-05-11 13:38 - 2014-06-05 19:35 - 000000000 ____D C:\Users\Marcel\AppData\Local\Opera Software
2020-05-11 12:49 - 2013-08-22 17:36 - 000000000 ___HD C:\Program Files\WindowsApps
2020-05-11 12:26 - 2019-02-04 14:55 - 000000000 ____D C:\Users\Marcel\Desktop\Initiativbewerbung Afrikaveranstalter
2020-05-11 12:25 - 2018-12-11 14:02 - 000000000 ____D C:\Users\Marcel\Desktop\Bewerbung Reisebüro
2020-05-11 12:10 - 2018-09-25 16:53 - 000002433 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2020-05-11 12:09 - 2019-04-14 12:59 - 000003732 _____ C:\Windows\system32\Tasks\Avast Secure Browser Heartbeat Task (Hourly)
2020-05-11 12:09 - 2019-04-14 12:59 - 000003150 _____ C:\Windows\system32\Tasks\Avast Secure Browser Heartbeat Task (Logon)
2020-05-11 12:09 - 2018-09-25 16:53 - 000002398 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2020-05-11 12:09 - 2018-09-25 16:53 - 000002398 _____ C:\ProgramData\Desktop\Avast Secure Browser.lnk
2020-05-11 12:09 - 2017-08-03 20:44 - 000003872 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1401989751
2020-05-11 12:08 - 2017-06-29 22:01 - 000001092 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera-Browser.lnk
2020-05-11 12:08 - 2014-06-05 19:34 - 000003942 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{79717811-181B-47D1-9CBE-43C89F9ACFAF}
2020-05-11 11:59 - 2014-10-28 09:32 - 000000000 ____D C:\Users\Marcel\AppData\Local\Adobe
2020-05-11 11:58 - 2018-03-26 22:48 - 000004522 _____ C:\Windows\system32\Tasks\Adobe Flash Player NPAPI Notifier
2020-05-11 11:58 - 2016-10-16 12:32 - 000004342 _____ C:\Windows\system32\Tasks\Adobe Flash Player Updater
2020-05-11 11:58 - 2016-06-06 21:01 - 000004486 _____ C:\Windows\system32\Tasks\Adobe Flash Player PPAPI Notifier
2020-05-11 11:57 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2020-05-11 11:57 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\system32\Macromed
2020-05-11 11:52 - 2014-06-06 18:43 - 000000000 ____D C:\ProgramData\AVAST Software
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========
2014-06-06 19:34 - 2014-06-06 19:34 - 000000035 _____ () C:\Users\Marcel\AppData\Roaming\WB.CFG
==================== SigCheck ============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
LastRegBack: 2020-05-11 13:01
==================== Ende von FRST.txt ========================
Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 11-05-2020
durchgeführt von Marcel (11-05-2020 18:25:38)
Gestartet von C:\Users\Marcel\Desktop
Windows 8.1 (Update) (X64) (2014-06-05 16:02:14)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-594468629-384485566-424415787-500 - Administrator - Disabled)
Gast (S-1-5-21-594468629-384485566-424415787-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-594468629-384485566-424415787-1003 - Limited - Enabled)
Marcel (S-1-5-21-594468629-384485566-424415787-1001 - Administrator - Enabled) => C:\Users\Marcel
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
7-Zip 16.02 (HKLM-x32\...\7-Zip) (Version: 16.02 - Igor Pavlov)
7-Zip 19.00 (HKLM-x32\...\{23170F69-40C1-2701-1900-000001000000}) (Version: 19.00.00.0 - Igor Pavlov)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.363 - Adobe)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.363 - Adobe)
Apple Application Support (32-Bit) (HKLM-x32\...\{D4B07658-F443-4445-A261-E643996E139D}) (Version: 4.3.2 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{A6B0442B-E159-444B-B49D-6B9AC531EAE3}) (Version: 4.3.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{2E4AF2A6-50EA-4260-9BA4-5E582D11879A}) (Version: 9.3.0.15 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Assassin's Creed IV Black Flag (HKLM-x32\...\Uplay Install 273) (Version: - Ubisoft)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 19.8.2393 - AVAST Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 81.0.4053.113 - Die Avast Secure Browser-Autoren)
Battlefield 2(TM) (HKLM-x32\...\{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}) (Version: - )
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.8.2.48475 - Electronic Arts)
Battlefield: Bad Company™ 2 (HKLM-x32\...\{3AC8457C-0385-4BEA-A959-E095F05D6D67}) (Version: 1.0.1.0 - Electronic Arts)
Battlefield™ 1 (HKLM-x32\...\{335B50BC-6130-4BAF-9A6A-F1561270587B}) (Version: 1.0.57.44284 - Electronic Arts)
Battlefield™ Hardline (HKLM-x32\...\{CB4AC3DA-8CC1-4516-86DA-4078B57DB229}) (Version: 1.4.0.10 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.0 - EA Digital Illusions CE AB)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.63 - Piriform)
Crysis®3 (HKLM-x32\...\{4198AE83-A3C6-4C41-85C8-EC63E990696E}) (Version: 1.0.0.0 - Electronic Arts)
Dead Space (HKLM-x32\...\{9789E33B-317A-44B2-AF9A-FF8708AD93E0}) (Version: 3.0.0.222 - Electronic Arts)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 417.71 - NVIDIA Corporation) Hidden
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB)
Free Audio CD to MP3 Converter version 1.3.12.1228 (HKLM-x32\...\Free Audio CD to MP3 Converter_is1) (Version: 1.3.12.1228 - DVDVideoSoft Ltd.)
Free YouTube To MP3 Converter (HKLM-x32\...\Free YouTube To MP3 Converter_is1) (Version: 4.1.26.721 - Digital Wave Ltd)
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
Ironsight Version 1 (HKLM-x32\...\Ironsight_is1) (Version: 1 - Aeria Games)
Java 8 Update 161 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180161F0}) (Version: 8.0.1610.12 - Oracle Corporation)
Malwarebytes Version 3.8.3.2965 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.8.3.2965 - Malwarebytes)
Microsoft Office Home and Business 2013 - de-de (HKLM\...\HomeBusinessRetail - de-de) (Version: 15.0.5207.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-594468629-384485566-424415787-1001\...\OneDriveSetup.exe) (Version: 17.3.1171.0714 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.13.26020 (HKLM-x32\...\{7474cd6e-76cc-4257-837e-5b9261e526af}) (Version: 14.13.26020.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 (HKLM-x32\...\{5c045b7f-e561-4794-91f8-c6cda0893107}) (Version: 14.13.26020.0 - Microsoft Corporation)
MP3jam 1.1.1.12 (HKLM-x32\...\MP3jam_is1) (Version: 1.1.1.12 - MP3jam)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.65.2 - Black Tree Gaming)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.7.5 - Notepad++ Team)
NVIDIA GeForce Experience 3.13.1.30 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.13.1.30 - NVIDIA Corporation)
NVIDIA Grafiktreiber 431.36 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 431.36 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.38.16 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.16 - NVIDIA Corporation)
NVIDIA Miracast Virtueller Ton 431.36 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Miracast.VirtualAudio) (Version: 431.36 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
Office 15 Click-to-Run Extensibility Component (HKLM-x32\...\{90150000-008C-0000-0000-0000000FF1CE}) (Version: 15.0.5207.1000 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (HKLM\...\{90150000-008F-0000-1000-0000000FF1CE}) (Version: 15.0.5207.1000 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (HKLM-x32\...\{90150000-008C-0407-0000-0000000FF1CE}) (Version: 15.0.5207.1000 - Microsoft Corporation) Hidden
Opera Stable 68.0.3618.63 (HKLM-x32\...\Opera 68.0.3618.63) (Version: 68.0.3618.63 - Opera Software)
Origin (HKLM-x32\...\Origin) (Version: 10.5.56.33908 - Electronic Arts, Inc.)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.988 - Even Balance, Inc.)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 2.21.24.1 - Razer Inc.)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.2.0 - Rockstar Games)
Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation)
Skype Version 8.53 (HKLM-x32\...\Skype_is1) (Version: 8.53 - Skype Technologies S.A.)
TeamSpeak 3 Client (HKU\S-1-5-21-594468629-384485566-424415787-1001\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
UE4 Prerequisites (x64) (HKLM\...\{F9EC45F9-074A-48BF-92E9-A8CADD56F693}) (Version: 1.0.11.0 - Epic Games, Inc.) Hidden
UE4 Prerequisites (x64) (HKLM-x32\...\{4e242cc8-5e3c-4b08-9d55-dbc62ddd1208}) (Version: 1.0.13.0 - Epic Games, Inc.) Hidden
Unity Web Player (HKU\S-1-5-21-594468629-384485566-424415787-1001\...\UnityWebPlayer) (Version: 4.5.1f3 - Unity Technologies ApS)
Uplay (HKLM-x32\...\Uplay) (Version: 20.1 - Ubisoft)
Vulkan Run Time Libraries 1.0.11.1 (HKLM\...\VulkanRT1.0.11.1) (Version: 1.0.11.1 - LunarG, Inc.)
