| |
| |||||||
Log-Analyse und Auswertung: Verdacht auf Malware: Youtube Channel Abo, Key InputsWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
05.02.2023, 00:56
| #1 |
 |  Verdacht auf Malware: Youtube Channel Abo, Key Inputs Hallo zusammen, seit 2 Tagen habe ich den Verdacht, dass ich mir Malware eingefangen habe. Das äußert sich zum einen Darin, dass ich auf Youtube Kanäle in meinem Feed auftauchen, die ich sicher nicht abonniert habe, zum anderen habe ich den Eindruck, dass Key-Inputs im Hintergrund getätigt werden. Ich würde mich sehr darüber freuen, wenn mir jemand helfen könnte. Hier die Log-Files von FRST: FRST.txt FRST Logfile: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 03-02-2023
durchgeführt von Alex (Administrator) auf ALEX-PC-NEU (05-02-2023 00:44:29)
Gestartet von C:\Users\Alex\Downloads\Farbar_x86_x64
Geladene Profile: Alex
Plattform: Microsoft Windows 10 Pro Version 21H2 19044.2486 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: FF
Start-Modus: Normal
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Blish HUD) [Datei ist nicht signiert] E:\SteamLibrary\steamapps\common\Guild Wars 2\Blish.HUD.1.0.0\Blish HUD.exe
(C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\wpCtrl.exe ->) (Portrait Displays, Inc. -> ) C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\Floater.exe
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <8>
(C:\Program Files\SteelSeries\GG\apps\engine\SteelSeriesEngine.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\apps\engine\prism\SteelSeriesPrism.exe
(C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\apps\engine\SteelSeriesEngine.exe
(C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22112.142.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22112.142.0_x64__8wekyb3d8bbwe\YourPhoneAppProxy.exe
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCopyAccelerator.exe
(CMedia) [Datei ist nicht signiert] C:\Program Files\ASUS Xonar Essence STX Audio\Customapp\AsusAudioCenter.exe
(Discord Inc. -> Discord Inc.) C:\Users\Alex\AppData\Local\Discord\app-1.0.9010\Discord.exe <6>
(explorer.exe ->) () [Datei ist nicht signiert] C:\Program Files (x86)\NetMeter\NetMeterEvo_200\NetMeterEvo.exe
(explorer.exe ->) (Logitech -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(explorer.exe ->) (Skutta, Kristjan -> ) C:\Program Files (x86)\Steam\SteamApps\common\wallpaper_engine\wallpaper32.exe
(explorer.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe
(explorer.exe ->) (TeamSpeak Systems GmbH -> TeamSpeak Systems GmbH) C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe
(explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(explorer.exe ->) (Vincent Burel -> VB-AUDIO Software) C:\Program Files (x86)\VB\Voicemeeter\voicemeeterpro.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe <16>
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Portrait Displays, Inc. -> ) C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\wpCtrl.exe
(services.exe ->) () [Datei ist nicht signiert] C:\Program Files (x86)\DSDCS\InputMapper HidGuardian\InputMapperCerberusWhitelister.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Broadcom Corporation -> Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(services.exe ->) (Cisco Systems, Inc. -> Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
(services.exe ->) (devolo AG -> devolo AG) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
(services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(services.exe ->) (Foxit Software Incorporated -> Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitConnectedPDFService.exe
(services.exe ->) (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(services.exe ->) (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(services.exe ->) (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(services.exe ->) (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\NisSrv.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d1bd230cd08e7436\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Portrait Displays, Inc. -> Portrait Displays, Inc.) C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
(services.exe ->) (Portrait Displays, Inc. -> Portrait Displays, Inc.) C:\Program Files (x86)\Common Files\Portrait Displays\Shared\DTSRVC.exe
(services.exe ->) (TechSmith Corporation) [Datei ist nicht signiert] C:\Program Files (x86)\Common Files\TechSmith Shared\Uploader\UploaderService.exe
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(services.exe ->) (VMware, Inc. -> VMware, Inc.) C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe
(services.exe ->) (VMware, Inc. -> VMware, Inc.) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
(services.exe ->) (VMware, Inc. -> VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe
(services.exe ->) (VMware, Inc. -> VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2210.0.0_x64__8wekyb3d8bbwe\CalculatorApp.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21314.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21314.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22112.142.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
==================== Registry (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2014-05-28] (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [10801944 2014-07-28] (Logitech -> Logitech Inc.)
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-10-01] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [Cmaudio8788] => C:\Windows\Syswow64\cmicnfgp.dll [12943360 2013-10-17] (C-Media Corporation) [Datei ist nicht signiert]
HKLM\...\Run: [Cmaudio8788GX] => C:\Windows\syswow64\HsMgr.exe [200704 2008-07-11] () [Datei ist nicht signiert]
HKLM\...\Run: [Cmaudio8788GX64] => C:\Windows\system\HsMgr64.exe [282112 2008-07-11] () [Datei ist nicht signiert]
HKLM\...\Run: [SteelSeriesGG] => C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe [12903296 2023-01-30] (SteelSeries ApS -> SteelSeries ApS)
HKLM\...\Run: [KeePass 2 PreLoad] => C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [3190384 2021-09-10] (Open Source Developer, Dominik Reichl -> Dominik Reichl)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3941528 2016-05-14] (Logitech Inc -> Logitech, Inc.)
HKLM-x32\...\Run: [PivotSoftware] => C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\Pivot_startup.exe [112424 2013-06-18] (Portrait Displays, Inc. -> )
HKLM-x32\...\Run: [DT BEN] => C:\Program Files (x86)\Common Files\Portrait Displays\Shared\DT_startup.exe [122384 2013-11-12] (Portrait Displays, Inc. -> Portrait Displays, Inc.)
HKLM-x32\...\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] => C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe [1027472 2015-12-23] (Cisco Systems, Inc. -> Cisco Systems, Inc.)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [235624 2015-01-09] (Canon Inc. -> CANON INC.)
HKLM-x32\...\Run: [PDFPrint] => C:\Program Files (x86)\PDF24\pdf24.exe [210432 2016-07-05] (Geek Software GmbH -> Geek Software GmbH)
HKLM-x32\...\Run: [RoccatKoneXTDOptical] => C:\Program Files (x86)\ROCCAT\Kone XTD Optical Mouse\KoneXTDOpticalMonitor.EXE [552960 2014-04-14] (ROCCAT GmbH) [Datei ist nicht signiert]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [710264 2020-06-18] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Beschränkung <==== ACHTUNG
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Beschränkung <==== ACHTUNG
HKU\S-1-5-21-151591732-769639063-1674776794-1001\...\Run: [NetMeter Evo] => C:\Program Files (x86)\NetMeter\NetMeterEvo_200\NetMeterEvo.exe [1192448 2013-08-12] () [Datei ist nicht signiert]
HKU\S-1-5-21-151591732-769639063-1674776794-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9105112 2016-11-15] (Piriform Ltd -> Piriform Ltd)
HKU\S-1-5-21-151591732-769639063-1674776794-1001\...\Run: [WallpaperEngine] => C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe [2982608 2022-07-03] (Skutta, Kristjan -> )
HKU\S-1-5-21-151591732-769639063-1674776794-1001\...\MountPoints2: {4df76bf4-3582-11eb-841c-d050996a1572} - "F:\HiSuiteDownLoader.exe"
HKLM\...\Windows x64\Print Processors\Canon MG5700 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDCS.DLL [30208 2015-03-15] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows x64\Print Processors\Epson Inkjet: C:\Windows\System32\spool\prtprocs\x64\EP0NPP01.DLL [38912 2011-08-30] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG5700 series: C:\Windows\system32\CNMLMCS.DLL [406528 2015-03-15] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJNP Port: C:\Windows\system32\CNMN6PPM.DLL [375296 2015-03-17] (CANON INC.) [Datei ist nicht signiert]
HKLM\...\Print\Monitors\Epson Inbox Language Monitor01: C:\Windows\system32\EP0SLM01.DLL [77824 2011-08-30] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\109.0.5414.120\Installer\chrmstp.exe [2023-01-27] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{50968FF7-10C1-4fb3-98B0-CD654D6CB97E}] -> C:\Program Files\WIDCOMM\Bluetooth Software\\BtwCP.dll (Broadcom Corporation -> Broadcom Corporation.)
AppInit_DLLs: C:\PROGRA~2\GeDoSaTo\shim64.dll => Keine Datei
Startup: C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Voicemeeter Banana.LNK [2018-11-05]
ShortcutTarget: Voicemeeter Banana.LNK -> C:\Program Files (x86)\VB\Voicemeeter\voicemeeterpro.exe (Vincent Burel -> VB-AUDIO Software)
GroupPolicy: Beschränkung ? <==== ACHTUNG
Policies: C:\ProgramData\NTUSER.pol: Beschränkung <==== ACHTUNG
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {023D4647-710B-4976-931E-EE67AB34FF7C} - System32\Tasks\TechSmith Updater => C:\Program Files (x86)\Common Files\TechSmith Shared\Updater\TSCUpdClt.exe [56640 2015-08-11] (TechSmith Corporation -> TechSmith Corporation)
Task: {042FEABE-DDC2-4552-B329-1E9C04D8FFE7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {06D711A9-532B-4DDA-8277-7A015F8905FB} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {16FC02B1-02E0-428A-8C14-9FB7AB49615F} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26334160 2023-02-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {26DFC637-BB7F-4F0B-9882-7CBB036D99D0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {314F5E99-9FD3-4B2B-9355-7751BC15BAC2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {338FBDE6-FF32-4E94-A4BF-4C24CE023815} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1552376 2022-09-26] (Adobe Inc. -> Adobe Inc.)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe join (Keine Datei)
Task: {3B490F52-F286-4942-8A02-9367512D6C2E} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe (Keine Datei)
Task: {4005817E-DC6B-4EEC-B697-E4C5E3CA5047} - System32\Tasks\{15F7F456-B141-4BB9-BC75-2E1C10DDD97E} => C:\Windows\system32\pcalua.exe -a "C:\ProgramData\Battle.net\Agent\Blizzard Uninstaller.exe" -c --lang=deDE --uid=s2_dede --displayname="StarCraft II"
Task: {501B5BF4-3020-426B-AEF4-D47CE8505838} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-17] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {5055E507-7CB8-45CC-B4A4-19ED71F42CFF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-03-31] (Google Inc -> Google Inc.)
Task: {51C93926-BDA6-42B8-965C-858C4A13271D} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [710560 2023-02-04] (Mozilla Corporation -> Mozilla Foundation)
Task: {5438F2DF-9317-482B-AA5C-5946F7F3BBA8} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {60B68EBC-AD96-4744-9694-7EFD9D6F11AC} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [114616 2023-02-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {677E153F-02B7-4106-9D28-7FC269717AF5} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA}
Task: {6807B9C7-4226-4E8B-BF4E-63CA1C420C73} - System32\Tasks\{90152AE9-2C3E-4CF9-BA2D-EAF6EF169F36} => C:\WINDOWS\system32\pcalua.exe -a F:\START.EXE -d F:\
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {749DCAB4-E9DA-4CAB-B8D5-870F66CD1608} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [7045848 2016-11-15] (Piriform Ltd -> Piriform Ltd)
Task: {7A20C760-BDE9-4CCE-8AF9-139340FB5215} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {81A62E0D-1F69-4E32-821B-E664A98361CB} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [715744 2023-02-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {907D0D67-8378-49A9-BB88-C462D5F3AD9A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-03-31] (Google Inc -> Google Inc.)
Task: {9EFC3276-805E-4BD2-BCC5-FFF8B3B4C1D0} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2637656 2023-01-24] (Overwolf Ltd -> Overwolf LTD)
Task: {9F97C914-31F3-4B46-9198-40D744DDB847} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {A54B212C-5735-48EB-B7B4-955DD24DF1BB} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel(R) Update Manager -> Intel Corporation)
Task: {AFBAD4DC-4581-486D-A87D-6FCD84493237} - \Microsoft\Windows\UNP\RunCampaignManager -> Keine Datei <==== ACHTUNG
Task: {BC4EED84-8A7D-4995-B347-9CF4CE6DC0F5} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649256 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {C7709AB3-9AB1-44B1-809C-72AC3B0062C9} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel(R) Update Manager -> Intel Corporation)
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {D1687917-6A0C-460D-A1B3-29E4682ACCBA} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {D76831BC-41F1-4147-B6F1-0EF11670AA6F} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {D9E13097-0974-4C5C-8FA0-9547CFF94DDC} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26334160 2023-02-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {E36F8826-0202-4F8A-922C-C090A099AB7F} - System32\Tasks\ExclusiveTool => C:\Program Files (x86)\DSDCS\InputMapper\ExclusiveModeTool.exe [19968 2016-10-04] (InputMapper) [Datei ist nicht signiert]
Task: {EC0B3A34-F27A-4C47-96D3-6CECBC455DAC} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe /NOUACCHECK
Task: {F1DA908B-7912-4DF3-90A0-DAB05B6B6742} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {F558BB01-5989-49DB-85E4-DEB8D63D4149} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [114616 2023-02-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {F63D33D6-BAC0-4F74-8BEE-B5A8DD1E8434} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{aaf4c738-df63-4f39-b3bc-ca88103bcf6a}: [DhcpNameServer] 192.168.0.1
Edge:
=======
Edge Profile: C:\Users\Alex\AppData\Local\Microsoft\Edge\User Data\Default [2021-11-27]
FireFox:
========
FF DefaultProfile: 2me8rye7.default-1598034875909
FF ProfilePath: C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\2me8rye7.default-1598034875909 [2023-02-05]
FF Notifications: Mozilla\Firefox\Profiles\2me8rye7.default-1598034875909 -> hxxps://web.whatsapp.com
FF Extension: (BetterTTV) - C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\2me8rye7.default-1598034875909\Extensions\firefox@betterttv.net.xpi [2023-01-30]
FF Extension: (Privacy Badger) - C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\2me8rye7.default-1598034875909\Extensions\jid1-MnnxcxisBPnSXQ@jetpack.xpi [2023-02-03]
FF Extension: (Tree Style Tab) - C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\2me8rye7.default-1598034875909\Extensions\treestyletab@piro.sakura.ne.jp.xpi [2023-01-23]
FF Extension: (uBlock Origin) - C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\2me8rye7.default-1598034875909\Extensions\uBlock0@raymondhill.net.xpi [2022-12-25]
FF Extension: (7TV) - C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\2me8rye7.default-1598034875909\Extensions\{7ef0f00c-2ebe-4626-8ed7-3185847fcfad}.xpi [2022-08-20]
FF Extension: (Adblock Plus - kostenloser Adblocker) - C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\2me8rye7.default-1598034875909\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2022-12-05]
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt => nicht gefunden
FF HKLM-x32\...\Firefox\Extensions: [{8AA36F4F-6DC7-4c06-77AF-5035170634FE}] - C:\ProgramData\Swiss Academic Software\Citavi Picker\Firefox
FF Extension: (Citavi Picker) - C:\ProgramData\Swiss Academic Software\Citavi Picker\Firefox [2015-03-25] [] [ist nicht signiert]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-03-20] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-03-20] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.261.2 -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\dtplugin\npDeployJava1.dll [2020-07-22] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.261.2 -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\plugin2\npjp2.dll [2020-07-22] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-11-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-11-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2023-01-21] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-151591732-769639063-1674776794-1001: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2020-04-20] (Ubisoft Entertainment Sweden AB -> )
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default [2023-01-03]
CHR StartupUrls: Default -> "hxxps://play.spotify.com/browse"
CHR Extension: (Google Docs Offline) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-12-27]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-11]
==================== Dienste (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2022-09-26] (Adobe Inc. -> Adobe Inc.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [9712432 2022-12-19] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12553648 2023-02-02] (Microsoft Corporation -> Microsoft Corporation)
R2 DevoloNetworkService; C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe [3755976 2015-07-01] (devolo AG -> devolo AG)
R2 DTSRVC; C:\Program Files (x86)\Common Files\Portrait Displays\Shared\dtsrvc.exe [138768 2013-11-12] (Portrait Displays, Inc. -> Portrait Displays, Inc.)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [811496 2022-04-17] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [584680 2022-03-26] (EasyAntiCheat Oy -> Epic Games, Inc.)
