| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Zufälliger Fund vom zweiten BenutzerkontoWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
12.06.2021, 18:17
| #1 |
 |  Zufälliger Fund vom zweiten Benutzerkonto Hallo, wollte mein windows anmeldungskennwort deaktivieren dabei, ist mir aufgefallen das ein zweites Benutzerkonto erstellt ist, dieses ich nicht löschen kann und nach neustart immer wieder auftaucht. Da ich mir nicht sicher bin, ob dieses zweite Benutzerkonto von Windows 10 selbst erstellt wird wollte ich daher nochmal hier kurz nachfragen. Das schwarz gebalkte ist mein Benutzerkonto, nur das zweite ist mir fraglich? Sehr wahrscheinlich ist es einfach nix, würde es aber gerne von euch bestätigen lassen vielen dank. Ich vermute das es ein zweiter Account ist falls sich jemand mal mit remote auf den PC verbindnen sollte und dieser dann über diesen Account unter meinem Wissen aktiv werden kann. Aber leider bin ich mir auch nicht sicher. Anhang Bild. |
|
12.06.2021, 18:37
| #2 |
| /// Winkelfunktion /// TB-Süch-Tiger™   | Zufälliger Fund vom zweiten Benutzerkonto Du bist ja nicht neu hier und solltest wissen was wir brauchen
__________________
__________________ |
|
12.06.2021, 18:44
| #3 |
| | Zufälliger Fund vom zweiten Benutzerkonto Ok sry dachte ihr würdet es so wissen, das es normal ist werde alles andere nachreichen sry.
__________________ |
|
12.06.2021, 20:52
| #4 |
| | Zufälliger Fund vom zweiten Benutzerkonto logfiles habe ich als zip angehängt, da die files zu groß waren |
|
12.06.2021, 20:54
| #5 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Zufälliger Fund vom zweiten Benutzerkonto neeein    Posten in CODE-TagsDie Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit. Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
12.06.2021, 21:58
| #6 |
| | Zufälliger Fund vom zweiten Benutzerkonto schon lang nicht mehr da gewessen =(  Code:
ATTFilter Untersuchungsergebnis der Verknüpfungen des Benutzers (x64) Version: 12-06-2021
durchgeführt von Jessica (12-06-2021 20:45:39)
Gestartet von C:\Users\Jessica\Desktop\Downloads
Start-Modus: Normal
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\SoftEther VPN Client Manager.lnk -> C:\Program Files\SoftEther VPN Client\vpncmgr_x64.exe (SoftEther VPN Project at University of Tsukuba, Japan.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk -> C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win32\EpicGamesLauncher.exe (Epic Games, Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk -> C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Immersive Control Panel.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk -> C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe (Mozilla Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WISO Steuer-Start 2021\WISO Steuer-Start 2021.lnk -> C:\Program Files (x86)\WISO\Steuersoftware 2021\steuerstart2021.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\Benutzerhandbuch für die Konsolenversion von RAR.lnk -> C:\Program Files\WinRAR\Rar.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\Hilfe zu WinRAR.lnk -> C:\Program Files\WinRAR\WinRAR.chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\Was ist neu in dieser Version.lnk -> C:\Program Files\WinRAR\WhatsNew.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\WinRAR.lnk -> C:\Program Files\WinRAR\WinRAR.exe (Alexander Roshal)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell ISE (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell ISE.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam\Steam.lnk -> C:\Program Files (x86)\Steam\steam.exe (Valve Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SoftEther VPN Client\SoftEther VPN Client Manager.lnk -> C:\Program Files\SoftEther VPN Client\vpncmgr_x64.exe (SoftEther VPN Project at University of Tsukuba, Japan.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SoftEther VPN Client\SoftEther VPN Command Line Utility (vpncmd).lnk -> C:\Program Files\SoftEther VPN Client\vpncmd_x64.exe (SoftEther VPN Project at University of Tsukuba, Japan.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SoftEther VPN Client\Configuration Tools\Services Running on this Computer.lnk -> C:\Windows\System32\services.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SoftEther VPN Client\Configuration Tools\Uninstall SoftEther VPN Client.lnk -> C:\Program Files\SoftEther VPN Client\vpnsetup.exe (SoftEther VPN Project at University of Tsukuba, Japan.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RoboForm\Passwortgenerator.lnk -> C:\Program Files (x86)\Siber Systems\AI RoboForm\passwordgenerator.exe (Siber Systems)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RoboForm\RoboForm Editor.lnk -> C:\Program Files (x86)\Siber Systems\AI RoboForm\identities.exe (Siber Systems)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RoboForm\Taskleistensymbol.lnk -> C:\Program Files (x86)\Siber Systems\AI RoboForm\robotaskbaricon.exe (Siber Systems)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation\GeForce Experience.lnk -> C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe (NVIDIA Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Java konfigurieren.lnk -> C:\Program Files\Java\jre1.8.0_291\bin\javacpl.exe (Oracle Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Classic Shell\Classic Explorer Einstellungen.lnk -> C:\Program Files\Classic Shell\ClassicExplorerSettings.exe (IvoSoft)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Classic Shell\Classic IE Einstellungen.lnk -> C:\Program Files\Classic Shell\ClassicIE_32.exe (IvoSoft)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Classic Shell\Classic Shell Aktualisierung.lnk -> C:\Program Files\Classic Shell\ClassicShellUpdate.exe (IvoSoft)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Classic Shell\Classic Shell Hilfe.lnk -> C:\Program Files\Classic Shell\ClassicShell.chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Classic Shell\Classic Shell Liesmich.lnk -> C:\Program Files\Classic Shell\ClassicShellReadme.rtf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlestate Games\Battlestate Games Launcher.lnk -> C:\Battlestate Games\BsgLauncher\BsgLauncher.exe (Battlestate Games)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Component Services.lnk -> C:\Windows\System32\comexp.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\dfrgui.lnk -> C:\Windows\System32\dfrgui.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Disk Cleanup.lnk -> C:\Windows\System32\cleanmgr.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\iSCSI Initiator.lnk -> C:\Windows\System32\iscsicpl.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Memory Diagnostics Tool.lnk -> C:\Windows\System32\MdSched.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\ODBC Data Sources (32-bit).lnk -> C:\Windows\SysWOW64\odbcad32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\ODBC Data Sources (64-bit).lnk -> C:\Windows\System32\odbcad32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Print Management.lnk -> C:\Windows\System32\printmanagement.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\RecoveryDrive.lnk -> C:\Windows\System32\RecoveryDrive.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Registry Editor.lnk -> C:\Windows\regedit.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk -> C:\Windows\System32\services.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\System Configuration.lnk -> C:\Windows\System32\msconfig.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\System Information.lnk -> C:\Windows\System32\msinfo32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows Defender Firewall with Advanced Security.lnk -> C:\Windows\System32\WF.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Math Input Panel.lnk -> C:\Program Files\Common Files\Microsoft Shared\ink\mip.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Paint.lnk -> C:\Windows\System32\mspaint.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Quick Assist.lnk -> C:\Windows\System32\quickassist.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Remote Desktop Connection.lnk -> C:\Windows\System32\mstsc.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Snipping Tool.lnk -> C:\Windows\System32\SnippingTool.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Steps Recorder.lnk -> C:\Windows\System32\psr.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Fax and Scan.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Wordpad.lnk -> C:\Program Files\Windows NT\Accessories\wordpad.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Character Map.lnk -> C:\Windows\System32\charmap.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\computer.lnk -> C:\Windows\explorer.exe,-30
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Control Panel.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\File Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Run.lnk -> C:\Windows\System32\shell32.dll (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\01 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\01a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\02 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\02a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\03 - Computer Management.lnk -> C:\Windows\System32\compmgmt.msc ()
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\04 - Disk Management.lnk -> C:\Windows\System32\diskmgmt.msc ()
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\07 - Event Viewer.lnk -> C:\Windows\System32\eventvwr.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\09 - Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\4 - Control Panel.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation)
Shortcut: C:\Users\Jessica\Links\Desktop.lnk -> C:\Users\Jessica\Desktop ()
Shortcut: C:\Users\Jessica\Links\Downloads.lnk -> C:\Users\Jessica\Downloads ()
Shortcut: C:\Users\Jessica\Desktop\Battlestate Games Launcher.lnk -> C:\Battlestate Games\BsgLauncher\BsgLauncher.exe (Battlestate Games)
Shortcut: C:\Users\Jessica\Desktop\Dieser PC.lnk -> [LFPO :i+00@n1SPS0%G`%Dieser PC-Systemordner1SPSjc(=Oe)::{20D04FE0-3AEA-1069-A2D8-08002B30309D}E1SPSOh+')Computer]
Shortcut: C:\Users\Jessica\Desktop\JDownloader 2.lnk -> C:\Users\Jessica\AppData\Local\JDownloader 2.0\JDownloader2.exe (AppWork GmbH)
Shortcut: C:\Users\Jessica\Desktop\MSI Afterburner.lnk -> C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe ()
Shortcut: C:\Users\Jessica\Desktop\Ubisoft Connect.lnk -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftConnect.exe (Ubisoft)
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\Benutzerhandbuch für die Konsolenversion von RAR.lnk -> C:\Program Files\WinRAR\Rar.txt ()
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\Hilfe zu WinRAR.lnk -> C:\Program Files\WinRAR\WinRAR.chm ()
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\Was ist neu in dieser Version.lnk -> C:\Program Files\WinRAR\WhatsNew.txt ()
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\WinRAR.lnk -> C:\Program Files\WinRAR\WinRAR.exe (Alexander Roshal)
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft\Ubisoft Connect\Ubisoft Connect.lnk -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftConnect.exe (Ubisoft)
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft\Ubisoft Connect\Uninstall.lnk -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\Uninstall.exe (Ubisoft)
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\computer.lnk -> C:\Windows\explorer.exe,-30
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Control Panel.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\File Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Run.lnk -> C:\Windows\System32\shell32.dll (Microsoft Corporation)
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner\MSI Afterburner.lnk -> C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe ()
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner\ReadMe.lnk -> C:\Program Files (x86)\MSI Afterburner\Doc\ReadMe.pdf ()
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner\Uninstall.lnk -> C:\Program Files (x86)\MSI Afterburner\Uninstall.exe ()
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner\SDK\MSI Afterburner localization reference.lnk -> C:\Program Files (x86)\MSI Afterburner\SDK\Doc\Localization reference.pdf ()
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner\SDK\MSI Afterburner skin format reference.lnk -> C:\Program Files (x86)\MSI Afterburner\SDK\Doc\USF skin format reference.pdf ()
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner\SDK\Samples.lnk -> C:\Program Files (x86)\MSI Afterburner\SDK\Samples ()
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader\JDownloader 2 Uninstaller.lnk -> C:\Users\Jessica\AppData\Local\JDownloader 2.0\Uninstall JDownloader.exe (AppWork GmbH)
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader\JDownloader 2.lnk -> C:\Users\Jessica\AppData\Local\JDownloader 2.0\JDownloader2.exe (AppWork GmbH)
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\SendTo\Bluetooth-Dateiübertragung.LNK -> C:\Windows\System32\fsquirt.exe (Microsoft Corporation)
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation)
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\81f60f1222210b45\League of Legends.lnk -> C:\Riot Games\League of Legends\LeagueClient.exe (Riot Games, Inc.)
Shortcut: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group3\01 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group3\01a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group3\02 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group3\02a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group3\03 - Computer Management.lnk -> C:\Windows\System32\compmgmt.msc ()
Shortcut: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group3\04 - Disk Management.lnk -> C:\Windows\System32\diskmgmt.msc ()
Shortcut: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group3\07 - Event Viewer.lnk -> C:\Windows\System32\eventvwr.exe (Microsoft Corporation)
Shortcut: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group3\09 - Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation)
Shortcut: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group2\4 - Control Panel.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation)
Shortcut: C:\Users\Public\Desktop\Epic Games Launcher.lnk -> C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win32\EpicGamesLauncher.exe (Epic Games, Inc.)
Shortcut: C:\Users\Public\Desktop\Firefox.lnk -> C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
Shortcut: C:\Users\Public\Desktop\GeForce Experience.lnk -> C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe (NVIDIA Corporation)
Shortcut: C:\Users\Public\Desktop\Mozilla Thunderbird.lnk -> C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe (Mozilla Corporation)
Shortcut: C:\Users\Public\Desktop\SoftEther VPN Client Manager.lnk -> C:\Program Files\SoftEther VPN Client\vpncmgr_x64.exe (SoftEther VPN Project at University of Tsukuba, Japan.)
Shortcut: C:\Users\Public\Desktop\Steam.lnk -> C:\Program Files (x86)\Steam\steam.exe (Valve Corporation)
Shortcut: C:\Users\Public\Desktop\WISO Steuer-Start 2021.lnk -> C:\Program Files (x86)\WISO\Steuersoftware 2021\steuerstart2021.exe ()
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools\Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /7
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp\SoftEther VPN Client Manager Startup.lnk -> C:\Program Files\SoftEther VPN Client\vpncmgr_x64.exe (SoftEther VPN Project at University of Tsukuba, Japan.) -> /startup
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SoftEther VPN Client\Manage Remote Computer's SoftEther VPN Client.lnk -> C:\Program Files\SoftEther VPN Client\vpncmgr_x64.exe (SoftEther VPN Project at University of Tsukuba, Japan.) -> /remote
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SoftEther VPN Client\Language Settings\Configure Display Language.lnk -> C:\Program Files\SoftEther VPN Client\vpnsetup.exe (SoftEther VPN Project at University of Tsukuba, Japan.) -> /language:yes
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SoftEther VPN Client\Configuration Tools\TCP Optimization Utility.lnk -> C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe (SoftEther VPN Project at University of Tsukuba, Japan.) -> /tcp
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SoftEther VPN Client\Administrative Tools\Debugging Information Collecting Tool.lnk -> C:\Program Files\SoftEther VPN Client\vpncmd_x64.exe (SoftEther VPN Project at University of Tsukuba, Japan.) -> /debug
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SoftEther VPN Client\Administrative Tools\Easy Installer Creator.lnk -> C:\Program Files\SoftEther VPN Client\vpnsetup.exe (SoftEther VPN Project at University of Tsukuba, Japan.) -> /easy:true
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SoftEther VPN Client\Administrative Tools\Network Traffic Speed Test Tool.lnk -> C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe (SoftEther VPN Project at University of Tsukuba, Japan.) -> /traffic
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SoftEther VPN Client\Administrative Tools\Web Installer Creator.lnk -> C:\Program Files\SoftEther VPN Client\vpnsetup.exe (SoftEther VPN Project at University of Tsukuba, Japan.) -> /web:true
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RoboForm\Nach Daten suchen.lnk -> C:\Program Files (x86)\Siber Systems\AI RoboForm\identities.exe (Siber Systems) -> -s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RoboForm\Neue Versionsprüfung.lnk -> C:\Program Files (x86)\Siber Systems\AI RoboForm\robotaskbaricon.exe (Siber Systems) -> vc
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RoboForm\RoboForm Startseite.lnk -> C:\Program Files (x86)\Siber Systems\AI RoboForm\identities.exe (Siber Systems) -> -startpage
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RoboForm\Suchfeld anzeigen.lnk -> C:\Program Files (x86)\Siber Systems\AI RoboForm\identities.exe (Siber Systems) -> -sb
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riot Games\League of Legends.lnk -> C:\Riot Games\Riot Client\RiotClientServices.exe (Riot Games, Inc.) -> --launch-product=league_of_legends --launch-patchline=live
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Auf Updates prüfen.lnk -> C:\Program Files\Java\jre1.8.0_291\bin\javacpl.exe (Oracle Corporation) -> -tab update
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Info zu Java.lnk -> C:\Program Files\Java\jre1.8.0_291\bin\javacpl.exe (Oracle Corporation) -> -tab about
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Classic Shell\Classic Start Menü Einstellungen.lnk -> C:\Program Files\Classic Shell\ClassicStartMenu.exe (IvoSoft) -> -settings
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Computer Management.lnk -> C:\Windows\System32\compmgmt.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Event Viewer.lnk -> C:\Windows\System32\eventvwr.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Performance Monitor.lnk -> C:\Windows\System32\perfmon.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Resource Monitor.lnk -> C:\Windows\System32\perfmon.exe (Microsoft Corporation) -> /res
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Security Configuration Management.lnk -> C:\Windows\System32\secpol.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Task Scheduler.lnk -> C:\Windows\System32\taskschd.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Media Player.lnk -> C:\Program Files (x86)\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility\Speech Recognition.lnk -> C:\Windows\Speech\Common\sapisvr.exe (Microsoft Corporation) -> -SpeechUX
ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Administrative Tools.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.AdministrativeTools
ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\04-1 - NetworkStatus.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageNetworkStatus
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\05 - Device Manager.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DeviceManager
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\06 - SystemAbout.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPagePCSystemInfo
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\08 - PowerAndSleep.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageScreenPowerAndSleep
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\10 - AppsAndFeatures.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageAppsSizes
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\1 - Run.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f3-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\2 - Search.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f8-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\3 - Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{52205fd8-5dfb-447d-801a-d0b52f2e83e1}
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\5 - Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /0
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group1\1 - Desktop.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{3080F90D-D7AD-11D9-BD98-0000947B0257}
ShortcutWithArgument: C:\Users\Jessica\Desktop\Discord.lnk -> C:\Users\Jessica\AppData\Local\Discord\Update.exe (GitHub) -> --processStart Discord.exe
ShortcutWithArgument: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\startscreen.lnk -> C:\Program Files\Classic Shell\ClassicStartMenu.exe (IvoSoft) -> -togglenew
ShortcutWithArgument: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Administrative Tools.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.AdministrativeTools
ShortcutWithArgument: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc\Discord.lnk -> C:\Users\Jessica\AppData\Local\Discord\Update.exe (GitHub) -> --processStart Discord.exe
ShortcutWithArgument: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group3\04-1 - NetworkStatus.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageNetworkStatus
ShortcutWithArgument: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group3\05 - Device Manager.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DeviceManager
ShortcutWithArgument: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group3\06 - SystemAbout.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPagePCSystemInfo
ShortcutWithArgument: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group3\08 - PowerAndSleep.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageScreenPowerAndSleep
ShortcutWithArgument: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group3\10 - AppsAndFeatures.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageAppsSizes
ShortcutWithArgument: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group2\1 - Run.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f3-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group2\2 - Search.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f8-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group2\3 - Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{52205fd8-5dfb-447d-801a-d0b52f2e83e1}
ShortcutWithArgument: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group2\5 - Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /0
ShortcutWithArgument: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group1\1 - Desktop.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{3080F90D-D7AD-11D9-BD98-0000947B0257}
ShortcutWithArgument: C:\Users\Public\Desktop\League of Legends.lnk -> C:\Riot Games\Riot Client\RiotClientServices.exe (Riot Games, Inc.) -> --launch-product=league_of_legends --launch-patchline=live
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WISO Steuer-Start 2021\Hilfen\WISO Steuer-Start 2021 Online-Hilfe.url -> URL: hxxp://www.buhl.de/go/13469
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam\Steam Support Center.url -> URL: hxxp://support.steampowered.com/
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RoboForm\Deinstallieren.url -> URL: file:///C:/Program%20Files%20(x86)/Siber%20Systems/AI%20RoboForm/Deinstallieren.lnk