Packages:
=========
Browserauswahl -> C:\Windows\BrowserChoice [2014-06-05] (Microsoft Corporation)
MSN Finanzen -> C:\Program Files\WindowsApps\Microsoft.BingFinance_3.0.4.344_x64__8wekyb3d8bbwe [2016-06-06] (Microsoft Corporation) [MS Ad]
MSN Gesundheit & Fitness -> C:\Program Files\WindowsApps\Microsoft.BingHealthAndFitness_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-14] (Microsoft Corporation) [MS Ad]
MSN Kochen & Genuss -> C:\Program Files\WindowsApps\Microsoft.BingFoodAndDrink_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-14] (Microsoft Corporation) [MS Ad]
MSN Nachrichten -> C:\Program Files\WindowsApps\Microsoft.BingNews_3.0.4.344_x64__8wekyb3d8bbwe [2016-06-06] (Microsoft Corporation) [MS Ad]
MSN Reisen -> C:\Program Files\WindowsApps\Microsoft.BingTravel_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-14] (Microsoft Corporation) [MS Ad]
MSN Sport -> C:\Program Files\WindowsApps\Microsoft.BingSports_3.0.4.345_x64__8wekyb3d8bbwe [2016-06-06] (Microsoft Corporation) [MS Ad]
MSN Wetter -> C:\Program Files\WindowsApps\Microsoft.BingWeather_3.0.4.350_x64__8wekyb3d8bbwe [2017-05-06] (Microsoft Corporation) [MS Ad]
Musik -> C:\Program Files\WindowsApps\Microsoft.ZuneMusic_2.6.672.0_x64__8wekyb3d8bbwe [2015-03-14] (Microsoft Corporation) [MS Ad]
Skype -> C:\Program Files\WindowsApps\Microsoft.SkypeApp_3.1.0.1016_x86__kzf8qxf38zg5c [2015-06-21] (Skype) [MS Ad]
Spiele -> C:\Program Files\WindowsApps\Microsoft.XboxLIVEGames_2.0.139.0_x64__8wekyb3d8bbwe [2014-06-05] (Microsoft Corporation) [MS Ad]
Video -> C:\Program Files\WindowsApps\Microsoft.ZuneVideo_2.6.446.0_x64__8wekyb3d8bbwe [2016-06-06] (Microsoft Corporation) [MS Ad]
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-594468629-384485566-424415787-1001_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Marcel\AppData\Local\Microsoft\SkyDrive\17.3.1171.0714\amd64\FileSyncApi64.dll (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-09-18] (AVAST Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-09-18] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2014-05-12] () [Datei ist nicht signiert]
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-09-18] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-09-18] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2019-07-03] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-09-18] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
==================== Codecs (Nicht auf der Ausnahmeliste) ====================
==================== Verknüpfungen & WMI ========================
==================== Geladene Module (Nicht auf der Ausnahmeliste) =============
2014-06-05 18:14 - 2020-05-11 17:51 - 000026112 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\ASUS\AXSP\1.01.02\PEbiosinterface32.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\Users\Marcel:Heroes & Generals [38]
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ==========
==================== Hosts Inhalt: =========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2013-08-22 15:25 - 2019-01-28 11:10 - 000000827 _____ C:\Windows\system32\drivers\etc\hosts
==================== Andere Bereiche ===========================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\ProgramData\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common
HKU\S-1-5-21-594468629-384485566-424415787-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Marcel\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\hintergrundbild der windows-fotoanzeige.jpg
DNS Servers: 192.168.115.11
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
HKLM\...\StartupApproved\Run32: => "Opera Browser Assistant"
HKU\S-1-5-21-594468629-384485566-424415787-1001\...\StartupApproved\Run: => "EADM"
HKU\S-1-5-21-594468629-384485566-424415787-1001\...\StartupApproved\Run: => "AvastBrowserAutoLaunch_501C78E7EC65A0AA0B8A8E0454EA6768"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{1A7DA1B7-1630-4C7E-ACDD-98F90C50E5FD}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5609C5DF-347F-40C5-B318-5041CA49A745}] => (Allow) C:\Users\Marcel\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{FE24D808-0BA5-4A12-9C7E-5FBBBFBA9610}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{D0E87D50-EE95-4035-8ED9-9DC707828A66}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{55BEAF2C-A861-4001-8691-2A41D65FAA34}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{C926D2FD-2466-47E5-B5A8-2BE7F37CEAF5}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{F826082A-3E48-41B5-9ABF-22385C7B0E5F}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 3\bin\farcry3.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment)
FirewallRules: [{ED65E93F-0E2F-4E95-93E6-96D1269CF9CC}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 3\bin\farcry3.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment)
FirewallRules: [{E6894AAD-06DB-4C29-90E1-1A8E0690ED6A}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 3\bin\farcry3_d3d11.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment)
FirewallRules: [{230C0B6A-A8FA-4BC5-899D-136AD6F1D05B}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 3\bin\farcry3_d3d11.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment)
FirewallRules: [{17C3F3E5-234F-496E-A9EE-4CA872781CE1}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 3\bin\FC3Updater.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{A2B87F66-AF24-4B50-A208-EF322C3722AE}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 3\bin\FC3Updater.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{2405CAD0-8B0D-437F-81D5-AC9E53953729}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 3\bin\FC3Editor.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{04B5664B-4A9E-4D8D-AFAD-58F785B8199A}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 3\bin\FC3Editor.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{CB984D1B-1C7A-4CE0-978B-05F167A63D3E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\SpecOps_TheLine\Binaries\Win32\SpecOpsTheLine.exe (Valve Corp. -> Take-Two Interactive Software, Inc.) [Datei ist nicht signiert]
FirewallRules: [{4CEF641F-9027-48AB-A662-B77FCB8A238E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\SpecOps_TheLine\Binaries\Win32\SpecOpsTheLine.exe (Valve Corp. -> Take-Two Interactive Software, Inc.) [Datei ist nicht signiert]
FirewallRules: [{7845786B-2978-4889-A409-350C2BCA9084}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield Bad Company 2\BFBC2Game.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{24C6B76F-EFF5-498E-85C5-CBD0816EAE43}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield Bad Company 2\BFBC2Game.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{72EE9407-50C5-4171-9726-7CFF48B250F6}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Tomb Raider\TombRaider.exe (Square Enix) [Datei ist nicht signiert]
FirewallRules: [{174CC480-987A-425F-91C2-9A56259A0DF0}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Tomb Raider\TombRaider.exe (Square Enix) [Datei ist nicht signiert]
FirewallRules: [{284F6BC3-B422-4420-9B19-BA0A7678B255}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Star Wars Battlefront II\GameData\BattlefrontII.exe () [Datei ist nicht signiert]
FirewallRules: [{5FB922D4-06CA-401A-8260-D45683C57065}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Star Wars Battlefront II\GameData\BattlefrontII.exe () [Datei ist nicht signiert]
FirewallRules: [{A5D09EF2-B270-4B75-B8FB-B76022BBC19F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Grand Theft Auto V\GTAVLauncher.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{FF057547-5ED7-4328-974E-522B894A7BE3}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Grand Theft Auto V\GTAVLauncher.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{FC9A2B3B-8B3F-404C-B424-894740EB987D}] => (Allow) C:\Program Files (x86)\Origin Games\BFH\bfh.exe (Electronic Arts -> Visceral Games)
FirewallRules: [{E3BE6076-5F06-40BD-A2CF-03F34F734453}] => (Allow) C:\Program Files (x86)\Origin Games\BFH\bfh.exe (Electronic Arts -> Visceral Games)
FirewallRules: [{D60E3D96-94C3-4246-AC10-AA5709207887}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\bf4_x86.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{446DCA22-F070-47E5-AC62-3E1517512BF3}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\bf4_x86.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{A19E5AD9-3D74-43D3-A0A2-E79A06AFD3FC}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{448C849B-DE75-4030-8B2E-E35A3FE0077F}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{53973E45-8B85-42F3-A2EC-76E0A6EF6402}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FirewallRules: [{21E76FBF-45B0-4465-9545-D1ABF1BD6D42}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FirewallRules: [{2C1CD89F-AF1F-4E44-87E3-07FE746FD9AE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{A14AF262-96C5-4170-AE96-D87498A88314}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{31E43176-61C6-42E0-B98E-C1143785FE7B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{B64DBE5F-F6E0-4492-A422-A37CC3B4A1D0}] => (Allow) C:\Program Files (x86)\Origin Games\BFH\BFHWebHelper.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{3EE72529-2D84-4281-84D2-80B28F51BC7C}] => (Allow) C:\Program Files (x86)\Origin Games\BFH\BFHWebHelper.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{1AEEB060-4827-4D8D-B0C1-CF61FCC41C0F}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\BF4WebHelper.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{296E2251-6CA2-43B5-B1E7-8A10CC927DB3}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\BF4WebHelper.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{D26F74FD-5367-4199-9F6E-6B1B9B715666}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\BF4X86WebHelper.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{40A83ED3-3FB8-4A4D-8E1E-5534D4FB19DC}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\BF4X86WebHelper.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{1CF1B93F-735A-4DDB-A712-C604FB00209B}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFSP.exe (Ubisoft Entertainment SA -> )
FirewallRules: [{6D049F94-05CF-4627-858C-97D0FB79F222}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFSP.exe (Ubisoft Entertainment SA -> )
FirewallRules: [{FFDA0119-2F70-473B-A58B-C736FA75525D}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFMP.exe (Ubisoft Entertainment SA -> )
FirewallRules: [{9F44D3CA-2BE6-45E1-966E-D03BD48A8DC4}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFMP.exe (Ubisoft Entertainment SA -> )
FirewallRules: [{1ECB1484-FD6E-4EEE-9DFC-8AFEA297F79C}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{A5A4C615-894C-4C9B-960A-0B9D2618CB6F}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{2F5A4C1F-31E8-4AC6-A198-8632F88D177F}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{3AC03663-96D8-40D9-9079-0D30FC310193}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{44860B2B-323A-4EE3-B991-E3DE9B67F31B}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Heroes & Generals\hngsteamlauncher.exe (Reto-Moto ApS -> Reto-Moto ApS)
FirewallRules: [{A84E70C3-EE75-4614-928D-D433F0A3E7DA}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Heroes & Generals\hngsteamlauncher.exe (Reto-Moto ApS -> Reto-Moto ApS)
FirewallRules: [{B3657288-77BE-45EC-AA3D-0BFF8C0CB1AA}] => (Allow) C:\Program Files (x86)\EA Games\Battlefield 2\BF2.exe () [Datei ist nicht signiert]
FirewallRules: [{97FCE45A-FABA-43EB-987C-DBB0EBF53AE6}] => (Allow) C:\Program Files (x86)\EA Games\Battlefield 2\BF2.exe () [Datei ist nicht signiert]
FirewallRules: [{010FAFF5-ECAE-4174-BC3C-DAA11FC54B02}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe (Bethesda Softworks) [Datei ist nicht signiert]
FirewallRules: [{5163836A-B579-498C-AAB9-DC4610A12012}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe (Bethesda Softworks) [Datei ist nicht signiert]
FirewallRules: [{B471E583-4A1D-4F9F-9051-4F9E1526BB5B}] => (Allow) C:\Program Files (x86)\Origin Games\Crysis 3\Bin32\Crysis3.exe (Electronic Arts -> Crytek GmbH)
FirewallRules: [{C44C4085-5C5B-45D3-890E-0C8322DEA0D3}] => (Allow) C:\Program Files (x86)\Origin Games\Crysis 3\Bin32\Crysis3.exe (Electronic Arts -> Crytek GmbH)
FirewallRules: [{4E83F95F-1209-4309-929E-AF6138E6C7C0}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\BFLauncher.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{D8A4A3A7-CD27-44A8-B6C7-A63551344FDB}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\BFLauncher.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{31CAC76E-90C2-4137-A198-A0F1F9130AD4}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\BFLauncher_x86.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{1C7FF7F6-06BB-4F19-B9DC-84FF7893C70A}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\BFLauncher_x86.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{3198C74A-1BE7-4F2B-BC73-962CE2ABF032}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{2E9FE1A2-FF70-44AD-813B-EC6AE89639DD}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{066CD096-A633-48D5-A7F2-9163FF3A658B}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{457C07BD-F71D-4220-B615-2D93A79AF560}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Rise of the Tomb Raider\ROTTR.exe (Square Enix LTD -> Eidos Inc.)
FirewallRules: [{1D3CB893-FBAB-4CF0-9BD9-F55D93116ADE}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Rise of the Tomb Raider\ROTTR.exe (Square Enix LTD -> Eidos Inc.)
FirewallRules: [{5C7D83BF-F882-44C9-8549-4E0F6FF81582}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{2107ADB6-F1FA-4F33-95AB-0B9AE9F019B8}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{BD513455-BC1E-4123-B76B-1A0C07C7D166}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{3CFB6863-C15D-4342-A7E4-A637EDC0954A}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{7C1F8415-B273-40FC-BA7C-6A6E13879EE8}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Argo\argobattleye.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{15BDE539-CB7A-4C0F-9595-56FF788FE3FF}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Argo\argobattleye.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [TCP Query User{F0F3302D-9F31-4D12-BD70-C2092710E6D0}C:\program files (x86)\steam\steamapps\common\argo\argo_x64.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\argo\argo_x64.exe (Bohemia Interactive a.s. -> Bohemia Interactive)
FirewallRules: [UDP Query User{70A0F25E-ADCF-400F-9878-3650C27D25A2}C:\program files (x86)\steam\steamapps\common\argo\argo_x64.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\argo\argo_x64.exe (Bohemia Interactive a.s. -> Bohemia Interactive)
FirewallRules: [{EF6F4429-E7F4-49AD-A033-C64A5A6888FC}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Squad\squad_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{D85B976D-E61A-41B2-AF9E-D4DCBE6D98E6}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Squad\squad_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [TCP Query User{DC4BC6E5-F85C-49CF-AB29-628BD11B461F}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{8166872F-8247-46BF-B964-1459A0A7D94A}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{1C5A2718-2E0A-43DF-A516-62F22D25B897}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{4F5F35BB-A338-4971-A22E-9B1488AEDE0F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{D10B62E2-96BA-4013-A9F9-52D0633B9475}C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (Bluehole, Inc. -> Bluehole GinnoGames, Inc.)
FirewallRules: [UDP Query User{036133FB-517A-49F2-B9C3-1BA7043AA98C}C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (Bluehole, Inc. -> Bluehole GinnoGames, Inc.)