R2 FoxitReaderService; C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitConnectedPDFService.exe [1659592 2016-10-13] (Foxit Software Incorporated -> Foxit Software Inc.)
R2 InputMapper Cerberus Whitelister; C:\Program Files (x86)\DSDCS\InputMapper HidGuardian\InputMapperCerberusWhitelister.exe [14848 2017-04-21] () [Datei ist nicht signiert]
S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel(R) Update Manager -> Intel Corporation)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [8966256 2023-02-04] (Malwarebytes Inc. -> Malwarebytes)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2579264 2023-02-02] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3497800 2023-02-02] (Electronic Arts, Inc. -> Electronic Arts)
S3 OverwolfUpdater; C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2637656 2023-01-24] (Overwolf Ltd -> Overwolf LTD)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [224184 2022-12-19] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 SteelSeriesUpdateService; C:\Program Files\SteelSeries\GG\SteelSeriesUpdateService.exe [35200 2023-01-30] (SteelSeries ApS -> )
S3 Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [119808 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
R2 TechSmith Uploader Service; C:\Program Files (x86)\Common Files\TechSmith Shared\Uploader\UploaderService.exe [3408384 2015-01-26] (TechSmith Corporation) [Datei ist nicht signiert]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\NisSrv.exe [3191264 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe [133592 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d1bd230cd08e7436\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d1bd230cd08e7436\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Treiber (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R1 AsrAppCharger; C:\WINDOWS\system32\DRIVERS\AsrAppCharger.sys [17192 2011-11-07] (ASROCK Incorporation -> Windows (R) Win 7 DDK provider)
R3 cmudaxp; C:\WINDOWS\system32\drivers\cmudaxp.sys [2735616 2013-12-11] (C-MEDIA ELECTRONICS INC. -> C-Media Inc)
S3 dc3d; C:\WINDOWS\System32\drivers\dc3d.sys [47616 2011-05-18] (Hardware Group Test Cert -> Microsoft Corporation)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 HidGuardian; C:\WINDOWS\System32\drivers\HidGuardian.sys [26736 2017-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Benjamin Höglinger-Stelzer)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2023-02-04] (Microsoft Windows Early Launch Anti-Malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2023-02-04] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MpKsl66149b15; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{DA6B21D2-59EC-4DC9-9541-763C36FFB7CE}\MpKslDrv.sys [214280 2023-02-04] (Microsoft Windows -> Microsoft Corporation)
R2 NPF_devolo; C:\WINDOWS\sysWOW64\drivers\npf_devolo.sys [34048 2015-07-01] (devolo AG -> CACE Technologies)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
R3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-05] (Bruce James -> Scarlet.Crush Productions)
R2 speedfan; C:\WINDOWS\SysWoW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
R3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [48848 2020-09-25] (SteelSeries ApS -> SteelSeries ApS)
R3 sshid; C:\WINDOWS\system32\DRIVERS\sshid.sys [43960 2022-08-18] (Microsoft Windows Hardware Compatibility Publisher -> SteelSeries ApS)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ssudserd; C:\WINDOWS\system32\DRIVERS\ssudserd.sys [206080 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [50720 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 SteelSeries_Sonar_VAD; C:\WINDOWS\System32\DriverStore\FileRepository\steelseries-sonar-vad.inf_amd64_6979b8a94c20d77f\SteelSeries-Sonar-VAD.sys [93872 2023-01-10] (SteelSeries ApS -> Windows (R) Win 7 DDK provider)
R1 UimBus; C:\WINDOWS\System32\drivers\UimBus.sys [102576 2015-08-26] (Paragon Software GmbH -> )
R1 Uim_DEVIM; C:\WINDOWS\System32\drivers\uim_devim.sys [25904 2015-08-26] (Paragon Software GmbH -> )
R1 Uim_IM; C:\WINDOWS\System32\drivers\uim_im.sys [701232 2015-08-26] (Paragon Software GmbH -> )
R3 VBAudioVACMME; C:\WINDOWS\System32\drivers\vbaudio_cable64_win7.sys [41192 2016-03-16] (Vincent Burel -> Windows (R) Win 7 DDK provider)
R3 VBAudioVMAUXVAIOMME; C:\WINDOWS\System32\drivers\vbaudio_vmauxvaio64_win7.sys [41192 2018-11-05] (Vincent Burel -> Windows (R) Win 7 DDK provider)
R3 VBAudioVMVAIOMME; C:\WINDOWS\System32\drivers\vbaudio_vmvaio64_win7.sys [41192 2017-03-04] (Vincent Burel -> Windows (R) Win 7 DDK provider)
R1 vmkbd3; C:\WINDOWS\system32\DRIVERS\vmkbd.sys [52288 2020-03-07] (VMware, Inc. -> VMware, Inc.)
R2 VMnetBridge; C:\WINDOWS\system32\DRIVERS\vmnetbridge.sys [66368 2020-06-04] (VMware, Inc. -> VMware, Inc.)
S3 vpnva; C:\WINDOWS\System32\drivers\vpnva64-6.sys [52592 2014-10-16] (Cisco Systems, Inc. -> Cisco Systems, Inc.)
R0 vsock; C:\WINDOWS\System32\DRIVERS\vsock.sys [103224 2019-08-14] (VMware, Inc. -> VMware, Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49568 2022-12-09] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [473376 2022-12-09] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99616 2022-12-09] (Microsoft Windows -> Microsoft Corporation)
R2 WinI2C-DDC; C:\Windows\system32\drivers\DDCDrv.sys [20832 2014-11-05] (PC Micro Systems Inc. -> Nicomsoft Ltd.)
S3 XBCD; C:\WINDOWS\System32\drivers\XBCD.sys [25728 2009-11-12] (NGO -> XBCD Project) [Datei ist nicht signiert]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat (erstellte) (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2023-02-05 00:41 - 2023-02-05 00:44 - 000000000 ____D C:\Users\Alex\Downloads\Farbar_x86_x64
2023-02-05 00:41 - 2023-02-05 00:44 - 000000000 ____D C:\FRST
2023-02-05 00:41 - 2023-02-05 00:41 - 003481013 _____ C:\Users\Alex\Downloads\Farbar_x86_x64.zip
2023-02-05 00:32 - 2023-02-05 00:32 - 000002274 _____ C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Firefox Private Browsing.lnk
2023-02-05 00:32 - 2023-02-05 00:32 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2023-02-04 22:46 - 2023-02-05 00:32 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2023-02-04 21:01 - 2023-02-04 21:02 - 000000000 ____D C:\Users\Alex\Desktop\Neuer Ordner (2)
2023-02-04 03:58 - 2023-02-04 04:12 - 000000000 ____D C:\Users\Alex\AppData\LocalLow\IGDump
2023-02-04 03:52 - 2023-02-04 03:52 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2023-02-04 03:52 - 2023-02-04 03:52 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2023-02-04 03:52 - 2023-02-04 03:52 - 000000000 ____D C:\Users\Alex\AppData\Local\mbam
2023-01-29 01:30 - 2023-01-29 01:30 - 000000000 ____D C:\Users\Alex\AppData\Roaming\NVIDIA
2023-01-28 03:13 - 2023-01-28 03:13 - 000000000 ____D C:\WINDOWS\system32\lxss
2023-01-28 03:13 - 2023-01-28 03:13 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2023-01-28 03:11 - 2022-08-23 23:22 - 000139248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2023-01-28 03:10 - 2023-01-18 06:53 - 002236992 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2023-01-28 03:10 - 2023-01-18 06:53 - 002236992 _____ C:\WINDOWS\system32\vulkaninfo.exe
2023-01-28 03:10 - 2023-01-18 06:53 - 001642560 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2023-01-28 03:10 - 2023-01-18 06:53 - 001642560 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2023-01-28 03:10 - 2023-01-18 06:53 - 001487376 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2023-01-28 03:10 - 2023-01-18 06:53 - 001444416 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2023-01-28 03:10 - 2023-01-18 06:53 - 001444416 _____ C:\WINDOWS\system32\vulkan-1.dll
2023-01-28 03:10 - 2023-01-18 06:53 - 001226776 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2023-01-28 03:10 - 2023-01-18 06:53 - 001168952 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2023-01-28 03:10 - 2023-01-18 06:53 - 001168952 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2023-01-28 03:10 - 2023-01-18 06:49 - 000865256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2023-01-28 03:10 - 2023-01-18 06:49 - 000672296 _____ C:\WINDOWS\system32\nvofapi64.dll
2023-01-28 03:10 - 2023-01-18 06:49 - 000506856 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2023-01-28 03:10 - 2023-01-18 06:48 - 002163736 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2023-01-28 03:10 - 2023-01-18 06:48 - 001619968 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2023-01-28 03:10 - 2023-01-18 06:48 - 001532432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2023-01-28 03:10 - 2023-01-18 06:48 - 001192968 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2023-01-28 03:10 - 2023-01-18 06:48 - 000949736 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2023-01-28 03:10 - 2023-01-18 06:48 - 000743976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2023-01-28 03:10 - 2023-01-18 06:48 - 000734232 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2023-01-28 03:10 - 2023-01-18 06:47 - 012453352 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2023-01-28 03:10 - 2023-01-18 06:47 - 010220536 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2023-01-28 03:10 - 2023-01-18 06:47 - 005890552 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2023-01-28 03:10 - 2023-01-18 06:47 - 005865976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll
2023-01-28 03:10 - 2023-01-18 06:47 - 003334664 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2023-01-28 03:10 - 2023-01-18 06:47 - 000457712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2023-01-28 03:10 - 2023-01-18 06:46 - 005818872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2023-01-28 03:10 - 2023-01-18 06:46 - 000853016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2023-01-28 03:10 - 2023-01-18 06:44 - 007648024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2023-01-28 03:10 - 2023-01-18 06:44 - 006517008 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2023-01-28 03:10 - 2023-01-15 23:41 - 000101010 _____ C:\WINDOWS\system32\nvinfo.pb
2023-01-26 23:11 - 2023-01-26 23:11 - 000001706 _____ C:\Users\Alex\Desktop\Blish HUD.lnk
2023-01-25 19:18 - 2023-01-25 19:18 - 000000000 ___HD C:\$WinREAgent
2023-01-24 20:57 - 2023-01-24 20:57 - 000000000 ____D C:\Users\Alex\Downloads\Blish.HUD.1.0.0
2023-01-24 20:57 - 2023-01-24 20:57 - 000000000 ____D C:\ProgramData\Blish HUD
2023-01-24 20:56 - 2023-01-24 20:56 - 015192302 _____ C:\Users\Alex\Downloads\Blish.HUD.1.0.0.zip
==================== Ein Monat (geänderte) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2023-02-05 00:43 - 2014-08-15 16:46 - 000000000 ____D C:\Program Files (x86)\Steam
2023-02-05 00:41 - 2016-03-31 00:37 - 000000000 ____D C:\Program Files (x86)\Google
2023-02-05 00:33 - 2022-03-13 22:27 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-02-05 00:33 - 2020-06-07 23:03 - 000000000 ____D C:\Users\Alex\AppData\Roaming\discord
2023-02-05 00:33 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-02-05 00:33 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-02-05 00:32 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-02-05 00:32 - 2016-11-17 12:37 - 000000000 ____D C:\Users\Alex\AppData\LocalLow\Mozilla
2023-02-05 00:32 - 2014-04-29 00:39 - 000001228 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-02-05 00:32 - 2014-04-29 00:39 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-02-05 00:24 - 2014-08-15 17:49 - 000000000 ____D C:\Users\Alex\AppData\Roaming\TS3Client
2023-02-05 00:16 - 2020-06-07 23:03 - 000000000 ____D C:\Users\Alex\AppData\Local\Discord
2023-02-04 22:52 - 2016-07-28 16:14 - 000000000 ____D C:\Users\Alex\Documents\Programme
2023-02-04 21:05 - 2014-08-28 15:41 - 000000000 ____D C:\Users\Alex\AppData\Roaming\vlc
2023-02-04 20:55 - 2020-10-26 01:13 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-02-04 20:35 - 2017-08-23 22:28 - 000000000 ____D C:\ProgramData\NVIDIA
2023-02-04 20:33 - 2014-08-15 17:12 - 000000000 ___RD C:\Users\Alex\OneDrive
2023-02-04 07:20 - 2018-11-06 00:44 - 000034189 _____ C:\Users\Alex\AppData\Roaming\VoiceMeeterBananaDefault.xml
2023-02-04 04:04 - 2020-10-26 01:22 - 001727150 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-02-04 04:04 - 2019-12-07 15:51 - 000743714 _____ C:\WINDOWS\system32\perfh007.dat
2023-02-04 04:04 - 2019-12-07 15:51 - 000150136 _____ C:\WINDOWS\system32\perfc007.dat
2023-02-04 04:04 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2023-02-04 03:58 - 2020-10-26 01:20 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-02-04 03:58 - 2020-10-26 01:13 - 000008192 ___SH C:\DumpStack.log.tmp
2023-02-04 03:58 - 2014-10-14 22:32 - 000000000 ____D C:\ProgramData\VMware
2023-02-04 03:57 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2023-02-04 03:52 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-02-04 03:50 - 2018-01-25 21:12 - 000158640 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2023-02-04 03:50 - 2018-01-25 21:12 - 000000000 ____D C:\Program Files\Malwarebytes
2023-02-04 03:50 - 2016-01-06 15:10 - 000000000 ____D C:\ProgramData\Malwarebytes
2023-02-03 18:21 - 2020-03-01 18:47 - 000000000 ____D C:\Users\Alex\AppData\Roaming\KeePass
2023-02-03 18:00 - 2018-11-24 16:54 - 000000000 ____D C:\Program Files (x86)\Origin
2023-02-03 18:00 - 2018-11-24 16:53 - 000000000 ____D C:\ProgramData\Origin
2023-02-03 14:29 - 2015-12-29 20:35 - 000000000 ____D C:\Users\Alex\AppData\Local\CrashDumps
2023-02-02 23:52 - 2022-12-09 23:07 - 000000000 ____D C:\Users\Alex\AppData\Roaming\steelseries-gg-client
2023-02-02 23:52 - 2018-06-18 17:46 - 000000000 ____D C:\Users\Alex\AppData\Local\D3DSCache
2023-02-02 23:49 - 2021-05-16 16:50 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-02-02 01:23 - 2020-10-26 01:14 - 000000000 ____D C:\Users\Alex
2023-02-02 01:10 - 2014-09-03 14:15 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2023-01-30 22:10 - 2015-01-12 22:09 - 000000000 ____D C:\Program Files (x86)\Overwolf
2023-01-30 17:54 - 2021-12-11 23:10 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-151591732-769639063-1674776794-1001
2023-01-30 17:54 - 2020-10-26 01:20 - 000003366 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-151591732-769639063-1674776794-1001
2023-01-30 17:54 - 2020-10-26 01:14 - 000002433 _____ C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-01-29 01:31 - 2020-09-30 17:27 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2023-01-28 03:13 - 2017-08-23 22:28 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2023-01-28 03:11 - 2014-04-29 00:53 - 000000000 ____D C:\Users\Alex\AppData\Local\NVIDIA
2023-01-27 01:41 - 2016-03-31 00:37 - 000002293 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-01-26 20:42 - 2022-11-11 21:00 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader.lnk
2023-01-26 00:03 - 2020-10-26 01:13 - 000443072 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-01-26 00:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-01-26 00:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-01-26 00:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-01-26 00:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-01-25 19:25 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-01-25 19:24 - 2020-10-26 01:14 - 003014656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-01-25 19:18 - 2014-09-03 14:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2023-01-25 19:17 - 2014-04-29 00:45 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-01-25 19:10 - 2014-04-29 00:45 - 150199536 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-01-24 21:41 - 2014-11-01 13:06 - 000000000 ____D C:\Users\Alex\AppData\Local\ElevatedDiagnostics
2023-01-24 20:57 - 2022-12-20 21:40 - 000000000 ____D C:\Users\Alex\Documents\Guild Wars 2
2023-01-24 18:44 - 2020-06-21 20:02 - 000000000 ____D C:\ProgramData\SteelSeries
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========
2015-06-29 14:32 - 2017-06-17 22:29 - 000000302 _____ () C:\Users\Alex\AppData\Roaming\BreakingPoint_Login.ini
2015-06-29 15:40 - 2017-06-18 00:30 - 000001431 _____ () C:\Users\Alex\AppData\Roaming\BreakingPoint_Options.ini
2018-05-31 21:14 - 2018-05-31 21:14 - 000038480 _____ () C:\Users\Alex\AppData\Roaming\Durch Trennzeichen getrennte Werte.ADR
2014-09-03 15:27 - 2014-09-03 15:27 - 000012102 _____ () C:\Users\Alex\AppData\Roaming\Durch Trennzeichen getrennte Werte.CAL
2018-11-06 00:44 - 2023-02-04 07:20 - 000034189 _____ () C:\Users\Alex\AppData\Roaming\VoiceMeeterBananaDefault.xml
2017-03-05 00:01 - 2018-11-05 22:12 - 000004655 _____ () C:\Users\Alex\AppData\Roaming\VoiceMeeterDefault.xml
2022-01-08 22:57 - 2022-01-08 22:57 - 000001559 _____ () C:\Users\Alex\AppData\Local\recently-used.xbel
2015-01-26 14:47 - 2020-12-29 19:38 - 000007600 _____ () C:\Users\Alex\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
==================== Ende von FRST.txt ========================
Danke im Voraus! |
|
05.02.2023, 00:56
| #2 |
| | Verdacht auf Malware: Youtube Channel Abo, Key Inputs Addition.txt:
__________________Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 03-02-2023
durchgeführt von Alex (05-02-2023 00:45:45)
Gestartet von C:\Users\Alex\Downloads\Farbar_x86_x64
Microsoft Windows 10 Pro Version 21H2 19044.2486 (X64) (2020-10-26 00:20:17)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
Administrator (S-1-5-21-151591732-769639063-1674776794-500 - Administrator - Disabled)
Alex (S-1-5-21-151591732-769639063-1674776794-1001 - Administrator - Enabled) => C:\Users\Alex
ASPNET (S-1-5-21-151591732-769639063-1674776794-1004 - Limited - Enabled)
DefaultAccount (S-1-5-21-151591732-769639063-1674776794-503 - Limited - Disabled)
Gast (S-1-5-21-151591732-769639063-1674776794-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-151591732-769639063-1674776794-504 - Limited - Disabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
A3Launcher version 0.1.3.4 (HKLM-x32\...\{1E29A86E-9AE2-4CD8-74C8-6B170ED3C4D2}_is1) (Version: 0.1.3.4 - Maca134)
ActivePerl 5.26.1 Build 2601 (64-bit) (HKLM\...\{F25E2736-A81F-435C-8CD5-ED71AD63A2FD}) (Version: 5.26.2601 - ActiveState)
Adobe Acrobat Reader - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 22.003.20314 - Adobe Systems Incorporated)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601032}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
AlienFX for KoneXTD (HKLM\...\{48725548-E470-4816-99DD-6667EABAB982}) (Version: 1.02 - Roccat GmbH) Hidden
AlienFX for KoneXTD (HKLM-x32\...\InstallShield_{48725548-E470-4816-99DD-6667EABAB982}) (Version: 1.02 - Roccat GmbH)
Ant Renamer (HKLM-x32\...\Ant Renamer 2_is1) (Version: 2.12.0 - Ant Software)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.15.0 - Asmedia Technology)
Asmedia ASM106x SATA Host Controller Driver (HKLM-x32\...\{61942EF5-2CD8-47D4-869C-2E9A8BB085F1}) (Version: 2.0.8.0000 - Asmedia Technology)
ASRock App Charger v1.0.6 (HKLM\...\ASRock App Charger_is1) (Version: 1.0.6 - ASRock Inc.)