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RoboForm\RoboForm kaufen.url -> URL: hxxps://online.roboform.com/login?authReturnUrl=pums_rf&lang=de
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Besuchen Sie Java.com.url -> URL: hxxps://java.com/
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Hilfe aufrufen.url -> URL: hxxps://java.com/help
InternetURL: C:\Users\Jessica\Favorites\Bing.url -> URL: hxxp://go.microsoft.com/fwlink/p/?LinkId=255142
InternetURL: C:\Users\Jessica\Desktop\Startup.Company.v1.19\Startup.Company.v1.19\IGG-GAMES.COM.url -> URL: hxxps://igg-games.com/
InternetURL: C:\Users\Jessica\Desktop\Startup.Company.v1.19\Startup.Company.v1.19\ONEHACK.US.url -> URL: hxxps://onehack.us/
InternetURL: C:\Users\Jessica\Desktop\Startup.Company.v1.19\Startup.Company.v1.19\PCGAMESTORRENTS.COM.url -> URL: hxxps://pcgamestorrents.com/
InternetURL: C:\Users\Jessica\Desktop\Startup.Company.v1.19\Startup.Company.v1.19\Startup.Company.v1.19\resources\app\images\logos\Minimal Logos - Download Free Vector Art, Stock Graphics & Images.url -> URL: hxxps://www.vecteezy.com/vector-art/68133-minimal-logos
==================== Ende vom Shortcut.txt =============================
Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 12-06-2021
durchgeführt von Jessica (Administrator) auf DESKTOP-AD4CMVO (Micro-Star International Co., Ltd. MS-7A39) (12-06-2021 20:39:32)
Gestartet von C:\Users\Jessica\Desktop\Downloads
Geladene Profile: Jessica
Platform: Windows 10 Pro Version 20H2 19042.1052 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: FF
Start-Modus: Normal
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
() [Datei ist nicht signiert] C:\Riot Games\Riot Client\RiotClientCrashHandler.exe
(Discord Inc. -> Discord Inc.) C:\Users\Jessica\AppData\Local\Discord\app-1.0.9002\Discord.exe <6>
(Ivaylo Beltchev -> IvoSoft) [Datei ist nicht signiert] C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\GameBarPresenceWriter.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\NisSrv.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <11>
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d67c20d727d4578c\Display.NvContainer\NVDisplay.Container.exe <2>
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Riot Games, Inc. -> ) C:\Riot Games\League of Legends\Game\LeagueCrashHandler.exe
(Riot Games, Inc. -> ) C:\Riot Games\League of Legends\LeagueCrashHandler.exe
(Riot Games, Inc. -> Riot Games, Inc.) C:\Riot Games\League of Legends\Game\League of Legends.exe
(Riot Games, Inc. -> Riot Games, Inc.) C:\Riot Games\League of Legends\LeagueClient.exe
(Riot Games, Inc. -> Riot Games, Inc.) C:\Riot Games\League of Legends\LeagueClientUx.exe
(Riot Games, Inc. -> Riot Games, Inc.) C:\Riot Games\League of Legends\LeagueClientUxRender.exe <2>
(Riot Games, Inc. -> Riot Games, Inc.) C:\Riot Games\Riot Client\RiotClientServices.exe
(Siber Systems -> Siber Systems Inc.) C:\Program Files (x86)\Siber Systems\AI RoboForm\rf-chrome-nm-host.exe
(Siber Systems -> Siber Systems) C:\Program Files (x86)\Siber Systems\AI RoboForm\robotaskbaricon.exe
(Siber Systems -> Siber Systems) C:\Program Files (x86)\Siber Systems\AI RoboForm\robotaskbaricon-x64.exe
(SoftEther Corporation -> SoftEther VPN Project at University of Tsukuba, Japan.) C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [163640 2018-07-15] (Ivaylo Beltchev -> IvoSoft) [Datei ist nicht signiert]
HKLM\...\Run: [SoftEther VPN Client UI Helper] => C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe [5886264 2020-12-22] (SoftEther Corporation -> SoftEther VPN Project at University of Tsukuba, Japan.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706288 2021-04-09] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-13139471-1339072901-2605139753-1001\...\Run: [Discord] => C:\Users\Jessica\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub)
HKU\S-1-5-21-13139471-1339072901-2605139753-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4087528 2021-05-19] (Valve -> Valve Corporation)
HKU\S-1-5-21-13139471-1339072901-2605139753-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [33000928 2021-04-09] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-13139471-1339072901-2605139753-1001\...\Run: [VoipSoftClient] => "C:\Program Files (x86)\VoipSoftClient.com\VoipSoftClient\VoipSoftClient.exe" -nosplash -minimized
HKU\S-1-5-21-13139471-1339072901-2605139753-1001\...\Run: [RoboForm] => C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe [145680 2021-01-26] (Siber Systems -> Siber Systems)
HKU\S-1-5-21-13139471-1339072901-2605139753-1001\...\MountPoints2: {c2d0686b-c57a-11eb-8e39-4ccc6af7f954} - "E:\HiSuiteDownLoader.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{E5931AF4-2A8F-48A5-AFC8-3605AD5C0A0C}] -> reg delete HKCU\Software\Microsoft\Windows\CurrentVersion\Run /v OPENVPN-GUI /f
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SoftEther VPN Client Manager Startup.lnk [2020-12-22]
ShortcutTarget: SoftEther VPN Client Manager Startup.lnk -> C:\Program Files\SoftEther VPN Client\vpncmgr_x64.exe (SoftEther Corporation -> SoftEther VPN Project at University of Tsukuba, Japan.)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {16013F25-E20B-4F1B-AEDD-F4B380D0FD45} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\MpCmdRun.exe [644888 2021-06-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {160E59D3-FF44-49A5-BEBC-D191BC26EA17} - System32\Tasks\Обновление Браузера Яндекс99 => C:\Users\Jessica\AppData\Roaming\RIONwVu\761.vbs [3911 2021-02-08] () [Datei ist nicht signiert]
Task: {19CD5D6E-D8A2-423E-B980-1C0879C45FB2} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {32BA524D-2C13-457E-8D5A-A9C2CF838E1C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\MpCmdRun.exe [644888 2021-06-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3404866C-AB42-4CC8-B44D-457470860287} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\MpCmdRun.exe [644888 2021-06-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3D9174E0-4AFC-4BD6-9174-035EE8734246} - System32\Tasks\Run RoboForm Process => C:\Program Files\Mozilla Firefox\firefox.exe https://addons.mozilla.org/en-US/firefox/addon/roboform/
Task: {44EEE17F-8FD6-4B15-BD0F-F0333D17C906} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3301176 2020-10-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4E6D8306-62F6-44BC-8DC4-87813ABB70F7} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {544E98AB-1D23-4E99-BD65-F1D3CF899E2E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\MpCmdRun.exe [644888 2021-06-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {57FCFA26-64AB-446E-B585-C7610ADFBEC5} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {622C49E7-7C63-4D90-9F8D-5F56E55821BE} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {68F9FF41-124A-4354-BB39-0F49FE8E077A} - System32\Tasks\Open URL by RoboForm => C:\Windows\system32\rundll32.exe url.dll,FileProtocolHandler "https://www.roboform.com/test-pass.html?aaa=KICMKMLMPMNJKMKMKJKMCNPMKMGMNJCNLMLMIMOMCNGMKMHMKJCNHMMJJJKJJJIMHMJJMMOJOJKJJNIICMGMCNOMCNPMCNPMJNHJCMNMCNOMPMCNPMCNOMGMPMLMNMJNHICMEKMICNJJCKJNAJCMMJOJNIMILIKJBJAKHJOJMIMIKJDJNJOJMJHJPLIIKJNJBNLJKJJNEJCMJNFJCMJNBJCMFLKJMIMIGJMJOJJNKJCMJNDJCMLJKJJNMJCMPMFMPMFMPMJNFICMJNJJCMPMJNIJCMPMJNOICMJMPMJNCJCMJNOMCMJNNMCMJNMMCMJNLMCMJNKMCMPMJNJMCMPM"
Task: {7C2FC3A9-3EFE-4911-B953-5D218D49CCD8} - System32\Tasks\GoogleUpdateTaskMachineUA22 => C:\Users\Jessica\AppData\Roaming\RIONwVu\532.vbs [2970 2021-02-24] () [Datei ist nicht signiert] -> FVjtHpMpUi KFGaqvvTOn "C:\Users\Jessica\AppData\Roaming\RIONwVu\xPSOUzMM.bat" <==== ACHTUNG
Task: {8808C99E-F732-4E27-B5F3-C232B81CC31B} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-10-17] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {A30519C7-25C0-4C60-96CB-E1158B270918} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [690616 2021-06-04] (Mozilla Corporation -> Mozilla Foundation)
Task: {A8819F0F-963A-4737-8431-E28148E23F8E} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-13139471-1339072901-2605139753-500 => C:\Users\Jessica\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
Task: {BD5D97CD-373D-42FD-82BB-CF28418A55AB} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C547F70F-8DB4-400C-B60B-7B90B0C02391} - System32\Tasks\Run RoboForm TaskBar Icon => C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe [145680 2021-01-26] (Siber Systems -> Siber Systems)
Task: {C7E38875-2758-4088-8153-7A3B0184E118} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CB2A4450-D73F-4C05-A779-54DC0D83EE46} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646456 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F51438B9-94EC-4107-A1FD-D4B8D9E59ACF} - System32\Tasks\Adobe Acrobat Update Task36 => C:\Users\Jessica\AppData\Roaming\RIONwVu\945.vbs [3784 2021-04-07] () [Datei ist nicht signiert]
Task: {F6C0A5FE-07B4-4C98-A77B-8CE74C03544B} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-10-17] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{357cd4b4-3f64-4e24-95ce-4c7397cf65cc}: [DhcpNameServer] 192.168.0.1
Edge:
=======
Edge DefaultProfile: Profile 1
Edge Profile: C:\Users\Jessica\AppData\Local\Microsoft\Edge\User Data\Default [2020-12-05]
Edge Profile: C:\Users\Jessica\AppData\Local\Microsoft\Edge\User Data\Guest Profile [2020-11-24]
Edge Profile: C:\Users\Jessica\AppData\Local\Microsoft\Edge\User Data\Profile 1 [2021-06-12]
FireFox:
========
FF DefaultProfile: zxldled3.default
FF ProfilePath: C:\Users\Jessica\AppData\Roaming\Mozilla\Firefox\Profiles\bp3p5zzq.default-release-1 [2021-06-12]
FF DownloadDir: C:\Users\Jessica\Desktop\Downloads
FF Homepage: Mozilla\Firefox\Profiles\bp3p5zzq.default-release-1 -> hxxps://www.google.de/?gws_rd=ssl
FF Extension: (MyJDownloader Browser Erweiterung) - C:\Users\Jessica\AppData\Roaming\Mozilla\Firefox\Profiles\bp3p5zzq.default-release-1\Extensions\jid1-OY8Xu5BsKZQa6A@jetpack.xpi [2021-06-03] [UpdateUrl:hxxps://my.jdownloader.org/extensions/firefox.json]
FF Extension: (RoboForm Password Manager) - C:\Users\Jessica\AppData\Roaming\Mozilla\Firefox\Profiles\bp3p5zzq.default-release-1\Extensions\rf-firefox@siber.com.xpi [2021-06-10]
FF Extension: (open-in-pdf) - C:\Users\Jessica\AppData\Roaming\Mozilla\Firefox\Profiles\bp3p5zzq.default-release-1\Extensions\{2582ab30-4fca-475f-88d0-c1a9b9ed978f}.xpi [2020-12-06]
FF Extension: (Adblock Plus - kostenloser Adblocker) - C:\Users\Jessica\AppData\Roaming\Mozilla\Firefox\Profiles\bp3p5zzq.default-release-1\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2021-05-19]
FF ProfilePath: C:\Users\Jessica\AppData\Roaming\Mozilla\Firefox\Profiles\zxldled3.default [2020-11-24]
FF ProfilePath: C:\Users\Jessica\AppData\Roaming\Mozilla\Firefox\Profiles\ci50dgcz.default-release-1606247020673 [2020-11-24]
FF Plugin: @java.com/DTPlugin,version=11.291.2 -> C:\Program Files\Java\jre1.8.0_291\bin\dtplugin\npDeployJava1.dll [2021-04-22] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.291.2 -> C:\Program Files\Java\jre1.8.0_291\bin\plugin2\npjp2.dll [2021-04-22] (Oracle America, Inc. -> Oracle Corporation)
==================== Dienste (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8906088 2021-04-09] (BattlEye Innovations e.K. -> )
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5393304 2021-06-12] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 SEVPNCLIENT; C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe [5886264 2020-12-22] (SoftEther Corporation -> SoftEther VPN Project at University of Tsukuba, Japan.)
S3 ss_conn_launcher_service; C:\Windows\System32\Samsung\EasySetup\ss_conn_launcher.exe [182128 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R2 TermService; C:\Program Files\RDP Wrapper\rdpwrap.dll [116736 2021-06-12] (Stas'M Corp.) [Datei ist nicht signiert] <==== ACHTUNG (kein ServiceDLL)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\NisSrv.exe [2644776 2021-06-12] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\MsMpEng.exe [136656 2021-06-12] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d67c20d727d4578c\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d67c20d727d4578c\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
S4 uhssvc; "C:\Program Files\Microsoft Update Health Tools\uhssvc.exe" [X]
===================== Treiber (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Datei ist nicht signiert]
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [159800 2021-04-22] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 libusbK; C:\Windows\System32\drivers\libusbK.sys [47928 2020-06-03] (Travis Lee Robinson -> hxxp://libusb-win32.sourceforge.net)
R3 MpKsl27e3d8b9; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{8D4939AC-FAB2-4340-9046-E31196E85AB6}\MpKslDrv.sys [107744 2021-06-12] (Microsoft Windows -> Microsoft Corporation)
R3 Neo_VPN; C:\Windows\System32\drivers\Neo6_x64_VPN.sys [37824 2020-12-17] (SoftEther Corporation -> SoftEther Corporation)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\Windows\System32\Drivers\ss_conn_usb_driver2.sys [43376 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49568 2021-06-12] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [425184 2021-06-12] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [76000 2021-06-12] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat (erstellte) (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2021-06-12 20:38 - 2021-06-12 20:39 - 000000000 ____D C:\FRST
2021-06-12 18:07 - 2021-06-12 18:07 - 002755584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2021-06-12 18:07 - 2021-06-12 18:07 - 002755584 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2021-06-12 18:07 - 2021-06-12 18:07 - 002260480 _____ (The ICU Project) C:\Windows\system32\icu.dll
2021-06-12 18:07 - 2021-06-12 18:07 - 001864192 _____ (The ICU Project) C:\Windows\SysWOW64\icu.dll
2021-06-12 18:07 - 2021-06-12 18:07 - 001823792 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2021-06-12 18:07 - 2021-06-12 18:07 - 001393496 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2021-06-12 18:07 - 2021-06-12 18:07 - 001314120 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2021-06-12 18:07 - 2021-06-12 18:07 - 000657464 _____ C:\Windows\system32\WindowManagementAPI.dll
2021-06-12 18:07 - 2021-06-12 18:07 - 000568832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2021-06-12 18:07 - 2021-06-12 18:07 - 000563712 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2021-06-12 18:07 - 2021-06-12 18:07 - 000468440 _____ C:\Windows\SysWOW64\WindowManagementAPI.dll
2021-06-12 18:07 - 2021-06-12 18:07 - 000451072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2021-06-12 18:07 - 2021-06-12 18:07 - 000423936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv
2021-06-12 18:07 - 2021-06-12 18:07 - 000287232 _____ C:\Windows\system32\CoreMas.dll
2021-06-12 18:07 - 2021-06-12 18:07 - 000272384 _____ C:\Windows\system32\TpmTool.exe
2021-06-12 18:07 - 2021-06-12 18:07 - 000223744 _____ C:\Windows\SysWOW64\TpmTool.exe
2021-06-12 18:07 - 2021-06-12 18:07 - 000097280 _____ C:\Windows\system32\Drivers\cimfs.sys
2021-06-12 18:07 - 2021-06-12 18:07 - 000011353 _____ C:\Windows\system32\DrtmAuthTxt.wim
2021-06-05 21:21 - 2021-06-05 21:24 - 000000000 ____D C:\Program Files\VideoLAN
2021-06-05 21:18 - 2021-06-05 21:21 - 000000000 ____D C:\Program Files (x86)\Freemake
2021-06-05 21:18 - 2021-06-05 21:18 - 000000000 ____D C:\Users\Jessica\Documents\Freemake
2021-06-05 21:18 - 2021-06-05 21:18 - 000000000 ____D C:\Users\Jessica\AppData\Local\FreemakeVideoConverter
2021-06-05 21:18 - 2021-06-05 21:18 - 000000000 ____D C:\ProgramData\Freemake
2021-06-05 00:27 - 2021-06-07 20:34 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2021-06-04 17:48 - 2021-06-04 17:48 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2021-06-04 17:14 - 2021-06-12 18:36 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-05-30 19:45 - 2021-05-30 19:45 - 000000000 ____D C:\Users\Jessica\Documents\My Games
2021-05-28 18:35 - 2021-05-28 18:37 - 000000000 ____D C:\Users\Jessica\Desktop\Neuer Ordner
2021-05-15 13:02 - 2021-05-15 13:02 - 000037376 _____ (Microsoft Corporation) C:\Windows\system32\rfxvmt.dll
2021-05-14 17:11 - 2021-04-22 06:12 - 000159800 _____ (Samsung Electronics Co., Ltd.) C:\Windows\system32\Drivers\ssudbus2.sys
2021-05-14 17:09 - 2021-05-14 17:09 - 001687040 _____ C:\Windows\system32\libcrypto.dll
2021-05-14 17:09 - 2021-05-14 17:09 - 001163776 _____ C:\Windows\system32\MBR2GPT.EXE
2021-05-14 17:09 - 2021-05-14 17:09 - 000700928 _____ C:\Windows\system32\FsNVSDeviceSource.dll
2021-05-14 17:09 - 2021-05-14 17:09 - 000157184 _____ C:\Windows\system32\uwfcsp.dll
2021-05-14 17:09 - 2021-05-14 17:09 - 000153600 _____ C:\Windows\system32\uwfcfgmgmt.dll
2021-05-14 17:09 - 2021-05-14 17:09 - 000060928 _____ C:\Windows\system32\runexehelper.exe
2021-05-14 17:08 - 2021-05-14 17:08 - 000165888 _____ C:\Windows\system32\DataStoreCacheDumpTool.exe
2021-05-14 17:08 - 2021-05-14 17:08 - 000013312 _____ C:\Windows\system32\agentactivationruntimestarter.exe
==================== Ein Monat (geänderte) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2021-06-12 20:40 - 2021-04-07 19:02 - 000001919 _____ C:\Windows\system32\null
2021-06-12 20:40 - 2021-04-07 19:01 - 000000000 ____D C:\Users\Jessica\AppData\Roaming\RIONwVu
2021-06-12 20:40 - 2020-11-24 21:20 - 000000000 ____D C:\Users\Jessica\AppData\Roaming\discord
2021-06-12 20:38 - 2020-11-24 19:42 - 000000000 ____D C:\ProgramData\NVIDIA
2021-06-12 20:34 - 2020-09-27 07:33 - 000000000 ____D C:\Windows\system32\SleepStudy
2021-06-12 20:32 - 2020-11-24 21:20 - 000000000 ____D C:\Users\Jessica\AppData\Local\Discord
2021-06-12 20:08 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-06-12 19:38 - 2020-11-24 21:41 - 000000000 ____D C:\ProgramData\Mozilla
2021-06-12 19:37 - 2020-11-24 21:41 - 000000000 ____D C:\Users\Jessica\AppData\LocalLow\Mozilla
2021-06-12 19:32 - 2020-11-24 21:28 - 000000000 ____D C:\ProgramData\Riot Games
2021-06-12 19:28 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2021-06-12 19:11 - 2020-11-24 19:39 - 001723220 _____ C:\Windows\system32\PerfStringBackup.INI
2021-06-12 19:11 - 2019-12-07 16:51 - 000743818 _____ C:\Windows\system32\perfh007.dat
2021-06-12 19:11 - 2019-12-07 16:51 - 000150240 _____ C:\Windows\system32\perfc007.dat
2021-06-12 19:10 - 2020-11-27 20:32 - 000000000 ____D C:\Users\Jessica\AppData\Local\ClassicShell
2021-06-12 19:05 - 2020-12-22 21:06 - 000000000 ____D C:\Program Files\SoftEther VPN Client
2021-06-12 19:04 - 2021-04-07 19:02 - 000013118 _____ C:\rdpwrap.txt
2021-06-12 19:04 - 2020-09-27 09:33 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-06-12 19:04 - 2020-09-27 07:33 - 000008192 ___SH C:\DumpStack.log.tmp
2021-06-12 19:04 - 2019-12-07 11:03 - 000262144 _____ C:\Windows\system32\config\BBI
2021-06-12 19:02 - 2021-04-07 19:02 - 000000000 ___HD C:\Program Files\RDP Wrapper
2021-06-12 18:52 - 2020-09-27 09:33 - 000000000 ____D C:\Windows\system32\Drivers\wd
2021-06-12 18:52 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2021-06-12 18:39 - 2021-02-22 19:52 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-06-12 18:37 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2021-06-12 18:36 - 2020-11-24 23:05 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-06-12 18:36 - 2020-09-27 07:33 - 000257920 _____ C:\Windows\system32\FNTCACHE.DAT
2021-06-12 18:35 - 2019-12-07 16:54 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-06-12 18:35 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\PrintDialog
2021-06-12 18:35 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\lv-LV
2021-06-12 18:35 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\et-EE
2021-06-12 18:35 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2021-06-12 18:35 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2021-06-12 18:35 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2021-06-12 18:35 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\migwiz
2021-06-12 18:35 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\lv-LV
2021-06-12 18:35 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\et-EE
2021-06-12 18:35 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Dism
2021-06-12 18:35 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2021-06-12 18:35 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2021-06-12 18:09 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2021-06-12 18:01 - 2020-11-24 19:41 - 000000000 ____D C:\Windows\system32\MRT
2021-06-12 18:00 - 2020-11-24 19:41 - 132447432 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2021-06-12 16:27 - 2020-09-27 09:36 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-06-12 16:27 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-06-07 20:34 - 2020-11-27 21:35 - 000001278 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
2021-06-04 23:47 - 2020-11-27 21:19 - 000000000 ____D C:\Program Files (x86)\Steam
2021-06-04 17:48 - 2020-11-24 23:05 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-05-30 19:55 - 2020-11-24 19:42 - 000000000 ____D C:\ProgramData\Package Cache
2021-05-25 19:15 - 2020-11-24 21:20 - 000002237 _____ C:\Users\Jessica\Desktop\Discord.lnk
2021-05-25 07:48 - 2021-02-22 19:52 - 000725304 _____ (Microsoft Corporation) C:\Windows\system32\sedplugins.dll
2021-05-25 07:48 - 2021-02-22 19:52 - 000470328 _____ (Microsoft Corporation) C:\Windows\system32\QualityUpdateAssistant.dll
2021-05-19 20:18 - 2021-04-30 20:42 - 000000000 ____D C:\Users\Jessica\AppData\Roaming\Startup Company
2021-05-15 00:15 - 2019-12-07 16:52 - 000000000 ____D C:\Windows\system32\OpenSSH
2021-05-15 00:15 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2021-05-15 00:15 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\setup
2021-05-15 00:15 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\oobe
2021-05-15 00:15 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\lt-LT
2021-05-15 00:15 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinMetadata
2021-05-15 00:15 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\SystemResetPlatform
2021-05-15 00:15 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\setup
2021-05-15 00:15 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\lt-LT
2021-05-15 00:15 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\Provisioning
2021-05-15 00:15 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\DiagTrack
2021-05-14 17:11 - 2019-12-07 16:54 - 000023552 _____ (Microsoft Corporation) C:\Windows\system32\OEMDefaultAssociations.dll
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========
2021-02-24 20:54 - 2019-09-27 20:56 - 000604056 ____H (Simon Tatham) C:\Users\Jessica\AppData\Roaming\plink.exe
==================== SigCheck ============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
==================== Ende von FRST.txt ========================
Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 12-06-2021
durchgeführt von Jessica (12-06-2021 20:40:36)
Gestartet von C:\Users\Jessica\Desktop\Downloads
Windows 10 Pro Version 20H2 19042.1052 (X64) (2020-11-24 17:35:23)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-13139471-1339072901-2605139753-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-13139471-1339072901-2605139753-503 - Limited - Disabled)
FVjtHpMpUi (S-1-5-21-13139471-1339072901-2605139753-1004 - Administrator - Enabled)
Gast (S-1-5-21-13139471-1339072901-2605139753-501 - Limited - Disabled)
Jessica (S-1-5-21-13139471-1339072901-2605139753-1001 - Administrator - Enabled) => C:\Users\Jessica
WDAGUtilityAccount (S-1-5-21-13139471-1339072901-2605139753-504 - Limited - Disabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
Anno 1800 (HKLM-x32\...\Uplay Install 4553) (Version: - Ubisoft)
Battlestate Games Launcher 10.4.7.1339 (HKLM-x32\...\{B0FDA062-7581-4D67-B085-C4E7C358037F}_is1) (Version: 10.4.7.1339 - Battlestate Games)
Classic Shell (HKLM\...\{CABCE573-0A86-42FA-A52A-C7EA61D5BE08}) (Version: 4.3.1 - IvoSoft)
Discord (HKU\S-1-5-21-13139471-1339072901-2605139753-1001\...\Discord) (Version: 0.0.309 - Discord Inc.)