FirewallRules: [{5D51DCF4-4DB0-4695-A3D5-066C27B2B1CC}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{3DFE0CB2-812A-4EA3-905B-14FA61E232E5}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{FB08B02E-F738-4F40-849A-05BF3A45A724}] => (Allow) C:\Program Files (x86)\Origin Games\Dead Space\Dead Space.exe (Electronic Arts, Inc. -> )
FirewallRules: [{6FA5DC6E-E78D-4831-A8A0-864761EFF1BB}] => (Allow) C:\Program Files (x86)\Origin Games\Dead Space\Dead Space.exe (Electronic Arts, Inc. -> )
FirewallRules: [{441B5700-C682-4F30-9699-CDE9903B1BA2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{464EEE5E-AF3D-4E97-924A-C942C4B86138}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{6EC9F7B4-C107-4111-9C5C-3162C136403A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{5828A087-5641-4437-B597-F72C18886A02}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{CAA1B7AC-7EC6-4332-BB26-B155E0F00F11}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 1\bf1Trial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{47D819F2-6531-4B26-867D-74EAEAEA7452}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 1\bf1Trial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{E12D9B0E-BFE9-48E2-A004-FC20AC12AFC4}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 1\bf1.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{149A6144-516A-44F9-B173-E12085C229A6}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 1\bf1.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [TCP Query User{6C53E022-94CA-4CDD-9DAC-9C9FC730070D}C:\program files (x86)\origin games\battlefield 4\bf4.exe] => (Allow) C:\program files (x86)\origin games\battlefield 4\bf4.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [UDP Query User{3E997974-8BF9-437D-994C-AC5F7869E689}C:\program files (x86)\origin games\battlefield 4\bf4.exe] => (Allow) C:\program files (x86)\origin games\battlefield 4\bf4.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{21F85352-C72F-4DE9-ADB6-35D3663CE8E1}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 1\bf1Trial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{E18A82CA-0DD7-4F70-9741-D797A0202A6B}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 1\bf1Trial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{FFC782D5-8DB1-45CE-858B-5D1B23C0D1F4}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 1\bf1.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{897D7554-70AD-4392-ADA1-A21C604D5EA3}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 1\bf1.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{D2B9B913-C7E2-4474-A7B5-5F79E0C6C218}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{04A1AA1B-4B51-483F-900F-7E571B8C1BAF}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{635BAC2A-14DB-4FD6-BCCF-22E0C28D4F6A}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{FFC3FE65-2F78-47D8-879D-63B0346037AF}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{3B6250EB-1701-4DA5-8F87-60A0AD916EA7}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield Bad Company 2\BFBC2Game.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{0DA4FB86-6E68-4940-A63B-A1A2B57554FF}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield Bad Company 2\BFBC2Game.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [TCP Query User{D6AC88F0-E93E-4E83-9906-0BC85C7E48B9}C:\program files (x86)\origin games\battlefield 3\bf3.exe] => (Allow) C:\program files (x86)\origin games\battlefield 3\bf3.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [UDP Query User{A270ECBE-9E13-4A23-A910-6FE943BFDBE8}C:\program files (x86)\origin games\battlefield 3\bf3.exe] => (Allow) C:\program files (x86)\origin games\battlefield 3\bf3.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{43345509-29A2-4D90-B74D-BE45D585EE13}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (Bluehole, Inc. -> PUBG Corporation )
FirewallRules: [{8F50B107-DEE3-492A-AF48-95187372ACAD}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (Bluehole, Inc. -> PUBG Corporation )
FirewallRules: [TCP Query User{1EDF3388-255A-4BD8-A2E5-FB7AFC7028F7}C:\program files (x86)\ubisoft\farcry 3\bin\farcry3_d3d11.exe] => (Allow) C:\program files (x86)\ubisoft\farcry 3\bin\farcry3_d3d11.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment)
FirewallRules: [UDP Query User{771DF4CD-8F0E-4747-B663-9113CAB0D9F3}C:\program files (x86)\ubisoft\farcry 3\bin\farcry3_d3d11.exe] => (Allow) C:\program files (x86)\ubisoft\farcry 3\bin\farcry3_d3d11.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment)
FirewallRules: [{419C1DBD-29EA-40AE-9DED-9D3AB274FB6C}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Skyrim Special Edition\SkyrimSELauncher.exe (Bethesda Softworks) [Datei ist nicht signiert]
FirewallRules: [{7DB61CF1-1575-41A5-8867-0DB58094DA48}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Skyrim Special Edition\SkyrimSELauncher.exe (Bethesda Softworks) [Datei ist nicht signiert]
FirewallRules: [{5F2D5FD8-B241-437F-88BB-76C53CBC383E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\sandstorm\InsurgencyEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{6F9FA387-647E-4FE4-9DD5-693785C3E81B}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\sandstorm\InsurgencyEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{3FB8B42A-5FC6-4D81-8380-3C36C41B5BD3}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\sandstorm\Insurgency.exe (New World Interactive LLC -> Epic Games, Inc.)
FirewallRules: [{6AC9DE84-F22C-43B3-82DF-178AC3E3ED7F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\sandstorm\Insurgency.exe (New World Interactive LLC -> Epic Games, Inc.)
FirewallRules: [TCP Query User{41D69DBD-4DF6-4983-B36F-55F88A087A98}C:\program files (x86)\steam\steamapps\common\sandstorm\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\sandstorm\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe (New World Interactive LLC -> New World Interactive)
FirewallRules: [UDP Query User{22202AB5-634F-4F8F-AC6A-1BE70329D49E}C:\program files (x86)\steam\steamapps\common\sandstorm\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\sandstorm\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe (New World Interactive LLC -> New World Interactive)
FirewallRules: [TCP Query User{738D7D1F-EDC1-4A7D-B218-DD244FF1CE62}C:\program files (x86)\ubisoft\ubisoft game launcher\games\assassin's creed iv black flag\ac4bfsp.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\games\assassin's creed iv black flag\ac4bfsp.exe (Ubisoft Entertainment SA -> )
FirewallRules: [UDP Query User{4B90B797-9CCF-4824-89E1-20767AA1D66D}C:\program files (x86)\ubisoft\ubisoft game launcher\games\assassin's creed iv black flag\ac4bfsp.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\games\assassin's creed iv black flag\ac4bfsp.exe (Ubisoft Entertainment SA -> )
FirewallRules: [{6E196F1D-21F5-49DE-A7B8-80E6E01D78BE}] => (Allow) c:\program files (x86)\opera\67.0.3575.79\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{CA6842BA-EB50-4C8C-9836-469B15134106}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{5CE17506-3A89-4F80-B115-DDD1C4EEA34C}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E3DD4781-E129-4FDB-9CF7-71D924458B76}] => (Allow) c:\program files (x86)\opera\68.0.3618.63\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{69A1CCAA-237A-4B1E-944D-9967FC745388}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> AVAST Software)
==================== Wiederherstellungspunkte =========================
11-05-2020 11:48:07 Windows Update
==================== Fehlerhafte Geräte im Gerätemanager ============
==================== Fehlereinträge in der Ereignisanzeige: ========================
Applikationsfehler:
==================
Error: (05/11/2020 05:57:54 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT-AUTORITÄT)
Description: Product: Avast Update Helper -- Error 1316. Das angegebene Konto ist bereits vorhanden.
Error: (05/11/2020 05:54:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: OriginWebHelperService.exe, Version: 10.5.56.33908, Zeitstempel: 0x5dd474e2
Name des fehlerhaften Moduls: OriginWebHelperService.exe, Version: 10.5.56.33908, Zeitstempel: 0x5dd474e2
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00098210
ID des fehlerhaften Prozesses: 0x67c
Startzeit der fehlerhaften Anwendung: 0x01d627ac0d501552
Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\Origin\OriginWebHelperService.exe
Pfad des fehlerhaften Moduls: C:\Program Files (x86)\Origin\OriginWebHelperService.exe
Berichtskennung: b0da1b5f-939f-11ea-84a4-d850e63e5fa2
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (05/11/2020 05:12:30 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT-AUTORITÄT)
Description: Product: Avast Update Helper -- Error 1316. Das angegebene Konto ist bereits vorhanden.
Error: (05/11/2020 04:19:08 PM) (Source: ESENT) (EventID: 489) (User: )
Description: taskhostex (2632) Versuch, Datei "C:\Users\Marcel\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat" für den Lesezugriff zu öffnen, ist mit Systemfehler 32 (0x00000020): "Der Prozess kann nicht auf die Datei zugreifen, da sie von einem anderen Prozess verwendet wird. " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Öffnen von Dateien.
Error: (05/11/2020 04:05:35 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT-AUTORITÄT)
Description: Product: Avast Update Helper -- Error 1316. Das angegebene Konto ist bereits vorhanden.
Error: (05/11/2020 03:21:42 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT-AUTORITÄT)
Description: Product: Avast Update Helper -- Error 1316. Das angegebene Konto ist bereits vorhanden.
Error: (05/11/2020 02:13:18 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT-AUTORITÄT)
Description: Product: Avast Update Helper -- Error 1316. Das angegebene Konto ist bereits vorhanden.
Error: (05/11/2020 01:12:26 PM) (Source: ESENT) (EventID: 455) (User: )
Description: DllHost (10384) WebCacheLocal: Fehler -1032 (0xfffffbf8) beim Öffnen von Protokolldatei C:\Users\Marcel\AppData\Local\Microsoft\Windows\WebCache\V01.log.
Systemfehler:
=============
Error: (05/11/2020 05:56:08 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Origin Web Helper Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (05/11/2020 05:50:16 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x8007045b fehlgeschlagen: 2020-02 Sicherheits- und Qualitätsrollup für .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 für Windows 8.1 und Server 2012 R2 für x64 (KB4538124)
Error: (05/11/2020 05:50:16 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x8007045b fehlgeschlagen: 2020-02 Sicherheitsupdate für Adobe Flash Player für Windows 8.1 für x64-basierte Systeme (KB4537759)
Error: (05/11/2020 12:09:54 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80246013 fehlgeschlagen: 2020-03 – Monatliches Sicherheitsqualitätsrollup für Windows 8.1 für x64-basierte Systeme (KB4541509)
Error: (05/11/2020 12:09:54 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80246013 fehlgeschlagen: 2020-02 Sicherheits- und Qualitätsrollup für .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 für Windows 8.1 und Server 2012 R2 für x64 (KB4538124)
Error: (05/11/2020 11:58:32 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Steam Client Service" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Dienst antwortete nicht rechtzeitig auf die Start- oder Steuerungsanforderung.
Error: (05/11/2020 11:58:32 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Steam Client Service erreicht.
Error: (05/11/2020 11:53:17 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80246013 fehlgeschlagen: 2020-02 Sicherheitsupdate für Adobe Flash Player für Windows 8.1 für x64-basierte Systeme (KB4537759)
Windows Defender:
===================================
Date: 2016-06-11 13:19:31.350
Description:
Die Windows Defender-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {54CA58D2-218F-4A00-8EBD-28F53FD146DE}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Date: 2016-06-11 12:35:57.442
Description:
Die Windows Defender-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {1E1B4722-54E4-4C62-B54B-CCA233CA37BF}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
CodeIntegrity:
===================================
Date: 2019-01-15 16:34:57.785
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.
Date: 2019-01-15 16:34:57.561
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.
Date: 2019-01-15 16:34:57.337
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.
Date: 2019-01-15 16:34:57.114
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.
Date: 2019-01-15 16:34:56.890
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.
Date: 2019-01-15 16:34:56.666
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.
Date: 2019-01-15 16:34:56.443
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.
Date: 2019-01-15 16:34:56.220
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.
==================== Speicherinformationen ===========================
BIOS: American Megatrends Inc. 0501 07/31/2013
Hauptplatine: ASUSTeK COMPUTER INC. B85M-G
Prozessor: Intel(R) Core(TM) i5-4570 CPU @ 3.20GHz
Prozentuale Nutzung des RAM: 21%
Installierter physikalischer RAM: 16322.76 MB
Verfügbarer physikalischer RAM: 12871.51 MB
Summe virtueller Speicher: 18754.76 MB
Verfügbarer virtueller Speicher: 14423.86 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:931.17 GB) (Free:213.27 GB) NTFS
Drive d: (Märchenspiele 19) (CDROM) (Total:0.67 GB) (Free:0 GB) CDFS
\\?\Volume{bb251cfa-ecc8-11e3-824c-806e6f6e6963}\ () (Fixed) (Total:0.34 GB) (Free:0.08 GB) NTFS
==================== MBR & Partitionstabelle ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: C1D9E21B)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931.2 GB) - (Type=07 NTFS)
==================== Ende von Addition.txt =======================
|
|
11.05.2020, 17:57
| #2 |
| /// Helfer-Team    | PC plötzlich sehr langsam Führe AdwCleaner gemäß der bebilderten Anleitung aus und poste abschließend die Logdatei.
__________________Führe Malwarebytes' AntiMalware (MBAM) gemäß der bebilderten Anleitung aus und poste abschließend die Logdatei.