ASUS Xonar Essence STX Audio (HKLM-x32\...\{71B53BA8-4BE3-49AF-BC3E-07F392008788}) (Version: - ASUSTeK Computer Inc.)
Audacity 2.3.0 (HKLM-x32\...\Audacity_is1) (Version: 2.3.0 - Audacity Team)
AutoHotkey 1.1.22.09 (HKLM-x32\...\AutoHotkey) (Version: 1.1.22.09 - Lexikos)
Battlefield™ 2042 (HKLM-x32\...\{45e281f3-1414-47ea-bb64-4f50d50121f3}) (Version: 1.0.71.11079 - Electronic Arts)
Battlestate Games Launcher 12.12.2.1944 (HKLM-x32\...\{B0FDA062-7581-4D67-B085-C4E7C358037F}_is1) (Version: 12.12.2.1944 - Battlestate Games)
BattlEye for OA Uninstall (HKLM-x32\...\BattlEye for OA) (Version: - )
BattlEye Uninstall (HKLM-x32\...\BattlEye for A2) (Version: - )
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: 1.5.4.4 - Canon Inc.)
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.7.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.1.20.13 - Canon Inc.)
Canon MG5700 series Benutzerregistrierung (HKLM-x32\...\Canon MG5700 series Benutzerregistrierung) (Version: - *Canon Inc.)
Canon MG5700 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5700_series) (Version: 1.00 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.3.0 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.24 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.7.6389 - CDBurnerXP)
Cisco AnyConnect Secure Mobility Client (HKLM-x32\...\Cisco AnyConnect Secure Mobility Client) (Version: 4.2.01035 - Cisco Systems, Inc.)
Cisco AnyConnect Secure Mobility Client (HKLM-x32\...\{010B7227-89DC-4AFE-ACA2-8D067C833441}) (Version: 4.2.01035 - Cisco Systems, Inc.) Hidden
Citavi 4 (HKLM-x32\...\{CC0A85B2-734A-45B3-B678-05F6A6499AC7}) (Version: 4.5.0.11 - Swiss Academic Software)
CnCNet5 Yuri's Revenge (HKLM-x32\...\{D22A250A-085F-415E-959E-8DB49F4E4CCA}_is1) (Version: 1.0 - cncnet.org)
Command & Conquer™ Red Alert 2 and Yuri’s Revenge (HKLM-x32\...\{F5275D1C-D133-486D-8F07-D6C571F0A8EC}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
Command & Conquer™ Red Alert™ 3 and Uprising (HKLM-x32\...\{3C315BF7-4B64-4024-8102-174A197437FA}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
devolo Cockpit (HKLM-x32\...\dlancockpit) (Version: 4.3.1.0 - devolo AG)
Discord (HKU\S-1-5-21-151591732-769639063-1674776794-1001\...\Discord) (Version: 0.0.311 - Discord Inc.)
Display Pilot (HKLM-x32\...\{6DD25D67-4339-47A1-950E-EEFC321CBB24}) (Version: 2.11.002 - Portrait Displays, Inc.)
Dolphin (HKLM-x32\...\Dolphin) (Version: 5.0 - Dolphin Team)
DVDFab 9.3.1.6 (19/09/2016) (HKLM-x32\...\DVDFab 9_is1) (Version: - Fengtao Software Inc.)
Escape from Tarkov (HKLM-x32\...\EscapeFromTarkov) (Version: 0.12.12.32.20765 - Battlestate Games)
Firmware updater for DualSense™ wireless controller (HKLM\...\{9505317F-5C12-489D-8C97-88511D9985B6}) (Version: 1.0.0.2 - Ihr Firmenname)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 8.1.0.1013 - Foxit Software Inc.)
Geeks3D FurMark 1.17.0.0 (HKLM-x32\...\{2397CAD4-2263-4CD0-96BE-E43A980B9C9A}_is1) (Version: - Geeks3D)
GeoGebra 5 (HKLM-x32\...\GeoGebra 5) (Version: 5.0.180.0 - International GeoGebra Institute)
GIMP 2.10.30 (HKLM\...\GIMP-2_is1) (Version: 2.10.30 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 109.0.5414.120 - Google LLC)
Greenshot 1.2.4.10 (HKLM\...\Greenshot_is1) (Version: 1.2.4.10 - Greenshot)
InputMapper (HKLM-x32\...\{026D2025-A7FA-4F5C-AF8C-A6F7A9B917FC}) (Version: 1.6.10.19991 - DSDCS)
InputMapper HidGuardian (HKLM-x32\...\{3753F0EF-7F58-4BBA-B4EA-9E1B83C13B97}) (Version: 1.0.6320.17641 - DSDCS)
Intel(R) Chipset Device Software (HKLM\...\{55398EAC-F58E-4F19-B553-BDF8B9EFD839}) (Version: 10.1.1.9 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.0.1204 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{D4FC649C-0247-4873-930D-D9E6904DCAF5}) (Version: 10.0.0.1204 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{E1CBE9A2-1323-488E-9F3B-736DF6399F38}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Network Connections 19.3.141.0 (HKLM\...\{B508519A-52A3-4B8A-892F-C628558A0879}) (Version: 19.3.141.0 - Intel) Hidden
Intel(R) Network Connections 19.3.141.0 (HKLM\...\PROSetDX) (Version: 19.3.141.0 - Intel)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4531 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.1.0.1058 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{EAF826C0-245E-4D02-9D51-BA4C98717EAE}) (Version: 13.1.0.1058 - Intel Corporation) Hidden
Intel(R) Smart Connect Technology (HKLM\...\{7228EFBA-512B-4EB3-B8A7-E2C331475DF4}) (Version: 5.0.10.2808 - Intel Corporation)
Intel(R) Update Manager (HKLM-x32\...\{7224B7CE-196C-4E2A-A1AE-1D7BF259FD36}) (Version: 3.4.1942 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (HKLM-x32\...\{c7f54569-0018-439c-809a-48046a4d4ebc}) (Version: 10.1.1.9 - Intel(R) Corporation) Hidden
Intel® RealSense™ SDK Runtime (HKLM-x32\...\ARP_for_prd_rs_sdk_runtime_10.0.26.0396) (Version: 10.0.26.0396 - Intel Corporation)
Intel® RealSense™ SDK Runtime Gold (x64): Core (HKLM\...\{7ECCC65E-1D74-11E6-B005-2C44FD873B55}) (Version: 10.0.26.396 - Intel Corporation) Hidden
Intel® RealSense™ SDK Runtime Gold (x64): User Segmentation (HKLM\...\{A315DE30-1D74-11E6-A4F2-2C44FD873B55}) (Version: 10.0.26.396 - Intel Corporation) Hidden
Intel® RealSense™ SDK Runtime Gold (x86): Core (HKLM-x32\...\{4BAB7070-1D73-11E6-8844-2C44FD873B55}) (Version: 10.0.26.396 - Intel Corporation) Hidden
Intel® RealSense™ SDK Runtime Gold (x86): Core: Calibration (HKLM-x32\...\{676C639E-1D73-11E6-BF2F-2C44FD873B55}) (Version: 10.0.26.396 - Intel Corporation) Hidden
Intel® RealSense™ SDK Runtime Gold (x86): User Segmentation (HKLM-x32\...\{51040000-1D73-11E6-A45D-2C44FD873B55}) (Version: 10.0.26.396 - Intel Corporation) Hidden
Intel® Trusted Connect Service Client (HKLM\...\{3DE97849-544D-4D68-9255-11DF6F9F10D8}) (Version: 1.35.127.1 - Intel Corporation) Hidden
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.38 - Irfan Skiljan)
Java 8 Update 261 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180261F0}) (Version: 8.0.2610.12 - Oracle Corporation)
JDownloader 2 (HKLM-x32\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
KeePass Password Safe 2.49 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version: 2.49 - Dominik Reichl)
Kits Configuration Installer (HKLM-x32\...\{FE3AE33E-C2D7-9953-4349-84107B5626B4}) (Version: 8.100.26846 - Microsoft) Hidden
Logitech Gaming Software (HKLM\...\{690285C2-2481-44FB-8402-162EA970A6DD}) (Version: 8.30.28 - Logitech Inc.) Hidden
Logitech Gaming Software 8.55 (HKLM\...\Logitech Gaming Software) (Version: 8.55.137 - Logitech Inc.)
Malwarebytes version 4.5.21.231 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.5.21.231 - Malwarebytes)
Microsoft .NET Core Host - 3.1.32 (x64) (HKLM\...\{8A8E3A04-83BC-4CDE-9259-893B666C1AB1}) (Version: 24.192.31915 - Microsoft Corporation) Hidden
Microsoft .NET Core Host FX Resolver - 3.1.32 (x64) (HKLM\...\{ABC6B3C2-1A8D-4C5E-AC16-C2AE44F02743}) (Version: 24.192.31915 - Microsoft Corporation) Hidden
Microsoft .NET Core Runtime - 3.1.32 (x64) (HKLM\...\{A741B803-3F0E-4684-81EF-FC128D15A92C}) (Version: 24.192.31915 - Microsoft Corporation) Hidden
Microsoft .NET Framework 1.1 (HKLM-x32\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 - Microsoft)
Microsoft 365 Apps for Enterprise - de-de (HKLM\...\O365ProPlusRetail - de-de) (Version: 16.0.16026.20146 - Microsoft Corporation)
Microsoft ASP.NET MVC 2 (HKLM-x32\...\{DD8FF2F3-0D97-4CF3-AF78-FA0E1B242244}) (Version: 2.0.60926.0 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Edge WebView2-Laufzeit (HKLM-x32\...\Microsoft EdgeWebView) (Version: 109.0.1518.70 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation)
Microsoft HEVC Media Extension Installation for Microsoft.HEVCVideoExtension_1.0.2512.0_x64__8wekyb3d8bbwe (x64) (HKLM\...\{B0169E83-757B-EF66-E2F0-391944D785BC}) (Version: 1.0.0.0 - Microsoft Corporation) Hidden
Microsoft Office 64-bit Components 2013 (HKLM\...\{90150000-002A-0000-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Korrekturhilfen 2013 - Deutsch (HKLM-x32\...\{90150000-001F-0407-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office OSM MUI (German) 2013 (HKLM-x32\...\{90150000-00E1-0407-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2013 (HKLM-x32\...\{90150000-002C-0407-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2013 - English (HKLM-x32\...\{90150000-001F-0409-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2013 - Italiano (HKLM-x32\...\{90150000-001F-0410-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (German) 2013 (HKLM\...\{90150000-002A-0407-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2013 (HKLM-x32\...\{90150000-006E-0407-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKU\S-1-5-21-151591732-769639063-1674776794-1001\...\OneDriveSetup.exe) (Version: 23.007.0109.0004 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-151591732-769639063-1674776794-1001\...\Teams) (Version: 1.2.00.34161 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{89581302-705F-42C5-99B0-E368A845DAD5}) (Version: 3.70.0.0 - Microsoft Corporation)
Microsoft Visio MUI (German) 2013 (HKLM-x32\...\{90150000-0054-0407-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Visio Professional 2013 (HKLM-x32\...\{91150000-0051-0000-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Visio Professional 2013 (HKLM-x32\...\Office15.VISPROR) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (HKLM\...\{AC53FC8B-EE18-3F9C-9B59-60937D0B182C}) (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (HKLM\...\{A2CB1ACB-94A2-32BA-A15E-7D80319F7589}) (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (HKLM-x32\...\{FDB30193-FDA0-3DAA-ACCA-A75EEFE53607}) (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (HKLM-x32\...\{2F73A7B2-E50E-39A6-9ABC-EF89E4C62E36}) (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.31.31103 (HKLM-x32\...\{2aaf1df0-eb13-4099-9992-962bb4e596d1}) (Version: 14.31.31103.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.31.31103 (HKLM-x32\...\{41d7b770-418a-43b7-95a5-f925fff05789}) (Version: 14.31.31103.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.31.31103 (HKLM\...\{A977984B-9244-49E3-BD24-43F0A8009667}) (Version: 14.31.31103 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.31.31103 (HKLM\...\{A181A302-3F6D-4BAD-97A8-A426A6499D78}) (Version: 14.31.31103 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.31.31103 (HKLM-x32\...\{5720EC03-F26F-40B7-980C-50B5D420B5DE}) (Version: 14.31.31103 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.31.31103 (HKLM-x32\...\{799E3FFF-705C-461F-B400-6DE27398B3E5}) (Version: 14.31.31103 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\{9495AEB4-AB97-39DE-8C42-806EEF75ECA7}) (Version: 10.0.50908 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio Code (HKLM\...\{EA457B21-F73E-494C-ACAB-524FDE069978}_is1) (Version: 1.52.1 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 3.1.32 (x64) (HKLM\...\{5BEE5F3E-4D78-4DE8-A8F3-36D3E9D8868C}) (Version: 24.192.31915 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 3.1.32 (x64) (HKLM-x32\...\{0eddeab6-01c1-4cf7-83ba-164ea8974c90}) (Version: 3.1.32.31915 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{B3B750C0-8C22-439D-B7CE-67F3ED99CC2B}) (Version: 1.20.146.0 - Microsoft)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Mozilla Firefox (x64 en-US) (HKLM\...\Mozilla Firefox 109.0.1 (x64 en-US)) (Version: 109.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 56.0.2 - Mozilla)
MSVCRT Redists (HKLM\...\{3BFC9CAE-091D-11E4-886A-F04DA23A5C58}) (Version: 1.0 - Sony Creative Software Inc.) Hidden
MZ-Tools 8.0 - VBA (HKU\S-1-5-21-151591732-769639063-1674776794-1001\...\{A831F45B-3864-4D2E-B586-3E7DCEB5EA66}_is1) (Version: - MZTools Software)
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 8.2.1 - Notepad++ Team)
NVIDIA FrameView SDK 1.3.8107.31782123 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8107.31782123 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.26.0.160 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.26.0.160 - NVIDIA Corporation)
NVIDIA Grafiktreiber 528.24 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 528.24 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.39.16 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.39.16 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 18.0.0 - OBS Project)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.15726.20202 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.15726.20202 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.16026.20146 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0407-0000-0000000FF1CE}) (Version: 16.0.15726.20202 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Origin (HKLM-x32\...\Origin) (Version: 10.5.118.52644 - Electronic Arts, Inc.)