Epic Games Launcher (HKLM-x32\...\{07D9F8F3-EC99-4133-919D-DA341C62937C}) (Version: 1.1.298.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Escape from Tarkov (HKLM-x32\...\EscapeFromTarkov) (Version: 0.12.10.2.11856 - Battlestate Games)
HashTab 5.1.0.23 (HKLM\...\HashTab) (Version: 5.1.0.23 - Implbits Software)
Java 8 Update 291 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180291F0}) (Version: 8.0.2910.10 - Oracle Corporation)
JDownloader 2 (HKU\S-1-5-21-13139471-1339072901-2605139753-1001\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKU\S-1-5-21-13139471-1339072901-2605139753-1001\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 91.0.864.48 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29334 (HKLM-x32\...\{a9cfe9c7-e54f-46cd-9c5c-542ff8e3e8c4}) (Version: 14.28.29334.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334 (HKLM-x32\...\{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 - Microsoft Corporation)
Mozilla Firefox 89.0 (x64 de) (HKLM\...\Mozilla Firefox 89.0 (x64 de)) (Version: 89.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 78.5.0 - Mozilla)
Mozilla Thunderbird 78.11.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 78.11.0 (x86 de)) (Version: 78.11.0 - Mozilla)
MSI Afterburner 4.6.2 (HKLM-x32\...\Afterburner) (Version: 4.6.2 - MSI Co., LTD)
NVIDIA FrameView SDK 1.1.4923.29214634 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29214634 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.20.5.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.5.70 - NVIDIA Corporation)
NVIDIA Grafiktreiber 461.40 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 461.40 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.38.40 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.40 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
RoboForm 9-1-0-0 (All Users) (HKLM-x32\...\AI RoboForm) (Version: 9-1-0-0 - Siber Systems)
SoftEther VPN Client (HKLM\...\softether_sevpnclient) (Version: 4.34.9745 - SoftEther VPN Project)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 116.2.10277 - Ubisoft)
Windows-Treiberpaket - libusbK Nintendo Switch (APX mode) (04/27/2014 3.0.7.0) (HKLM\...\C474C3AC0A427B4CF35173FC250E5E8C9C284DE1) (Version: 04/27/2014 3.0.7.0 - libusbK)
Windows-Treiberpaket - libusbK Nintendo Switch (Homebrew mode) (04/27/2014 3.0.7.0) (HKLM\...\6D6BF0768F9873437C984F0DC0E4C569A45227BF) (Version: 04/27/2014 3.0.7.0 - libusbK)
WinRAR 5.91 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.91.0 - win.rar GmbH)
WISO Steuer-Start 2021 (HKLM-x32\...\{0F37A593-1CA8-4DA8-AD4A-095543CAB13E}) (Version: 28.04.2064 - Buhl Data Service GmbH)
Packages:
=========
Media Engine-Add-On für Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-03-28] (Microsoft Corporation)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.961.0_x64__56jybvy8sckqj [2021-05-26] (NVIDIA Corp.)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2018-07-15] (Ivaylo Beltchev -> IvoSoft) [Datei ist nicht signiert]
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2018-07-15] (Ivaylo Beltchev -> IvoSoft) [Datei ist nicht signiert]
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d67c20d727d4578c\nvshext.dll [2021-01-23] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [StartMenuExt] -> {E595F05F-903F-4318-8B0A-7F633B520D2B} => C:\Windows\system32\StartMenuHelper64.dll [2018-07-15] (Ivaylo Beltchev -> IvoSoft) [Datei ist nicht signiert]
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Nicht auf der Ausnahmeliste) ====================
==================== Verknüpfungen & WMI ========================
==================== Geladene Module (Nicht auf der Ausnahmeliste) =============
2018-07-15 14:15 - 2018-07-15 14:15 - 000885560 _____ (Ivaylo Beltchev -> IvoSoft) [Datei ist nicht signiert] C:\Program Files\Classic Shell\ClassicExplorer64.dll
2018-07-15 14:15 - 2018-07-15 14:15 - 003664696 _____ (Ivaylo Beltchev -> IvoSoft) [Datei ist nicht signiert] C:\Program Files\Classic Shell\ClassicStartMenuDLL.dll
2021-04-27 19:16 - 2021-05-25 19:12 - 004329600 _____ (Mercer Road Corp -> Mercer Road Corp) [Datei ist nicht signiert] C:\Riot Games\Riot Client\vivoxsdk_v4.dll
2020-11-24 21:31 - 2020-11-24 21:31 - 003550208 _____ (Microsoft Corporation) [Datei ist nicht signiert] C:\Riot Games\League of Legends\Game\d3dcompiler_47.dll
2021-04-07 19:02 - 2021-06-12 19:02 - 000116736 _____ (Stas'M Corp.) [Datei ist nicht signiert] c:\program files\rdp wrapper\rdpwrap.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\ProgramData:BDSDRMHK [64]
AlternateDataStreams: C:\Users\All Users:BDSDRMHK [64]
AlternateDataStreams: C:\ProgramData\Anwendungsdaten:BDSDRMHK [64]
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================
==================== Internet Explorer (Nicht auf der Ausnahmeliste) ==========
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2018-07-15] (Ivaylo Beltchev -> IvoSoft) [Datei ist nicht signiert]
BHO: RoboForm Toolbar Helper -> {724d43a9-0d85-11d4-9908-00400523e39a} -> C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboForm-x64.dll [2021-01-26] (Siber Systems -> Siber Systems Inc.)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_291\bin\ssv.dll [2021-04-22] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_291\bin\jp2ssv.dll [2021-04-22] (Oracle America, Inc. -> Oracle Corporation)
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2018-07-15] (Ivaylo Beltchev -> IvoSoft) [Datei ist nicht signiert]
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2018-07-15] (Ivaylo Beltchev -> IvoSoft) [Datei ist nicht signiert]
BHO-x32: RoboForm Toolbar Helper -> {724d43a9-0d85-11d4-9908-00400523e39a} -> C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll [2021-01-26] (Siber Systems -> Siber Systems Inc.)
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2018-07-15] (Ivaylo Beltchev -> IvoSoft) [Datei ist nicht signiert]
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2018-07-15] (Ivaylo Beltchev -> IvoSoft) [Datei ist nicht signiert]
Toolbar: HKLM - &RoboForm Toolbar - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboForm-x64.dll [2021-01-26] (Siber Systems -> Siber Systems Inc.)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2018-07-15] (Ivaylo Beltchev -> IvoSoft) [Datei ist nicht signiert]
Toolbar: HKLM-x32 - &RoboForm Toolbar - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll [2021-01-26] (Siber Systems -> Siber Systems Inc.)
==================== Hosts Inhalt: =========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2019-12-07 11:14 - 2019-12-07 11:12 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
==================== Andere Bereiche ===========================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common
HKU\S-1-5-21-13139471-1339072901-2605139753-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
HKLM\...\StartupApproved\StartupFolder: => "SoftEther VPN Client Manager Startup.lnk"
HKLM\...\StartupApproved\Run: => "SoftEther VPN Client UI Helper"
HKU\S-1-5-21-13139471-1339072901-2605139753-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-13139471-1339072901-2605139753-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-13139471-1339072901-2605139753-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-13139471-1339072901-2605139753-1001\...\StartupApproved\Run: => "VoipSoftClient"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{DB682F34-7B15-445D-A6EB-3E10FB207F17}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{EDBCFBE7-BB2F-49FC-8742-B624C3CB3987}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F37FA124-1BE4-45F2-9D30-C9C6A6BCA10A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{670B78A0-C7ED-4358-A96D-52BF8ED41A3B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{7C3D36B4-76E9-491F-9F4F-2E57097C79D4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{5BAA42B4-CA4F-440E-B8F1-B6FB5106D8A6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F04ADC30-DC9A-407D-BC83-603DD530C32D}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{646A2849-7668-43F2-A346-F521CA4B3EC6}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{E7E4EE0F-FB74-4BA9-BCCA-9E547A508B40}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{2A4A8923-3AC7-4CCE-A030-6AA5C1EFE683}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{54D00D4A-5F7A-4B6F-B130-E273C7F6AFE2}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Keine Datei
FirewallRules: [{C63F019A-D323-467A-BCB6-8BF772542224}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Keine Datei
FirewallRules: [{5A337191-A926-4E52-895B-E105C310D8A6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{34EF354B-3DDE-4B5F-B902-064B5EE2E08D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{9830396C-C5E2-4CC9-84F6-520868E20AC4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Evil Bank Manager\EvilBankManager.exe () [Datei ist nicht signiert]
FirewallRules: [{7748CD87-4EAF-44E5-A1ED-80091AFF7B8D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Evil Bank Manager\EvilBankManager.exe () [Datei ist nicht signiert]
FirewallRules: [{46E2A131-23E2-479E-8751-5B40FA48D4CD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Football Manager 2021 Touch\fm.exe (Sports Interactive) [Datei ist nicht signiert]
FirewallRules: [{805EC662-F49C-493C-8326-C2743830B41D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Football Manager 2021 Touch\fm.exe (Sports Interactive) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{349EFB75-7BCF-42ED-9034-15511DB44ACD}C:\program files (x86)\ubisoft\ubisoft game launcher\games\anno 1800\bin\win64\anno1800.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\games\anno 1800\bin\win64\anno1800.exe (Ubisoft Blue Byte GmbH -> Ubisoft)
FirewallRules: [{11CA05AE-FA2C-4BA7-9AFD-C423C852A9E3}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Anno 1800\Bin\Win64\Anno1800.exe (Ubisoft Blue Byte GmbH -> Ubisoft)
FirewallRules: [{DBAB0BEB-7B86-4BBD-89B9-1BA488993D4F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{3E556AD9-3139-4B62-8923-3FE3651458E7}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{D22E2AC7-5A42-4A0D-9F30-DD363009ECC2}] => (Allow) C:\Program Files\SoftEther VPN Client\vpnclient.exe (SoftEther Corporation -> SoftEther VPN Project at University of Tsukuba, Japan.)
FirewallRules: [{37DEF0F4-283F-4000-97D6-5743CDF738AE}] => (Allow) C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe (SoftEther Corporation -> SoftEther VPN Project at University of Tsukuba, Japan.)
FirewallRules: [{9BBF3673-786B-44EE-81B3-1BCA735E3764}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmgr.exe (SoftEther Corporation -> SoftEther VPN Project at University of Tsukuba, Japan.)
FirewallRules: [{636CFA71-D2E7-4186-9258-D6A66BFBB5CE}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmgr_x64.exe (SoftEther Corporation -> SoftEther VPN Project at University of Tsukuba, Japan.)
FirewallRules: [{CE483F3E-EF8D-42D2-9218-DEC23672D290}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmd.exe (SoftEther Corporation -> SoftEther VPN Project at University of Tsukuba, Japan.)
FirewallRules: [{656C07F8-C323-44F6-97AC-F0F1A15A4E5D}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmd_x64.exe (SoftEther Corporation -> SoftEther VPN Project at University of Tsukuba, Japan.)