__________________ |
|
12.05.2020, 09:59
| #3 |
| | PC plötzlich sehr langsam Vielen Dank schonmal für deine Hilfe
__________________Code:
ATTFilter # -------------------------------
# Malwarebytes AdwCleaner 8.0.4.0
# -------------------------------
# Build: 04-03-2020
# Database: 2020-04-08.2 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 05-12-2020
# Duration: 00:00:03
# OS: Windows 8.1
# Cleaned: 7
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
Deleted C:\ProgramData\7b24ec7cc000461ebe26d116b88142c8
***** [ Files ] *****
Deleted C:\Users\Marcel\Favorites\Booking.com.url
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION|StormWatchApp.exe
Deleted HKCU\Software\Check Point Software Technologies LTD
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID|{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
Deleted HKLM\Software\Wow6432Node\Check Point Software Technologies LTD
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID|{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete IFEO
[+] Delete Prefetch
[+] Delete Tracing Keys
[+] Reset Chromium Policies
[+] Reset IE Policies
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [2074 octets] - [12/05/2020 10:34:00]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
Code:
ATTFilter Malwarebytes
www.malwarebytes.com
-Protokolldetails-
Scan-Datum: 12.05.20
Scan-Zeit: 10:56
Protokolldatei: 6b2b7022-942e-11ea-b54c-d850e63e5fa2.json
-Softwaredaten-
Version: 4.1.0.56
Komponentenversion: 1.0.896
Version des Aktualisierungspakets: 1.0.23708
Lizenz: Testversion
-Systemdaten-
Betriebssystem: Windows 8.1
CPU: x64
Dateisystem: NTFS
Benutzer: MARCELS-PC\Marcel
-Scan-Übersicht-
Scan-Typ: Bedrohungs-Scan
Scan gestartet von: Manuell
Ergebnis: Abgeschlossen
Gescannte Objekte: 247220
Erkannte Bedrohungen: 0
In die Quarantäne verschobene Bedrohungen: 0
Abgelaufene Zeit: 0 Min., 31 Sek.
-Scan-Optionen-
Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristik: Aktiviert
PUP: Erkennung
PUM: Erkennung
-Scan-Details-
Prozess: 0
(keine bösartigen Elemente erkannt)
Modul: 0
(keine bösartigen Elemente erkannt)
Registrierungsschlüssel: 0
(keine bösartigen Elemente erkannt)
Registrierungswert: 0
(keine bösartigen Elemente erkannt)
Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)
Daten-Stream: 0
(keine bösartigen Elemente erkannt)
Ordner: 0
(keine bösartigen Elemente erkannt)
Datei: 0
(keine bösartigen Elemente erkannt)
Physischer Sektor: 0
(keine bösartigen Elemente erkannt)
WMI: 0
(keine bösartigen Elemente erkannt)
(end)
|
|
12.05.2020, 10:00
| #4 |
| /// Winkelfunktion /// TB-Süch-Tiger™  | PC plötzlich sehr langsam Wenn eine Windowskiste lange offline war, dann werden etliche Windows Updates fällig! Sry aber so langsam nervt es, dass bei jeder Gelegenheit und jeder Auffälligkeit von Schädlingen gesprochen wird. WIE BITTE soll denn Schädlinge deinen Rechner befallen obwohl dieser in dieser "einigen Zeit" doch nicht genutzt wurde weil er ausgeschaltet war? Windows 8.1 wird zwar noch supportet, dennoch solltest du bei Gelegenheit auf Windows 10 umsatteln.
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
12.05.2020, 10:13
| #5 |
| /// Helfer-Team | PC plötzlich sehr langsam Mit Updates hat Cosinus recht. Auch mit dem Update auf W10. Der Rechner sollte damit keine Probleme haben. Eine weitere sinnlose Software ist Avast. Die kann runter. Der Windows-Defender erfüllt diese Aufgabe heute sehr gut, sodass von weiteren Programmen abgeraten wird. Führe Emsisoft Emergency Kit gemäß der bebilderten Anleitung aus und poste abschließend die Logdatei. Das ist zur Sicherheit.
__________________ LG Der Felix Keine Hilfe per PN und E-Mail |
|
12.05.2020, 12:49
| #6 | |
| | PC plötzlich sehr langsamZitat:
Wenn ich das Problem ganz alleine hätte lösen können hätte ich mich mit Sicherheit nicht hier gemeldet und um Hilfe gebeten. Und wie du sehen kannst hat eins der Programme tatsächlich etwas gefunden. Sorry aber ich finde es nicht so toll mich hier einfach so anzumachen. |
|
12.05.2020, 12:52
| #7 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | PC plötzlich sehr langsam Nur weil da Adwaremüll gefunden wurde, ist das aber noch lange nicht die Ursache. Und Und wenn der Rechner lange aus war, kann auch keine Infektion stattfinden und somit ein weiteres Argument dafür, dass Schädlinge nicht die Ursache sein können. Wie gesagt, es nervt langsam dass jeder hier in jedem was auch immer für ein Problem Schädlinge als erwiesen ansieht. Es muss doch klar sein, dass nach langer Standzeit die Updates im Dreieck springen
__________________ Logfiles bitte immer in CODE-Tags posten |
|
12.05.2020, 13:09
| #8 |
| | PC plötzlich sehr langsamCode:
ATTFilter Emsisoft Emergency Kit - Version 2020.5
Letztes Update: 16.11.2014 15:34:46
Eigene MARCELS-PC\Marcel
MARCELS-PC
Windows 8.1x64
Scan Einstellungen:
Scan Methode: malware
Objekte: Rootkits, Speicher, Traces, Files
PUPs-Erkennung: An
Archiv Scan: Aus
Scan mail archives: Aus
ADS Scan: An
Direkter Festplattenzugriff: Aus
Scan Beginn: 12.05.2020 13:58:55
Gescannt: 95285
Gefunden 0
Scan-Ende: 12.05.2020 14:08:12
Scan-Zeit: 0:09:17
|
|
12.05.2020, 13:23
| #9 |
| /// Helfer-Team | PC plötzlich sehr langsam Da ist nix  Deinstalliere noch den Avast und aktiviere den Defender. Ansonsten sollte der Rechner wieder normal laufen. Hinterher nochmals die FRST laufen lassen und beide Logs posten.
__________________ LG Der Felix Keine Hilfe per PN und E-Mail |
|
12.05.2020, 19:38
| #10 |
| | PC plötzlich sehr langsam Avast hab ich runtergeschmissen. Danke für deine Hilfe. Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 11-05-2020
durchgeführt von Marcel (Administrator) auf MARCELS-PC (ASUS All Series) (12-05-2020 16:02:41)
Gestartet von C:\Users\Marcel\Desktop
Geladene Profile: Marcel
Platform: Windows 8.1 (Update) (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: Opera
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
(AVAST Software s.r.o. -> ) C:\Program Files (x86)\AVAST Software\Browser\AvastBrowserUninstall.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.154.333\AvastBrowserCrashHandler.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.154.333\AvastBrowserCrashHandler64.exe
(Digital Wave Ltd -> Digital Wave Ltd.) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
(Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCui.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.22013_x64__8wekyb3d8bbwe\livecomm.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\68.0.3618.63\opera.exe <17>
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\68.0.3618.63\opera_crashreporter.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Piriform Software Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe <2>
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [WindowsDefender] => "%ProgramFiles%\Windows Defender\MSASCuiL.exe"
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [601784 2019-07-17] (Razer USA Ltd. -> Razer Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-12-19] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Opera Browser Assistant] => c:\program files (x86)\opera\assistant\browser_assistant.exe [3004440 2020-04-29] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-594468629-384485566-424415787-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3137816 2019-11-19] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-594468629-384485566-424415787-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-14] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-594468629-384485566-424415787-1001\...\Run: [AvastBrowserAutoLaunch_501C78E7EC65A0AA0B8A8E0454EA6768] => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1853360 2020-04-19] (Avast Software s.r.o. -> AVAST Software)
HKU\S-1-5-21-594468629-384485566-424415787-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\STARWA~1.SCR
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\81.0.4053.113\Installer\chrmstp.exe [2020-05-11] (Avast Software s.r.o. -> AVAST Software)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.71\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Beschränkung <==== ACHTUNG
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {099976BE-B187-46B8-AD64-7801728153A7} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [662464 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {146876C0-EA59-458A-9372-574D1CF9477B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\Program Files\Windows Defender\\MpCmdRun.exe [410792 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {24BFEF05-230A-4822-8C1A-76D04DF20713} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-14] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {2886FF05-7312-42C5-950A-81EDD9A4A7FC} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [569416 2016-02-23] (Apple Inc. -> Apple Inc.)
Task: {2F87D588-2069-4520-9FDC-3B45814AD1EE} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1853360 2020-04-19] (Avast Software s.r.o. -> AVAST Software)
Task: {31A15378-2CB7-45EA-BB3E-9CEEB4406450} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_371_pepper.exe [1454136 2020-05-12] (Adobe Inc. -> Adobe)
Task: {397E4425-66EE-4F1E-BEDA-268A4BC54C32} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe [469952 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6887B7AE-5218-4A0F-AD71-F1545FBA270A} - System32\Tasks\{0E0007BD-37E1-4757-95E7-23C4F2CE52D1} => c:\program files (x86)\opera\launcher.exe [1517592 2020-04-29] (Opera Software AS -> Opera Software)
Task: {6CDCEF21-A47F-4C18-9935-50BD2AAFE06C} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_371_Plugin.exe [1458232 2020-05-12] (Adobe Inc. -> Adobe)
Task: {8955A44A-02B2-4A47-8021-0C78A7DD1FFD} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [976832 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {972672A7-FA5A-47DB-A877-40B9C139D5DC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\Program Files\Windows Defender\\MpCmdRun.exe [410792 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {9CC793D9-4CD6-4A41-B757-EB4822066E64} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [522688 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A224B898-7153-40B9-ADE9-C7DC1BF27C2F} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [510912 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A2369954-DED0-4E92-9053-5030884A0470} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-09-25] (AVAST Software s.r.o. -> AVAST Software)
Task: {A313AE4F-2D6E-4B26-8D6E-C7D0A34EC776} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [979024 2019-02-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {A62EB4BE-9EEC-4A58-8F9D-8A1EC63DE193} - System32\Tasks\{D4EC168F-4292-4CA2-B6C7-5ABEEC1A2189} => C:\Windows\system32\pcalua.exe -a D:\setup.exe -d D:\
Task: {AFA174D5-31D8-4E92-BFC4-BA33564C3933} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [662464 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {BDE613CE-5E5C-42F5-8F47-A30836BDA4B1} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [979024 2019-02-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {C66C06D6-37D7-424F-A1F5-363C648B1580} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [757184 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CD22FD52-DACB-4842-B52C-4CF8963CA9A6} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1853360 2020-04-19] (Avast Software s.r.o. -> AVAST Software)
Task: {D10A69A6-273B-486B-8A59-31003BB3D561} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2069952 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D6B3A04A-CEEA-4CB1-87AB-E9A03AC23E34} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-14] (Piriform Software Ltd -> Piriform Ltd)
Task: {DE36B454-E670-48C0-9FBF-3A286DAD95D4} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-09-25] (AVAST Software s.r.o. -> AVAST Software)
Task: {E19E8E03-895B-4DDD-A2BC-2374B54B68EF} - System32\Tasks\Opera scheduled assistant Autoupdate 1589191738 => c:\program files (x86)\opera\launcher.exe [1517592 2020-04-29] (Opera Software AS -> Opera Software)
Task: {E26327E2-48FB-48EF-BC11-E5B6F8478B1A} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-05-12] (Adobe Inc. -> Adobe)
Task: {E68A913E-A380-4038-B522-89F3F8BB23FE} - System32\Tasks\Opera scheduled Autoupdate 1401989751 => c:\program files (x86)\opera\launcher.exe [1517592 2020-04-29] (Opera Software AS -> Opera Software)