Outils de vérification linguistique 2013 de Microsoft Office*- Français (HKLM-x32\...\{90150000-001F-040C-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.217.0.9 - Overwolf Ltd.)
Paragon Backup and Recovery™ 14 Free (HKLM\...\{C268B5E1-A5DA-11DF-A289-005056C00008}) (Version: 90.00.0003 - Paragon Software)
PBO Manager v.1.4 beta (HKLM\...\{127B5371-1802-4EDD-A25A-A43BF761D383}) (Version: 1.4.0 - )
PDF24 Creator 7.9.0 (HKLM-x32\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version: - PDF24.org)
Pivot Pro Plugin (HKLM-x32\...\{0217E1D1-BCEF-4A61-AF6D-F7740F65A066}) (Version: 9.61.004 - Portrait Displays, Inc.) Hidden
PokerStars.eu (HKLM-x32\...\PokerStars.eu) (Version: - PokerStars.eu)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7004 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
ROCCAT Kone XTD Optical Mouse Driver (HKLM-x32\...\{AD43B296-FE63-42C0-AA39-D8759B905420}) (Version: - Roccat GmbH)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.7.8 - Rockstar Games)
SDK (HKLM-x32\...\{0DEA342C-15CB-4F52-97B6-06A9C4B9C06F}) (Version: 2.40.007 - Portrait Displays, Inc.) Hidden
SDK ARM Additions (HKLM-x32\...\{61C9A3E6-04AB-866D-E1CA-39F757369483}) (Version: 8.100.26846 - Microsoft Corporation) Hidden
SDK ARM Additions EULA (HKLM-x32\...\{EF466A11-70C0-6AE8-4BDF-B255D7180AEC}) (Version: 8.100.26846 - Microsoft Corporations) Hidden
SDK ARM Redistributables (HKLM-x32\...\{A5596E7E-9360-A80C-08F9-6A0AA8658323}) (Version: 8.100.26846 - Microsoft Corporation) Hidden
SDK Debuggers ARM (HKLM-x32\...\{D9ACDBF9-C215-1024-89FC-87B78B3AA9E8}) (Version: 8.100.26846 - Microsoft Corporation) Hidden
Secure Download Manager (HKLM-x32\...\{C58626D6-7EBD-460D-8B6C-75B3C3464879}) (Version: 3.1.60 - Kivuto Solutions Inc.)
Snagit 12 (HKLM-x32\...\{1896C92E-E1C2-4735-92BC-1B18503C6496}) (Version: 12.4.1 - TechSmith Corporation) Hidden
Snagit 12 (HKLM-x32\...\{195fed3b-37a7-4123-9ba4-6ce14f1708e9}) (Version: 12.4.1.3036 - TechSmith Corporation)
Sound Lock (HKLM-x32\...\{F84098A4-28E4-482F-A5A0-1BB29F2808DD}) (Version: 1.3.2 - 3 APPES) Hidden
Sound Lock (HKLM-x32\...\Sound Lock 1.3.2) (Version: 1.3.2 - 3 APPES)
SpeechRedist (HKLM-x32\...\{8795CBED-55E2-4693-9F14-84EC446935BE}) (Version: 1.0.0 - Epic Games Inc.)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
Spotify (HKU\S-1-5-21-151591732-769639063-1674776794-1001\...\Spotify) (Version: 1.2.0.1165.gabf054ab - Spotify AB)
StarCraft II (HKLM-x32\...\StarCraft II) (Version: - Blizzard Entertainment)
Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation)
SteelSeries GG 31.0.0 (HKLM\...\SteelSeries GG) (Version: 31.0.0 - SteelSeries ApS)
System Requirements Lab for Intel (HKLM-x32\...\{04C4B49D-45D9-4A28-9ED1-B45CBD99B8C7}) (Version: 4.5.24.0 - Husdawg, LLC)
Teams Machine-Wide Installer (HKLM-x32\...\{39AF0813-FA7B-4860-ADBE-93B9B214B914}) (Version: 1.2.0.34161 - Microsoft Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TreeSize Free V3.1 (HKLM-x32\...\TreeSize Free_is1) (Version: 3.1 - JAM Software)
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Update for Skype for Business 2015 (KB4484289) 32-Bit Edition (HKLM-x32\...\{90150000-002A-0000-1000-0000000FF1CE}_Office15.VISPROR_{F97B139A-D8BF-46FF-A6F6-50710FED8644}) (Version: - Microsoft)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{82BD0A1C-815F-487F-9AE7-CE73DA413CFF}) (Version: 4.91.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{F339C545-24DC-4870-AA32-6EB6B0500B95}) (Version: 1.24.0.0 - Microsoft Corporation) Hidden
Uplay (HKLM-x32\...\Uplay) (Version: 85.1 - Ubisoft)
VBCABLE, The Virtual Audio Cable (HKLM\...\VB:VBCABLE {87459874-1236-4469}) (Version: - VB-Audio Software)
Vegas Pro 13.0 (64-bit) (HKLM\...\{386F5740-091D-11E4-B13E-F04DA23A5C58}) (Version: 13.0.373 - Sony)
VidCoder 1.5.34 (x64) (HKLM\...\VidCoder-x64_is1) (Version: 1.5.34 - RandomEngy)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.12 - VideoLAN)
Voicemeeter, The Virtual Mixing Console (HKLM-x32\...\VB:Voicemeeter {17359A74-1236-5467}) (Version: - VB-Audio Software)
WestwoodOnline (HKLM-x32\...\{BBCD6D56-8A26-4DDE-9482-DBC9C7B7341D}) (Version: 1.0.0.0 - WestwoodOnline)
WIDCOMM Bluetooth Software (HKLM\...\{C6D9ED03-6FCF-4410-9CB7-45CA285F9E11}) (Version: 12.0.0.2700 - Broadcom Corporation)
Windows Debugging WDK Integration (HKLM-x32\...\{B1FD2289-F3E5-E148-18EC-A9E0FAE773A9}) (Version: 8.100.26846 - Microsoft Corporation) Hidden
Windows Driver Kit (HKLM-x32\...\{ABD7052F-A64A-2E71-57E2-1E7BEB9D298D}) (Version: 8.100.26846 - Microsoft Corporation) Hidden
Windows Driver Kit ARM Additions Dev12 (HKLM-x32\...\{DEB2EE34-50D3-2780-B418-78786E760CB1}) (Version: 8.100.26846 - Microsoft Corporation) Hidden
Windows Driver Kit ARM Additions MSBuild Content Dev12 (HKLM-x32\...\{762E40D6-49D5-5951-CE73-94245978883C}) (Version: 8.100.26846 - Microsoft Corporation) Hidden
Windows Driver Kit for Windows 8.1 (HKLM-x32\...\{aba88724-37eb-4f03-b83b-45199c5a7cf5}) (Version: 8.100.26846 - Microsoft Corporation)
Windows Driver Kit MSBuild Content Dev12 (HKLM-x32\...\{DEC04130-35D0-BEAF-2EC4-D9A65C96C0AC}) (Version: 8.100.26846 - Microsoft Corporation) Hidden
Windows-PC-Integritätsprüfung (HKLM\...\{B3956CF3-F6C5-4567-AC38-1FD4432B319C}) (Version: 3.6.2204.08001 - Microsoft Corporation)
WinMerge 2.16.8.0 (HKLM-x32\...\WinMerge_is1) (Version: 2.16.8.0 - Thingamahoochie Software)
XBCD Uninstaller (HKLM\...\{04054166-0801-48A9-89E0-BC4B53FE7A81}_is1) (Version: 0.2.7 - XBCD Project)
Packages:
=========
Canon Inkjet Print Utility -> C:\Program Files\WindowsApps\34791E63.CanonInkjetPrintUtility_3.1.0.0_neutral__6e5tt8cgb93ep [2021-02-23] (Canon Inc.)
Media Engine-Add-On für Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2022-01-06] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-02-07] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-02-07] (Microsoft Corporation) [MS Ad]
Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_53.10114.505.0_x64__8wekyb3d8bbwe [2023-01-25] (Microsoft Corporation)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.963.0_x64__56jybvy8sckqj [2023-01-28] (NVIDIA Corp.)
Shazam -> C:\Program Files\WindowsApps\ShazamEntertainmentLtd.Shazam_4.7.9.0_x86__pqbynwjfrbcg4 [2018-01-25] (Shazam Entertainment Ltd)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-151591732-769639063-1674776794-1001_Classes\CLSID\{076F0FE0-8244-405D-A794-A666BB459307}\InprocServer32 -> C:\Users\Alex\AppData\Local\MZTools Software\MZTools8VBA\MZTools8VBA.dll (MZTools Software) [Datei ist nicht signiert]
CustomCLSID: HKU\S-1-5-21-151591732-769639063-1674776794-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\Alex\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.19317.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-151591732-769639063-1674776794-1001_Classes\CLSID\{8AD40A95-0D64-4B90-A2FD-775BDB238988}\InprocServer32 -> C:\Users\Alex\AppData\Local\MZTools Software\MZTools8VBA\MZTools8VBA.dll (MZTools Software) [Datei ist nicht signiert]
CustomCLSID: HKU\S-1-5-21-151591732-769639063-1674776794-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\Alex\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.19317.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2010-11-18] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2022-01-19] (Notepad++ -> )
ContextMenuHandlers1: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x64.dll [2016-10-14] (Foxit Software Incorporated -> Foxit Software Inc.)
ContextMenuHandlers1: [SnagItMainShellExt] -> {CF74B903-3389-469c-B3B6-0204D204FCBD} => C:\Program Files (x86)\TechSmith\Snagit 12\DLLx64\SnagitShellExt64.dll [2015-08-14] (TechSmith Corporation -> TechSmith Corporation)
ContextMenuHandlers1: [WinMerge] -> {4E716236-AA30-4C65-B225-D68BBA81E9C2} => C:\Program Files (x86)\WinMerge\ShellExtensionX64.dll [2020-07-20] (hxxp://winmerge.org) [Datei ist nicht signiert]
ContextMenuHandlers2-x32: [VMDiskMenuHandler] -> {271DC252-6FE1-4D59-9053-E4CF50AB99DE} => C:\Program Files (x86)\VMware\VMware Player\vmdkShellExt.dll [2020-06-04] (VMware, Inc. -> VMware, Inc.)
ContextMenuHandlers2: [VMDiskMenuHandler64] -> {E4D28EDC-8C0B-43EE-9E7D-C8A8682334DC} => C:\Program Files (x86)\VMware\VMware Player\x64\vmdkShellExt64.dll [2020-06-04] (VMware, Inc. -> VMware, Inc.)
ContextMenuHandlers2: [WinMerge] -> {4E716236-AA30-4C65-B225-D68BBA81E9C2} => C:\Program Files (x86)\WinMerge\ShellExtensionX64.dll [2020-07-20] (hxxp://winmerge.org) [Datei ist nicht signiert]
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2010-11-18] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers4: [SnagItMainShellExt] -> {CF74B903-3389-469c-B3B6-0204D204FCBD} => C:\Program Files (x86)\TechSmith\Snagit 12\DLLx64\SnagitShellExt64.dll [2015-08-14] (TechSmith Corporation -> TechSmith Corporation)
ContextMenuHandlers4: [WinMerge] -> {4E716236-AA30-4C65-B225-D68BBA81E9C2} => C:\Program Files (x86)\WinMerge\ShellExtensionX64.dll [2020-07-20] (hxxp://winmerge.org) [Datei ist nicht signiert]
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Keine Datei
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => -> Keine Datei
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d1bd230cd08e7436\nvshext.dll [2023-01-18] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers5: [PortraitDisplaysContextMenu] -> {8602BDD8-9780-4717-B89A-7F89AF75B2AB} => C:\Program Files (x86)\Common Files\Portrait Displays\Shared\shellmenu64.dll [2013-06-18] (Portrait Displays, Inc. -> Portrait Displays, Inc.)
ContextMenuHandlers5: [WinMerge] -> {4E716236-AA30-4C65-B225-D68BBA81E9C2} => C:\Program Files (x86)\WinMerge\ShellExtensionX64.dll [2020-07-20] (hxxp://winmerge.org) [Datei ist nicht signiert]
ContextMenuHandlers6: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x64.dll [2016-10-14] (Foxit Software Incorporated -> Foxit Software Inc.)