FirewallRules: [TCP Query User{BEB74DE7-A3FC-4E27-B97A-5E1760CB0037}C:\program files (x86)\voipsoftclient.com\voipsoftclient\voipsoftclient.exe] => (Allow) C:\program files (x86)\voipsoftclient.com\voipsoftclient\voipsoftclient.exe => Keine Datei
FirewallRules: [UDP Query User{FDF4A235-B007-4DAC-92C7-A2BAAFA00E42}C:\program files (x86)\voipsoftclient.com\voipsoftclient\voipsoftclient.exe] => (Allow) C:\program files (x86)\voipsoftclient.com\voipsoftclient\voipsoftclient.exe => Keine Datei
FirewallRules: [{4AFE411F-0F87-4AD9-B116-01D32B4B7D6E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BloonsTD6\BloonsTD6.exe () [Datei ist nicht signiert]
FirewallRules: [{2E279C77-8494-41ED-95E4-898A715EC3BA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BloonsTD6\BloonsTD6.exe () [Datei ist nicht signiert]
|
|
12.06.2021, 22:02
| #7 |
| | Zufälliger Fund vom zweiten BenutzerkontoCode:
ATTFilter FirewallRules: [{FDA63F5E-31AF-4117-922A-16AE410F3997}] => (Allow) LPort=13389
FirewallRules: [{BFFF127A-3AF6-46C0-9953-185D5233E79C}] => (Allow) LPort=13389
FirewallRules: [{74B2B0A4-FD04-475C-9B05-B841ED4BBD02}] => (Allow) LPort=13389
FirewallRules: [{288B9FF3-BE32-487B-B775-48A960B712AB}] => (Allow) LPort=13389
FirewallRules: [{FE02B61D-A7FE-4A9B-B7C2-A72134EBB3C9}] => (Allow) LPort=13389
FirewallRules: [{A92FA357-0083-4DFB-88FC-227DE7C0C888}] => (Allow) LPort=13389
FirewallRules: [{3FC04380-FAEB-46BD-9B1E-617178F98574}] => (Allow) LPort=13389
FirewallRules: [{42BC561F-7715-47AC-BFA8-CEBC7D18D1A3}] => (Allow) LPort=13389
FirewallRules: [{C1105C3B-4475-4B17-85FE-3E15F7FA7213}] => (Allow) LPort=13389
FirewallRules: [{AD6688A3-F7B2-4CEF-A782-02783AC05CE3}] => (Allow) LPort=13389
FirewallRules: [{2654F959-8126-4635-9964-703A1439014D}] => (Allow) LPort=13389
FirewallRules: [{559B6083-1464-44E3-A61C-39F0DF92D00C}] => (Allow) LPort=13389
FirewallRules: [{1A143F32-64AE-40B3-BF1A-2F4DBB119806}] => (Allow) LPort=13389
FirewallRules: [{A5B7FAD6-E4E7-4CD0-9B23-83EC87E0AF11}] => (Allow) LPort=13389
FirewallRules: [{616A1C38-9E4A-4A50-8AAC-1BCD253E8473}] => (Allow) LPort=13389
FirewallRules: [{512108B8-7AF0-42C8-B4C8-48BFD049599F}] => (Allow) LPort=13389
FirewallRules: [{58C7A295-AE64-48D2-B9A2-385D6050E8CD}] => (Allow) LPort=13389
FirewallRules: [{6DFBD714-7112-4787-94FF-7403C093B4A9}] => (Allow) LPort=13389
FirewallRules: [{9D751735-73DA-4D91-8504-C3578F61DB45}] => (Allow) LPort=13389
FirewallRules: [{0FAA1FBB-DB01-41D3-A6AE-00FA629540B5}] => (Allow) LPort=13389
FirewallRules: [{9C2486C3-9C9D-43C9-BA9C-1F9608381C34}] => (Allow) LPort=13389
FirewallRules: [{4FB669B7-CED0-4D59-B87A-BE3B3D673521}] => (Allow) LPort=13389
FirewallRules: [{D5681118-259D-4BAA-A618-F063863E080B}] => (Allow) LPort=13389
FirewallRules: [{2BB436E8-911A-49F2-8E36-DB08D798D8A9}] => (Allow) LPort=13389
FirewallRules: [{1924D8F0-5E8E-4874-A7E9-5532BF2C0370}] => (Allow) LPort=13389
FirewallRules: [{BEAF3032-6E05-4F01-9E85-7D438B0DF8F4}] => (Allow) LPort=13389
FirewallRules: [{53317436-045B-4B9B-BC86-26D316AF96E0}] => (Allow) LPort=13389
FirewallRules: [{7984158F-BFE8-44DA-B71D-64C52CBE8E18}] => (Allow) LPort=13389
FirewallRules: [{C1D79FEF-4259-40B3-AD96-2DFFE66E4B61}] => (Allow) LPort=13389
FirewallRules: [{4D3AAFC7-4DA5-402A-BC25-75F62609C17D}] => (Allow) LPort=13389
FirewallRules: [{7A596C42-AE49-42B8-8597-F34805A02E00}] => (Allow) LPort=13389
FirewallRules: [{D914CA13-F4DE-4082-B0C8-C678CDB8E263}] => (Allow) LPort=13389
FirewallRules: [{2DD5D0C8-ECD3-4EF3-BCA1-E180ED181B34}] => (Allow) LPort=13389
FirewallRules: [{5A607DCE-3489-44B5-B721-C2D35515F97B}] => (Allow) LPort=13389
FirewallRules: [{A3A3EC13-A11C-4BB1-A104-E8E7BB47B00B}] => (Allow) LPort=13389
FirewallRules: [{EBF0EBC9-99B3-480A-A3EF-F341D1B4C2D2}] => (Allow) LPort=13389
FirewallRules: [{87C58D71-428E-45A9-9E0E-E45A283A5B6E}] => (Allow) LPort=13389
FirewallRules: [{4FD64EF7-7137-423C-99EB-6862429093B7}] => (Allow) LPort=13389
FirewallRules: [{31EFDD16-0B13-4D7E-8F4A-6CA7524FCB99}] => (Allow) LPort=13389
FirewallRules: [{C7A1EE52-B407-4142-84FD-40567DD16406}] => (Allow) LPort=13389
FirewallRules: [{DC044343-DC45-4FC8-812E-65FD52DCD0C3}] => (Allow) LPort=13389
FirewallRules: [{27E6A59E-74DD-4071-9CA1-2C8747D422BC}] => (Allow) LPort=13389
FirewallRules: [{4020823C-59ED-4346-BC7A-BB1D3077D60B}] => (Allow) LPort=13389
FirewallRules: [{738FD87E-6650-4330-8A6D-FF1C308CB233}] => (Allow) LPort=13389
FirewallRules: [{2180DDCF-1065-4728-9734-B48223B5DAB0}] => (Allow) LPort=13389
FirewallRules: [{36EF12C2-6F74-41AE-A5C2-C626246D090B}] => (Allow) LPort=13389
FirewallRules: [{F469E690-4889-40B4-9697-249D39EBEEF7}] => (Allow) LPort=13389
FirewallRules: [{4D875545-68E7-4944-A63B-D9490FDB4E64}] => (Allow) LPort=13389
FirewallRules: [{B0A90E08-D43B-4A99-BD1B-F7DACEF53787}] => (Allow) LPort=13389
FirewallRules: [{2757C9CD-312A-4A18-8C6F-C356C3FB6E44}] => (Allow) LPort=13389
FirewallRules: [{41602B4C-27EC-47F5-B0DE-793456C0402B}] => (Allow) LPort=13389
FirewallRules: [{891E0C19-2FFB-430D-AE58-AD0CD331CBB4}] => (Allow) LPort=13389
FirewallRules: [{72DF5208-DF5C-4BE3-9D9A-1F73D51C399D}] => (Allow) LPort=13389
FirewallRules: [{9CBA6C91-CEB5-45CA-A1F2-42EF35621B99}] => (Allow) LPort=13389
FirewallRules: [{89A595C5-588F-4EC1-B8D3-0572274976FB}] => (Allow) LPort=13389
FirewallRules: [{8FC93401-9DC9-4999-B759-B8E55CA9B949}] => (Allow) LPort=13389
FirewallRules: [{7BE457CF-2AD8-4D36-AD19-5B12929CE06D}] => (Allow) LPort=13389
FirewallRules: [{05BDD41A-89B0-4F0B-9C8D-22342BECF0C7}] => (Allow) LPort=13389
FirewallRules: [{2F9505B3-18D3-41DA-9D0B-354AF1DA1662}] => (Allow) LPort=13389
FirewallRules: [{75A7CEEC-6E11-45B8-B724-62E734FEB2D7}] => (Allow) LPort=13389
FirewallRules: [{5C1D9A87-0491-4ACE-87DB-2B1D78E31846}] => (Allow) LPort=13389
FirewallRules: [{2E87CD9F-8F8C-4559-BF4E-0B1CE27EA031}] => (Allow) LPort=13389
FirewallRules: [{A83A1142-9349-4CBC-944E-46DA4CE0C814}] => (Allow) LPort=13389
FirewallRules: [{C796FBA9-3A1E-450D-81ED-CEBCD24DE3D9}] => (Allow) LPort=13389
FirewallRules: [{73FA8CC2-8143-4301-9FC4-5FF595A95606}] => (Allow) LPort=13389
FirewallRules: [{E9BD14A0-0686-45E0-828E-FD0B7B95B2F1}] => (Allow) LPort=13389
FirewallRules: [{3FE850ED-292B-4886-8E1C-F02FE3F672C3}] => (Allow) LPort=13389
FirewallRules: [{910DE5E2-3A77-4279-A2C8-1C0294506FB9}] => (Allow) LPort=13389
FirewallRules: [{47AFB6DC-5912-4309-A38A-D8BBF61C5AD6}] => (Allow) LPort=13389
FirewallRules: [{46F216C5-2517-4BDC-AEB7-EECCED24C225}] => (Allow) LPort=13389
FirewallRules: [{473B9817-9C7C-4421-BB92-6A7AC0D01456}] => (Allow) LPort=13389
FirewallRules: [{DEE6CB6C-7759-4653-A680-7F4BB51B2EE7}] => (Allow) LPort=13389
FirewallRules: [{77BC5EF8-6ED8-40D7-AA0B-C9F562D22C59}] => (Allow) LPort=13389
FirewallRules: [{EA989B6E-5452-40AD-9758-EBA49D09E83D}] => (Allow) LPort=13389
FirewallRules: [{DB1B82AD-25BC-4295-A465-BEF2E08F3C54}] => (Allow) LPort=13389
FirewallRules: [{2FC0A1C8-1659-4786-8977-B8A599B43DA2}] => (Allow) LPort=13389
FirewallRules: [{FFBBE37F-D7B4-4F48-A473-6B4F9C3D4535}] => (Allow) LPort=13389
FirewallRules: [{BE870563-D0BD-4876-9785-AF29B862D9B2}] => (Allow) LPort=13389
FirewallRules: [{D75B99A5-A5CD-4B02-9E9E-91C4426FE9B6}] => (Allow) LPort=13389
FirewallRules: [{6226CE49-0FD4-42F6-96BF-C6ADAE827578}] => (Allow) LPort=13389
FirewallRules: [{523A8F96-AE68-4ADE-BE60-EA368CBD321E}] => (Allow) LPort=13389
FirewallRules: [{5583FD9E-3F9D-4979-B862-3D3904018EBA}] => (Allow) LPort=13389
FirewallRules: [{1E62D8A2-0C27-48FA-B589-0CAD137A2A42}] => (Allow) LPort=13389
FirewallRules: [{23F21FA3-C63B-4275-A764-04FCE047B8F3}] => (Allow) LPort=13389
FirewallRules: [{BD627CD5-0D9B-4B9C-B90F-AB834C86BB15}] => (Allow) LPort=13389
FirewallRules: [{7FF5F8ED-C51C-4C1B-9D7E-658EF5834F5A}] => (Allow) LPort=13389
FirewallRules: [{B62A4912-AFB2-40CF-87C5-6A79962B3117}] => (Allow) LPort=13389
FirewallRules: [{B8908102-A2C7-4DE8-8E55-6552BC508FBE}] => (Allow) LPort=13389
FirewallRules: [{BC6F7A24-2AD0-44CE-900B-4A45EAEF7B81}] => (Allow) LPort=13389
FirewallRules: [{E8217063-6700-46A9-824B-D10C97205CDB}] => (Allow) LPort=13389
FirewallRules: [{CB74F71D-7103-4544-A75D-E0C9E92A34BE}] => (Allow) LPort=13389
FirewallRules: [{44860C06-9D7E-448D-B2F5-22354D2F949B}] => (Allow) LPort=13389
FirewallRules: [{B75F4FD2-E062-403B-AB81-EF02D8548D16}] => (Allow) LPort=13389
FirewallRules: [{C54DA969-F9E4-421F-901C-5F887F498845}] => (Allow) LPort=13389
FirewallRules: [{878E29B8-FC48-49A0-A28A-D35E1A8B5CE6}] => (Allow) LPort=13389
FirewallRules: [{401E10CF-3B58-413B-A48C-29FD249E868E}] => (Allow) LPort=13389
FirewallRules: [{184F7305-B409-4AA5-B33B-339EA0493372}] => (Allow) LPort=13389
FirewallRules: [{0B79F77B-ECFC-4D47-B233-3BC17717723F}] => (Allow) LPort=13389
FirewallRules: [{B740FD65-4796-4526-ABD1-ADB3DF4D080E}] => (Allow) LPort=13389
FirewallRules: [{9E323BC9-DE46-448B-AC24-7AEA0178F978}] => (Allow) LPort=13389
FirewallRules: [{9E042352-7343-4A34-9D13-F60AD3C4E3D7}] => (Allow) LPort=13389
FirewallRules: [{CD6ECDE6-1390-45A4-9EF7-B72D388C7035}] => (Allow) LPort=13389
FirewallRules: [{D5EAEB8A-686A-485F-A178-8CCFCAF8E548}] => (Allow) LPort=13389
FirewallRules: [{C53760EF-D472-416A-8DE8-CE6A738E4094}] => (Allow) LPort=13389
FirewallRules: [{2D315BE4-BA0D-402C-AA83-8B5A85B9DBC1}] => (Allow) LPort=13389
FirewallRules: [{7507F322-9401-4C80-A4AC-078FE3183F5F}] => (Allow) LPort=13389
FirewallRules: [{8DF780C8-18A3-48D3-9905-A433B35A3CDB}] => (Allow) LPort=13389
FirewallRules: [{38A14C1F-26D7-41FD-844D-CD0D0784B1DB}] => (Allow) LPort=13389
FirewallRules: [{80B47B88-5807-4591-92AE-8FBF5B163D24}] => (Allow) LPort=13389
FirewallRules: [{3F4673DC-B37A-4717-82A1-CD406477E313}] => (Allow) LPort=13389
FirewallRules: [{65F66A00-B9C8-41F9-BE11-732B57125483}] => (Allow) LPort=13389
FirewallRules: [{7BE59B31-D7A7-4DCE-BDCA-391F76725318}] => (Allow) LPort=13389
FirewallRules: [{9C7413EE-56F1-4663-BF4B-4A883DF97509}] => (Allow) LPort=13389
FirewallRules: [{AFF9F0D5-ACF5-433B-93D1-FEEF59C909ED}] => (Allow) LPort=13389
FirewallRules: [{251CB9AF-6834-4A43-BD2B-904E22D26A22}] => (Allow) LPort=13389
FirewallRules: [{596D7C56-13E0-4DF5-8F95-4F23A40F419E}] => (Allow) LPort=13389
FirewallRules: [{C7D51916-2084-4782-81D0-7E3261D94381}] => (Allow) LPort=13389
FirewallRules: [{ED7B24CB-B006-4E90-8032-A2FEDD2EC097}] => (Allow) LPort=13389
FirewallRules: [{B2839099-C75A-415E-87AE-8B61662A60AA}] => (Allow) LPort=13389
FirewallRules: [{AA9F0560-7FF3-47A1-82C7-B886B1328CD5}] => (Allow) LPort=13389
FirewallRules: [{16B7394D-48F8-4615-90B4-4658B962F30C}] => (Allow) LPort=13389
FirewallRules: [{88186E61-A246-4F39-B461-674AE3CE7753}] => (Allow) LPort=13389
FirewallRules: [{69BC6FE5-2956-4C64-824C-BF39F04B15F9}] => (Allow) LPort=13389
FirewallRules: [{D6A3525C-16DC-4FF7-84F5-788CCBE5EE40}] => (Allow) LPort=13389
FirewallRules: [{EE3CE3D0-4212-467D-A623-ED9E1196FE76}] => (Allow) LPort=13389
FirewallRules: [{058FB14D-FC67-40A8-9DAE-507829A997F9}] => (Allow) LPort=13389
FirewallRules: [{1F172DE9-53A2-4200-B71B-EE45DFEA2B4D}] => (Allow) LPort=13389
FirewallRules: [{E4FE6D86-DE8C-41D5-8FFD-89B49AFEAB95}] => (Allow) LPort=13389
FirewallRules: [{F5E75751-7BC2-41A9-8A97-BA8A0BDC6447}] => (Allow) LPort=13389
FirewallRules: [{F91A10FD-5E2E-45B2-96C6-0DAFF110854D}] => (Allow) LPort=13389
FirewallRules: [{F7C6F40B-FAAC-436F-AA9C-26442004C806}] => (Allow) LPort=13389
FirewallRules: [{DB20BFA2-C24C-43A2-8F9E-0C23ABDAB22E}] => (Allow) LPort=13389
FirewallRules: [{930471D5-FF13-4B75-A8E2-088E78F7D3A7}] => (Allow) LPort=13389
FirewallRules: [{6019C778-82FC-417D-9EEB-F5913298D061}] => (Allow) LPort=13389
FirewallRules: [{64D34D03-5390-4C1A-B858-4DDD80E1458C}] => (Allow) LPort=13389
FirewallRules: [{CB3C4819-B2C7-47F3-B540-3D5C5DA4827D}] => (Allow) LPort=13389
FirewallRules: [{689CFD62-90F8-4DA8-8E35-C6E901C1CBCF}] => (Allow) LPort=13389
FirewallRules: [{30B7E48C-4559-4744-A2A4-33AF98F3B696}] => (Allow) LPort=13389
FirewallRules: [{7AE72BF1-3EA3-472F-B78F-2A7870D19CB0}] => (Allow) LPort=13389
FirewallRules: [{12DD2BB0-253C-4395-B011-15F0690ADBFD}] => (Allow) LPort=13389
FirewallRules: [{20868206-5F18-423A-A3AC-4A9805A24A69}] => (Allow) LPort=13389
FirewallRules: [{536917BA-EA19-491C-B3C7-FEED656BC4CE}] => (Allow) LPort=13389
FirewallRules: [{336C2059-5FE2-424B-8788-7CBC1F6D5810}] => (Allow) LPort=13389
FirewallRules: [{D11AC162-E960-44DF-919F-C98CAA136D27}] => (Allow) LPort=13389
FirewallRules: [{64A86EFF-7F0C-4D3A-94ED-FEAE7EBE2D94}] => (Allow) LPort=13389
FirewallRules: [{EC4FB898-9574-48CD-B4E6-2E36206821C1}] => (Allow) LPort=13389
FirewallRules: [{06671FB1-8184-4059-8DC7-2ECD53BE3C0E}] => (Allow) LPort=13389
FirewallRules: [{B2D4A8F6-510E-4D11-ABDF-A30C7B08260C}] => (Allow) LPort=13389
FirewallRules: [{6FE8D596-F008-4CBE-92C2-828952361D09}] => (Allow) LPort=13389
FirewallRules: [{8EBBF19A-EE32-41BB-823B-1AF17D81FC40}] => (Allow) LPort=13389
FirewallRules: [{632F30B1-19C9-4DFA-A6B0-3A578F120902}] => (Allow) LPort=13389
FirewallRules: [{F6255C75-9967-442B-93A4-2AA01F1BE017}] => (Allow) LPort=13389
FirewallRules: [{BF664C32-4E6C-4CE6-B011-4B24EA48A5CC}] => (Allow) LPort=13389
FirewallRules: [{160E7165-A3C1-4FC8-BA0E-FA1CEBC2C810}] => (Allow) LPort=13389
FirewallRules: [{AB7ED382-50C6-4C18-BA80-854EC0B51D3B}] => (Allow) LPort=13389
FirewallRules: [{5051C187-890A-44D4-8F42-3D0F549DB57D}] => (Allow) LPort=13389
FirewallRules: [{5F51275B-CBA2-49EC-BFCF-318D686F8411}] => (Allow) LPort=13389
FirewallRules: [{61F92361-3417-4C84-A6D0-4A2D0750B379}] => (Allow) LPort=13389
FirewallRules: [{070E4A83-53F5-4100-94F2-940DE782FCCE}] => (Allow) LPort=13389
FirewallRules: [{FE642A82-7D00-4687-9297-0CD5A7703814}] => (Allow) LPort=13389
FirewallRules: [{2646DD49-A5C7-4B27-ABA0-1C250583E7C0}] => (Allow) LPort=13389
FirewallRules: [{161EEF27-9DE2-4413-9415-3C3AE5088649}] => (Allow) LPort=13389
FirewallRules: [{34541C0E-FD46-4992-9AF1-8A52CD458940}] => (Allow) LPort=13389
FirewallRules: [{1A720189-D9D2-48F9-856B-6D19C9AA532A}] => (Allow) LPort=13389