Task: {F13D2E7E-14B2-4AC5-A0FF-538157C45249} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\Program Files\Windows Defender\\MpCmdRun.exe [410792 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {F29FB91D-B899-4DFA-BFD7-A8FA9F315403} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\Program Files\Windows Defender\\MpCmdRun.exe [410792 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Winsock: Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 07 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.115.11
Tcpip\..\Interfaces\{367711D4-82B7-447D-88E0-ABC8C471CAD1}: [DhcpNameServer] 192.168.115.11
Internet Explorer:
==================
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=AV01
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
SearchScopes: HKLM-x32 -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-594468629-384485566-424415787-1001 -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2019-09-02] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_161\bin\ssv.dll [2018-03-31] (Oracle America, Inc. -> Oracle Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2019-10-14] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_161\bin\jp2ssv.dll [2018-03-31] (Oracle America, Inc. -> Oracle Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2017-07-18] (Microsoft Corporation -> Microsoft Corporation)
FireFox:
========
FF HKU\S-1-5-21-594468629-384485566-424415787-1001\...\Firefox\Extensions: [{B64D9B05-48E1-4CEB-BF58-E0643994E900}] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff => nicht gefunden
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_371.dll [2020-05-12] (Adobe Inc. -> )
FF Plugin: @esn/npbattlelog,version=2.5.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.1\npbattlelogx64.dll [Keine Datei]
FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll [Keine Datei]
FF Plugin: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelogx64.dll [2015-04-30] (Electronic Arts -> EA Digital Illusions CE AB)
FF Plugin: @java.com/DTPlugin,version=11.161.2 -> C:\Program Files\Java\jre1.8.0_161\bin\dtplugin\npDeployJava1.dll [2018-03-31] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.161.2 -> C:\Program Files\Java\jre1.8.0_161\bin\plugin2\npjp2.dll [2018-03-31] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_371.dll [2020-05-12] (Adobe Inc. -> )
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB) [Datei ist nicht signiert]
FF Plugin-x32: @esn/npbattlelog,version=2.4.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.4.0\npbattlelog.dll [Keine Datei]
FF Plugin-x32: @esn/npbattlelog,version=2.5.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.1\npbattlelog.dll [Keine Datei]
FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll [Keine Datei]
FF Plugin-x32: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelog.dll [2015-04-30] (Electronic Arts -> EA Digital Illusions CE AB)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2014-06-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin HKU\S-1-5-21-594468629-384485566-424415787-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Marcel\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-06-11] (Unity Technologies ApS -> Unity Technologies ApS)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Marcel\AppData\Local\Google\Chrome\User Data\Default [2020-05-11]
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Extension: (Avast SafePrice | Vergleich, Angebote, Gutscheine) - C:\Users\Marcel\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2019-03-10]
CHR Extension: (Heroes & Generals) - C:\Users\Marcel\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbophcdhblbipoaacgchllkobdaolpge [2015-07-24]
CHR Extension: (Avast Online Security) - C:\Users\Marcel\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2019-03-10]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Marcel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-05-01]
CHR Extension: (Chrome Media Router) - C:\Users\Marcel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-03-10]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <nicht gefunden>
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl]
Opera:
=======
OPR Notifications: hxxps://www.razer.com; hxxps://www.zalon.de
OPR Extension: (Honey) - C:\Users\Marcel\AppData\Roaming\Opera Software\Opera Stable\Extensions\bdbghbgbindbkaainmmmekddaokgbffn [2018-04-12]
OPR Extension: (Amazon Assistant for Opera) - C:\Users\Marcel\AppData\Roaming\Opera Software\Opera Stable\Extensions\mmmbddcnnndpbdflpccgcknaaabgldak [2020-05-11]
OPR Extension: (YouTube Unblocker) - C:\Users\Marcel\AppData\Roaming\Opera Software\Opera Stable\Extensions\npnkeeiehehhefofiekoflfedgehcdhl [2016-09-13]
OPR Extension: (Adblock Plus - free ad blocker) - C:\Users\Marcel\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2020-05-11]
==================== Dienste (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-03-02] (Apple Inc. -> Apple Inc.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe [936728 2013-07-04] (ASUSTeK Computer Inc. -> )
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-09-25] (AVAST Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-09-25] (AVAST Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\81.0.4053.113\elevation_service.exe [954600 2020-04-19] (Avast Software s.r.o. -> AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [6875688 2018-06-22] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3058256 2019-02-13] (Microsoft Corporation -> Microsoft Corporation)
R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [391656 2016-07-22] (Digital Wave Ltd -> Digital Wave Ltd.)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2019-06-21] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 HnGSteamService; C:\Program Files (x86)\Steam\steamapps\common\Heroes & Generals\hngservice.exe [788264 2020-05-11] (Reto-Moto ApS -> Reto-Moto ApS)
R3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6933272 2020-05-12] (Malwarebytes Inc -> Malwarebytes)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [522688 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [522688 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2466608 2019-11-19] (Electronic Arts, Inc. -> Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3344176 2019-11-19] (Electronic Arts, Inc. -> Electronic Arts)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2017-06-27] (Even Balance, Inc. -> )
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvTelemetry\plugins" -r
===================== Treiber (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2013-07-04] (ASUSTeK Computer Inc. -> )
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [130688 2016-07-22] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [153312 2020-05-12] (Malwarebytes Corporation -> Malwarebytes)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [214496 2020-05-12] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [195432 2020-05-12] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [73368 2020-05-12] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248968 2020-05-12] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\Windows\system32\DRIVERS\mwac.sys [125088 2020-05-12] (Malwarebytes Inc -> Malwarebytes)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [31168 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [59240 2017-12-15] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\drivers\nvvhci.sys [75600 2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation)
R3 RTL8168; C:\Windows\system32\DRIVERS\Rt630x64.sys [591360 2013-06-18] (Microsoft Windows -> Realtek )
R3 rzendpt; C:\Windows\System32\drivers\rzendpt.sys [50392 2015-08-13] (Razer Inc. -> Razer Inc)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [164992 2016-07-22] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
S3 xb1usb; C:\Windows\System32\drivers\xb1usb.sys [42760 2016-02-23] (Windows Central Build Account - X -> Microsoft Corporation)
S3 cleanhlp; \??\C:\EEK\bin\cleanhlp64.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat (erstellte) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2020-05-12 13:58 - 2020-05-12 13:58 - 000000000 ____D C:\ProgramData\Emsisoft
2020-05-12 13:50 - 2020-05-12 13:53 - 348823216 _____ C:\Users\Marcel\Desktop\EmsisoftEmergencyKit (1).exe
2020-05-12 10:59 - 2020-05-12 10:59 - 000001401 _____ C:\Users\Marcel\Desktop\mbam.txt
2020-05-12 10:48 - 2020-05-12 10:48 - 000248968 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2020-05-12 10:48 - 2020-05-12 10:48 - 000214496 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2020-05-12 10:48 - 2020-05-12 10:48 - 000001936 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2020-05-12 10:31 - 2020-05-12 10:34 - 000000000 ____D C:\AdwCleaner
2020-05-12 10:30 - 2020-05-12 10:30 - 008196784 _____ (Malwarebytes) C:\Users\Marcel\Desktop\adwcleaner_8.0.4.exe
2020-05-11 18:34 - 2020-05-11 18:34 - 000000000 ____D C:\Users\Marcel\AppData\Local\SquadGame
2020-05-11 18:24 - 2020-05-12 16:04 - 000026405 _____ C:\Users\Marcel\Desktop\FRST.txt
2020-05-11 18:24 - 2020-05-12 16:03 - 000000000 ____D C:\FRST
2020-05-11 18:22 - 2020-05-11 18:22 - 002285568 _____ (Farbar) C:\Users\Marcel\Desktop\FRST64.exe
2020-05-11 12:09 - 2020-05-11 12:09 - 000004054 _____ C:\Windows\system32\Tasks\Opera scheduled assistant Autoupdate 1589191738
2020-05-11 11:51 - 2020-05-11 11:51 - 001224776 _____ (Adobe Inc) C:\Users\Marcel\Downloads\flashplayer32ppau_a_install.exe
==================== Ein Monat (geänderte) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2020-05-12 14:20 - 2014-11-16 16:32 - 000000000 ____D C:\EEK
2020-05-12 14:14 - 2016-10-16 12:32 - 000004342 _____ C:\Windows\system32\Tasks\Adobe Flash Player Updater
2020-05-12 14:14 - 2016-06-06 21:01 - 000004486 _____ C:\Windows\system32\Tasks\Adobe Flash Player PPAPI Notifier
2020-05-12 14:14 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2020-05-12 14:14 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\system32\Macromed
2020-05-12 13:27 - 2014-06-05 18:07 - 000003594 _____ C:\Windows\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-594468629-384485566-424415787-1001
2020-05-12 13:14 - 2018-03-26 22:48 - 000004522 _____ C:\Windows\system32\Tasks\Adobe Flash Player NPAPI Notifier
2020-05-12 12:25 - 2014-09-20 13:43 - 000000000 ____D C:\ProgramData\NVIDIA
2020-05-12 12:04 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\AppReadiness
2020-05-12 11:50 - 2013-08-22 17:36 - 000000000 ___HD C:\Program Files\WindowsApps
2020-05-12 11:48 - 2013-08-22 17:20 - 000000000 ____D C:\Windows\CbsTemp
2020-05-12 10:49 - 2019-09-02 05:24 - 000073368 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2020-05-12 10:49 - 2019-09-02 05:23 - 000195432 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2020-05-12 10:49 - 2019-09-02 05:23 - 000125088 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2020-05-12 10:48 - 2019-09-02 05:23 - 000001924 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-05-12 10:48 - 2019-09-02 05:23 - 000001924 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2020-05-12 10:47 - 2019-09-02 05:23 - 000153312 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2020-05-12 10:41 - 2014-06-05 18:03 - 000000000 ___DO C:\Users\Marcel\SkyDrive
2020-05-12 10:35 - 2013-08-22 16:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-05-12 10:34 - 2013-08-22 15:25 - 000524288 ___SH C:\Windows\system32\config\BBI
2020-05-12 10:29 - 2014-06-05 19:34 - 000003942 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{79717811-181B-47D1-9CBE-43C89F9ACFAF}
2020-05-12 01:48 - 2016-06-13 20:36 - 000000000 ____D C:\Users\Marcel\AppData\Local\CrashDumps
2020-05-12 01:41 - 2014-08-21 22:37 - 000000000 ____D C:\Program Files (x86)\Steam
2020-05-11 18:34 - 2018-06-07 18:14 - 000000000 ____D C:\Users\Marcel\AppData\Roaming\EasyAntiCheat
2020-05-11 18:34 - 2017-07-03 15:11 - 000000000 ____D C:\Users\Marcel\AppData\Local\UnrealEngine
2020-05-11 18:10 - 2014-11-18 20:31 - 000025088 ___SH C:\Users\Marcel\Desktop\Thumbs.db
2020-05-11 17:58 - 2014-06-05 17:56 - 001769264 _____ C:\Windows\system32\PerfStringBackup.INI
2020-05-11 17:58 - 2013-08-23 01:24 - 000758136 _____ C:\Windows\system32\perfh007.dat