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
==================== Codecs (Nicht auf der Ausnahmeliste) ====================
==================== Verknüpfungen & WMI ========================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
ShortcutWithArgument: C:\Users\Alex\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\d249d9ddd424b688\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default
==================== Geladene Module (Nicht auf der Ausnahmeliste) =============
2018-08-31 22:03 - 2022-11-07 11:17 - 000387072 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\libegl.dll
2018-08-31 22:03 - 2022-11-07 11:17 - 008052736 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\libglesv2.dll
2018-11-05 22:10 - 2018-11-05 22:10 - 000454656 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\VB\Voicemeeter\mp3lame\lame_enc.dll
2015-02-17 16:02 - 2012-06-06 09:56 - 000143360 ____N () [Datei ist nicht signiert] C:\Program Files\ASUS Xonar Essence STX Audio\Customapp\VmixP8.dll
2017-01-14 18:33 - 2019-07-15 19:12 - 000018432 _____ () [Datei ist nicht signiert] C:\Program Files\TeamSpeak 3 Client\libEGL.DLL
2017-01-14 18:33 - 2019-07-15 19:12 - 003572224 _____ () [Datei ist nicht signiert] C:\Program Files\TeamSpeak 3 Client\libGLESv2.dll
2017-02-15 20:23 - 2019-09-13 21:53 - 000157696 _____ () [Datei ist nicht signiert] C:\Users\Alex\AppData\Roaming\TS3Client\plugins\gamepad_joystick_win64.dll
2016-06-09 11:15 - 2015-03-17 07:51 - 000375296 _____ (CANON INC.) [Datei ist nicht signiert] C:\WINDOWS\System32\CNMN6PPM.DLL
2015-02-17 16:02 - 2012-08-22 18:57 - 000430080 ____N (C-Media Electronics Inc.) [Datei ist nicht signiert] C:\Program Files\ASUS Xonar Essence STX Audio\CustomApp\cmdevice.dll
2022-08-17 23:06 - 2022-08-17 23:06 - 002146304 _____ (Holtek Semiconductor Inc.) [Datei ist nicht signiert] C:\Program Files\SteelSeries\GG\apps\engine\HIDDLL.dll
2022-08-17 23:06 - 2022-08-17 23:06 - 002284032 _____ (Holtek) [Datei ist nicht signiert] C:\Program Files\SteelSeries\GG\apps\engine\ISPDLL.dll
2020-12-05 21:10 - 2020-07-20 19:01 - 000203264 _____ (hxxp://winmerge.org) [Datei ist nicht signiert] C:\Program Files (x86)\WinMerge\ShellExtensionX64.dll
2010-11-18 21:08 - 2010-11-18 21:08 - 000086016 _____ (Igor Pavlov) [Datei ist nicht signiert] C:\Program Files\7-Zip\7-zip.dll
2014-05-28 09:10 - 2014-05-28 09:10 - 000296960 _____ (Intel Corporation) [Datei ist nicht signiert] [Datei wird verwendet] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\PsiData.dll
2014-11-06 20:43 - 2013-06-18 12:24 - 000372736 _____ (Intel Corporation) [Datei ist nicht signiert] C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\ijl15.dll
2014-05-28 09:10 - 2014-05-28 09:10 - 000526336 _____ (Intel Corporation) [Datei ist nicht signiert] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\ISDI2.dll
2022-08-21 18:33 - 2020-03-29 13:54 - 001282048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\LIBEAY32.dll
2022-08-21 18:33 - 2020-03-29 13:54 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\ssleay32.dll
2022-08-21 18:33 - 2020-03-29 13:54 - 001611264 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2023-02-03 18:00 - 2020-03-29 13:54 - 005487104 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Core.dll
2023-02-03 18:00 - 2020-03-29 13:54 - 005841920 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Gui.dll
2023-02-03 18:00 - 2020-03-29 13:54 - 001179136 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Network.dll
2023-02-03 18:00 - 2020-03-29 13:54 - 000146432 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5WebSockets.dll
2023-02-03 18:00 - 2020-03-29 13:54 - 005089792 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2023-02-03 18:00 - 2020-03-29 13:54 - 000184832 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Xml.dll
2017-08-05 23:53 - 2019-07-15 19:12 - 000035328 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files\TeamSpeak 3 Client\iconengines\qsvgicon.dll
2014-02-27 15:51 - 2019-07-15 19:12 - 000031744 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files\TeamSpeak 3 Client\imageformats\qgif.dll
2014-02-27 15:51 - 2019-07-15 19:12 - 000397312 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files\TeamSpeak 3 Client\imageformats\qjpeg.dll
2017-08-05 23:53 - 2019-07-15 19:12 - 000025600 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files\TeamSpeak 3 Client\imageformats\qsvg.dll
2014-02-27 15:51 - 2019-07-15 19:12 - 001453568 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files\TeamSpeak 3 Client\platforms\qwindows.dll
2014-02-27 15:47 - 2019-07-15 19:12 - 006130176 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files\TeamSpeak 3 Client\Qt5Core.dll
2014-02-27 15:48 - 2019-07-15 19:12 - 006470656 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files\TeamSpeak 3 Client\Qt5Gui.dll
2014-02-27 15:47 - 2019-07-15 19:12 - 001314816 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files\TeamSpeak 3 Client\Qt5Network.dll
2017-01-14 18:33 - 2019-07-15 19:12 - 000317440 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files\TeamSpeak 3 Client\Qt5Positioning.dll
2019-07-15 19:12 - 2019-07-15 19:12 - 000318464 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files\TeamSpeak 3 Client\Qt5PrintSupport.dll
2017-01-14 18:33 - 2019-07-15 19:12 - 004001792 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files\TeamSpeak 3 Client\Qt5Qml.dll
2017-01-14 18:33 - 2019-07-15 19:12 - 003776000 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files\TeamSpeak 3 Client\Qt5Quick.dll
2019-07-15 19:12 - 2019-07-15 19:12 - 000072704 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files\TeamSpeak 3 Client\Qt5QuickWidgets.dll
2014-02-27 15:47 - 2019-07-15 19:12 - 000205312 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files\TeamSpeak 3 Client\Qt5Sql.dll
2017-08-05 23:53 - 2019-07-15 19:12 - 000332288 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files\TeamSpeak 3 Client\Qt5Svg.dll
2017-01-14 18:33 - 2019-07-15 19:12 - 000113664 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files\TeamSpeak 3 Client\Qt5WebChannel.dll
2017-01-14 18:33 - 2019-07-15 19:12 - 079989760 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files\TeamSpeak 3 Client\Qt5WebEngineCore.dll
2017-01-14 18:33 - 2019-07-15 19:12 - 000228864 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files\TeamSpeak 3 Client\Qt5WebEngineWidgets.dll
2014-02-27 15:50 - 2019-07-15 19:12 - 005580800 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files\TeamSpeak 3 Client\Qt5Widgets.dll
2014-02-27 15:51 - 2019-07-15 19:12 - 001151488 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files\TeamSpeak 3 Client\sqldrivers\qsqlite.dll
2019-07-15 19:12 - 2019-07-15 19:12 - 000137216 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files\TeamSpeak 3 Client\styles\qwindowsvistastyle.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================
==================== Internet Explorer (Nicht auf der Ausnahmeliste) ==========
HKU\S-1-5-21-151591732-769639063-1674776794-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
HKU\S-1-5-21-151591732-769639063-1674776794-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.de.msn.com/
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2023-02-02] (Microsoft Corporation -> Microsoft Corporation)
BHO: Citavi Picker -> {609D670F-B735-4da7-AC6D-F3BD358E325E} -> C:/Program Files (x86)/Internet Explorer/Citavi Picker/x64/SwissAcademic.Citavi.IEPicker.DLL => Keine Datei
BHO: Kein Name -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> Keine Datei
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2022-11-11] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Citavi Picker -> {609D670F-B735-4da7-AC6D-F3BD358E325E} -> C:/Program Files (x86)/Internet Explorer/Citavi Picker/SwissAcademic.Citavi.IEPicker.dll => Keine Datei
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\ssv.dll [2020-07-22] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\jp2ssv.dll [2020-07-22] (Oracle America, Inc. -> Oracle Corporation)
DPF: HKLM-x32 {7530BFB8-7293-4D34-9923-61A11451AFC5} hxxp://download.eset.com/special/eos/OnlineScanner.cab
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2023-02-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2023-02-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2023-02-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2023-02-02] (Microsoft Corporation -> Microsoft Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE trusted site: HKU\S-1-5-21-151591732-769639063-1674776794-1001\...\sharepoint.com -> hxxps://fauerlnue.sharepoint.com
==================== Hosts Inhalt: =========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2013-08-22 14:25 - 2013-08-22 14:25 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Andere Bereiche ===========================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Perl64\site\bin;C:\Perl64\bin;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files\Microsoft VS Code\bin;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files\dotnet\
HKU\S-1-5-21-151591732-769639063-1674776794-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Alex\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\infinity-1920x1080.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
ist aktiviert.
Network Binding:
=============
VMware Network Adapter VMnet8: VMware Bridge Protocol -> vmware_bridge (disabled)
VMware Network Adapter VMnet1: VMware Bridge Protocol -> vmware_bridge (disabled)
Ethernet 3: VMware Bridge Protocol -> vmware_bridge (enabled)
Ethernet: VMware Bridge Protocol -> vmware_bridge (enabled)
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
HKLM\...\StartupApproved\Run: => "IAStorIcon"
HKLM\...\StartupApproved\Run: => "ISCT Tray"
HKLM\...\StartupApproved\Run: => "Cmaudio8788GX64"
HKLM\...\StartupApproved\Run: => "Cmaudio8788GX"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "Cisco AnyConnect Secure Mobility Agent for Windows"
HKLM\...\StartupApproved\Run32: => "PDFPrint"
HKLM\...\StartupApproved\Run32: => "IJNetworkScannerSelectorEX"
HKLM\...\StartupApproved\Run32: => "RoccatKoneXTDOptical"
HKLM\...\StartupApproved\Run32: => "TeamsMachineInstaller"
HKU\S-1-5-21-151591732-769639063-1674776794-1001\...\StartupApproved\StartupFolder: => "An OneNote senden.lnk"
HKU\S-1-5-21-151591732-769639063-1674776794-1001\...\StartupApproved\StartupFolder: => "Voicemeeter (VB-Audio).LNK"
HKU\S-1-5-21-151591732-769639063-1674776794-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{62317B25-9E71-4A78-974C-91D1EF9AAE19}] => (Allow) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe (VMware, Inc. -> VMware, Inc.)
FirewallRules: [{3DD99935-484C-408F-8904-0537AA5D24F4}] => (Allow) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe (VMware, Inc. -> VMware, Inc.)
FirewallRules: [{4D09D995-0B1B-4DBB-AF5E-3087C10368FA}] => (Allow) D:\SteamLibrary\steamapps\common\DOOMEternal\idTechLauncher.exe () [Datei ist nicht signiert]
FirewallRules: [{637D2691-57E5-4115-A416-55D05BE6E1C7}] => (Allow) D:\SteamLibrary\steamapps\common\DOOMEternal\idTechLauncher.exe () [Datei ist nicht signiert]
FirewallRules: [{6D064227-F4EC-4202-B002-FB8B455A9F7D}] => (Allow) D:\SteamLibrary\steamapps\common\RimWorld\RimWorldWin64.exe () [Datei ist nicht signiert]
FirewallRules: [{AE205550-35EE-4EFF-B5A4-A820AD6E9FE4}] => (Allow) D:\SteamLibrary\steamapps\common\RimWorld\RimWorldWin64.exe () [Datei ist nicht signiert]
FirewallRules: [UDP Query User{FC109BE4-3F2D-4DE1-A872-3B13F1E66DD6}D:\steamlibrary\steamapps\common\divinity original sin 2\defed\bin\eocapp.exe] => (Allow) D:\steamlibrary\steamapps\common\divinity original sin 2\defed\bin\eocapp.exe => Keine Datei
FirewallRules: [TCP Query User{75B8F6A8-FFEB-431C-8F10-1803E09A7A6F}D:\steamlibrary\steamapps\common\divinity original sin 2\defed\bin\eocapp.exe] => (Allow) D:\steamlibrary\steamapps\common\divinity original sin 2\defed\bin\eocapp.exe => Keine Datei
FirewallRules: [{B0A17839-7272-48BC-840C-983AE42439B2}] => (Block) C:\program files (x86)\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe => Keine Datei
FirewallRules: [{FBC40CF9-F48B-4569-8AD2-6877A1669355}] => (Block) C:\program files (x86)\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe => Keine Datei
FirewallRules: [UDP Query User{16DF867A-4525-41A6-AF07-30B9F4B9FED5}C:\program files (x86)\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe => Keine Datei
FirewallRules: [TCP Query User{3457C842-E2A0-4E8C-8F41-05BC9EB1240C}C:\program files (x86)\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe => Keine Datei
FirewallRules: [{257B7B85-7888-4812-8246-7C0E65893572}] => (Block) C:\program files (x86)\steam\steamapps\common\seven the days long gone\seven\binaries\win64\seven-win64-shipping.exe => Keine Datei
FirewallRules: [{818EC92A-FC65-42CC-A2E1-3E17A8358564}] => (Block) C:\program files (x86)\steam\steamapps\common\seven the days long gone\seven\binaries\win64\seven-win64-shipping.exe => Keine Datei
FirewallRules: [UDP Query User{1DD280F3-B846-4DC9-9B81-E07C4A549EF0}C:\program files (x86)\steam\steamapps\common\seven the days long gone\seven\binaries\win64\seven-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\seven the days long gone\seven\binaries\win64\seven-win64-shipping.exe => Keine Datei
FirewallRules: [TCP Query User{D61101DA-D9BF-447E-A71E-45A10CEC1568}C:\program files (x86)\steam\steamapps\common\seven the days long gone\seven\binaries\win64\seven-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\seven the days long gone\seven\binaries\win64\seven-win64-shipping.exe => Keine Datei
FirewallRules: [{A67476DB-174E-41EF-997B-FD69D89665F9}] => (Block) C:\program files (x86)\steam\steamapps\common\anno 1404\tools\anno4web.exe () [Datei ist nicht signiert]
FirewallRules: [{BC0F4114-9F01-4915-9999-880C2663F74F}] => (Block) C:\program files (x86)\steam\steamapps\common\anno 1404\tools\anno4web.exe () [Datei ist nicht signiert]
FirewallRules: [UDP Query User{2F040192-80F3-491E-A1E2-C09ABC157C29}C:\program files (x86)\steam\steamapps\common\anno 1404\tools\anno4web.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\anno 1404\tools\anno4web.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{63833E57-2037-441F-B539-68AD00F7FC36}C:\program files (x86)\steam\steamapps\common\anno 1404\tools\anno4web.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\anno 1404\tools\anno4web.exe () [Datei ist nicht signiert]
FirewallRules: [{98F4A69C-36D4-43D3-A35C-AAF0595D443B}] => (Block) C:\program files (x86)\steam\steamapps\common\anno 1404\tools\addonweb.exe () [Datei ist nicht signiert]
FirewallRules: [{08D675B1-0D04-4D98-9F7B-A94733969DAC}] => (Block) C:\program files (x86)\steam\steamapps\common\anno 1404\tools\addonweb.exe () [Datei ist nicht signiert]
FirewallRules: [UDP Query User{FABD5205-9D82-4100-9C6A-7C1EADB39F4A}C:\program files (x86)\steam\steamapps\common\anno 1404\tools\addonweb.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\anno 1404\tools\addonweb.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{0DE4E375-FAE1-43C6-AE93-690E3E5549FC}C:\program files (x86)\steam\steamapps\common\anno 1404\tools\addonweb.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\anno 1404\tools\addonweb.exe () [Datei ist nicht signiert]
FirewallRules: [{0C5F7563-840E-4E22-9EB7-7D6E5D655105}] => (Block) C:\program files (x86)\steam\steamapps\common\styx shards of darkness\styx2\binaries\win64\styx2-win64-shipping.exe (Focus Home Interactive -> Epic Games, Inc.)
FirewallRules: [{0B97BA3B-CA66-4044-B91C-EA72527E7DA0}] => (Block) C:\program files (x86)\steam\steamapps\common\styx shards of darkness\styx2\binaries\win64\styx2-win64-shipping.exe (Focus Home Interactive -> Epic Games, Inc.)
FirewallRules: [UDP Query User{413B57B2-1845-4FE3-AAEE-C57CE7B34A67}C:\program files (x86)\steam\steamapps\common\styx shards of darkness\styx2\binaries\win64\styx2-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\styx shards of darkness\styx2\binaries\win64\styx2-win64-shipping.exe (Focus Home Interactive -> Epic Games, Inc.)
FirewallRules: [TCP Query User{7A8CC300-6A8D-4721-ADD4-5FE0857DBF95}C:\program files (x86)\steam\steamapps\common\styx shards of darkness\styx2\binaries\win64\styx2-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\styx shards of darkness\styx2\binaries\win64\styx2-win64-shipping.exe (Focus Home Interactive -> Epic Games, Inc.)