FirewallRules: [{E8F27309-6619-460D-968D-A630010A3A8E}] => (Allow) LPort=13389
FirewallRules: [{7E7941AD-734D-4515-AA7E-32C624DDFBE3}] => (Allow) LPort=13389
FirewallRules: [{EE67A21F-F89A-4545-A505-197A7BBC8BED}] => (Allow) LPort=13389
FirewallRules: [{F55501B0-5122-488C-A290-F9BAFA2388D4}] => (Allow) LPort=13389
FirewallRules: [{507208B6-8195-4F78-9324-16408E07E59F}] => (Allow) LPort=13389
FirewallRules: [{3E557E96-35A1-42D2-AB61-EFA267C61C4B}] => (Allow) LPort=13389
FirewallRules: [{AB5B542F-DBAB-4D40-A918-0DF8234CBCD5}] => (Allow) LPort=13389
FirewallRules: [{C0B8B0CF-3753-453E-90DB-9F9AE52C5FB4}] => (Allow) LPort=13389
FirewallRules: [{9AC8EEF1-AA1B-41F6-A2F6-C3D004F46E64}] => (Allow) LPort=13389
FirewallRules: [{B0AC0C08-65B0-4C77-84C1-17F1F6BB8B87}] => (Allow) LPort=13389
FirewallRules: [{A15F241C-3560-4D1E-8E22-65C76917F3B0}] => (Allow) LPort=13389
FirewallRules: [{870F898D-FDD8-4240-8CA5-28A31F9F1036}] => (Allow) LPort=13389
FirewallRules: [{393D654B-3D43-457B-B274-F6161BA88656}] => (Allow) LPort=13389
FirewallRules: [{F768D729-C9CA-47A8-84BD-61529F0AD828}] => (Allow) LPort=13389
FirewallRules: [{FB59AE01-2BF1-4190-BDCE-0D4DFD452E9B}] => (Allow) LPort=13389
FirewallRules: [{8A18A219-BB1E-4725-9D45-129215BABFDE}] => (Allow) LPort=13389
FirewallRules: [{F26D6E98-2353-465A-BF61-ED2A8A036EC4}] => (Allow) LPort=13389
FirewallRules: [{06E7B80C-3F00-483B-A886-6BA57F9888AA}] => (Allow) LPort=13389
FirewallRules: [{040D53D1-C5CA-40F0-96C0-C8CDBF8EEAE1}] => (Allow) LPort=13389
FirewallRules: [{CE4EF8A5-D916-4208-9642-2FFF6670869A}] => (Allow) LPort=13389
FirewallRules: [{4FB71FEA-C5D0-4CD4-BE65-955101AD3BED}] => (Allow) LPort=13389
FirewallRules: [{A2BAD5CD-9EEA-4399-9A8B-775846B0D1BB}] => (Allow) LPort=13389
FirewallRules: [{FD7E365E-C0B2-4BD8-9F91-A9634950041B}] => (Allow) LPort=13389
FirewallRules: [{45644488-150D-4371-8159-CB60B046A706}] => (Allow) LPort=13389
FirewallRules: [{43570EF1-784B-4140-9300-6C4EBBEAF45C}] => (Allow) LPort=13389
FirewallRules: [{A3B81784-CE4C-48F4-BED0-74017C0C6CED}] => (Allow) LPort=13389
FirewallRules: [{B8B6D38C-EDFB-4F9F-9633-BE4A18AEA730}] => (Allow) LPort=13389
FirewallRules: [{11425EA6-2BF8-46C2-A921-81CCEEDE0BD5}] => (Allow) LPort=13389
FirewallRules: [{576A0DB1-00D8-471E-ABEB-6963B264BD5F}] => (Allow) LPort=13389
FirewallRules: [{50E7AB51-F29E-4619-B9A2-218F48F3C868}] => (Allow) LPort=13389
FirewallRules: [{F8B32D2F-6697-4E9B-B211-F824273B330F}] => (Allow) LPort=13389
FirewallRules: [{8D6A8F55-6F3F-433A-AA62-B34398A46AA8}] => (Allow) LPort=13389
FirewallRules: [{DB9527A3-9102-4F5B-91C6-4B1F05B2C895}] => (Allow) LPort=13389
FirewallRules: [{59E93543-00FC-42B3-80CD-775CB90D135A}] => (Allow) LPort=13389
FirewallRules: [{35B32BDE-56AC-4DB3-9C7F-CA5104DF091E}] => (Allow) LPort=13389
FirewallRules: [{715E0B4C-83BD-4181-B1ED-7A319B8724F2}] => (Allow) LPort=13389
FirewallRules: [{17EB2662-4209-4E00-8D8E-A10E1F18100A}] => (Allow) LPort=13389
FirewallRules: [{9DB96409-9A04-4521-913E-B0276BC510A4}] => (Allow) LPort=13389
FirewallRules: [{D6AAB556-52F2-46F9-B41E-8F2A7B4507A8}] => (Allow) LPort=13389
FirewallRules: [{4B80DFB6-136E-43B1-9208-0FEB3E49A986}] => (Allow) LPort=13389
FirewallRules: [{57EB81AA-0887-4576-B789-CEBFF85723E1}] => (Allow) LPort=13389
FirewallRules: [{054DC3DE-AC70-4C62-A7A6-4AF23F6C8BC7}] => (Allow) LPort=13389
FirewallRules: [{0C384BA2-6101-4225-BD2C-6D2DB056CF56}] => (Allow) LPort=13389
FirewallRules: [{08F5CE5B-5317-461A-946D-58A3E9E8710E}] => (Allow) LPort=13389
FirewallRules: [{6F8CCDAF-3866-4779-AD2F-57B7C2704B35}] => (Allow) LPort=13389
FirewallRules: [{E8095E46-9183-4DA5-A5CB-05638D3EF099}] => (Allow) LPort=13389
FirewallRules: [{B85CE070-3C90-4E54-894C-D843CC179A2A}] => (Allow) LPort=13389
FirewallRules: [{520C2C71-D026-4541-9D97-E50767637748}] => (Allow) LPort=13389
FirewallRules: [{C5739352-7685-461D-BD64-CE7238A2E3F5}] => (Allow) LPort=13389
FirewallRules: [{1564A16D-D542-4543-B665-EEC59795B6E1}] => (Allow) LPort=13389
FirewallRules: [{E25F5740-1214-4365-847B-8874F6C3D246}] => (Allow) LPort=13389
FirewallRules: [{7C0AF6EA-DBAE-41D6-B897-178A73A013D3}] => (Allow) LPort=13389
FirewallRules: [{F4C3E476-FFAE-4284-8F2F-401ECB3329F8}] => (Allow) LPort=13389
FirewallRules: [{01587894-FDE6-4AF4-AB24-A0AF243B4449}] => (Allow) LPort=13389
FirewallRules: [{197D0A7C-D0BE-4D47-8233-72562DC19DC9}] => (Allow) LPort=13389
FirewallRules: [{E24787B3-5806-45F7-8594-B9A506D54C9A}] => (Allow) LPort=13389
FirewallRules: [{ED137457-0011-49B7-9616-5234AEE20BDB}] => (Allow) LPort=13389
FirewallRules: [{CD60B0DB-0005-42BA-80BA-DC8B16EE2466}] => (Allow) LPort=13389
FirewallRules: [{095248E5-88DC-440F-812A-8018EB872BCD}] => (Allow) LPort=13389
FirewallRules: [{3CC7BFD7-6056-412A-B4F8-15992997E7DA}] => (Allow) LPort=13389
FirewallRules: [{AE90DCCE-EB38-414E-964A-6CE2A63450F2}] => (Allow) LPort=13389
FirewallRules: [{C0A0BD54-8807-4B68-A275-C3C5B94BAA80}] => (Allow) LPort=13389
FirewallRules: [{CA84ED2A-F7CE-402C-B6B9-B8A64716AF65}] => (Allow) LPort=13389
FirewallRules: [{6C2F46F2-53B4-4A3F-81CD-C2F6FB931133}] => (Allow) LPort=13389
FirewallRules: [{5D33F59D-0E18-4F0B-B0F4-F645A30B4D53}] => (Allow) LPort=13389
FirewallRules: [{9510D70D-CB36-4C8D-8FD5-3D508771E78A}] => (Allow) LPort=13389
FirewallRules: [{54DDF573-EC87-47D6-B101-BCE31B329FCB}] => (Allow) LPort=13389
FirewallRules: [{767D2ED9-56CA-4109-87DF-A77EEBFA097B}] => (Allow) LPort=13389
FirewallRules: [{EC3EA558-B30D-4A9B-A6CF-E0615B8B2224}] => (Allow) LPort=13389
FirewallRules: [{CCA7A49A-C2C0-436F-9120-7CDFA2D96D6A}] => (Allow) LPort=13389
FirewallRules: [{B92130DB-FC10-4854-8D3D-186107BA2E40}] => (Allow) LPort=13389
FirewallRules: [{FB773935-AF5D-41F0-92C6-A4BC3242C33B}] => (Allow) LPort=13389
FirewallRules: [{02A2C87B-661E-4856-8564-D60DA023984B}] => (Allow) LPort=13389
FirewallRules: [{612BD6B6-E09C-4B9B-A29E-7D8BE7482B66}] => (Allow) LPort=13389
FirewallRules: [{6E760F1D-216C-4350-BDEF-D6F7A5D0F95B}] => (Allow) LPort=13389
FirewallRules: [{B213A2C2-8059-4E5C-A55F-C5CDF4637961}] => (Allow) LPort=13389
FirewallRules: [{7B61CA73-1CB9-4205-8413-3F064AA3230E}] => (Allow) LPort=13389
FirewallRules: [{BC66DA8F-5E84-4874-BFDE-D83640840220}] => (Allow) LPort=13389
FirewallRules: [{3CD43010-58FD-4AB5-B051-E3EE18BF1B3D}] => (Allow) LPort=13389
FirewallRules: [{A454592D-962F-4FAF-8585-BDCC16B534D2}] => (Allow) LPort=13389
FirewallRules: [{6AF57EB4-C2D5-4244-B06B-D415EF01CA16}] => (Allow) LPort=13389
FirewallRules: [{2E105BBC-DA2D-4EB5-9B2A-AE2C8E6B7873}] => (Allow) LPort=13389
FirewallRules: [{96BC8834-CA48-4556-BDAF-5105F8829E3E}] => (Allow) LPort=13389
FirewallRules: [{BFA9640E-6F64-4C3A-933A-51389787D7EB}] => (Allow) LPort=13389
FirewallRules: [{B9B6F3A7-5008-4212-A039-E2321F43CE56}] => (Allow) LPort=13389
FirewallRules: [{FBFF0184-89C8-49AF-9B79-99E7FB923217}] => (Allow) LPort=13389
FirewallRules: [{DAE441E7-7B46-4990-9F8B-CB8123A876E0}] => (Allow) LPort=13389
FirewallRules: [{4AF89E0E-4CD1-496D-BA06-8A7F367F48BB}] => (Allow) LPort=13389
FirewallRules: [{5E04EA62-8B13-408D-97C6-D2F57E1B2A03}] => (Allow) LPort=13389
FirewallRules: [{1CA88B01-B6F3-4E96-ABFF-69ADCE7DC798}] => (Allow) LPort=13389
FirewallRules: [{733E44F3-DC54-4E4A-9D0D-9678BBBBE739}] => (Allow) LPort=13389
FirewallRules: [{67D25CA2-B502-4F21-9D53-E7156E41FCF7}] => (Allow) LPort=13389
FirewallRules: [{000BFCAE-F01A-4C7F-97E0-D19794D89511}] => (Allow) LPort=13389
FirewallRules: [{7CD990F2-FE6A-42F7-A35E-93E48E612016}] => (Allow) LPort=13389
FirewallRules: [{85B4BE80-96C2-427D-B104-B2F48747EEA5}] => (Allow) LPort=13389
FirewallRules: [{08F3A579-AA77-4190-81EC-22DFAA89331C}] => (Allow) LPort=13389
FirewallRules: [{C04EA83A-FE50-4EF8-8FA8-C0B6A5A8BDEB}] => (Allow) LPort=13389
FirewallRules: [{5BAE4640-A1A0-426B-B207-72E94B266A5C}] => (Allow) LPort=13389
FirewallRules: [{88562C49-668A-4A83-ABF9-EDEE699D63E9}] => (Allow) LPort=13389
FirewallRules: [{DF9E1D98-B903-4DF8-BDE0-FE0F881EB19E}] => (Allow) LPort=13389
FirewallRules: [{D336EFA5-1DF1-4E22-B7BB-63DFB888D92B}] => (Allow) LPort=13389
FirewallRules: [{19BE31C9-53CE-4998-B5D9-F89025804D2A}] => (Allow) LPort=13389
FirewallRules: [{F2981411-EFCC-4095-8828-E520AAD13C06}] => (Allow) LPort=13389
FirewallRules: [{238708D8-0459-4427-8E4A-B9890CFA3217}] => (Allow) LPort=13389
FirewallRules: [{0941639D-7468-4A87-B799-D91BBC580DE0}] => (Allow) LPort=13389
FirewallRules: [{FF59AABF-060D-4758-A386-67DBA2D83787}] => (Allow) LPort=13389
FirewallRules: [{A0CA8A18-B4ED-4F28-9AFD-ADF763318107}] => (Allow) LPort=13389
FirewallRules: [{C2CE32E3-0D1A-48AD-A863-90BC9350320B}] => (Allow) LPort=13389
FirewallRules: [{20962131-71A8-4752-BE75-EAB890EEFC6E}] => (Allow) LPort=13389
FirewallRules: [{C15C68F1-BE8D-460B-BA7F-E70CAF959577}] => (Allow) LPort=13389
FirewallRules: [{B0C12BD4-1DAC-430C-8525-18E9D13D15C4}] => (Allow) LPort=13389
FirewallRules: [{1D151B30-F39D-4F1F-94A6-678DB44AF33A}] => (Allow) LPort=13389
FirewallRules: [{6444881B-023C-402F-9BFC-A5CD74962F70}] => (Allow) LPort=13389
FirewallRules: [{9C740872-2900-4D64-8AD2-4ADD6A9D5A88}] => (Allow) LPort=13389
FirewallRules: [{44039680-2717-44B3-94FE-6DD667CB8B76}] => (Allow) LPort=13389
FirewallRules: [{D509CB7C-4F07-4E9E-B6D3-BB77D19878DC}] => (Allow) LPort=13389
FirewallRules: [{962CF851-14F2-47CC-B64E-6C5617D7F01D}] => (Allow) LPort=13389
FirewallRules: [{99DFA496-C595-42E9-9B27-20D35F0C0135}] => (Allow) LPort=13389
FirewallRules: [{44A0638D-9B08-4E32-975D-6D428EC2480E}] => (Allow) LPort=13389
FirewallRules: [{7BA872F4-E3EB-4117-827C-BBA48569D3B4}] => (Allow) LPort=13389
FirewallRules: [{91D11D17-3B12-4111-8F09-930A9EAC93B2}] => (Allow) LPort=13389
FirewallRules: [{0BFA81D3-95F3-4EFF-B1D4-D6015C445F96}] => (Allow) LPort=13389
FirewallRules: [{3756FACD-3229-41A9-BB72-C3BF175AD2EF}] => (Allow) LPort=13389
FirewallRules: [{B69CF678-5FB8-4E5C-9DE8-3A5DC7B9A98D}] => (Allow) LPort=13389
FirewallRules: [{7DF4FC15-4D93-4EC9-B806-121E45D40299}] => (Allow) LPort=13389
FirewallRules: [{788A288F-89E8-40AB-B354-C49D6F806FFE}] => (Allow) LPort=13389
FirewallRules: [{8423F037-3056-444A-82B7-AAC55094B254}] => (Allow) LPort=13389
FirewallRules: [{9D7F57B9-1D9C-4D5B-B851-7C2C3BE99A07}] => (Allow) LPort=13389
FirewallRules: [{2D7C3A35-9EF9-4A2B-AE17-3585299C416A}] => (Allow) LPort=13389
FirewallRules: [{015C9465-CC7A-49B0-BEFF-2F686E0CA641}] => (Allow) LPort=13389
FirewallRules: [{19A1A896-233A-4C4F-91BB-1DB190382AFC}] => (Allow) LPort=13389
FirewallRules: [{E11806F9-4145-4C9F-BB0B-DC6FA5B354B2}] => (Allow) LPort=13389
FirewallRules: [{8E0C5230-1E75-4F1C-8E72-38133CA90871}] => (Allow) LPort=13389
FirewallRules: [{C7DC3B5D-4B75-4B5B-AF38-8962AFB0EF10}] => (Allow) LPort=13389
FirewallRules: [{159CE953-291E-45F8-810B-9B698D3C8532}] => (Allow) LPort=13389
FirewallRules: [{30CBC880-F46D-418C-83AE-5A5CC37A85B6}] => (Allow) LPort=13389
FirewallRules: [{F26E3299-D6AE-460B-8CB0-94C18A5B68CA}] => (Allow) LPort=13389
FirewallRules: [{3B11AC72-A66D-40E8-8D7F-968FF9833AD3}] => (Allow) LPort=13389
FirewallRules: [{8D221629-0916-4B8D-B063-CCE2149D5CBB}] => (Allow) LPort=13389
FirewallRules: [{93D5468E-0AD9-42DE-AB01-2CCDFE89AF2B}] => (Allow) LPort=13389
FirewallRules: [{42A63C36-28CE-41CA-B3BE-3DD2A3D9B49E}] => (Allow) LPort=13389
FirewallRules: [{85C073D4-D956-4101-B261-6CF4C6B813CB}] => (Allow) LPort=13389
FirewallRules: [{2049AA2B-36EF-4233-9916-CBE0CA026024}] => (Allow) LPort=13389
FirewallRules: [{6819F217-980D-4215-863D-918B61FE5488}] => (Allow) LPort=13389
FirewallRules: [{1E31A580-F710-4B4B-B749-CE32D3EF0683}] => (Allow) LPort=13389
FirewallRules: [{6E45E351-2C04-4F35-B1C5-4F0C101A71DB}] => (Allow) LPort=13389
FirewallRules: [{5437546B-9275-4991-B5CC-EA75BD562AB3}] => (Allow) LPort=13389
FirewallRules: [{8F1C6451-430B-41CD-8B51-FA845434F1A7}] => (Allow) LPort=13389
FirewallRules: [{AD3FA1B1-1CAC-4478-B43C-91BF164DFE2A}] => (Allow) LPort=13389
FirewallRules: [{CBD2597B-A2CA-4A60-9434-F8F6DC09E159}] => (Allow) LPort=13389
FirewallRules: [{A24E3FD0-A622-4E61-A667-00D7921FC655}] => (Allow) LPort=13389
FirewallRules: [{DBA8AC65-C1E8-4A1E-A53D-41F139C73D63}] => (Allow) LPort=13389
FirewallRules: [{C4B97C00-24BD-4C12-B300-946E3D9E517E}] => (Allow) LPort=13389
FirewallRules: [{68D3B756-17FF-4D9A-B971-ADF604E1CE02}] => (Allow) LPort=13389
FirewallRules: [{6C01D610-B455-4FBB-A368-FD2B4BE60ED4}] => (Allow) LPort=13389
FirewallRules: [{B480431C-48FB-4074-9B3D-654B950555BC}] => (Allow) LPort=13389
FirewallRules: [{E9E851F8-6306-4AED-B36F-281614EC5561}] => (Allow) LPort=13389
FirewallRules: [{FC8D0D60-0137-4915-960F-A42F343E3331}] => (Allow) LPort=13389
FirewallRules: [{2AA1389E-53B2-4356-B6F4-EB9B685C3A23}] => (Allow) LPort=13389
FirewallRules: [{4DFD1511-12FB-4CEA-8623-10EAD09B2CBA}] => (Allow) LPort=13389
FirewallRules: [{C80357C4-A49C-43FF-92ED-19B69C912274}] => (Allow) LPort=13389
FirewallRules: [{BED931A1-5B4B-4B9C-876E-F9F154B33DEC}] => (Allow) LPort=13389
FirewallRules: [{E86BB43E-BA2F-401E-B9B2-3B51F6F70AC2}] => (Allow) LPort=13389
FirewallRules: [{7FB4BB86-3A87-480D-871A-6E1ABE1E804F}] => (Allow) LPort=13389
FirewallRules: [{B6320CD2-F1EE-451C-B131-7B1824BCE3C7}] => (Allow) LPort=13389
FirewallRules: [{1FC40672-0222-4E32-BD7B-08C4CDAEC154}] => (Allow) LPort=13389
FirewallRules: [{37499DD2-A08D-496E-8472-1480EDF0D104}] => (Allow) LPort=13389
FirewallRules: [{292A8B8F-11C6-4A59-8592-1BA775374F72}] => (Allow) LPort=13389
FirewallRules: [{52A63C71-2982-42D9-B799-FA4F6250327B}] => (Allow) LPort=13389
FirewallRules: [{9F4DBB45-E41B-408C-B233-66E882377148}] => (Allow) LPort=13389
FirewallRules: [{F8ED4231-A91D-4AB7-8B10-75256D7648BB}] => (Allow) LPort=13389
FirewallRules: [{AE66F857-1420-48D4-B88B-3BC7EAB0EFF8}] => (Allow) LPort=13389
FirewallRules: [{21B83B24-9F7F-4389-9F4B-448A3D180826}] => (Allow) LPort=13389
FirewallRules: [{E30DA821-32A7-4E9C-9BAE-1A79287932EE}] => (Allow) LPort=13389
FirewallRules: [{7C37491A-5637-4B0F-8B88-F4E1F18CC2EC}] => (Allow) LPort=13389
FirewallRules: [{431E2D8D-0FA7-489B-B632-2B147B2176D3}] => (Allow) LPort=13389