2020-05-11 17:58 - 2013-08-23 01:24 - 000156398 _____ C:\Windows\system32\perfc007.dat
2020-05-11 17:58 - 2013-08-22 15:36 - 000000000 ____D C:\Windows\Inf
2020-05-11 17:51 - 2014-06-05 19:35 - 000000000 ____D C:\Program Files (x86)\Opera
2020-05-11 17:50 - 2014-06-05 19:05 - 000000000 ____D C:\Windows\system32\MRT
2020-05-11 17:48 - 2014-06-05 19:05 - 121542864 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2020-05-11 13:41 - 2016-10-15 06:51 - 000000000 ___HD C:\Program Files\Common Files\EAInstaller
2020-05-11 13:41 - 2014-06-05 21:33 - 000000000 ____D C:\Program Files (x86)\Origin Games
2020-05-11 13:40 - 2017-07-10 23:18 - 000000000 ____D C:\Program Files (x86)\Grey Box
2020-05-11 13:39 - 2014-06-05 20:31 - 000000000 ____D C:\Program Files (x86)\Google
2020-05-11 13:38 - 2014-06-22 12:12 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2020-05-11 13:38 - 2014-06-05 19:35 - 000000000 ____D C:\Users\Marcel\AppData\Local\Opera Software
2020-05-11 12:26 - 2019-02-04 14:55 - 000000000 ____D C:\Users\Marcel\Desktop\Initiativbewerbung Afrikaveranstalter
2020-05-11 12:25 - 2018-12-11 14:02 - 000000000 ____D C:\Users\Marcel\Desktop\Bewerbung Reisebüro
2020-05-11 12:10 - 2018-09-25 16:53 - 000002433 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2020-05-11 12:09 - 2019-04-14 12:59 - 000003732 _____ C:\Windows\system32\Tasks\Avast Secure Browser Heartbeat Task (Hourly)
2020-05-11 12:09 - 2019-04-14 12:59 - 000003150 _____ C:\Windows\system32\Tasks\Avast Secure Browser Heartbeat Task (Logon)
2020-05-11 12:09 - 2018-09-25 16:53 - 000002398 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2020-05-11 12:09 - 2018-09-25 16:53 - 000002398 _____ C:\ProgramData\Desktop\Avast Secure Browser.lnk
2020-05-11 12:09 - 2017-08-03 20:44 - 000003872 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1401989751
2020-05-11 12:08 - 2017-06-29 22:01 - 000001092 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera-Browser.lnk
2020-05-11 11:59 - 2014-10-28 09:32 - 000000000 ____D C:\Users\Marcel\AppData\Local\Adobe
2020-05-11 11:52 - 2014-06-06 18:43 - 000000000 ____D C:\ProgramData\AVAST Software
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========
2014-06-06 19:34 - 2014-06-06 19:34 - 000000035 _____ () C:\Users\Marcel\AppData\Roaming\WB.CFG
==================== SigCheck ============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
LastRegBack: 2020-05-11 13:01
==================== Ende von FRST.txt ========================
Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 11-05-2020
durchgeführt von Marcel (12-05-2020 16:06:07)
Gestartet von C:\Users\Marcel\Desktop
Windows 8.1 (Update) (X64) (2014-06-05 16:02:14)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-594468629-384485566-424415787-500 - Administrator - Disabled)
Gast (S-1-5-21-594468629-384485566-424415787-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-594468629-384485566-424415787-1003 - Limited - Enabled)
Marcel (S-1-5-21-594468629-384485566-424415787-1001 - Administrator - Enabled) => C:\Users\Marcel
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
7-Zip 16.02 (HKLM-x32\...\7-Zip) (Version: 16.02 - Igor Pavlov)
7-Zip 19.00 (HKLM-x32\...\{23170F69-40C1-2701-1900-000001000000}) (Version: 19.00.00.0 - Igor Pavlov)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.371 - Adobe)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.371 - Adobe)
Apple Application Support (32-Bit) (HKLM-x32\...\{D4B07658-F443-4445-A261-E643996E139D}) (Version: 4.3.2 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{A6B0442B-E159-444B-B49D-6B9AC531EAE3}) (Version: 4.3.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{2E4AF2A6-50EA-4260-9BA4-5E582D11879A}) (Version: 9.3.0.15 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Assassin's Creed IV Black Flag (HKLM-x32\...\Uplay Install 273) (Version: - Ubisoft)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 81.0.4053.113 - Die Avast Secure Browser-Autoren)
Battlefield 2(TM) (HKLM-x32\...\{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}) (Version: - )
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.8.2.48475 - Electronic Arts)
Battlefield: Bad Company™ 2 (HKLM-x32\...\{3AC8457C-0385-4BEA-A959-E095F05D6D67}) (Version: 1.0.1.0 - Electronic Arts)
Battlefield™ 1 (HKLM-x32\...\{335B50BC-6130-4BAF-9A6A-F1561270587B}) (Version: 1.0.57.44284 - Electronic Arts)
Battlefield™ Hardline (HKLM-x32\...\{CB4AC3DA-8CC1-4516-86DA-4078B57DB229}) (Version: 1.4.0.10 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.0 - EA Digital Illusions CE AB)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.63 - Piriform)
Crysis®3 (HKLM-x32\...\{4198AE83-A3C6-4C41-85C8-EC63E990696E}) (Version: 1.0.0.0 - Electronic Arts)
Dead Space (HKLM-x32\...\{9789E33B-317A-44B2-AF9A-FF8708AD93E0}) (Version: 3.0.0.222 - Electronic Arts)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 417.71 - NVIDIA Corporation) Hidden
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB)
Free Audio CD to MP3 Converter version 1.3.12.1228 (HKLM-x32\...\Free Audio CD to MP3 Converter_is1) (Version: 1.3.12.1228 - DVDVideoSoft Ltd.)
Free YouTube To MP3 Converter (HKLM-x32\...\Free YouTube To MP3 Converter_is1) (Version: 4.1.26.721 - Digital Wave Ltd)
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
Ironsight Version 1 (HKLM-x32\...\Ironsight_is1) (Version: 1 - Aeria Games)
Java 8 Update 161 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180161F0}) (Version: 8.0.1610.12 - Oracle Corporation)
Malwarebytes version 4.1.0.56 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.0.56 - Malwarebytes)
Microsoft Office Home and Business 2013 - de-de (HKLM\...\HomeBusinessRetail - de-de) (Version: 15.0.5207.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-594468629-384485566-424415787-1001\...\OneDriveSetup.exe) (Version: 17.3.1171.0714 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.13.26020 (HKLM-x32\...\{7474cd6e-76cc-4257-837e-5b9261e526af}) (Version: 14.13.26020.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 (HKLM-x32\...\{5c045b7f-e561-4794-91f8-c6cda0893107}) (Version: 14.13.26020.0 - Microsoft Corporation)
MP3jam 1.1.1.12 (HKLM-x32\...\MP3jam_is1) (Version: 1.1.1.12 - MP3jam)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.65.2 - Black Tree Gaming)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.7.5 - Notepad++ Team)
NVIDIA GeForce Experience 3.13.1.30 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.13.1.30 - NVIDIA Corporation)
NVIDIA Grafiktreiber 431.36 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 431.36 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.38.16 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.16 - NVIDIA Corporation)
NVIDIA Miracast Virtueller Ton 431.36 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Miracast.VirtualAudio) (Version: 431.36 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
Office 15 Click-to-Run Extensibility Component (HKLM-x32\...\{90150000-008C-0000-0000-0000000FF1CE}) (Version: 15.0.5207.1000 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (HKLM\...\{90150000-008F-0000-1000-0000000FF1CE}) (Version: 15.0.5207.1000 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (HKLM-x32\...\{90150000-008C-0407-0000-0000000FF1CE}) (Version: 15.0.5207.1000 - Microsoft Corporation) Hidden
Opera Stable 68.0.3618.63 (HKLM-x32\...\Opera 68.0.3618.63) (Version: 68.0.3618.63 - Opera Software)
Origin (HKLM-x32\...\Origin) (Version: 10.5.56.33908 - Electronic Arts, Inc.)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.988 - Even Balance, Inc.)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 2.21.24.1 - Razer Inc.)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.2.0 - Rockstar Games)
Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation)
Skype Version 8.53 (HKLM-x32\...\Skype_is1) (Version: 8.53 - Skype Technologies S.A.)
TeamSpeak 3 Client (HKU\S-1-5-21-594468629-384485566-424415787-1001\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
UE4 Prerequisites (x64) (HKLM\...\{F9EC45F9-074A-48BF-92E9-A8CADD56F693}) (Version: 1.0.11.0 - Epic Games, Inc.) Hidden
UE4 Prerequisites (x64) (HKLM-x32\...\{4e242cc8-5e3c-4b08-9d55-dbc62ddd1208}) (Version: 1.0.13.0 - Epic Games, Inc.) Hidden
Unity Web Player (HKU\S-1-5-21-594468629-384485566-424415787-1001\...\UnityWebPlayer) (Version: 4.5.1f3 - Unity Technologies ApS)
Uplay (HKLM-x32\...\Uplay) (Version: 20.1 - Ubisoft)
Vulkan Run Time Libraries 1.0.11.1 (HKLM\...\VulkanRT1.0.11.1) (Version: 1.0.11.1 - LunarG, Inc.)
Packages:
=========
Browserauswahl -> C:\Windows\BrowserChoice [2014-06-05] (Microsoft Corporation)
MSN Finanzen -> C:\Program Files\WindowsApps\Microsoft.BingFinance_3.0.4.344_x64__8wekyb3d8bbwe [2016-06-06] (Microsoft Corporation) [MS Ad]
MSN Gesundheit & Fitness -> C:\Program Files\WindowsApps\Microsoft.BingHealthAndFitness_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-14] (Microsoft Corporation) [MS Ad]
MSN Kochen & Genuss -> C:\Program Files\WindowsApps\Microsoft.BingFoodAndDrink_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-14] (Microsoft Corporation) [MS Ad]
MSN Nachrichten -> C:\Program Files\WindowsApps\Microsoft.BingNews_3.0.4.344_x64__8wekyb3d8bbwe [2016-06-06] (Microsoft Corporation) [MS Ad]
MSN Reisen -> C:\Program Files\WindowsApps\Microsoft.BingTravel_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-14] (Microsoft Corporation) [MS Ad]
MSN Sport -> C:\Program Files\WindowsApps\Microsoft.BingSports_3.0.4.345_x64__8wekyb3d8bbwe [2016-06-06] (Microsoft Corporation) [MS Ad]
MSN Wetter -> C:\Program Files\WindowsApps\Microsoft.BingWeather_3.0.4.350_x64__8wekyb3d8bbwe [2017-05-06] (Microsoft Corporation) [MS Ad]
Musik -> C:\Program Files\WindowsApps\Microsoft.ZuneMusic_2.6.672.0_x64__8wekyb3d8bbwe [2015-03-14] (Microsoft Corporation) [MS Ad]
Skype -> C:\Program Files\WindowsApps\Microsoft.SkypeApp_3.1.0.1016_x86__kzf8qxf38zg5c [2015-06-21] (Skype) [MS Ad]
Spiele -> C:\Program Files\WindowsApps\Microsoft.XboxLIVEGames_2.0.139.0_x64__8wekyb3d8bbwe [2014-06-05] (Microsoft Corporation) [MS Ad]
Video -> C:\Program Files\WindowsApps\Microsoft.ZuneVideo_2.6.446.0_x64__8wekyb3d8bbwe [2016-06-06] (Microsoft Corporation) [MS Ad]
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-594468629-384485566-424415787-1001_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Marcel\AppData\Local\Microsoft\SkyDrive\17.3.1171.0714\amd64\FileSyncApi64.dll (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Keine Datei
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Keine Datei
ContextMenuHandlers1-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2014-05-12] () [Datei ist nicht signiert]
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2019-07-03] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
==================== Codecs (Nicht auf der Ausnahmeliste) ====================
==================== Verknüpfungen & WMI ========================
==================== Geladene Module (Nicht auf der Ausnahmeliste) =============
2014-06-05 18:14 - 2020-05-12 10:35 - 000026112 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\ASUS\AXSP\1.01.02\PEbiosinterface32.dll
2014-05-12 11:49 - 2014-05-12 11:49 - 000222720 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Notepad++\NppShell_06.dll
2020-05-12 16:04 - 2020-05-12 16:05 - 000022016 _____ () [Datei ist nicht signiert] C:\Users\Marcel\AppData\Local\Temp\nscF1E0.tmp\nsJSON.dll
2020-05-12 16:05 - 2020-05-12 16:05 - 000015872 _____ () [Datei ist nicht signiert] C:\Users\Marcel\AppData\Local\Temp\nscF1E0.tmp\stack.dll
2020-05-12 16:04 - 2020-05-12 16:04 - 000011776 _____ () [Datei ist nicht signiert] C:\Users\Marcel\AppData\Local\Temp\nscF1E0.tmp\System.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\Users\Marcel:Heroes & Generals [38]
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ==========
==================== Hosts Inhalt: =========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2013-08-22 15:25 - 2019-01-28 11:10 - 000000827 _____ C:\Windows\system32\drivers\etc\hosts
==================== Andere Bereiche ===========================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\ProgramData\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common