FirewallRules: [{17D10B81-9F5F-4836-8C8A-186FDED589E9}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Styx Shards of Darkness\Styx2.exe (Focus Home Interactive -> )
FirewallRules: [{B63CCF1F-5809-492C-8300-F6AC8A6CD118}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Styx Shards of Darkness\Styx2.exe (Focus Home Interactive -> )
FirewallRules: [{459CF9C4-23CD-4228-96A8-4D7E6DF62A56}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Dishonored\Binaries\Win32\Dishonored.exe => Keine Datei
FirewallRules: [{3378DE97-4AC0-4F29-9612-007563D7C444}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Dishonored\Binaries\Win32\Dishonored.exe => Keine Datei
FirewallRules: [{269C069F-0D1A-4E59-8CAA-4F2732EAA0E6}] => (Allow) C:\WINDOWS\SysWOW64\PnkBstrB.exe => Keine Datei
FirewallRules: [{A9BC1755-2A6B-4437-A274-9201FFBF0BCB}] => (Allow) C:\WINDOWS\SysWOW64\PnkBstrB.exe => Keine Datei
FirewallRules: [{BA808120-9A21-40A3-8F85-70C5C3C407D9}] => (Allow) C:\WINDOWS\SysWOW64\PnkBstrA.exe => Keine Datei
FirewallRules: [{9ED74A96-751E-4D04-AECF-1E3A4819DEE3}] => (Allow) C:\WINDOWS\SysWOW64\PnkBstrA.exe => Keine Datei
FirewallRules: [{61CA36A4-1133-4F31-AD68-7897DA6C877A}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\wallpaper_engine\launcher.exe (Skutta, Kristjan -> )
FirewallRules: [{FED956BF-3AEB-4EDF-8C19-5C22205AE71A}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\wallpaper_engine\launcher.exe (Skutta, Kristjan -> )
FirewallRules: [{BB700A22-141F-4E18-9324-493478699C13}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\ShadowOfMordor\x64\ShadowOfMordor.exe => Keine Datei
FirewallRules: [{3DCB7C24-1277-43E2-9FCB-4E1CA87B79B3}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\ShadowOfMordor\x64\ShadowOfMordor.exe => Keine Datei
FirewallRules: [{6923DF0E-0328-4DA2-AE18-63291ED34E30}] => (Block) C:\program files (x86)\steam\steamapps\common\arma 3\arma3_x64.exe => Keine Datei
FirewallRules: [{C929646E-447C-4B5B-A16B-C5ED69D42A80}] => (Block) C:\program files (x86)\steam\steamapps\common\arma 3\arma3_x64.exe => Keine Datei
FirewallRules: [UDP Query User{C9B218FC-D305-456D-AE97-9C3634B6AD07}C:\program files (x86)\steam\steamapps\common\arma 3\arma3_x64.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\arma 3\arma3_x64.exe => Keine Datei
FirewallRules: [TCP Query User{316A5AC2-2FFC-4DF6-8BDA-874E79725415}C:\program files (x86)\steam\steamapps\common\arma 3\arma3_x64.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\arma 3\arma3_x64.exe => Keine Datei
FirewallRules: [{3C24CE73-1DB4-4EE9-92BA-0068544AC682}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{3943CB96-D26A-4140-AF64-2125488253BC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{34131704-F55E-411D-834B-430BCD83A8AF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe => Keine Datei
FirewallRules: [{EFAC7F92-25B9-4876-BD78-59DFB62FC9B2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{97A1D6C9-1CDE-45A1-888D-ACE85175FC0C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{B6007AC6-09B0-40FB-99D2-354955AF8524}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Keine Datei
FirewallRules: [{5E048FF2-D2E6-4FA0-9408-AC131937F9EA}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Keine Datei
FirewallRules: [UDP Query User{DBCD5091-C00E-4D93-A41E-C945ABB3989C}C:\program files (x86)\ut2004\system\ut2004.exe] => (Allow) C:\program files (x86)\ut2004\system\ut2004.exe => Keine Datei
FirewallRules: [TCP Query User{B95722F5-A464-4526-85EA-476E7AF32537}C:\program files (x86)\ut2004\system\ut2004.exe] => (Allow) C:\program files (x86)\ut2004\system\ut2004.exe => Keine Datei
FirewallRules: [UDP Query User{A927269E-9420-49BE-A382-547BA7F0B351}C:\program files (x86)\activision\call of duty 2\cod2mp_s.exe] => (Allow) C:\program files (x86)\activision\call of duty 2\cod2mp_s.exe => Keine Datei
FirewallRules: [TCP Query User{107B9A41-AA76-4F05-8E37-684B170FC918}C:\program files (x86)\activision\call of duty 2\cod2mp_s.exe] => (Allow) C:\program files (x86)\activision\call of duty 2\cod2mp_s.exe => Keine Datei
FirewallRules: [UDP Query User{04EA3569-55AB-48C4-8033-20F8CCBFFBDA}C:\users\alex\desktop\warcraft iii\festplattenversion\war3.exe] => (Allow) C:\users\alex\desktop\warcraft iii\festplattenversion\war3.exe => Keine Datei
FirewallRules: [TCP Query User{ED695309-98EC-42FD-ADD3-61C77A89C829}C:\users\alex\desktop\warcraft iii\festplattenversion\war3.exe] => (Allow) C:\users\alex\desktop\warcraft iii\festplattenversion\war3.exe => Keine Datei
FirewallRules: [{0B2CCF46-00AE-400F-B9DB-BF54CCE0F559}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Broforce\Broforce_beta.exe () [Datei ist nicht signiert]
FirewallRules: [{31313C53-27A0-4C77-9F78-2DD583F0BEF9}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Broforce\Broforce_beta.exe () [Datei ist nicht signiert]
FirewallRules: [{F7402006-1B91-40BD-B0FC-7643D765183A}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\KOAReckoning\Reckoning.exe (38 Studios Baltimore -> Big Huge Games) [Datei ist nicht signiert]
FirewallRules: [{C2A0A4BB-0736-435B-8F72-321003788D88}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\KOAReckoning\Reckoning.exe (38 Studios Baltimore -> Big Huge Games) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{446F8911-1577-4529-BC4B-55086051E8F6}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe => Keine Datei
FirewallRules: [TCP Query User{878CBF3D-85BA-41B6-858A-13673D7B6C77}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe => Keine Datei
FirewallRules: [{57E09B92-F3FC-43F9-A6E3-B9510E66783F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\The Swapper\TheSwapper.exe (Facepalm Games) [Datei ist nicht signiert]
FirewallRules: [{43F8284C-059A-45A5-A1C9-1755D3799A1F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\The Swapper\TheSwapper.exe (Facepalm Games) [Datei ist nicht signiert]
FirewallRules: [{A1569004-59A6-4DD1-88D6-D7D4EBD8E8D3}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\SunlessSea\Sunless Sea.exe () [Datei ist nicht signiert]
FirewallRules: [{BAC2A16E-B3DB-4CB7-A11C-B1F0DFF3B033}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\SunlessSea\Sunless Sea.exe () [Datei ist nicht signiert]
FirewallRules: [{C97E2778-2626-498B-A336-92981247DD21}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Lara Croft and the Guardian of Light\lcgol.exe (Valve Corp. -> Square Enix Limited) [Datei ist nicht signiert]
FirewallRules: [{41EF60A6-ACE0-4A4F-BD1B-BCBFA9D47165}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Lara Croft and the Guardian of Light\lcgol.exe (Valve Corp. -> Square Enix Limited) [Datei ist nicht signiert]
FirewallRules: [{AD02BCEA-F0DD-43B0-A1E4-632D95912BAD}] => (Allow) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe (devolo AG -> devolo AG)
FirewallRules: [{312197B5-0B2C-4902-9D07-575369EF21E5}] => (Allow) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe (devolo AG -> devolo AG)
FirewallRules: [{F9580A94-FD94-415B-B1B0-5DFC5EEA2743}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3286\Agent.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{116BD42A-F708-4A05-B992-B04495876432}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3286\Agent.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{4CC29BE6-A78E-4B62-A665-C1235FA3EC99}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\BattleBlock Theater\BattleBlockTheater.exe () [Datei ist nicht signiert]
FirewallRules: [{F853BBCA-AE7D-4072-B4E4-DAC753965C4F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\BattleBlock Theater\BattleBlockTheater.exe () [Datei ist nicht signiert]
FirewallRules: [{C242A9C1-EC92-46D1-B5D5-480AC99504BA}] => (Block) C:\Program Files (x86)\TechSmith\Snagit 12\TscHelp.exe (TechSmith Corporation) [Datei ist nicht signiert]
FirewallRules: [{F5369BAE-2E80-4CE3-BFEF-14BC394D52DE}] => (Block) C:\Program Files (x86)\TechSmith\Snagit 12\SnagPriv.exe (TechSmith Corporation -> TechSmith Corporation)
FirewallRules: [{F694D389-EDBD-4BF1-9915-67A2F29D406E}] => (Block) C:\Program Files (x86)\TechSmith\Snagit 12\SnagitPI64.exe (TechSmith Corporation -> TechSmith Corporation)
FirewallRules: [{E04706DF-1C58-42A8-B59E-EE543526D289}] => (Block) C:\Program Files (x86)\TechSmith\Snagit 12\SnagitPI.exe (TechSmith Corporation -> TechSmith Corporation)
FirewallRules: [{9EE140A1-5C67-4ABD-B3B0-69C774CC541D}] => (Block) C:\Program Files (x86)\TechSmith\Snagit 12\SnagitEditor.exe (TechSmith Corporation -> TechSmith Corporation)
FirewallRules: [{01D48DA3-FCD6-4577-9C17-CFEC18C6B94E}] => (Block) C:\Program Files (x86)\TechSmith\Snagit 12\Snagit32.exe (TechSmith Corporation -> TechSmith Corporation)
FirewallRules: [{B27D16C2-83B7-4A20-A840-3FAFEF7D0D63}] => (Allow) LPort=8298
FirewallRules: [{9B8CE4EF-CCFC-456F-8B87-85814F9B8A93}] => (Allow) LPort=8298
FirewallRules: [{6B3A6E82-8CC9-4716-8EEB-0E2D3F370C70}] => (Allow) LPort=8298
FirewallRules: [{A69ED811-F8F1-48E8-9298-8581D907EC7E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{9E419BE2-A930-447D-9D96-C2BEA7B8725A}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{9C4BE15D-C533-4786-8B3C-F8588E769792}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe => Keine Datei
FirewallRules: [{D8453FF1-3259-4290-AF7D-BF1AD899D81C}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe => Keine Datei
FirewallRules: [{3FC29E5B-843A-4A12-917E-C3077664E4E6}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Super Meat Boy\SuperMeatBoy.exe () [Datei ist nicht signiert]
FirewallRules: [{2C9703A9-2E1C-49E8-B334-77879D6BE279}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Super Meat Boy\SuperMeatBoy.exe () [Datei ist nicht signiert]
FirewallRules: [{A6E7A595-F21A-45ED-83DE-C74FF1EE67E1}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve Corp. -> )
FirewallRules: [{DAF5B25D-8E18-4BFA-8BD4-26E18842991E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve Corp. -> )
FirewallRules: [{3A79F374-0250-4424-8A00-F4AE3D48B7CE}] => (Block) C:\program files (x86)\world_of_warships\wowslauncher.exe => Keine Datei
FirewallRules: [{37DAC65C-ECB3-4EC6-8C08-5EB0641A120A}] => (Block) C:\program files (x86)\world_of_warships\wowslauncher.exe => Keine Datei
FirewallRules: [UDP Query User{BEFB9F4A-4289-4349-BA66-80F9EB5988C4}C:\program files (x86)\world_of_warships\wowslauncher.exe] => (Allow) C:\program files (x86)\world_of_warships\wowslauncher.exe => Keine Datei
FirewallRules: [TCP Query User{BB270C37-52C9-4543-9843-9D39C3C00629}C:\program files (x86)\world_of_warships\wowslauncher.exe] => (Allow) C:\program files (x86)\world_of_warships\wowslauncher.exe => Keine Datei
FirewallRules: [{AB9D5632-E661-4CF2-BC83-214D0AF718E2}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\The Witcher 3\bin\x64\witcher3.exe (CD PROJEKT SPÓŁKA AKCYJNA -> CD Projekt Red)
FirewallRules: [{99BAE54C-CBAC-4E50-A492-27103691BAA2}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\The Witcher 3\bin\x64\witcher3.exe (CD PROJEKT SPÓŁKA AKCYJNA -> CD Projekt Red)
FirewallRules: [{ABEF468C-2051-460A-B262-D3D775525D13}] => (Block) C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe => Keine Datei
FirewallRules: [{6128DF08-AF8A-4E53-B07A-8018F43A7C7E}] => (Block) C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe => Keine Datei
FirewallRules: [UDP Query User{04225250-D625-49F4-98BC-DB798B545A53}C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe => Keine Datei
FirewallRules: [TCP Query User{18812ABD-79E6-454D-9645-BAE69B14866A}C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe => Keine Datei
FirewallRules: [{90B29793-A770-4C5C-935B-E3D37B656AD0}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\ValveTestApp207490\Rayman Origins.exe (Ubisoft Entertainment SA -> )
FirewallRules: [{5A701B54-0275-4FAC-B986-39D2C497F50A}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\ValveTestApp207490\Rayman Origins.exe (Ubisoft Entertainment SA -> )
FirewallRules: [UDP Query User{D369E308-C1AA-4780-B51F-3BDB5024A4A5}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{6EF5FBD7-B4FB-4099-8666-5C0FAD052455}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{ACF7069B-5E96-4D31-A3BA-8D7B36407689}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Dark Souls Prepare to Die Edition\DATA\DARKSOULS.exe => Keine Datei
FirewallRules: [{0350C848-D9B2-4410-8881-AD2F1D51AD88}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Dark Souls Prepare to Die Edition\DATA\DARKSOULS.exe => Keine Datei
FirewallRules: [{9DA08F09-4232-400B-B827-8489DABE0436}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{814775BA-A50F-461B-BAA9-227C307E6457}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{802FD11A-EA79-4125-A7C8-5E4E99E45F4F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\mark_of_the_ninja\bin\game.exe => Keine Datei
FirewallRules: [{4E7EA7F1-F4F5-45BC-BB4F-B0500902D944}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\mark_of_the_ninja\bin\game.exe => Keine Datei
FirewallRules: [{72EF8EB0-2023-413A-A5EB-16064E503D75}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Banished\Application-steam-x64.exe () [Datei ist nicht signiert]
FirewallRules: [{0DDB5C4F-91DD-4E2D-BB12-BA030F6951ED}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Banished\Application-steam-x64.exe () [Datei ist nicht signiert]
FirewallRules: [{12F92DF5-FF9F-4354-B714-D9FBF798F237}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3286\Agent.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{41D27F41-1668-4BF4-9F89-4367F4FAAB34}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3286\Agent.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{F152B4CA-15DF-4CCF-9A4E-492845619B60}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe => Keine Datei
FirewallRules: [{C635B2BA-1EB4-41E2-BD67-775AF324024F}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe => Keine Datei
FirewallRules: [UDP Query User{A52C9EEA-A8A6-46BE-91DC-4457F628420B}C:\program files (x86)\starcraft ii\versions\base28667\sc2.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base28667\sc2.exe => Keine Datei
FirewallRules: [TCP Query User{11DF07B3-2C72-4BAE-99CB-0131B05A62EB}C:\program files (x86)\starcraft ii\versions\base28667\sc2.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base28667\sc2.exe => Keine Datei
FirewallRules: [{3D342B35-D287-4607-BED8-314BC62517A9}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II Public Test.exe => Keine Datei
FirewallRules: [{292CAEF0-A264-4EDA-B181-5C234E82B579}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II Public Test.exe => Keine Datei
FirewallRules: [{5D64CA53-753B-4E6A-8144-8D4BB586AEDA}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II.exe => Keine Datei
FirewallRules: [{272CF8E8-2327-4A44-A82B-CB8451B2DB10}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II.exe => Keine Datei
FirewallRules: [{A0D273B8-A9FC-45AF-A5A6-469FFE33CAB8}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1040\Agent.exe => Keine Datei
FirewallRules: [{A5031FFB-C6CF-4407-A684-5B648294E4B0}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1040\Agent.exe => Keine Datei
FirewallRules: [UDP Query User{CC3F615E-08D2-47FA-8BCC-2769093B53B7}C:\program files (x86)\starcraft ii\sc2-x.x.x.x-1.5.0.22342-enus-downloader.exe] => (Allow) C:\program files (x86)\starcraft ii\sc2-x.x.x.x-1.5.0.22342-enus-downloader.exe => Keine Datei
FirewallRules: [TCP Query User{BCA264FD-4632-4954-B9D2-695A43C3EFD1}C:\program files (x86)\starcraft ii\sc2-x.x.x.x-1.5.0.22342-enus-downloader.exe] => (Allow) C:\program files (x86)\starcraft ii\sc2-x.x.x.x-1.5.0.22342-enus-downloader.exe => Keine Datei
FirewallRules: [{826F797C-103B-4ABB-8F47-B1C4CFBA175E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 3\arma3.exe => Keine Datei
FirewallRules: [{5779A1EE-4898-4524-9288-920C24CCDC6F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 3\arma3.exe => Keine Datei
FirewallRules: [{1D869043-5078-48EB-91E3-F0E44B475CB6}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\dota.exe () [Datei ist nicht signiert]
FirewallRules: [{6664D226-3854-4508-BBEA-2D9CEB11C603}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\dota.exe () [Datei ist nicht signiert]
FirewallRules: [{07C71E79-3B2A-4CE8-991F-09ED3C11E259}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe => Keine Datei
FirewallRules: [{9A53B7A1-BFEC-4180-ACC0-FED4251576EC}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe => Keine Datei
FirewallRules: [{C65F41DC-C5D7-4F8D-9846-43D122905C96}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{27EE474D-7DFA-4593-B625-8C20A2F733DE}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{75EF2329-EBFC-4EED-BF8D-9F3CD2A1D974}] => (Allow) C:\Program Files\Logitech Gaming Software\LCore.exe (Logitech -> Logitech Inc.)