FirewallRules: [{095D29D3-8029-41E3-B996-058215512D86}] => (Allow) LPort=13389
FirewallRules: [{03B6347C-8138-4528-B009-E8E0C89FA476}] => (Allow) LPort=13389
FirewallRules: [{C5269417-5CDF-41B4-84A1-11656BEC3F6B}] => (Allow) LPort=13389
FirewallRules: [{317DE2F1-4F08-460E-807E-239E184AFD90}] => (Allow) LPort=13389
FirewallRules: [{2043CAD5-E3B9-48A7-AB35-D451398C2134}] => (Allow) LPort=13389
FirewallRules: [{E005CE56-3BAA-4FAE-937F-EC63E7485A96}] => (Allow) LPort=13389
FirewallRules: [{0E825053-6407-461B-8C97-EB82A0312529}] => (Allow) LPort=13389
FirewallRules: [{328F74B0-E973-4965-8071-64932641609E}] => (Allow) LPort=13389
FirewallRules: [{DEC74356-F21C-4C48-9319-5C4D674A8E80}] => (Allow) LPort=13389
FirewallRules: [{0B292F7A-F5DF-450E-93B8-EEE540342A1D}] => (Allow) LPort=13389
FirewallRules: [{65598705-0B63-4101-BE80-0C79DA7364CA}] => (Allow) LPort=13389
FirewallRules: [{1916CBBC-16DC-46C8-887F-BC42587E82FA}] => (Allow) LPort=13389
FirewallRules: [{11B8510F-CB7D-42EA-BCA3-8F8DD531C295}] => (Allow) LPort=13389
FirewallRules: [{A2217603-4305-4DF0-8E9D-85F54C138D81}] => (Allow) LPort=13389
FirewallRules: [{AE5EDCD2-5358-441D-B7E8-460C35BF278A}] => (Allow) LPort=13389
FirewallRules: [{B8D30DB1-565E-4129-A7C0-7D60D1DBDD07}] => (Allow) LPort=13389
FirewallRules: [{C7BF3C9E-0087-455D-BEB8-3807A1BD1063}] => (Allow) LPort=13389
FirewallRules: [{558C5617-EB29-4C08-95D2-7A8D00379985}] => (Allow) LPort=13389
FirewallRules: [{D70B7809-6D7B-4CF4-A7F3-1EF0B3E8DA91}] => (Allow) LPort=13389
FirewallRules: [{620828D9-DD2B-43B3-8015-6E7CD3EA5553}] => (Allow) LPort=13389
FirewallRules: [{1B8C2AAE-6670-41DF-8C76-B2411798E0F1}] => (Allow) LPort=13389
FirewallRules: [{4133F298-4ADF-42DE-BD9F-DDCB3891BF47}] => (Allow) LPort=13389
FirewallRules: [{B96AF0EB-DBBB-4EBE-B2A9-72085B28DD6F}] => (Allow) LPort=13389
FirewallRules: [{F0735A0E-453C-4208-87F8-B45A28F272F4}] => (Allow) LPort=13389
FirewallRules: [{D662E9FA-9216-4371-A4CA-E46B60B11AC2}] => (Allow) LPort=13389
FirewallRules: [{23636FC3-2679-4FCB-8EAB-236CD80760F7}] => (Allow) LPort=13389
FirewallRules: [{77502DB8-3E55-4A22-9759-50E9C42217FB}] => (Allow) LPort=13389
FirewallRules: [{8FDB50DA-2C1A-4621-8130-95ED74A0BD1E}] => (Allow) LPort=13389
FirewallRules: [{8C8B373F-C452-4174-BF1D-D19A1AAA4517}] => (Allow) LPort=13389
FirewallRules: [{E8B4BFA7-E0F5-456D-9904-C97A09D84755}] => (Allow) LPort=13389
FirewallRules: [{46307C3C-B4A2-43BB-A0F8-B1E170FEBEF8}] => (Allow) LPort=13389
FirewallRules: [{C8B9A077-B62A-4DDA-9445-F5BCCBDD77B3}] => (Allow) LPort=13389
FirewallRules: [{CDE34271-94C3-4D3A-8462-2C4101BE1F98}] => (Allow) LPort=13389
FirewallRules: [{DD9F7573-E292-4714-B91F-2FF9F07E8DB9}] => (Allow) LPort=13389
FirewallRules: [{80F40927-0F0C-44B1-9D7E-34110AD64703}] => (Allow) LPort=13389
FirewallRules: [{05782C60-A5D9-409B-8970-13E1880872DA}] => (Allow) LPort=13389
FirewallRules: [{AE58F7EA-B606-48F2-BF16-B800FBA7522F}] => (Allow) LPort=13389
FirewallRules: [{24986680-338D-4078-9419-6E09EE66845E}] => (Allow) LPort=13389
FirewallRules: [{6A409086-62D6-414A-9E04-ACECBF049640}] => (Allow) LPort=13389
FirewallRules: [{0EC7CDDC-7B7C-4B3B-9DE3-CE2C197DCEAD}] => (Allow) LPort=13389
FirewallRules: [{967F8FBB-4C04-4EA6-91CC-219F5C7740D3}] => (Allow) LPort=13389
FirewallRules: [{9FE37403-E1F6-4753-A319-A956BA73A112}] => (Allow) LPort=13389
FirewallRules: [{53191DEB-9738-4736-ABA6-EB3620E39FA7}] => (Allow) LPort=13389
FirewallRules: [{7F247FE7-E849-459A-8EE2-B4DB6F66AB80}] => (Allow) LPort=13389
FirewallRules: [{FEE798E7-40B8-439D-ACBA-AAA7F588380D}] => (Allow) LPort=13389
FirewallRules: [{973DD384-61E0-429A-B3FB-A94FE23B3A40}] => (Allow) LPort=13389
FirewallRules: [{B3D438CF-6CD3-4518-833E-C3A28A97D6FE}] => (Allow) LPort=13389
FirewallRules: [{DCA3B0DE-899F-437B-A812-B051B588A961}] => (Allow) LPort=13389
FirewallRules: [{45100F83-EB19-49B5-8E2C-48CF83AE19E8}] => (Allow) LPort=13389
FirewallRules: [{146309A8-9F25-4B33-BDB5-E597D5408B1B}] => (Allow) LPort=13389
FirewallRules: [{C3EB13E5-1BD4-4D6C-B013-E7F26E4AED95}] => (Allow) LPort=13389
FirewallRules: [{79BCFA28-D2D8-435B-83BD-968DCC1FED4F}] => (Allow) LPort=13389
FirewallRules: [{4FD940EF-BA70-4CBB-A6B9-23729C047BE1}] => (Allow) LPort=13389
FirewallRules: [{D9D25B17-40B2-47C5-A424-91393B0676BE}] => (Allow) LPort=13389
FirewallRules: [{E9572F64-E190-4DCC-A969-206833C38EDF}] => (Allow) LPort=13389
FirewallRules: [{A9B32F32-6662-4823-8B1F-942146225E9B}] => (Allow) LPort=13389
FirewallRules: [{7ECEB6EA-C115-43A3-B2B0-3DED6D487931}] => (Allow) LPort=13389
FirewallRules: [{44404452-9E6A-4527-9C76-745680D5D132}] => (Allow) LPort=13389
FirewallRules: [{8C8430B6-CF67-489C-A43F-B806C51FB7D4}] => (Allow) LPort=13389
FirewallRules: [{68FF18A9-8244-4B61-8F81-7BA2638E8671}] => (Allow) LPort=13389
FirewallRules: [{AEDFA02F-572E-4398-BA41-C64195959F76}] => (Allow) LPort=13389
FirewallRules: [{0C79A77D-FB21-4EFF-83C3-AF98A57E77BD}] => (Allow) LPort=13389
FirewallRules: [{E6848299-2C64-4540-BC68-2B5D8150ECB9}] => (Allow) LPort=13389
FirewallRules: [{2EBF3486-FD20-4365-9E67-82C16F61F47C}] => (Allow) LPort=13389
FirewallRules: [{B3C736F8-6633-4655-9CD8-6D215901FBE6}] => (Allow) LPort=13389
FirewallRules: [{2692407C-22E0-4F08-87A1-A2A896E17148}] => (Allow) LPort=13389
FirewallRules: [{35149643-A341-4310-A201-54C20647F2B8}] => (Allow) LPort=13389
FirewallRules: [{E3E930D1-C802-4DED-B2CD-A8CBD9BCFE3A}] => (Allow) LPort=13389
FirewallRules: [{CD5EB3D3-A330-44B6-9726-F32C81AB72A7}] => (Allow) LPort=13389
FirewallRules: [{75DA63B1-6852-49FE-9B3E-AF31320BCE4C}] => (Allow) LPort=13389
FirewallRules: [{86E914A4-967E-4F5A-BE1E-A73F1D66EFAA}] => (Allow) LPort=13389
FirewallRules: [{C3779046-6C4F-414F-96C3-06DAFE7DC5BC}] => (Allow) LPort=13389
FirewallRules: [{58D06883-1ECE-4B62-97F4-44C486720CD6}] => (Allow) LPort=13389
FirewallRules: [{07654789-69B6-406E-B718-C39578A740AE}] => (Allow) LPort=13389
FirewallRules: [{DA780620-18AA-470F-A32E-ECB9048FC135}] => (Allow) LPort=13389
FirewallRules: [{F2AD237C-8314-421E-998B-44045AD1C343}] => (Allow) LPort=13389
FirewallRules: [{D42D834F-55D1-43F7-98DF-97907F9AA9B9}] => (Allow) LPort=13389
FirewallRules: [{189BCE95-69D8-4E3D-BDB7-20DFFFB4A02D}] => (Allow) LPort=13389
FirewallRules: [{D69F190C-39AA-41E1-B358-954847C131FE}] => (Allow) LPort=13389
FirewallRules: [{405F3F80-95D4-4458-A23E-42C2C4A43BD3}] => (Allow) LPort=13389
FirewallRules: [{1B1DFD02-AD04-4EC9-A58C-15E91A57B426}] => (Allow) LPort=13389
FirewallRules: [{629BF558-EA16-4391-ADFF-B9A31DDD163D}] => (Allow) LPort=13389
FirewallRules: [{8B87629D-52A1-4A80-A091-0F73D50B35F1}] => (Allow) LPort=13389
FirewallRules: [{C362D50D-DC82-48A1-84BC-3D6AE0D49B83}] => (Allow) LPort=13389
FirewallRules: [{4E0419D8-A5B4-43FC-92D1-05100572FF23}] => (Allow) LPort=13389
FirewallRules: [{DA7B2FB8-43F4-4722-9A4E-342D0ACCB93E}] => (Allow) LPort=13389
FirewallRules: [{5C015700-D722-4CAB-96D9-2F9377B2211B}] => (Allow) LPort=13389
FirewallRules: [{4FB89E8C-6EF0-4CE1-BA05-31ACC30B60AB}] => (Allow) LPort=13389
FirewallRules: [{3B228773-3E4C-4A74-9FC5-5D89B36297AB}] => (Allow) LPort=13389
FirewallRules: [{6F36D97C-834D-4837-85D0-6B957DE4D9F3}] => (Allow) LPort=13389
FirewallRules: [{1CE19E0C-2EC8-4F54-A11E-B437E4DB9292}] => (Allow) LPort=13389
FirewallRules: [{C21239FF-D055-4FAF-9A29-B5759EE2866C}] => (Allow) LPort=13389
FirewallRules: [{8041FF19-3836-41C3-96C3-894BA4183EA4}] => (Allow) LPort=13389
FirewallRules: [{EAABD391-E199-4428-9186-FE0B39CB7866}] => (Allow) LPort=13389
FirewallRules: [{357FCA7E-69DA-4C44-86BC-169874D8CCAE}] => (Allow) LPort=13389
FirewallRules: [{0EBCC7EC-BE5E-41E5-8860-F63CE5D606A6}] => (Allow) LPort=13389
FirewallRules: [{392E4747-AE05-45D0-8477-C53940164A46}] => (Allow) LPort=13389
FirewallRules: [{2E475ED4-96AB-4CF7-82B8-EDAEF4C8A08B}] => (Allow) LPort=13389
FirewallRules: [{00F7F1D0-DDAB-49F3-9D28-B05CF4C8E7DE}] => (Allow) LPort=13389
FirewallRules: [{57CACD3E-6AA6-4B8D-AE40-1E5CE71DC26F}] => (Allow) LPort=13389
FirewallRules: [{0888DEC8-DF32-44F5-AC4C-6DCB4F3CF7FF}] => (Allow) LPort=13389
FirewallRules: [{485C12D4-AB89-41A1-927C-8ACF3B536F20}] => (Allow) LPort=13389
FirewallRules: [{DC90BBA5-7C6E-4D76-A973-75C5518FD6C3}] => (Allow) LPort=13389
FirewallRules: [{08D5F144-31DF-4D03-AE78-89B055D16CD0}] => (Allow) LPort=13389
FirewallRules: [{ECCB7179-55E3-48F2-9D65-803B53AF7B9C}] => (Allow) LPort=13389
FirewallRules: [{591A0E6C-0E03-4ADD-88CF-DE6CE009D119}] => (Allow) LPort=13389
FirewallRules: [{D6757387-5EB3-496F-9571-272EC7767500}] => (Allow) LPort=13389
FirewallRules: [{4ABE205B-C485-4109-8B9C-C8FE4B1645BD}] => (Allow) LPort=13389
FirewallRules: [{6D667578-DCE7-43F5-9862-30B99B35550E}] => (Allow) LPort=13389
FirewallRules: [{8B101CDA-123C-4E68-8971-0ED6C19A4611}] => (Allow) LPort=13389
FirewallRules: [{81B6B663-7CC3-4EF4-B926-430392FE1CF4}] => (Allow) LPort=13389
FirewallRules: [{2AA02B2E-9741-43DB-B3E7-016776B432F1}] => (Allow) LPort=13389
FirewallRules: [{91AB89C1-0B9D-4DA6-B731-FA8202491EAA}] => (Allow) LPort=13389
FirewallRules: [{74051BE4-2EA2-4B3D-8ADC-664FC97833DE}] => (Allow) LPort=13389
FirewallRules: [{2E46DFD2-CA3A-455A-9707-225A91DBED49}] => (Allow) LPort=13389
FirewallRules: [{281E1240-0772-4821-A8DE-F6ECDF0E9EA9}] => (Allow) LPort=13389
FirewallRules: [{C8D72DDD-C6A1-459D-97F7-533D17B06A9B}] => (Allow) LPort=13389
FirewallRules: [{7560D8E2-3E81-4732-8719-306CCAFD3A32}] => (Allow) LPort=13389
FirewallRules: [{96AC81C4-CBF0-41B4-9F55-59B42AD107AF}] => (Allow) LPort=13389
FirewallRules: [{664C4A0D-2F68-4E77-8C13-0F69F43E6FE2}] => (Allow) LPort=13389
FirewallRules: [{19625EAC-E245-41A1-805F-E7E3F9A036D8}] => (Allow) LPort=13389
FirewallRules: [{FD8F1437-1D5F-4F64-8487-1327D7A5F64A}] => (Allow) LPort=13389
FirewallRules: [{3C796263-A883-4E6D-9CCC-067663CD9056}] => (Allow) LPort=13389
FirewallRules: [{6224D12E-3512-4ECD-85E2-87AAA7AD1A62}] => (Allow) LPort=13389
FirewallRules: [{8F384DD9-0880-4AA9-A49B-631AAF6CD530}] => (Allow) LPort=13389
FirewallRules: [{3DC23046-0D00-4A55-8385-EC74A9AAEB1A}] => (Allow) LPort=13389
FirewallRules: [{60D5A8BF-A9E6-45A1-88EA-C48ED8E3C6AE}] => (Allow) LPort=13389
FirewallRules: [{E23A4A27-54D0-418F-8F86-8D29485F62FD}] => (Allow) LPort=13389
FirewallRules: [{BEEFD1FD-3FFB-474E-9F72-C2167673692B}] => (Allow) LPort=13389
FirewallRules: [{7EB7F9C3-921D-4831-8E81-9C05A54DB5F4}] => (Allow) LPort=13389
FirewallRules: [{94208B4E-60EB-4350-ACAF-B9EB700EEEED}] => (Allow) LPort=13389
FirewallRules: [{7467BE78-6EFA-4DE4-8BAC-3E1906DD4BF7}] => (Allow) LPort=13389
FirewallRules: [{CAA48415-92F3-4D1B-9F0B-2E4FF8DEC618}] => (Allow) LPort=13389
FirewallRules: [{205820B6-E36B-4DD9-9384-37E32DEC53B4}] => (Allow) LPort=13389
FirewallRules: [{B185141F-DD43-403A-B829-AB7AD6B48AE7}] => (Allow) LPort=13389
FirewallRules: [{D7D167BC-2820-4348-8B65-EDA65A525675}] => (Allow) LPort=13389
FirewallRules: [{F219A894-D6BC-4308-8E75-4E5111D8FBF5}] => (Allow) LPort=13389
FirewallRules: [{F8ADDC93-03CB-401B-9D0E-063D2B3EC910}] => (Allow) LPort=13389
FirewallRules: [{F48E76F2-D125-45DD-95C0-7EFF70786983}] => (Allow) LPort=13389
FirewallRules: [{317E82E7-7C6E-4BDF-9304-96F8950E3278}] => (Allow) LPort=13389
FirewallRules: [{0B4352FB-B586-4C19-9933-19044CBCFBAB}] => (Allow) LPort=13389
FirewallRules: [{D93CA98C-905F-45A6-951A-C07B767E936A}] => (Allow) LPort=13389
FirewallRules: [{874F6BAB-B7CE-4520-B7D2-B47F5AEB96EA}] => (Allow) LPort=13389
FirewallRules: [{C6AA4B50-A849-4147-B841-545FC748D6EC}] => (Allow) LPort=13389
FirewallRules: [{227E9931-8440-479D-ADBC-DA67DFB69757}] => (Allow) LPort=13389
FirewallRules: [{DFD56748-7A3B-451D-86EA-F0AEFD91A8DF}] => (Allow) LPort=13389
FirewallRules: [{F4E9F8C1-8D34-4B4F-8324-92DB80D537D9}] => (Allow) LPort=13389
FirewallRules: [{AA9CDCD8-1BCB-4BCA-9A91-CC1739C8F630}] => (Allow) LPort=13389
FirewallRules: [{5C14E98B-A37F-4BAB-BBBA-0DF1D36C251B}] => (Allow) LPort=13389
FirewallRules: [{F93E5FA0-EEDF-48B5-87FA-389633CD4DCA}] => (Allow) LPort=13389
FirewallRules: [{0CA87B83-F59B-4AF2-B899-04E1E25A3EBC}] => (Allow) LPort=13389
FirewallRules: [{D9D127FC-B451-419D-A98A-86A54A59C386}] => (Allow) LPort=13389
FirewallRules: [{EC7637A1-156D-4281-9000-CCFC8E29A30A}] => (Allow) LPort=13389
FirewallRules: [{5787F60E-B6A2-4929-929E-F078447DC8AF}] => (Allow) LPort=13389
FirewallRules: [{F01A26F7-B819-4A61-BEC1-E02E2AB37FE4}] => (Allow) LPort=13389
FirewallRules: [{5063CA93-A91C-4C1F-835B-FD62C3550351}] => (Allow) LPort=13389
FirewallRules: [{11C6847F-2950-4CD2-95F5-38917FA8FD79}] => (Allow) LPort=13389
FirewallRules: [{72D6267F-8744-4271-AF41-AB8C7A3CE3FE}] => (Allow) LPort=13389
FirewallRules: [{DCC0C6D1-6010-4C4A-9C7A-63A50B572D75}] => (Allow) LPort=13389
FirewallRules: [{7DAD9EA7-40E8-496D-B72C-4D1042BF435E}] => (Allow) LPort=13389
FirewallRules: [{E52DFA49-7A38-4B85-B0F1-BC3E4DB835DC}] => (Allow) LPort=13389
FirewallRules: [{BE0683B4-8ACF-4C48-9215-90740CF8A191}] => (Allow) LPort=13389
FirewallRules: [{7491BFD6-AC06-48B2-B422-71425B141313}] => (Allow) LPort=13389
FirewallRules: [{B36ADB84-313F-4787-A56A-B8BE91EFF87B}] => (Allow) LPort=13389
FirewallRules: [{C1B5B9DA-B1FF-4627-B0E2-F1BF8ADA12C4}] => (Allow) LPort=13389
FirewallRules: [{1561C11A-9B04-4B13-8211-01525771F235}] => (Allow) LPort=13389
FirewallRules: [{8AABF278-7E60-408F-9FC5-E4FDC82D5529}] => (Allow) LPort=13389
FirewallRules: [{870EF1F4-DC19-4CDE-AEBA-10E65B01F21D}] => (Allow) LPort=13389
FirewallRules: [{011858C1-7DCF-4FA6-9827-109B43AD2126}] => (Allow) LPort=13389
FirewallRules: [{EDADBC01-CB42-4E14-AC4A-05223530205D}] => (Allow) LPort=13389
FirewallRules: [{406A7A31-7E74-4C22-9628-1BC30539EA4F}] => (Allow) LPort=13389
FirewallRules: [{A368C35A-FE74-45C2-8484-FA0CAAC11A2F}] => (Allow) LPort=13389
FirewallRules: [{668C9881-74E5-4E1B-A214-5DC6A80F5B5E}] => (Allow) LPort=13389
FirewallRules: [{570526B0-79A7-4F79-93A5-42DC0D569997}] => (Allow) LPort=13389
FirewallRules: [{DE9DB425-D3FF-4226-979D-F93F74054336}] => (Allow) LPort=13389
FirewallRules: [{CF1D0997-344A-4A38-B4F0-6868067A4804}] => (Allow) LPort=13389