HKU\S-1-5-21-594468629-384485566-424415787-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Marcel\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\hintergrundbild der windows-fotoanzeige.jpg
DNS Servers: 192.168.115.11
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
HKLM\...\StartupApproved\Run32: => "Opera Browser Assistant"
HKU\S-1-5-21-594468629-384485566-424415787-1001\...\StartupApproved\Run: => "EADM"
HKU\S-1-5-21-594468629-384485566-424415787-1001\...\StartupApproved\Run: => "AvastBrowserAutoLaunch_501C78E7EC65A0AA0B8A8E0454EA6768"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{1A7DA1B7-1630-4C7E-ACDD-98F90C50E5FD}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5609C5DF-347F-40C5-B318-5041CA49A745}] => (Allow) C:\Users\Marcel\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{FE24D808-0BA5-4A12-9C7E-5FBBBFBA9610}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{D0E87D50-EE95-4035-8ED9-9DC707828A66}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{55BEAF2C-A861-4001-8691-2A41D65FAA34}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{C926D2FD-2466-47E5-B5A8-2BE7F37CEAF5}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{F826082A-3E48-41B5-9ABF-22385C7B0E5F}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 3\bin\farcry3.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment)
FirewallRules: [{ED65E93F-0E2F-4E95-93E6-96D1269CF9CC}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 3\bin\farcry3.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment)
FirewallRules: [{E6894AAD-06DB-4C29-90E1-1A8E0690ED6A}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 3\bin\farcry3_d3d11.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment)
FirewallRules: [{230C0B6A-A8FA-4BC5-899D-136AD6F1D05B}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 3\bin\farcry3_d3d11.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment)
FirewallRules: [{17C3F3E5-234F-496E-A9EE-4CA872781CE1}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 3\bin\FC3Updater.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{A2B87F66-AF24-4B50-A208-EF322C3722AE}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 3\bin\FC3Updater.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{2405CAD0-8B0D-437F-81D5-AC9E53953729}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 3\bin\FC3Editor.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{04B5664B-4A9E-4D8D-AFAD-58F785B8199A}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 3\bin\FC3Editor.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{CB984D1B-1C7A-4CE0-978B-05F167A63D3E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\SpecOps_TheLine\Binaries\Win32\SpecOpsTheLine.exe (Valve Corp. -> Take-Two Interactive Software, Inc.) [Datei ist nicht signiert]
FirewallRules: [{4CEF641F-9027-48AB-A662-B77FCB8A238E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\SpecOps_TheLine\Binaries\Win32\SpecOpsTheLine.exe (Valve Corp. -> Take-Two Interactive Software, Inc.) [Datei ist nicht signiert]
FirewallRules: [{7845786B-2978-4889-A409-350C2BCA9084}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield Bad Company 2\BFBC2Game.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{24C6B76F-EFF5-498E-85C5-CBD0816EAE43}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield Bad Company 2\BFBC2Game.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{72EE9407-50C5-4171-9726-7CFF48B250F6}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Tomb Raider\TombRaider.exe (Square Enix) [Datei ist nicht signiert]
FirewallRules: [{174CC480-987A-425F-91C2-9A56259A0DF0}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Tomb Raider\TombRaider.exe (Square Enix) [Datei ist nicht signiert]
FirewallRules: [{284F6BC3-B422-4420-9B19-BA0A7678B255}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Star Wars Battlefront II\GameData\BattlefrontII.exe () [Datei ist nicht signiert]
FirewallRules: [{5FB922D4-06CA-401A-8260-D45683C57065}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Star Wars Battlefront II\GameData\BattlefrontII.exe () [Datei ist nicht signiert]
FirewallRules: [{A5D09EF2-B270-4B75-B8FB-B76022BBC19F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Grand Theft Auto V\GTAVLauncher.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{FF057547-5ED7-4328-974E-522B894A7BE3}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Grand Theft Auto V\GTAVLauncher.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{FC9A2B3B-8B3F-404C-B424-894740EB987D}] => (Allow) C:\Program Files (x86)\Origin Games\BFH\bfh.exe (Electronic Arts -> Visceral Games)
FirewallRules: [{E3BE6076-5F06-40BD-A2CF-03F34F734453}] => (Allow) C:\Program Files (x86)\Origin Games\BFH\bfh.exe (Electronic Arts -> Visceral Games)
FirewallRules: [{D60E3D96-94C3-4246-AC10-AA5709207887}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\bf4_x86.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{446DCA22-F070-47E5-AC62-3E1517512BF3}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\bf4_x86.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{A19E5AD9-3D74-43D3-A0A2-E79A06AFD3FC}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{448C849B-DE75-4030-8B2E-E35A3FE0077F}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{53973E45-8B85-42F3-A2EC-76E0A6EF6402}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FirewallRules: [{21E76FBF-45B0-4465-9545-D1ABF1BD6D42}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FirewallRules: [{2C1CD89F-AF1F-4E44-87E3-07FE746FD9AE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{A14AF262-96C5-4170-AE96-D87498A88314}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{31E43176-61C6-42E0-B98E-C1143785FE7B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{B64DBE5F-F6E0-4492-A422-A37CC3B4A1D0}] => (Allow) C:\Program Files (x86)\Origin Games\BFH\BFHWebHelper.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{3EE72529-2D84-4281-84D2-80B28F51BC7C}] => (Allow) C:\Program Files (x86)\Origin Games\BFH\BFHWebHelper.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{1AEEB060-4827-4D8D-B0C1-CF61FCC41C0F}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\BF4WebHelper.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{296E2251-6CA2-43B5-B1E7-8A10CC927DB3}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\BF4WebHelper.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{D26F74FD-5367-4199-9F6E-6B1B9B715666}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\BF4X86WebHelper.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{40A83ED3-3FB8-4A4D-8E1E-5534D4FB19DC}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\BF4X86WebHelper.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{1CF1B93F-735A-4DDB-A712-C604FB00209B}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFSP.exe (Ubisoft Entertainment SA -> )
FirewallRules: [{6D049F94-05CF-4627-858C-97D0FB79F222}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFSP.exe (Ubisoft Entertainment SA -> )
FirewallRules: [{FFDA0119-2F70-473B-A58B-C736FA75525D}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFMP.exe (Ubisoft Entertainment SA -> )
FirewallRules: [{9F44D3CA-2BE6-45E1-966E-D03BD48A8DC4}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFMP.exe (Ubisoft Entertainment SA -> )
FirewallRules: [{1ECB1484-FD6E-4EEE-9DFC-8AFEA297F79C}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{A5A4C615-894C-4C9B-960A-0B9D2618CB6F}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{2F5A4C1F-31E8-4AC6-A198-8632F88D177F}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{3AC03663-96D8-40D9-9079-0D30FC310193}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{44860B2B-323A-4EE3-B991-E3DE9B67F31B}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Heroes & Generals\hngsteamlauncher.exe (Reto-Moto ApS -> Reto-Moto ApS)
FirewallRules: [{A84E70C3-EE75-4614-928D-D433F0A3E7DA}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Heroes & Generals\hngsteamlauncher.exe (Reto-Moto ApS -> Reto-Moto ApS)
FirewallRules: [{B3657288-77BE-45EC-AA3D-0BFF8C0CB1AA}] => (Allow) C:\Program Files (x86)\EA Games\Battlefield 2\BF2.exe () [Datei ist nicht signiert]
FirewallRules: [{97FCE45A-FABA-43EB-987C-DBB0EBF53AE6}] => (Allow) C:\Program Files (x86)\EA Games\Battlefield 2\BF2.exe () [Datei ist nicht signiert]
FirewallRules: [{010FAFF5-ECAE-4174-BC3C-DAA11FC54B02}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe (Bethesda Softworks) [Datei ist nicht signiert]
FirewallRules: [{5163836A-B579-498C-AAB9-DC4610A12012}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe (Bethesda Softworks) [Datei ist nicht signiert]
FirewallRules: [{B471E583-4A1D-4F9F-9051-4F9E1526BB5B}] => (Allow) C:\Program Files (x86)\Origin Games\Crysis 3\Bin32\Crysis3.exe (Electronic Arts -> Crytek GmbH)
FirewallRules: [{C44C4085-5C5B-45D3-890E-0C8322DEA0D3}] => (Allow) C:\Program Files (x86)\Origin Games\Crysis 3\Bin32\Crysis3.exe (Electronic Arts -> Crytek GmbH)
FirewallRules: [{4E83F95F-1209-4309-929E-AF6138E6C7C0}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\BFLauncher.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{D8A4A3A7-CD27-44A8-B6C7-A63551344FDB}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\BFLauncher.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{31CAC76E-90C2-4137-A198-A0F1F9130AD4}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\BFLauncher_x86.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{1C7FF7F6-06BB-4F19-B9DC-84FF7893C70A}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\BFLauncher_x86.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{3198C74A-1BE7-4F2B-BC73-962CE2ABF032}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{2E9FE1A2-FF70-44AD-813B-EC6AE89639DD}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{066CD096-A633-48D5-A7F2-9163FF3A658B}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{457C07BD-F71D-4220-B615-2D93A79AF560}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Rise of the Tomb Raider\ROTTR.exe (Square Enix LTD -> Eidos Inc.)
FirewallRules: [{1D3CB893-FBAB-4CF0-9BD9-F55D93116ADE}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Rise of the Tomb Raider\ROTTR.exe (Square Enix LTD -> Eidos Inc.)
FirewallRules: [{5C7D83BF-F882-44C9-8549-4E0F6FF81582}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{2107ADB6-F1FA-4F33-95AB-0B9AE9F019B8}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{BD513455-BC1E-4123-B76B-1A0C07C7D166}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{3CFB6863-C15D-4342-A7E4-A637EDC0954A}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{7C1F8415-B273-40FC-BA7C-6A6E13879EE8}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Argo\argobattleye.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{15BDE539-CB7A-4C0F-9595-56FF788FE3FF}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Argo\argobattleye.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [TCP Query User{F0F3302D-9F31-4D12-BD70-C2092710E6D0}C:\program files (x86)\steam\steamapps\common\argo\argo_x64.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\argo\argo_x64.exe (Bohemia Interactive a.s. -> Bohemia Interactive)
FirewallRules: [UDP Query User{70A0F25E-ADCF-400F-9878-3650C27D25A2}C:\program files (x86)\steam\steamapps\common\argo\argo_x64.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\argo\argo_x64.exe (Bohemia Interactive a.s. -> Bohemia Interactive)
FirewallRules: [{EF6F4429-E7F4-49AD-A033-C64A5A6888FC}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Squad\squad_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{D85B976D-E61A-41B2-AF9E-D4DCBE6D98E6}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Squad\squad_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [TCP Query User{DC4BC6E5-F85C-49CF-AB29-628BD11B461F}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{8166872F-8247-46BF-B964-1459A0A7D94A}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{1C5A2718-2E0A-43DF-A516-62F22D25B897}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{4F5F35BB-A338-4971-A22E-9B1488AEDE0F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{D10B62E2-96BA-4013-A9F9-52D0633B9475}C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (Bluehole, Inc. -> Bluehole GinnoGames, Inc.)
FirewallRules: [UDP Query User{036133FB-517A-49F2-B9C3-1BA7043AA98C}C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (Bluehole, Inc. -> Bluehole GinnoGames, Inc.)