FirewallRules: [{8C9386CA-6D98-485B-A3D1-FEEBE50D6C28}] => (Allow) C:\Program Files\Logitech Gaming Software\LCore.exe (Logitech -> Logitech Inc.)
FirewallRules: [{D9EE09B3-AA8A-4C65-8628-EA5DDF2A0CED}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\CastlevaniaLoS\bin\CastlevaniaLoSUE.exe => Keine Datei
FirewallRules: [{09951045-499F-4B2D-8F17-38BB82958455}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\CastlevaniaLoS\bin\CastlevaniaLoSUE.exe => Keine Datei
FirewallRules: [{706C07F8-0E9C-4079-97B5-F9BFDD90FE55}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe => Keine Datei
FirewallRules: [{F6DD01C6-37F7-4492-946A-A758E58F13C2}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe => Keine Datei
FirewallRules: [TCP Query User{3D4CDA7B-D212-4153-BEA8-FF4EB10016DB}C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe => Keine Datei
FirewallRules: [UDP Query User{140FC145-176D-4A93-A816-3530CBE29635}C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe => Keine Datei
FirewallRules: [{829B13CC-4909-4C76-8216-93A7E4391EDD}] => (Block) C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe => Keine Datei
FirewallRules: [{05FB42E3-9885-4901-A948-B37DA01F7DAD}] => (Block) C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe => Keine Datei
FirewallRules: [{0A9EB186-7369-4D28-BCB0-4BC89F4B1BC7}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe (Ubisoft Entertainment Sweden AB -> Ubisoft)
FirewallRules: [{5171CD76-0554-4CC7-BCAF-CE2BA2976B9D}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe (Ubisoft Entertainment Sweden AB -> Ubisoft)
FirewallRules: [TCP Query User{211DEA2F-6027-411F-B499-0EFA80353976}C:\program files (x86)\steam\steamapps\common\pubg_experimental\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg_experimental\tslgame\binaries\win64\tslgame.exe => Keine Datei
FirewallRules: [UDP Query User{D73C0A91-BDCF-4308-8779-E29D6E7EAC70}C:\program files (x86)\steam\steamapps\common\pubg_experimental\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg_experimental\tslgame\binaries\win64\tslgame.exe => Keine Datei
FirewallRules: [{B2D51553-CCF4-4B14-9574-90684E912DE7}] => (Block) C:\program files (x86)\steam\steamapps\common\pubg_experimental\tslgame\binaries\win64\tslgame.exe => Keine Datei
FirewallRules: [{F545CC2E-0162-4B06-8E3F-E29AB6BCFC85}] => (Block) C:\program files (x86)\steam\steamapps\common\pubg_experimental\tslgame\binaries\win64\tslgame.exe => Keine Datei
FirewallRules: [{D3C5642C-89D5-4147-9410-8C8D4ECF3CFC}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Dead Cells\deadcells.exe () [Datei ist nicht signiert]
FirewallRules: [{E33BE5FF-8F9F-49A2-9BA0-63FE607D877F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Dead Cells\deadcells.exe () [Datei ist nicht signiert]
FirewallRules: [{45AA6764-3BE9-4F70-8643-BD9C1110BF13}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Dead Cells\deadcells_gl.exe () [Datei ist nicht signiert]
FirewallRules: [{1C520392-C3FF-4F09-A425-A0369E69993F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Dead Cells\deadcells_gl.exe () [Datei ist nicht signiert]
FirewallRules: [{A5BDF47A-4FAF-49D3-81E0-459076607E40}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization V\Launcher.exe => Keine Datei
FirewallRules: [{77099AD5-F820-4081-A394-0475C4CAE1E8}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization V\Launcher.exe => Keine Datei
FirewallRules: [{CC39C3D6-2288-4EA0-AF26-56847BC585F8}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Transistor\x64\Transistor.exe (Supergiant Games, LLC) [Datei ist nicht signiert]
FirewallRules: [{B77AA54B-C53E-4D7D-9F48-E4F554AE053C}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Transistor\x64\Transistor.exe (Supergiant Games, LLC) [Datei ist nicht signiert]
FirewallRules: [{D28126ED-0F82-45D0-8DEF-362F41EFBF2E}] => (Allow) D:\SteamLibrary\steamapps\common\Hollow Knight\hollow_knight.exe () [Datei ist nicht signiert]
FirewallRules: [{40AEFA9B-2B93-4496-9CB2-DF0589278AC9}] => (Allow) D:\SteamLibrary\steamapps\common\Hollow Knight\hollow_knight.exe () [Datei ist nicht signiert]
FirewallRules: [{0F4231F9-4728-45C3-83DE-D0F5E4E1503F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{297A835E-7A8C-457E-ADEA-EBC7ED56AB36}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{12A7B339-DF59-45F6-923A-3A25F6BDDA9E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Anno 1404\Addon.exe (Related Designs Software -> Related Designs)
FirewallRules: [{79D07907-FDD7-4121-89B7-A7166AD24DCE}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Anno 1404\Addon.exe (Related Designs Software -> Related Designs)
FirewallRules: [{23D2DA78-E257-4FE0-827E-CCC80EE644A6}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Anno 1404\Anno4.exe (Related Designs Software -> Related Designs)
FirewallRules: [{6EECA5D2-31B0-47D5-9799-D4B2E1B9810D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Anno 1404\Anno4.exe (Related Designs Software -> Related Designs)
FirewallRules: [TCP Query User{65EC131D-FEE0-4EC1-A253-EDAB66A6D888}C:\users\alex\desktop\blur(tm)\blur.exe] => (Allow) C:\users\alex\desktop\blur(tm)\blur.exe => Keine Datei
FirewallRules: [UDP Query User{F563AE82-E0DA-4F6B-B8D4-C033AA3AF790}C:\users\alex\desktop\blur(tm)\blur.exe] => (Allow) C:\users\alex\desktop\blur(tm)\blur.exe => Keine Datei
FirewallRules: [{4E714A2A-F84F-4DAA-BC9E-0E408237A243}] => (Block) C:\users\alex\desktop\blur(tm)\blur.exe => Keine Datei
FirewallRules: [{BB689681-0510-4C90-9592-99383E0BF044}] => (Block) C:\users\alex\desktop\blur(tm)\blur.exe => Keine Datei
FirewallRules: [{28EC9AC4-E05B-42C0-A927-91408810B755}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield V\bfvTrial.exe => Keine Datei
FirewallRules: [{DDC66A80-30A9-432D-BD77-077F0DC31D33}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield V\bfvTrial.exe => Keine Datei
FirewallRules: [{E209297A-E999-4D80-ACB5-F6FC54CE5B15}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield V\bfv.exe => Keine Datei
FirewallRules: [{5EF466F6-23EA-41DB-B5FC-993DEA9EC42C}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield V\bfv.exe => Keine Datei
FirewallRules: [{E8C1A8A2-A5B2-4C5B-8480-F728B8A052FF}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe => Keine Datei
FirewallRules: [{58F0AA4C-F4CD-4A7D-A8DD-BD653F2FFA63}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe => Keine Datei
FirewallRules: [{5A72BB2F-0E4A-4B65-A75F-7FEAB9165029}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization V\LaunchPad\LaunchPad.exe => Keine Datei
FirewallRules: [{01594CFF-9096-440C-9F41-9B705C4235AB}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization V\LaunchPad\LaunchPad.exe => Keine Datei
FirewallRules: [{DA235C15-499E-4AD0-B7AB-A6450B1A9CF2}] => (Allow) D:\SteamLibrary\steamapps\common\Castlevania Lords of Shadow 2\bin\CLOS2.exe (Mercury Steam Entertainment S.L.) [Datei ist nicht signiert]
FirewallRules: [{AD41B906-2F22-45D3-8DE5-D077FBE186ED}] => (Allow) D:\SteamLibrary\steamapps\common\Castlevania Lords of Shadow 2\bin\CLOS2.exe (Mercury Steam Entertainment S.L.) [Datei ist nicht signiert]
FirewallRules: [{10DBAEC3-3ADA-4AF4-8C33-E06AF4D0A8F6}] => (Allow) D:\SteamLibrary\steamapps\common\Strider\Strider.exe () [Datei ist nicht signiert]
FirewallRules: [{F53E15EB-C882-43D1-B2A5-AC82E407B173}] => (Allow) D:\SteamLibrary\steamapps\common\Strider\Strider.exe () [Datei ist nicht signiert]
FirewallRules: [{7CD32C1D-37CF-48E2-B1B4-AD58C5829B51}] => (Allow) D:\SteamLibrary\steamapps\common\Magicka 2\engine\Magicka2.exe () [Datei ist nicht signiert]
FirewallRules: [{B16ED351-51D4-431C-91E3-C60EE77079C0}] => (Allow) D:\SteamLibrary\steamapps\common\Magicka 2\engine\Magicka2.exe () [Datei ist nicht signiert]
FirewallRules: [{9A55C83D-24D2-41E0-8C66-9DDFE494323A}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Dishonored2\Dishonored2.exe => Keine Datei
FirewallRules: [{E16886D2-54BD-4891-A5C0-99F4BFBF2B48}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Dishonored2\Dishonored2.exe => Keine Datei
FirewallRules: [{BE2F8264-9F86-45DD-9C29-A800EBAC8F28}] => (Allow) E:\SteamLibrary\steamapps\common\Dishonored2\Dishonored2.exe (Arkane Studios) [Datei ist nicht signiert]
FirewallRules: [{6C7FEBAA-8E06-419D-8E1B-EEC124416B6F}] => (Allow) E:\SteamLibrary\steamapps\common\Dishonored2\Dishonored2.exe (Arkane Studios) [Datei ist nicht signiert]
FirewallRules: [{773EEF9E-FD7D-4B2C-80C7-CFBCCBA848B5}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization VI\LaunchPad\LaunchPad.exe => Keine Datei
FirewallRules: [{6DA17EC8-1372-4EB3-9F0C-0B1D64C13897}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization VI\LaunchPad\LaunchPad.exe => Keine Datei
FirewallRules: [{AD6E873F-EE03-4CC2-A832-FF8508877B99}] => (Allow) E:\SteamLibrary\steamapps\common\Sid Meier's Civilization VI\LaunchPad\LaunchPad.exe (Xsolla (USA), Inc -> 2K)
FirewallRules: [{55AE2872-394B-49D6-B355-53666347994F}] => (Allow) E:\SteamLibrary\steamapps\common\Sid Meier's Civilization VI\LaunchPad\LaunchPad.exe (Xsolla (USA), Inc -> 2K)
FirewallRules: [{D5874015-8C91-440D-80D6-DB42DD951F9F}] => (Allow) E:\SteamLibrary\steamapps\common\Sid Meier's Civilization VI\2KLauncher\LauncherPatcher.exe (Take-Two Interactive Software, Inc. -> Take-Two Interactive Software, Inc.)
FirewallRules: [{8E49D520-9F50-4C4E-AD36-9D076E37D8DF}] => (Allow) E:\SteamLibrary\steamapps\common\Sid Meier's Civilization VI\2KLauncher\LauncherPatcher.exe (Take-Two Interactive Software, Inc. -> Take-Two Interactive Software, Inc.)
FirewallRules: [{B4744CB9-58D1-48A6-BF83-B2963FEC0A05}] => (Allow) E:\SteamLibrary\steamapps\common\Disco Elysium\disco.exe () [Datei ist nicht signiert]
FirewallRules: [{E7F3FE2D-5909-4A82-BED4-147A77C49272}] => (Allow) E:\SteamLibrary\steamapps\common\Disco Elysium\disco.exe () [Datei ist nicht signiert]
FirewallRules: [{4354023D-102D-49CB-92CE-01ED855D32D4}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{8111EB53-33E9-4C61-AE7E-BF290036F2BC}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{03B2FE85-08CA-4BD7-A9F5-7FB7FBEDD7C5}] => (Allow) C:\Program Files (x86)\BsgLauncher\BsgLauncher.exe (BATTLESTATE GAMES LIMITED -> Battlestate Games)
FirewallRules: [{44AA301F-4B4C-4918-A604-B557B0F29FF1}] => (Allow) C:\Program Files (x86)\BsgLauncher\BsgLauncher.exe (BATTLESTATE GAMES LIMITED -> Battlestate Games)
FirewallRules: [TCP Query User{E8DDCEF5-113F-4C79-B100-06ABE47EE2AF}E:\origin\battlefield 2042\bf2042.exe] => (Allow) E:\origin\battlefield 2042\bf2042.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [UDP Query User{D002102B-0269-4CF4-9D6D-B3EEC7E4F6DD}E:\origin\battlefield 2042\bf2042.exe] => (Allow) E:\origin\battlefield 2042\bf2042.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{7CBCFC42-9D81-4364-9DEA-6D2E1AF1B89E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{85D60E80-F9A4-409C-B55B-D0909EF869DD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{5F975BF5-BC18-4CE2-B8B4-5CEDEAAE8534}] => (Allow) E:\Origin\Battlefield 2042\BF2042_launcher.exe (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{83D788C1-4276-4DE1-ACE6-6B079F244195}] => (Allow) E:\Origin\Battlefield 2042\BF2042_launcher.exe (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{2723CE16-6407-4271-B572-290D4758100D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\wallpaper_engine\bin\diagnostics32.exe (Skutta, Kristjan -> )
FirewallRules: [{446B0200-5B21-4BE5-8DA6-D737DF47D8C1}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\wallpaper_engine\bin\diagnostics32.exe (Skutta, Kristjan -> )
FirewallRules: [{7E25E1D1-57EF-46EE-BEE2-9D133E5058AA}] => (Allow) D:\SteamLibrary\steamapps\common\DarkestDungeon\_windows\Darkest.exe () [Datei ist nicht signiert]
FirewallRules: [{565F62F7-358E-4415-B2F1-0DB8B28CC0C0}] => (Allow) D:\SteamLibrary\steamapps\common\DarkestDungeon\_windows\Darkest.exe () [Datei ist nicht signiert]
FirewallRules: [{F674006A-78CF-4B66-BC4F-6830A810A9CF}] => (Allow) E:\Origin\Command and Conquer Red Alert II\RA2Launcher.exe () [Datei ist nicht signiert]
FirewallRules: [{BC913824-56FE-4881-BD8F-E5725643A020}] => (Allow) E:\Origin\Command and Conquer Red Alert II\RA2Launcher.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{ABE615CF-F8AB-4195-8062-631E656D80B0}E:\origin\command and conquer red alert ii\game.exe] => (Block) E:\origin\command and conquer red alert ii\game.exe (Westwood Studios) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{71FF7B1B-794D-491F-8A9B-5A3E3BB8730A}E:\origin\command and conquer red alert ii\game.exe] => (Block) E:\origin\command and conquer red alert ii\game.exe (Westwood Studios) [Datei ist nicht signiert]
FirewallRules: [{2F46B0D1-5C9B-40B4-8B6D-E44163F8C622}] => (Allow) E:\Origin\Command and Conquer Red Alert 3\RA3Launcher.exe (Kalloc Studios, Inc. -> Kalloc Studios) [Datei ist nicht signiert]
FirewallRules: [{8E0396D5-3C8E-43E1-B4EF-8AF6A1EBB341}] => (Allow) E:\Origin\Command and Conquer Red Alert 3\RA3Launcher.exe (Kalloc Studios, Inc. -> Kalloc Studios) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{9B8C2BCE-4725-4923-89F1-E3DBC70801C3}C:\users\alex\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\alex\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{D5B3C2D6-1679-4732-B8CD-505359699818}C:\users\alex\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\alex\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{C789F9D4-59F1-4646-8AD1-8D4DA53759A1}] => (Allow) E:\SteamLibrary\steamapps\common\FTL Faster Than Light\FTLGame.exe () [Datei ist nicht signiert]
FirewallRules: [{7AB8551D-87B2-479A-80F5-AB4EC5D1C30B}] => (Allow) E:\SteamLibrary\steamapps\common\FTL Faster Than Light\FTLGame.exe () [Datei ist nicht signiert]
FirewallRules: [{8D59A125-76BF-4C40-B642-81A21CA26DE1}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{6EB4D9FC-DA35-4A70-8457-0DC4E557E396}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{2C515626-E817-4719-8622-CF9F725BD3EB}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B3FEAA9A-795E-4CF6-8C69-42559DD7A3D6}] => (Allow) E:\SteamLibrary\steamapps\common\Shadow Tactics - Aiko's Choice\Shadow Tactics.exe () [Datei ist nicht signiert]
FirewallRules: [{B0FD1803-4C1A-47DB-83C4-56B15BEEDD56}] => (Allow) E:\SteamLibrary\steamapps\common\Shadow Tactics - Aiko's Choice\Shadow Tactics.exe () [Datei ist nicht signiert]
FirewallRules: [{D297F862-ECFB-42F6-AC1E-DD82D1BC4E8D}] => (Allow) C:\Program Files (x86)\BsgLauncher\BsgLauncher.exe (BATTLESTATE GAMES LIMITED -> Battlestate Games)
FirewallRules: [{1C50568C-62B4-4FF6-AF6C-D550D88C2D4B}] => (Allow) C:\Program Files (x86)\BsgLauncher\BsgLauncher.exe (BATTLESTATE GAMES LIMITED -> Battlestate Games)
FirewallRules: [{77E9BEA8-545A-4E6C-ACC5-E879154CABC9}] => (Allow) E:\SteamLibrary\steamapps\common\[NINJA GAIDEN Master Collection] NINJA GAIDEN 3 Razor's Edge\NINJA GAIDEN 3 Razor's Edge.exe (KOEI TECMO GAMES CO., LTD. -> KOEI TECMO GAMES CO., LTD.)