FirewallRules: [{62F538A7-05A0-4AB0-8F83-788FA78436B3}] => (Allow) LPort=13389
FirewallRules: [{9CF06A5B-1668-4C26-B977-713A2CE98595}] => (Allow) LPort=13389
FirewallRules: [{EDCDECD4-03D0-4C74-B82D-0BF492C61A7A}] => (Allow) LPort=13389
FirewallRules: [{AC8B735F-08F8-4CF5-B928-5508E787061D}] => (Allow) LPort=13389
FirewallRules: [{395CFC6C-B7CE-465C-946F-A56D7B1DADE2}] => (Allow) LPort=13389
FirewallRules: [{084FEE71-0FB5-4B84-A424-D96FC5CD3318}] => (Allow) LPort=13389
FirewallRules: [{5A1F831D-9399-4AE2-AB52-8C83E43B4D71}] => (Allow) LPort=13389
FirewallRules: [{7F08AC51-F821-4569-ACC2-8F780C84B969}] => (Allow) LPort=13389
FirewallRules: [{C9CA780F-1908-4A54-8511-A0C539418B02}] => (Allow) LPort=13389
FirewallRules: [{97C433AF-A3AF-4AFA-B5F2-67F3EB30110B}] => (Allow) LPort=13389
FirewallRules: [{610F616E-ED21-403B-A83B-972C9C5AF00E}] => (Allow) LPort=13389
FirewallRules: [{E39B2F67-5713-47EF-BDE5-02150D36AC90}] => (Allow) LPort=13389
FirewallRules: [{E63F44CF-A3CA-4DA9-B88A-24FB67D24F54}] => (Allow) LPort=13389
FirewallRules: [{6557BAD4-D365-4E73-8B45-422A20706625}] => (Allow) LPort=13389
FirewallRules: [{4DED0C85-EC7A-4D7F-A219-D7DAEE3507EA}] => (Allow) LPort=13389
FirewallRules: [{BC543984-B277-43E4-B5A9-82C0087488C8}] => (Allow) LPort=13389
FirewallRules: [{64E9D4DA-B5DE-4FFF-BF3D-59786F786C67}] => (Allow) LPort=13389
FirewallRules: [{55E7F629-24ED-464A-BDE1-EC810D9EABCA}] => (Allow) LPort=13389
FirewallRules: [{13CC553C-2317-4175-886A-25DB0FE0C010}] => (Allow) LPort=13389
FirewallRules: [{E447114C-8E1F-444A-8254-9258EAFAE8CA}] => (Allow) LPort=13389
FirewallRules: [{F4FBC261-66B7-42C1-A693-CCAC3221C3BB}] => (Allow) LPort=13389
FirewallRules: [{CA1D558A-B152-48D9-9903-1953762B235D}] => (Allow) LPort=13389
FirewallRules: [{9D2FE6A7-E53D-44A5-97BE-A109C89B18C7}] => (Allow) LPort=13389
FirewallRules: [{7167DA50-62B4-4275-9F6C-685C4CB225C8}] => (Allow) LPort=13389
FirewallRules: [{05F7E569-F89A-4E29-8C45-3773EFBD8F27}] => (Allow) LPort=13389
FirewallRules: [{23A25D89-E507-4D89-A176-E2A03BA5F2A2}] => (Allow) LPort=13389
FirewallRules: [{052FECD2-E77E-43DB-8ECE-59A64B3C1BD2}] => (Allow) LPort=13389
FirewallRules: [{8D0F0DD5-54F5-4F18-A3DD-682473D0B372}] => (Allow) LPort=13389
FirewallRules: [{A002A160-2C48-4F3A-8869-BC6C818AFFE5}] => (Allow) LPort=13389
FirewallRules: [{52468580-B340-481A-AA5C-274E7744ECDA}] => (Allow) LPort=13389
FirewallRules: [{408772D2-A16B-4742-92F7-F2A85C0C1427}] => (Allow) LPort=13389
FirewallRules: [{1BA6218D-8201-4A46-B5B0-9EE00A367D84}] => (Allow) LPort=13389
FirewallRules: [{CE476C16-DDFA-4EF6-8679-52BA3F6AA1AE}] => (Allow) LPort=13389
FirewallRules: [{8203930E-815F-46A7-84DD-4201302C3FFA}] => (Allow) LPort=13389
FirewallRules: [{7D1E3FC7-F176-40ED-8515-80EC8F85007A}] => (Allow) LPort=13389
FirewallRules: [{95590897-9C4F-4694-AA58-7C3B7D8C6427}] => (Allow) LPort=13389
FirewallRules: [{F4D6E7B7-DF18-4383-931C-E3AC40190EC6}] => (Allow) LPort=13389
FirewallRules: [{BA61B744-9F1E-45B8-AF8B-2B1D3F14FF95}] => (Allow) LPort=13389
FirewallRules: [{4FAD3841-B153-4240-89C5-7519E601B03A}] => (Allow) LPort=13389
FirewallRules: [{83F16AAB-5187-43A6-A748-1850BEDD27E4}] => (Allow) LPort=13389
FirewallRules: [{1EA10DDB-B4DA-4DF6-B8A6-6B5A3AFAC69F}] => (Allow) LPort=13389
FirewallRules: [{B9244E0F-AA40-4167-8833-F30F59C94BB0}] => (Allow) LPort=13389
FirewallRules: [{59AFA4D1-015E-4306-9717-4E210D259FA1}] => (Allow) LPort=13389
FirewallRules: [{6CFC5C16-22C0-4D73-807B-DD3C483A2FC6}] => (Allow) LPort=13389
FirewallRules: [{A0036FE0-6A43-4DF5-9E89-5880FF67B4BE}] => (Allow) LPort=13389
FirewallRules: [{F47D08D8-88BE-42FE-8313-E86E43480709}] => (Allow) LPort=13389
FirewallRules: [{5676682E-3C3C-495A-86FA-EA3BFE4BAFDB}] => (Allow) LPort=13389
FirewallRules: [{1D4CA734-281A-489A-AA2A-4D90A70DBAC4}] => (Allow) LPort=13389
FirewallRules: [{AF3F0D83-36EC-4A8B-86A7-46C59E5439E6}] => (Allow) LPort=13389
FirewallRules: [{1A5FBE5C-226B-4750-9259-94860F74ADDE}] => (Allow) LPort=13389
FirewallRules: [{3A3A52C6-BB44-4E27-8C90-5AFE031F86E8}] => (Allow) LPort=13389
FirewallRules: [{C62E4643-1FAA-4906-801C-CB101A782319}] => (Allow) LPort=13389
FirewallRules: [{E193B0F4-812F-4651-B4FE-D0DB02F1A481}] => (Allow) LPort=13389
FirewallRules: [{D220B006-CA25-4312-8B11-CF74E7838D99}] => (Allow) LPort=13389
FirewallRules: [{CDDBD2AD-BBE3-4E4D-85ED-0324490D8F75}] => (Allow) LPort=13389
FirewallRules: [{588982B2-0B98-4982-8CDB-CDBE9C92FB4F}] => (Allow) LPort=13389
FirewallRules: [{81EEB58B-CD11-4162-B1D3-1B97381E1163}] => (Allow) LPort=13389
FirewallRules: [{12442C11-BC89-4255-8DAB-775D8D41431E}] => (Allow) LPort=13389
FirewallRules: [{92C9010E-ACBF-4623-8C41-00060F3B95CE}] => (Allow) LPort=13389
FirewallRules: [{6D79B0A9-4AE3-4053-B089-B2507B40DFC5}] => (Allow) LPort=13389
FirewallRules: [{7064B373-BC66-4B9E-9FF5-0EEA1F7231BE}] => (Allow) LPort=13389
FirewallRules: [{C2D1F53E-C130-4ED8-AB71-BD0A25B501A5}] => (Allow) LPort=13389
FirewallRules: [{F3A342E2-37B6-45A3-A4C6-0334827063E3}] => (Allow) LPort=13389
FirewallRules: [{4267515C-47A5-426C-920A-33AB70CAFD27}] => (Allow) LPort=13389
FirewallRules: [{F8E86DFD-1D6B-48F9-9ED3-BF94F1D13DC3}] => (Allow) LPort=13389
FirewallRules: [{1275138E-5EF2-4E57-8A61-75EC3C559C2E}] => (Allow) LPort=13389
FirewallRules: [{26F1CBD8-5F4E-4553-A8EC-A0D2A805863E}] => (Allow) LPort=13389
FirewallRules: [{AC65BEDD-BCDA-4547-8D49-7650A616F6CD}] => (Allow) LPort=13389
FirewallRules: [{8BAF4A5B-9AD9-4FC6-ADCA-8106C95C59B6}] => (Allow) LPort=13389
FirewallRules: [{620CFEDD-A58D-4DD6-AD0A-9A3E0652731B}] => (Allow) LPort=13389
FirewallRules: [{2B2EFA5B-07C5-4921-B637-FC2B9096C54D}] => (Allow) LPort=13389
FirewallRules: [{CB59C7B4-453A-4595-B718-B7F944F40313}] => (Allow) LPort=13389
FirewallRules: [{781DBADD-55BB-4C51-9077-C6C9600E3C0E}] => (Allow) LPort=13389
FirewallRules: [{B6CE7E04-174C-4D44-B9F1-C0F601D62263}] => (Allow) LPort=13389
FirewallRules: [{14F4A655-0017-4D4A-B630-0706A104C049}] => (Allow) LPort=13389
FirewallRules: [{4794FF59-B4F3-4B9F-9F18-7A7992B11AFA}] => (Allow) LPort=13389
FirewallRules: [{441A7783-73C9-4E19-A852-B74193F99BD8}] => (Allow) LPort=13389
FirewallRules: [{FD7DDFFA-21DC-46E3-AE8F-1F2C763BED9D}] => (Allow) LPort=13389
FirewallRules: [{1D04AA04-CA46-4399-9CCC-D2C039592357}] => (Allow) LPort=13389
FirewallRules: [{C4D5AE00-0942-436C-8429-B06C7BCBEDCA}] => (Allow) LPort=13389
FirewallRules: [{4BE243D3-BDF9-428D-8BEA-5C83EF1C1671}] => (Allow) LPort=13389
FirewallRules: [{619593C0-1B04-48EF-9FBD-67642085A3DC}] => (Allow) LPort=13389
FirewallRules: [{370437D1-1A9C-47EA-804B-5C9DE9CFFBD0}] => (Allow) LPort=13389
FirewallRules: [{F195AB80-7456-49ED-8C81-71594C813920}] => (Allow) LPort=13389
FirewallRules: [{32CC431D-FE45-4A80-8385-6EA29C32C352}] => (Allow) LPort=13389
FirewallRules: [{EFE688D2-349A-4764-9537-D219F73B1E10}] => (Allow) LPort=13389
FirewallRules: [{41C53640-2F97-4808-84EC-8F4B549723A0}] => (Allow) LPort=13389
FirewallRules: [{B88EB53C-C871-45B9-A5B0-0753D9D398ED}] => (Allow) LPort=13389
FirewallRules: [{BEAA8B06-ABCC-4522-92B0-C66AB8A44848}] => (Allow) LPort=13389
FirewallRules: [{484025F4-DE5E-4E2E-890F-3F1319B96933}] => (Allow) LPort=13389
FirewallRules: [{EB6550A5-6E6F-4859-BC5D-D45C6615D16A}] => (Allow) LPort=13389
FirewallRules: [{2D4F25FA-DB00-4D8C-8CA6-6344DFB0489F}] => (Allow) LPort=13389
FirewallRules: [{7DBF4EEC-722A-4C31-87B2-9D9D63A753CF}] => (Allow) LPort=13389
FirewallRules: [{987DDBF6-5F21-459F-B802-5E4BA1A55F95}] => (Allow) LPort=13389
FirewallRules: [{A0A9BFE4-85C5-4134-A79D-F6734605139B}] => (Allow) LPort=13389
FirewallRules: [{DC701D9B-674A-4730-A905-1DBF4409D88D}] => (Allow) LPort=13389
FirewallRules: [{EFD772C5-4030-45E8-9E22-AF1792EB727D}] => (Allow) LPort=13389
FirewallRules: [{E3D03768-B30B-48B0-A3C1-21778B8D8A95}] => (Allow) LPort=13389
FirewallRules: [{FD6397FF-530B-4021-87B3-C89723657EC0}] => (Allow) LPort=13389
FirewallRules: [{CA506D6C-25EB-4C38-8488-B57077B16B2C}] => (Allow) LPort=13389
FirewallRules: [{7460F0BF-DD7A-488B-A7AD-5DDDF37EFAD8}] => (Allow) LPort=13389
FirewallRules: [{58311BDE-2BA4-465F-B392-E631FB393CEC}] => (Allow) LPort=13389
FirewallRules: [{4B63DE44-B83B-4071-8E1E-94CA43A6193E}] => (Allow) LPort=13389
FirewallRules: [{5040DD0C-4582-42DD-A154-627921347BC4}] => (Allow) LPort=13389
FirewallRules: [{44F55940-9BCE-42DC-BBCA-08DE1B19C16C}] => (Allow) LPort=13389
FirewallRules: [{509BF59A-4012-41CA-AD57-5B06383201DD}] => (Allow) LPort=13389
FirewallRules: [{493B2CA7-F821-467D-B548-74C206544F80}] => (Allow) LPort=13389
FirewallRules: [{F0A854A7-A8C5-4AB6-9854-FFAD3BD03B22}] => (Allow) LPort=13389
FirewallRules: [{EB2617A5-43FD-4FD5-BF19-C3AA5BEBF055}] => (Allow) LPort=13389
FirewallRules: [{FA97EC53-7CBF-4F5F-A5BE-673160AA491C}] => (Allow) LPort=13389
FirewallRules: [{8E977EB4-8B14-440C-8602-72E96CE3D743}] => (Allow) LPort=13389
FirewallRules: [{4957B0F9-25F4-4A8C-9E47-E9CA2EF60F78}] => (Allow) LPort=13389
FirewallRules: [{42A1B91D-0FBD-44C3-B9DA-5200AE167E72}] => (Allow) LPort=13389
FirewallRules: [{FF8A6D42-3387-4CCA-8750-C44D90F8C593}] => (Allow) LPort=13389
FirewallRules: [{6575F23E-3456-419C-8A32-7E2DD1BFC7F4}] => (Allow) LPort=13389
FirewallRules: [{FAAD88C3-A4E5-4577-B95F-F710A834EC82}] => (Allow) LPort=13389
FirewallRules: [{D7D01A64-6220-44BF-A52B-141C12DA711A}] => (Allow) LPort=13389
FirewallRules: [{917317A6-7723-4C00-B191-60F0B72ACBCD}] => (Allow) LPort=13389
FirewallRules: [{1FCE5269-F1D3-4D43-96AE-E27D2A18381E}] => (Allow) LPort=13389
FirewallRules: [{96C1581D-0B73-4C38-AFCB-CCAB262BF292}] => (Allow) LPort=13389
FirewallRules: [{E0EF3F54-0DF0-4C58-864E-100F539E111A}] => (Allow) LPort=13389
FirewallRules: [{80885A6F-7E8C-4EA2-B7BD-59BD64DE60F6}] => (Allow) LPort=13389
FirewallRules: [{EC660AAA-A898-480E-980C-3CBF18B49341}] => (Allow) LPort=13389
FirewallRules: [{EAFF7E6B-2BD3-4A3D-8969-55F68E288CEF}] => (Allow) LPort=13389
FirewallRules: [{F07BDBCF-6888-4F94-A85F-D56BE8A711CC}] => (Allow) LPort=13389
FirewallRules: [{007E17AA-E81E-4987-A52D-06D164D3DB48}] => (Allow) LPort=13389
FirewallRules: [{3400936E-DFCA-4E32-9AC5-555F942FCDAA}] => (Allow) LPort=13389
FirewallRules: [{C2C11371-7983-48F6-BA7C-E22314904FE9}] => (Allow) LPort=13389
FirewallRules: [{51464A31-155C-4E0B-B008-ADEAC4B46B7D}] => (Allow) LPort=13389
FirewallRules: [{3875664E-4CCC-40FF-85EB-7A9CCCD22048}] => (Allow) LPort=13389
FirewallRules: [{30BBDF46-E753-4DB0-9023-172DA4E3220C}] => (Allow) LPort=13389
FirewallRules: [{B7E9DC68-F314-4EB4-A9B9-F51CE89F8E22}] => (Allow) LPort=13389
FirewallRules: [{3DFFEF69-DD22-4992-A33B-B2DA0308D452}] => (Allow) LPort=13389
FirewallRules: [{D51572B4-443B-4F72-B3BF-C272161DFFF1}] => (Allow) LPort=13389
FirewallRules: [{F1FB7EA1-B6D2-4324-9BCE-949053CE5F49}] => (Allow) LPort=13389
FirewallRules: [{FBBEC7E1-3464-4615-BC4C-B1F14A860E7A}] => (Allow) LPort=13389
FirewallRules: [{7E762854-F127-4D2A-AAC9-A92A29B7B656}] => (Allow) LPort=13389
FirewallRules: [{C7F39719-4FC5-4884-9E0A-E63EFD28EB1C}] => (Allow) LPort=13389
FirewallRules: [{6B3176D3-A8EA-467D-A504-9FB4E8C1EDC6}] => (Allow) LPort=13389
FirewallRules: [{DB4996D3-3111-4292-8227-3DC80991F999}] => (Allow) LPort=13389
FirewallRules: [{35F93E94-B9A3-4D72-8134-C41EB90F1325}] => (Allow) LPort=13389
FirewallRules: [{182D0217-5097-4570-8ECF-0A85A09A5FAE}] => (Allow) LPort=13389
FirewallRules: [{3D49663A-4981-4AC2-AA18-D4F183904266}] => (Allow) LPort=13389
FirewallRules: [{4E9D838D-35CC-4600-8C9B-9592D5643E82}] => (Allow) LPort=13389
FirewallRules: [{14FDD983-86DC-445C-8134-2ECE09974656}] => (Allow) LPort=13389
FirewallRules: [{5D9AD6A0-B450-4810-A9B3-FFF03E971F1E}] => (Allow) LPort=13389
FirewallRules: [{33955D44-F459-4C8A-8A5D-0A0F05021EAB}] => (Allow) LPort=13389
FirewallRules: [{6598B4E7-2A1E-402C-9E51-5EDADBE5571C}] => (Allow) LPort=13389
FirewallRules: [{C978FCDE-97DE-4F3B-BBED-60DB14BAABEE}] => (Allow) LPort=13389
FirewallRules: [{3817D120-50B8-4FAA-9D89-A2728B282911}] => (Allow) LPort=13389
FirewallRules: [{5645C068-0A1E-4E86-B2A7-B109534E3C50}] => (Allow) LPort=13389
FirewallRules: [{8C4414FD-0809-41AB-B5EC-819E855FFE78}] => (Allow) LPort=13389
FirewallRules: [{84AECC84-B406-4E3D-8BCA-EEF840B7DF16}] => (Allow) LPort=13389
FirewallRules: [{8CC3E46F-05DC-49D7-B0E5-1A98C1DAC3E9}] => (Allow) LPort=13389
FirewallRules: [{77F6AC57-C8CC-4A82-8A0B-6E3441E5D6A0}] => (Allow) LPort=13389
FirewallRules: [{1B5204EF-03FD-4453-AF6A-3F22026E72BC}] => (Allow) LPort=13389
FirewallRules: [{68FF6CD6-4862-483C-99B9-B41FB731F6DD}] => (Allow) LPort=13389
hier noch den rest: Code:
ATTFilter =================== Wiederherstellungspunkte =========================
28-05-2021 18:02:42 Geplanter Prüfpunkt
30-05-2021 19:55:12 Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334
07-06-2021 10:17:27 Geplanter Prüfpunkt
12-06-2021 18:01:24 Windows Modules Installer
==================== Fehlerhafte Geräte im Gerätemanager ============
==================== Fehlereinträge in der Ereignisanzeige: ========================
Applikationsfehler:
==================
Error: (06/05/2021 09:18:40 PM) (Source: Freemake Improver) (EventID: 0) (User: )
Description: Der Dienst kann nicht gestartet werden. System.IO.FileLoadException: Die Datei oder Assembly "Newtonsoft.Json, Version=7.0.0.0, Culture=neutral, PublicKeyToken=30ad4fe6b2a6aeed" oder eine Abhängigkeit davon wurde nicht gefunden. Die gefundene Manifestdefinition der Assembly stimmt nicht mit dem Assemblyverweis überein. (Ausnahme von HRESULT: 0x80131040)
Dateiname: "Newtonsoft.Json, Version=7.0.0.0, Culture=neutral, PublicKeyToken=30ad4fe6b2a6aeed" ---> System.IO.FileLoadException: Die Datei oder Assembly "Newtonsoft.Json, Version=6.0.0.0, Culture=neutral, PublicKeyToken=30ad4fe6b2a6aeed" oder eine Abhängigkeit davon wurde nicht gefunden. Die gefundene Manifestdefinition der Assembly stimmt nicht mit dem Assemblyverweis überein. (Ausnahme von HRESULT: 0x80131040)
Dateiname: "Newtonsoft.Json, Version=6.0.0.0, Culture=neutral, PublicKeyToken=30ad4fe6b2a6aeed"
WRN: Protokollierung der Assemblybindung ist AUS.