FirewallRules: [{5D51DCF4-4DB0-4695-A3D5-066C27B2B1CC}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{3DFE0CB2-812A-4EA3-905B-14FA61E232E5}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{FB08B02E-F738-4F40-849A-05BF3A45A724}] => (Allow) C:\Program Files (x86)\Origin Games\Dead Space\Dead Space.exe (Electronic Arts, Inc. -> )
FirewallRules: [{6FA5DC6E-E78D-4831-A8A0-864761EFF1BB}] => (Allow) C:\Program Files (x86)\Origin Games\Dead Space\Dead Space.exe (Electronic Arts, Inc. -> )
FirewallRules: [{441B5700-C682-4F30-9699-CDE9903B1BA2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{464EEE5E-AF3D-4E97-924A-C942C4B86138}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{6EC9F7B4-C107-4111-9C5C-3162C136403A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{5828A087-5641-4437-B597-F72C18886A02}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{CAA1B7AC-7EC6-4332-BB26-B155E0F00F11}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 1\bf1Trial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{47D819F2-6531-4B26-867D-74EAEAEA7452}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 1\bf1Trial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{E12D9B0E-BFE9-48E2-A004-FC20AC12AFC4}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 1\bf1.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{149A6144-516A-44F9-B173-E12085C229A6}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 1\bf1.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [TCP Query User{6C53E022-94CA-4CDD-9DAC-9C9FC730070D}C:\program files (x86)\origin games\battlefield 4\bf4.exe] => (Allow) C:\program files (x86)\origin games\battlefield 4\bf4.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [UDP Query User{3E997974-8BF9-437D-994C-AC5F7869E689}C:\program files (x86)\origin games\battlefield 4\bf4.exe] => (Allow) C:\program files (x86)\origin games\battlefield 4\bf4.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{21F85352-C72F-4DE9-ADB6-35D3663CE8E1}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 1\bf1Trial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{E18A82CA-0DD7-4F70-9741-D797A0202A6B}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 1\bf1Trial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{FFC782D5-8DB1-45CE-858B-5D1B23C0D1F4}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 1\bf1.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{897D7554-70AD-4392-ADA1-A21C604D5EA3}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 1\bf1.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{D2B9B913-C7E2-4474-A7B5-5F79E0C6C218}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{04A1AA1B-4B51-483F-900F-7E571B8C1BAF}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{635BAC2A-14DB-4FD6-BCCF-22E0C28D4F6A}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{FFC3FE65-2F78-47D8-879D-63B0346037AF}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{3B6250EB-1701-4DA5-8F87-60A0AD916EA7}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield Bad Company 2\BFBC2Game.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{0DA4FB86-6E68-4940-A63B-A1A2B57554FF}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield Bad Company 2\BFBC2Game.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [TCP Query User{D6AC88F0-E93E-4E83-9906-0BC85C7E48B9}C:\program files (x86)\origin games\battlefield 3\bf3.exe] => (Allow) C:\program files (x86)\origin games\battlefield 3\bf3.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [UDP Query User{A270ECBE-9E13-4A23-A910-6FE943BFDBE8}C:\program files (x86)\origin games\battlefield 3\bf3.exe] => (Allow) C:\program files (x86)\origin games\battlefield 3\bf3.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{43345509-29A2-4D90-B74D-BE45D585EE13}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (Bluehole, Inc. -> PUBG Corporation )
FirewallRules: [{8F50B107-DEE3-492A-AF48-95187372ACAD}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (Bluehole, Inc. -> PUBG Corporation )
FirewallRules: [TCP Query User{1EDF3388-255A-4BD8-A2E5-FB7AFC7028F7}C:\program files (x86)\ubisoft\farcry 3\bin\farcry3_d3d11.exe] => (Allow) C:\program files (x86)\ubisoft\farcry 3\bin\farcry3_d3d11.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment)
FirewallRules: [UDP Query User{771DF4CD-8F0E-4747-B663-9113CAB0D9F3}C:\program files (x86)\ubisoft\farcry 3\bin\farcry3_d3d11.exe] => (Allow) C:\program files (x86)\ubisoft\farcry 3\bin\farcry3_d3d11.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment)
FirewallRules: [{419C1DBD-29EA-40AE-9DED-9D3AB274FB6C}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Skyrim Special Edition\SkyrimSELauncher.exe (Bethesda Softworks) [Datei ist nicht signiert]
FirewallRules: [{7DB61CF1-1575-41A5-8867-0DB58094DA48}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Skyrim Special Edition\SkyrimSELauncher.exe (Bethesda Softworks) [Datei ist nicht signiert]
FirewallRules: [{5F2D5FD8-B241-437F-88BB-76C53CBC383E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\sandstorm\InsurgencyEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{6F9FA387-647E-4FE4-9DD5-693785C3E81B}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\sandstorm\InsurgencyEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{3FB8B42A-5FC6-4D81-8380-3C36C41B5BD3}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\sandstorm\Insurgency.exe (New World Interactive LLC -> Epic Games, Inc.)
FirewallRules: [{6AC9DE84-F22C-43B3-82DF-178AC3E3ED7F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\sandstorm\Insurgency.exe (New World Interactive LLC -> Epic Games, Inc.)
FirewallRules: [TCP Query User{41D69DBD-4DF6-4983-B36F-55F88A087A98}C:\program files (x86)\steam\steamapps\common\sandstorm\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\sandstorm\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe (New World Interactive LLC -> New World Interactive)
FirewallRules: [UDP Query User{22202AB5-634F-4F8F-AC6A-1BE70329D49E}C:\program files (x86)\steam\steamapps\common\sandstorm\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\sandstorm\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe (New World Interactive LLC -> New World Interactive)
FirewallRules: [TCP Query User{738D7D1F-EDC1-4A7D-B218-DD244FF1CE62}C:\program files (x86)\ubisoft\ubisoft game launcher\games\assassin's creed iv black flag\ac4bfsp.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\games\assassin's creed iv black flag\ac4bfsp.exe (Ubisoft Entertainment SA -> )
FirewallRules: [UDP Query User{4B90B797-9CCF-4824-89E1-20767AA1D66D}C:\program files (x86)\ubisoft\ubisoft game launcher\games\assassin's creed iv black flag\ac4bfsp.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\games\assassin's creed iv black flag\ac4bfsp.exe (Ubisoft Entertainment SA -> )
FirewallRules: [{6E196F1D-21F5-49DE-A7B8-80E6E01D78BE}] => (Allow) c:\program files (x86)\opera\67.0.3575.79\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{CA6842BA-EB50-4C8C-9836-469B15134106}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{5CE17506-3A89-4F80-B115-DDD1C4EEA34C}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E3DD4781-E129-4FDB-9CF7-71D924458B76}] => (Allow) c:\program files (x86)\opera\68.0.3618.63\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{69A1CCAA-237A-4B1E-944D-9967FC745388}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [TCP Query User{B618AA65-372B-4681-8D28-C2E2425B9F9C}C:\program files (x86)\steam\steamapps\common\squad\squadgame\binaries\win64\squadgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\squad\squadgame\binaries\win64\squadgame.exe (Offworld Industries -> Offworld Industries Ltd.)
FirewallRules: [UDP Query User{51174940-FAEC-4260-B3DE-D60C56D2B681}C:\program files (x86)\steam\steamapps\common\squad\squadgame\binaries\win64\squadgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\squad\squadgame\binaries\win64\squadgame.exe (Offworld Industries -> Offworld Industries Ltd.)
==================== Wiederherstellungspunkte =========================
11-05-2020 11:48:07 Windows Update
==================== Fehlerhafte Geräte im Gerätemanager ============
==================== Fehlereinträge in der Ereignisanzeige: ========================
Applikationsfehler:
==================
Error: (05/12/2020 03:57:51 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT-AUTORITÄT)
Description: Product: Avast Update Helper -- Error 1316. Das angegebene Konto ist bereits vorhanden.
Error: (05/12/2020 02:57:51 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT-AUTORITÄT)
Description: Product: Avast Update Helper -- Error 1316. Das angegebene Konto ist bereits vorhanden.
Error: (05/12/2020 01:57:51 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT-AUTORITÄT)
Description: Product: Avast Update Helper -- Error 1316. Das angegebene Konto ist bereits vorhanden.
Error: (05/12/2020 12:57:51 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT-AUTORITÄT)
Description: Product: Avast Update Helper -- Error 1316. Das angegebene Konto ist bereits vorhanden.
Error: (05/12/2020 11:58:21 AM) (Source: MsiInstaller) (EventID: 11316) (User: NT-AUTORITÄT)
Description: Product: Avast Update Helper -- Error 1316. Das angegebene Konto ist bereits vorhanden.
Error: (05/12/2020 10:57:51 AM) (Source: MsiInstaller) (EventID: 11316) (User: NT-AUTORITÄT)
Description: Product: Avast Update Helper -- Error 1316. Das angegebene Konto ist bereits vorhanden.
Error: (05/12/2020 10:54:09 AM) (Source: MsiInstaller) (EventID: 11316) (User: NT-AUTORITÄT)
Description: Product: Avast Update Helper -- Error 1316. Das angegebene Konto ist bereits vorhanden.
Error: (05/12/2020 10:48:30 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: MBAMInstallerService.exe, Version: 4.0.0.252, Zeitstempel: 0x5eb2f69b
Name des fehlerhaften Moduls: combase.dll, Version: 6.3.9600.19345, Zeitstempel: 0x5ca8ccd8
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000000000037d03
ID des fehlerhaften Prozesses: 0x1624
Startzeit der fehlerhaften Anwendung: 0x01d62839aa3de930
Pfad der fehlerhaften Anwendung: C:\Program Files\Malwarebytes\Anti-Malware\MBAMInstallerService.exe
Pfad des fehlerhaften Moduls: C:\Windows\SYSTEM32\combase.dll
Berichtskennung: 5a2f6ca4-942d-11ea-84a6-d850e63e5fa2
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Systemfehler:
=============
Error: (05/12/2020 11:21:44 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80240055 fehlgeschlagen: 2020-02 Sicherheits- und Qualitätsrollup für .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 für Windows 8.1 und Server 2012 R2 für x64 (KB4538124)
Error: (05/12/2020 11:18:53 AM) (Source: Ntfs) (EventID: 138) (User: )
Description: Bei "C:\" wurde vom Transaktionsressourcen-Manager ein schwerwiegender Fehler festgestellt, und er wurde heruntergefahren. Der Fehlercode ist in den Daten enthalten.
Error: (05/12/2020 10:36:20 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Origin Web Helper Service" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Dienst antwortete nicht rechtzeitig auf die Start- oder Steuerungsanforderung.
Error: (05/12/2020 10:36:20 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Origin Web Helper Service erreicht.
Error: (05/12/2020 10:34:50 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Windows Media Player-Netzwerkfreigabedienst" ist vom Dienst "Windows Search" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
Das System kann den angegebenen Pfad nicht finden.
Error: (05/12/2020 10:34:50 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Windows Search" wurde aufgrund folgenden Fehlers nicht gestartet:
Das System kann den angegebenen Pfad nicht finden.
Error: (05/12/2020 10:34:20 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "NVIDIA LocalSystem Container" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 6000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (05/12/2020 10:34:20 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Media Player-Netzwerkfreigabedienst" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.
Windows Defender:
===================================
Date: 2016-06-11 13:19:31.350
Description:
Die Windows Defender-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {54CA58D2-218F-4A00-8EBD-28F53FD146DE}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Date: 2016-06-11 12:35:57.442
Description:
Die Windows Defender-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {1E1B4722-54E4-4C62-B54B-CCA233CA37BF}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
CodeIntegrity:
===================================
Date: 2019-01-15 16:34:57.785
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.
Date: 2019-01-15 16:34:57.561
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.
Date: 2019-01-15 16:34:57.337
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.
Date: 2019-01-15 16:34:57.114
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.
Date: 2019-01-15 16:34:56.890
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.
Date: 2019-01-15 16:34:56.666
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.
Date: 2019-01-15 16:34:56.443
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.
Date: 2019-01-15 16:34:56.220
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.
==================== Speicherinformationen ===========================
BIOS: American Megatrends Inc. 0501 07/31/2013
Hauptplatine: ASUSTeK COMPUTER INC. B85M-G
Prozessor: Intel(R) Core(TM) i5-4570 CPU @ 3.20GHz
Prozentuale Nutzung des RAM: 26%
Installierter physikalischer RAM: 16322.76 MB
Verfügbarer physikalischer RAM: 11959.07 MB
Summe virtueller Speicher: 18754.76 MB
Verfügbarer virtueller Speicher: 13972.91 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:931.17 GB) (Free:207.33 GB) NTFS
Drive d: (Märchenspiele 19) (CDROM) (Total:0.67 GB) (Free:0 GB) CDFS
\\?\Volume{bb251cfa-ecc8-11e3-824c-806e6f6e6963}\ () (Fixed) (Total:0.34 GB) (Free:0.08 GB) NTFS
==================== MBR & Partitionstabelle ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: C1D9E21B)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931.2 GB) - (Type=07 NTFS)
==================== Ende von Addition.txt =======================
|
|
12.05.2020, 20:17
| #11 |
| /// Helfer-Team | PC plötzlich sehr langsam Dann wären wir durch! Wenn du keine Probleme mehr mit Malware hast, dann sind wir hier fertig. Deine Logdateien sind sauber. Abschließend bitte noch einen Cleanup mit unserem TBCleanUpTool durchführen und unbedingt die Sicherheitsmaßnahmen lesen und umsetzen - beides ist in folgendem Lesestoff verlinkt: Wenn Du möchtest, kannst Du hier sagen, ob du mit mir und meiner Hilfe zufrieden warst...  Vielleicht möchtest du das Forum mit einer kleinen Spende  unterstützen.  Hinweis: Bitte gib mir eine kurze Rückmeldung, sobald du die oben verlinkten Informationen gelesen hast, alles erledigt ist und keine Fragen mehr vorhanden sind, so dass ich dieses Thema aus meinen Abos löschen kann.
__________________ LG Der Felix Keine Hilfe per PN und E-Mail |
|
| Themen zu PC plötzlich sehr langsam |
| antivirus, bonjour, computer, converter, defender, firefox, flash player, google, homepage, installation, internet, langsam, monitor, mozilla, mp3, node.js, nvcontainer, nvcontainer.exe, prozesse, realtek, registry, scan, security, sigcheck, software, system, udp, usb, windows, windowsapps |
Lesestoff:
Linear-Darstellung