Sie können die Protokollierung der Assemblybindungsfehler aktivieren, indem Sie den Registrierungswert [HKLM\Software\Microsoft\Fusion!E...
Error: (04/17/2021 11:24:15 AM) (Source: COM) (EventID: 10035) (User: )
Description: Der COM-Standardmarshaler war nicht in der Lage, einen Konflikt zwischen der vom Server bereitgestellten IID {618736E0-3C3D-11CF-810C-00AA00389B71} und der vom Client angeforderten IID {00020400-0000-0000-C000-000000000046} mit der Handler-CLSID {754FCFF9-E4D8-00FF-4092-4E75CCAC3FA8} zu beheben. Der Fehlercode war 0x80010114.
Error: (04/05/2021 01:20:02 PM) (Source: COM) (EventID: 10035) (User: )
Description: Der COM-Standardmarshaler war nicht in der Lage, einen Konflikt zwischen der vom Server bereitgestellten IID {618736E0-3C3D-11CF-810C-00AA00389B71} und der vom Client angeforderten IID {00020400-0000-0000-C000-000000000046} mit der Handler-CLSID {768AD2C9-E0B8-016F-80FC-8A7622E2AE2C} zu beheben. Der Fehlercode war 0x80010114.
Error: (03/18/2021 08:51:11 PM) (Source: COM) (EventID: 10035) (User: )
Description: Der COM-Standardmarshaler war nicht in der Lage, einen Konflikt zwischen der vom Server bereitgestellten IID {618736E0-3C3D-11CF-810C-00AA00389B71} und der vom Client angeforderten IID {00020400-0000-0000-C000-000000000046} mit der Handler-CLSID {03FD50E8-DE08-010F-D090-8276E0F38303} zu beheben. Der Fehlercode war 0x80010114.
Error: (02/22/2021 10:15:05 PM) (Source: COM) (EventID: 10035) (User: )
Description: Der COM-Standardmarshaler war nicht in der Lage, einen Konflikt zwischen der vom Server bereitgestellten IID {618736E0-3C3D-11CF-810C-00AA00389B71} und der vom Client angeforderten IID {00020400-0000-0000-C000-000000000046} mit der Handler-CLSID {041E40E0-DCF0-012F-9012-FF7638565B01} zu beheben. Der Fehlercode war 0x80010114.
Error: (02/13/2021 05:10:45 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Das Programm NxNandManager_x64.exe Version 0.0.0.0 hat die Interaktion mit Windows beendet und wurde geschlossen. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 1840
Startzeit: 01d7021210c435e5
Beendigungszeit: 8
Anwendungspfad: C:\Users\Jessica\Desktop\NxNandManager_v4.1_x64\NxNandManager_x64.exe
Bericht-ID: 00cb87e6-6ae3-4da6-814d-e9e75152b402
Vollständiger Name des fehlerhaften Pakets:
Relative Anwendungs-ID des fehlerhaften Pakets:
Absturztyp: Unknown
Error: (02/13/2021 04:57:29 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Das Programm explorer.exe Version 10.0.19041.746 hat die Interaktion mit Windows beendet und wurde geschlossen. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 2360
Startzeit: 01d7020530c83586
Beendigungszeit: 15800
Anwendungspfad: C:\Windows\explorer.exe
Bericht-ID: 50d0b8dd-0eec-46e9-8485-cf85f822a9dd
Vollständiger Name des fehlerhaften Pakets:
Relative Anwendungs-ID des fehlerhaften Pakets:
Absturztyp: Unknown
Error: (02/11/2021 08:00:21 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Das Programm firefox.exe Version 85.0.2.7709 hat die Interaktion mit Windows beendet und wurde geschlossen. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: e40
Startzeit: 01d7009dcbe52e42
Beendigungszeit: 4294967295
Anwendungspfad: C:\Program Files\Mozilla Firefox\firefox.exe
Bericht-ID: 587c00d0-9730-4a90-92b1-1dd57ab5c8c2
Vollständiger Name des fehlerhaften Pakets:
Relative Anwendungs-ID des fehlerhaften Pakets:
Absturztyp: Top level window is idle
Systemfehler:
=============
Error: (06/12/2021 07:04:36 PM) (Source: TPM) (EventID: 15) (User: NT-AUTORITÄT)
Description: Beim Gerätetreiber für das Trusted Platform Module (TPM) ist ein nicht behebbarer Fehler in der TPM-Hardware aufgetreten, der die Verwendung der TPM-Dienste (z. B. Datenverschlüsselung) verhindert. Wenden Sie sich an den Computerhersteller, um weitere Hilfe zu erhalten.
Error: (06/12/2021 07:02:09 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Remotedesktopdienste" wurde unerwartet beendet. Dies ist bereits 3 Mal passiert.
Error: (06/12/2021 07:02:06 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Remotedesktopdienste" wurde unerwartet beendet. Dies ist bereits 2 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (06/12/2021 07:02:01 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Remotedesktopdienste" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (06/12/2021 06:54:48 PM) (Source: TPM) (EventID: 15) (User: NT-AUTORITÄT)
Description: Beim Gerätetreiber für das Trusted Platform Module (TPM) ist ein nicht behebbarer Fehler in der TPM-Hardware aufgetreten, der die Verwendung der TPM-Dienste (z. B. Datenverschlüsselung) verhindert. Wenden Sie sich an den Computerhersteller, um weitere Hilfe zu erhalten.
Error: (06/12/2021 06:42:34 PM) (Source: TPM) (EventID: 15) (User: NT-AUTORITÄT)
Description: Beim Gerätetreiber für das Trusted Platform Module (TPM) ist ein nicht behebbarer Fehler in der TPM-Hardware aufgetreten, der die Verwendung der TPM-Dienste (z. B. Datenverschlüsselung) verhindert. Wenden Sie sich an den Computerhersteller, um weitere Hilfe zu erhalten.
Error: (06/12/2021 06:42:13 PM) (Source: DCOM) (EventID: 10005) (User: NT-AUTORITÄT)
Description: Fehler "1115" in DCOM, als der Dienst "SecurityHealthService" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden:
{8C9C0DB7-2CBA-40F1-AFE0-C55740DD91A0}
Error: (06/12/2021 06:40:39 PM) (Source: TPM) (EventID: 15) (User: NT-AUTORITÄT)
Description: Beim Gerätetreiber für das Trusted Platform Module (TPM) ist ein nicht behebbarer Fehler in der TPM-Hardware aufgetreten, der die Verwendung der TPM-Dienste (z. B. Datenverschlüsselung) verhindert. Wenden Sie sich an den Computerhersteller, um weitere Hilfe zu erhalten.
Windows Defender:
================
Date: 2021-06-12 16:37:27
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {8BB22E9B-A08F-4F5D-9611-8FD04C4E274C}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Date: 2021-06-10 19:58:04
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {EB8F1404-FECC-4255-903B-B2BCC2CB4A43}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Date: 2021-06-07 12:17:16
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {55285A13-BFDA-4FB7-9F12-7A52673F0EA8}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Date: 2021-06-06 10:30:31
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {C00FA2EE-54BE-41D7-9AF9-8288994090F8}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Date: 2021-06-04 23:51:36
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {498BC8A9-4FB3-4916-B25B-12CCFDCC89B5}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Date: 2021-06-05 21:18:27
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.
Neue Version der Sicherheitsinformationen: 1.341.54.0
%Vorherige Version der Sicherheitsinformationen: 1.339.1957.0
Update Source: Benutzer
Sicherheitstyp: AntiSpyware
Updatetyp: Delta
Benutzer: NT-AUTORITÄT\SYSTEM
Aktuelle Modulversion: 1.1.18200.4
%Vorherige Modulversion: 1.1.18100.6
Fehlercode: 0x80070666
Fehlerbeschreibung: Eine andere Version des Produkts ist bereits installiert. Die Installation dieser Version kann nicht fortgesetzt werden. Verwenden Sie die Systemsteuerungsoption "Software", um die vorhandene Version dieses Produkts zu konfigurieren oder zu entfernen.
Date: 2021-06-05 21:18:27
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.
Neue Version der Sicherheitsinformationen: 1.341.54.0
%Vorherige Version der Sicherheitsinformationen: 1.339.1957.0
Update Source: Benutzer
Sicherheitstyp: AntiVirus
Updatetyp: Delta
Benutzer: NT-AUTORITÄT\SYSTEM
Aktuelle Modulversion: 1.1.18200.4
%Vorherige Modulversion: 1.1.18100.6
Fehlercode: 0x80070666
Fehlerbeschreibung: Eine andere Version des Produkts ist bereits installiert. Die Installation dieser Version kann nicht fortgesetzt werden. Verwenden Sie die Systemsteuerungsoption "Software", um die vorhandene Version dieses Produkts zu konfigurieren oder zu entfernen.
Date: 2021-06-05 21:18:27
Description:
Fehler von Microsoft Defender Antivirus beim Aktualisieren des Moduls.
Neue Modulversion: 1.1.18200.4
Vorherige Modulversion: 1.1.18100.6
Benutzer: NT-AUTORITÄT\SYSTEM
Fehlercode: 0x80070666
Fehlerbeschreibung: Eine andere Version des Produkts ist bereits installiert. Die Installation dieser Version kann nicht fortgesetzt werden. Verwenden Sie die Systemsteuerungsoption "Software", um die vorhandene Version dieses Produkts zu konfigurieren oder zu entfernen.
Date: 2021-06-04 23:51:38
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.
Neue Version der Sicherheitsinformationen: 1.341.54.0
%Vorherige Version der Sicherheitsinformationen: 1.339.1957.0
Update Source: Benutzer
Sicherheitstyp: AntiSpyware
Updatetyp: Delta
Benutzer: NT-AUTORITÄT\SYSTEM
Aktuelle Modulversion: 1.1.18200.4
%Vorherige Modulversion: 1.1.18100.6
Fehlercode: 0x80070666
Fehlerbeschreibung: Eine andere Version des Produkts ist bereits installiert. Die Installation dieser Version kann nicht fortgesetzt werden. Verwenden Sie die Systemsteuerungsoption "Software", um die vorhandene Version dieses Produkts zu konfigurieren oder zu entfernen.
Date: 2021-06-04 23:51:38
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.
Neue Version der Sicherheitsinformationen: 1.341.54.0
%Vorherige Version der Sicherheitsinformationen: 1.339.1957.0
Update Source: Benutzer
Sicherheitstyp: AntiVirus
Updatetyp: Delta
Benutzer: NT-AUTORITÄT\SYSTEM
Aktuelle Modulversion: 1.1.18200.4
%Vorherige Modulversion: 1.1.18100.6
Fehlercode: 0x80070666
Fehlerbeschreibung: Eine andere Version des Produkts ist bereits installiert. Die Installation dieser Version kann nicht fortgesetzt werden. Verwenden Sie die Systemsteuerungsoption "Software", um die vorhandene Version dieses Produkts zu konfigurieren oder zu entfernen.
==================== Speicherinformationen ===========================
BIOS: American Megatrends Inc. 2.I0 09/28/2018
Hauptplatine: MSI B350M GAMING PRO (MS-7A39)
Prozessor: AMD Ryzen 7 1700 Eight-Core Processor
Prozentuale Nutzung des RAM: 47%
Installierter physikalischer RAM: 16334.29 MB
Verfügbarer physikalischer RAM: 8571.11 MB
Summe virtueller Speicher: 18766.29 MB
Verfügbarer virtueller Speicher: 6910.24 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:931.01 GB) (Free:693.94 GB) NTFS
Drive d: (Volume) (Fixed) (Total:119.19 GB) (Free:42.1 GB) NTFS
\\?\Volume{c7daffa1-0000-0000-0000-100000000000}\ (System-reserviert) (Fixed) (Total:0.05 GB) (Free:0.02 GB) NTFS
\\?\Volume{a45625a4-0000-0000-0000-a0c0e8000000}\ () (Fixed) (Total:0.5 GB) (Free:0.08 GB) NTFS
==================== MBR & Partitionstabelle ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 119.2 GB) (Disk ID: C7DAFFA1)
Partition 1: (Active) - (Size=50 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=119.2 GB) - (Type=07 NTFS)
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: A45625A4)
Partition 1: (Not Active) - (Size=931 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=513 MB) - (Type=27)
==================== Ende von Addition.txt =======================
|
|
12.06.2021, 22:56
| #8 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Zufälliger Fund vom zweiten Benutzerkonto Scripting/Repair mit FRST64 WARNUNG AN ALLE MITLESER !!! Dieses FRST-Script ist ausschließlich für diesen Nutzer gedacht und sollte niemals 1:1 für ein anderes System angewendet werden!
__________________ Logfiles bitte immer in CODE-Tags posten |
|
13.06.2021, 19:09
| #9 |
| | Zufälliger Fund vom zweiten Benutzerkonto Was ist mit meinem PC los? Code:
ATTFilter Entfernungsergebnis von Farbar Recovery Scan Tool (x64) Version: 12-06-2021
durchgeführt von Jessica (13-06-2021 20:07:27) Run:1
Gestartet von C:\Users\Jessica\Desktop
Geladene Profile: Jessica
Start-Modus: Normal
==============================================
fixlist Inhalt:
*****************
CloseProcesses:
Virustotal: C:\Users\Jessica\AppData\Roaming\RIONwVu\532.vbs
*****************
Prozesse erfolgreich geschlossen.
VirusTotal: C:\Users\Jessica\AppData\Roaming\RIONwVu\532.vbs => https://www.virustotal.com/gui/file/490c84854174fa43f15d9ca2967578ed5aa614f5327ccccb5cb6ba589db3aeb6/detection/f-490c84854174fa43f15d9ca2967578ed5aa614f5327ccccb5cb6ba589db3aeb6-1623468991
Das System musste neu gestartet werden.
==== Ende von Fixlog 20:07:28 ====
|
|
14.06.2021, 10:28
| #10 | |
| /// TB-Ausbilder | Zufälliger Fund vom zweiten BenutzerkontoZitat:
|
|
14.06.2021, 11:15
| #11 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Zufälliger Fund vom zweiten Benutzerkonto adwCleaner Führe AdwCleaner gemäß der bebilderten Anleitung aus und poste abschließend die Logdatei in CODE-Tags. adwcleaner bitte wiederholen falls es Funde gab.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
14.06.2021, 13:31
| #12 |
| /// TB-Ausbilder | Zufälliger Fund vom zweiten Benutzerkonto Wie cosinus schrieb, AdwCleaner ausführen. Danch bitte MBAM ausführen: Malwarebytes AntiMalware Führe Malwarebytes' AntiMalware (MBAM) gemäß der bebilderten Anleitung aus und poste abschließend die Logdatei. |
|
14.06.2021, 18:07
| #13 |
| | Zufälliger Fund vom zweiten Benutzerkonto adwcleaner hat keine Elemente erkannt Code:
ATTFilter # -------------------------------
# Malwarebytes AdwCleaner 8.2.0.0
# -------------------------------
# Build: 03-22-2021
# Database: 2021-05-17.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 06-14-2021
# Duration: 00:00:30
# OS: Windows 10 Pro
# Scanned: 31970
# Detected: 0
***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
No malicious folders found.
***** [ Files ] *****
No malicious files found.
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
No malicious registry entries found.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries found.
***** [ Chromium URLs ] *****
No malicious Chromium URLs found.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries found.
***** [ Firefox URLs ] *****
No malicious Firefox URLs found.
***** [ Hosts File Entries ] *****
No malicious hosts file entries found.
***** [ Preinstalled Software ] *****
No Preinstalled Software found.
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########
|
|
14.06.2021, 18:20
| #14 | |
| /// TB-Ausbilder | Zufälliger Fund vom zweiten BenutzerkontoZitat:
Da wird bestimmt was gefunden werden... |
|
14.06.2021, 20:51
| #15 | |
| | Zufälliger Fund vom zweiten BenutzerkontoZitat:
"Der Text, den Sie eingegeben haben, besteht aus 3702105 Zeichen und ist damit zu lang. Bitte die Logs auf mehrere Beiträge aufspalten mit maximaler Länge von 120000 Zeichen." Tut mir leid ich habe in dem fall die txt datei als anhang gemacht. Ich frag mich was da los ist kommt mir alles so extrem vor?!? |
|
| Themen zu Zufälliger Fund vom zweiten Benutzerkonto |
| account, benutzerkonto, bild, deaktivieren, einfach, erstell, erstellt, fund, immer wieder, löschen, nachfrage, neustart, nicht löschen, nicht sicher, remote, schwarz, unter, vermute, wahrscheinlich, windows, windows 10, wissen, würde, zweiter, zweites |
Linear-Darstellung