FirewallRules: [{220C7DD0-2AFE-4954-9654-4F2A757D8BC4}] => (Allow) E:\SteamLibrary\steamapps\common\[NINJA GAIDEN Master Collection] NINJA GAIDEN 3 Razor's Edge\NINJA GAIDEN 3 Razor's Edge.exe (KOEI TECMO GAMES CO., LTD. -> KOEI TECMO GAMES CO., LTD.)
FirewallRules: [{779F18DF-F765-4FD3-B5D1-CF55BABCC3CB}] => (Allow) E:\SteamLibrary\steamapps\common\Blasphemous\Blasphemous.exe () [Datei ist nicht signiert]
FirewallRules: [{03603777-4BCF-4209-A166-8986BE285D61}] => (Allow) E:\SteamLibrary\steamapps\common\Blasphemous\Blasphemous.exe () [Datei ist nicht signiert]
FirewallRules: [{ED43F542-AA5C-43EF-B4FF-7190F18B56BF}] => (Allow) E:\SteamLibrary\steamapps\common\ELDEN RING\Game\start_protected_game.exe (EasyAntiCheat Oy -> Epic Games, Inc.)
FirewallRules: [{BEE4B21A-CB4E-4754-B640-82FCEDDF287C}] => (Allow) E:\SteamLibrary\steamapps\common\ELDEN RING\Game\start_protected_game.exe (EasyAntiCheat Oy -> Epic Games, Inc.)
FirewallRules: [{4A38920B-3F20-4AA6-8646-F31AE0BBB0C9}] => (Allow) E:\SteamLibrary\steamapps\common\Mr Shifty\MrShifty.exe () [Datei ist nicht signiert]
FirewallRules: [{E531E2BE-FC70-46B5-BAA5-B176AC03781A}] => (Allow) E:\SteamLibrary\steamapps\common\Mr Shifty\MrShifty.exe () [Datei ist nicht signiert]
FirewallRules: [{8F69F186-DB46-481A-A697-B2A6C1545634}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\The Witcher 3\REDprelauncher.exe (GOG Sp. z o.o. -> GOG.com)
FirewallRules: [{528ADD36-29FE-4D3D-9121-E2F0B12A1885}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\The Witcher 3\REDprelauncher.exe (GOG Sp. z o.o. -> GOG.com)
FirewallRules: [{C1934325-EB01-4D36-9DDF-9A9051429F06}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{F60C5FE5-0AEC-4CDB-84F0-B9CC3F34C3FC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{28D36341-2FCF-4539-95E3-37753E343221}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{CDA190E5-B6F1-4564-8069-0E08CC04FE9E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{CD161EFC-074E-48FE-B5FD-3EFE8381F217}] => (Allow) E:\SteamLibrary\steamapps\common\Divinity Original Sin 2\bin\SupportTool.exe (LariLauncher) [Datei ist nicht signiert]
FirewallRules: [{133C6ABF-C471-4344-82EB-08600EDE4544}] => (Allow) E:\SteamLibrary\steamapps\common\Divinity Original Sin 2\bin\SupportTool.exe (LariLauncher) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{D5F18AAC-10C9-495A-9D98-0408BAF63895}E:\steamlibrary\steamapps\common\divinity original sin 2\defed\bin\eocapp.exe] => (Allow) E:\steamlibrary\steamapps\common\divinity original sin 2\defed\bin\eocapp.exe (Larian Studios Games Ltd. -> )
FirewallRules: [UDP Query User{790193C9-1E8F-476D-8DC8-3044CCBF7288}E:\steamlibrary\steamapps\common\divinity original sin 2\defed\bin\eocapp.exe] => (Allow) E:\steamlibrary\steamapps\common\divinity original sin 2\defed\bin\eocapp.exe (Larian Studios Games Ltd. -> )
FirewallRules: [{3365329E-64AE-4D5B-B176-D2AC5138FA23}] => (Allow) E:\SteamLibrary\steamapps\common\Guild Wars 2\Gw2-64.exe (ArenaNet, LLc -> ArenaNet)
FirewallRules: [{9EDF66F5-A7F8-4673-B59D-13D992725AC9}] => (Allow) E:\SteamLibrary\steamapps\common\Guild Wars 2\Gw2-64.exe (ArenaNet, LLc -> ArenaNet)
FirewallRules: [{DFC88054-1CB0-4937-830C-DE2F90E84E61}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\DARK SOULS III\Game\DarkSoulsIII.exe (FromSoftware,Inc. -> BANDAI NAMCO Entertainment Inc.)
FirewallRules: [{653A6EC1-32DE-44E2-A562-1D601714A45D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\DARK SOULS III\Game\DarkSoulsIII.exe (FromSoftware,Inc. -> BANDAI NAMCO Entertainment Inc.)
FirewallRules: [{61A25566-1340-412C-A6CF-17F35E0A68B6}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{255777EC-4B7D-432D-A91B-DA496CADE9A3}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\109.0.1518.70\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{BF99655A-14A9-4248-A8B2-328550DC3F21}] => (Allow) C:\Program Files (x86)\Overwolf\0.216.0.26\OverwolfBrowser.exe => Keine Datei
FirewallRules: [{CF389E56-C503-452A-92E1-B0FC506DE2E2}] => (Allow) C:\Program Files (x86)\Overwolf\0.216.0.26\OverwolfBrowser.exe => Keine Datei
FirewallRules: [{15282300-21B2-45CF-9B5A-5D89639BF929}] => (Block) C:\Program Files (x86)\Overwolf\0.216.0.26\OverwolfBrowser.exe => Keine Datei
FirewallRules: [{8B9D8BA7-8C92-4D96-971C-FF81EDB3AEB7}] => (Block) C:\Program Files (x86)\Overwolf\0.216.0.26\OverwolfBrowser.exe => Keine Datei
FirewallRules: [{DE9DD4F2-1FAF-4585-B92E-3EF5F74BC74D}] => (Allow) C:\Program Files (x86)\Overwolf\0.217.0.9\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{C0A9478D-E729-4BF5-A2FC-CB5E5CAF5037}] => (Allow) C:\Program Files (x86)\Overwolf\0.217.0.9\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{B4A9017C-4FC9-4A74-89F2-F2BE1EA7E8AA}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\wallpaper_engine\bin\diagnostics32.exe (Skutta, Kristjan -> )
FirewallRules: [{40F9314B-0B40-4C3C-89D0-6C511BDEAD5B}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\wallpaper_engine\bin\diagnostics32.exe (Skutta, Kristjan -> )
FirewallRules: [{DB63E3D3-75D6-486C-BDB2-7A8E6723E9C3}] => (Allow) D:\SteamLibrary\steamapps\common\DarkestDungeon\_windows\Darkest.exe () [Datei ist nicht signiert]
FirewallRules: [{D509410A-B825-45F1-92D9-E7A6DA014F8D}] => (Allow) D:\SteamLibrary\steamapps\common\DarkestDungeon\_windows\Darkest.exe () [Datei ist nicht signiert]
==================== Wiederherstellungspunkte =========================
25-01-2023 12:27:02 Geplanter Prüfpunkt
04-02-2023 05:33:11 Geplanter Prüfpunkt
==================== Fehlerhafte Geräte im Gerätemanager ============
Name: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Description: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Cisco Systems
Service: vpnva
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Fehlereinträge in der Ereignisanzeige: ========================
Applikationsfehler:
==================
Error: (02/03/2023 03:08:07 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Das Programm Gw2-64.exe Version 1.0.0.1 hat die Interaktion mit Windows beendet und wurde geschlossen. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 2138
Startzeit: 01d937d898dc50cd
Beendigungszeit: 4
Anwendungspfad: E:\SteamLibrary\steamapps\common\Guild Wars 2\Gw2-64.exe
Bericht-ID: 59623f7b-a5d8-469c-9722-61d6c769fc2e
Vollständiger Name des fehlerhaften Pakets:
Relative Anwendungs-ID des fehlerhaften Pakets:
Absturztyp: Unknown
Error: (02/03/2023 02:29:48 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Blish HUD.exe, Version: 1.0.0.0, Zeitstempel: 0xbcec03b7
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 10.0.19041.2364, Zeitstempel: 0x5b7d4d22
Ausnahmecode: 0xe0434352
Fehleroffset: 0x000000000002cd29
ID des fehlerhaften Prozesses: 0x1be0
Startzeit der fehlerhaften Anwendung: 0x01d937d29341cb58
Pfad der fehlerhaften Anwendung: E:\SteamLibrary\steamapps\common\Guild Wars 2\Blish.HUD.1.0.0\Blish HUD.exe
Pfad des fehlerhaften Moduls: C:\WINDOWS\System32\KERNELBASE.dll
Berichtskennung: b6b5418d-598f-4a4a-ae32-e1ec30888305
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (02/03/2023 02:29:48 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: Blish HUD.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund einer unbehandelten Ausnahme beendet.
Ausnahmeinformationen: System.ObjectDisposedException
bei System.Threading.ReaderWriterLockSlim.TryEnterWriteLockCore(TimeoutTracker)
bei System.Threading.ReaderWriterLockSlim.TryEnterWriteLock(TimeoutTracker)
bei BhModule.Community.Pathing.SafeList`1[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]].Clear()
bei BhModule.Community.Pathing.Scripting.ScriptEngine.Unload()
bei BhModule.Community.Pathing.PathingModule.Unload()
bei Blish_HUD.Modules.Module.DoUnload()
bei Blish_HUD.Modules.Module.Dispose(Boolean)
bei Blish_HUD.Modules.Module.Finalize()
Error: (02/02/2023 11:49:46 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: ASUSAUDIOCENTER.EXE, Version: 0.3.0.68, Zeitstempel: 0x5281e5ee
Name des fehlerhaften Moduls: VmixP8.dll, Version: 1.0.0.21, Zeitstempel: 0x4fceb8e0
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00001aa6
ID des fehlerhaften Prozesses: 0x24c4
Startzeit der fehlerhaften Anwendung: 0x01d93758797dbee4
Pfad der fehlerhaften Anwendung: C:\Program Files\ASUS Xonar Essence STX Audio\Customapp\ASUSAUDIOCENTER.EXE
Pfad des fehlerhaften Moduls: C:\Program Files\ASUS Xonar Essence STX Audio\Customapp\VmixP8.dll
Berichtskennung: 4aa6ffce-31c5-490f-802f-b5368779505c
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (02/02/2023 01:00:46 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Blish HUD.exe, Version: 1.0.0.0, Zeitstempel: 0xbcec03b7
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 10.0.19041.2364, Zeitstempel: 0x5b7d4d22
Ausnahmecode: 0xe0434352
Fehleroffset: 0x000000000002cd29
ID des fehlerhaften Prozesses: 0x1814
Startzeit der fehlerhaften Anwendung: 0x01d936994e308d8b
Pfad der fehlerhaften Anwendung: E:\SteamLibrary\steamapps\common\Guild Wars 2\Blish.HUD.1.0.0\Blish HUD.exe
Pfad des fehlerhaften Moduls: C:\WINDOWS\System32\KERNELBASE.dll
Berichtskennung: d51f1727-372e-4e84-9b78-b954e3f5240d
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (02/02/2023 01:00:46 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: Blish HUD.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund einer unbehandelten Ausnahme beendet.
Ausnahmeinformationen: System.ObjectDisposedException
bei System.Threading.ReaderWriterLockSlim.TryEnterWriteLockCore(TimeoutTracker)
bei System.Threading.ReaderWriterLockSlim.TryEnterWriteLock(TimeoutTracker)
bei BhModule.Community.Pathing.SafeList`1[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]].Clear()
bei BhModule.Community.Pathing.Scripting.ScriptEngine.Unload()
bei BhModule.Community.Pathing.PathingModule.Unload()
bei Blish_HUD.Modules.Module.DoUnload()
bei Blish_HUD.Modules.Module.Dispose(Boolean)
bei Blish_HUD.Modules.Module.Finalize()
Error: (02/01/2023 01:28:15 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Blish HUD.exe, Version: 1.0.0.0, Zeitstempel: 0xbcec03b7
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 10.0.19041.2364, Zeitstempel: 0x5b7d4d22
Ausnahmecode: 0xe0434352
Fehleroffset: 0x000000000002cd29
ID des fehlerhaften Prozesses: 0x2458
Startzeit der fehlerhaften Anwendung: 0x01d935d406baabc2
Pfad der fehlerhaften Anwendung: E:\SteamLibrary\steamapps\common\Guild Wars 2\Blish.HUD.1.0.0\Blish HUD.exe
Pfad des fehlerhaften Moduls: C:\WINDOWS\System32\KERNELBASE.dll
Berichtskennung: 6e891b5a-dca0-40f5-8aa4-03529c9eac84
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (02/01/2023 01:28:15 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: Blish HUD.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund einer unbehandelten Ausnahme beendet.
Ausnahmeinformationen: System.ObjectDisposedException
bei System.Threading.ReaderWriterLockSlim.TryEnterWriteLockCore(TimeoutTracker)
bei System.Threading.ReaderWriterLockSlim.TryEnterWriteLock(TimeoutTracker)
bei BhModule.Community.Pathing.SafeList`1[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]].Clear()
bei BhModule.Community.Pathing.Scripting.ScriptEngine.Unload()
bei BhModule.Community.Pathing.PathingModule.Unload()
bei Blish_HUD.Modules.Module.DoUnload()
bei Blish_HUD.Modules.Module.Dispose(Boolean)
bei Blish_HUD.Modules.Module.Finalize()
Systemfehler:
=============
Error: (02/04/2023 08:58:14 PM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: Der Server "{784E29F4-5EBE-4279-9948-1E8FE941646D}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (02/04/2023 08:35:15 PM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: Der Server "{784E29F4-5EBE-4279-9948-1E8FE941646D}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (02/04/2023 05:22:38 AM) (Source: disk) (EventID: 7) (User: )
Description: Fehlerhafter Block bei Gerät \Device\Harddisk2\DR2.
Error: (02/04/2023 05:22:38 AM) (Source: disk) (EventID: 7) (User: )
Description: Fehlerhafter Block bei Gerät \Device\Harddisk2\DR2.
Error: (02/04/2023 05:22:38 AM) (Source: disk) (EventID: 7) (User: )
Description: Fehlerhafter Block bei Gerät \Device\Harddisk2\DR2.
Error: (02/04/2023 05:22:38 AM) (Source: disk) (EventID: 7) (User: )
Description: Fehlerhafter Block bei Gerät \Device\Harddisk2\DR2.
Error: (02/04/2023 05:22:38 AM) (Source: disk) (EventID: 7) (User: )
Description: Fehlerhafter Block bei Gerät \Device\Harddisk2\DR2.
Error: (02/04/2023 05:22:38 AM) (Source: disk) (EventID: 7) (User: )
Description: Fehlerhafter Block bei Gerät \Device\Harddisk2\DR2.
Windows Defender:
================
Date: 2023-02-04 20:42:47
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {6BD2C47D-8573-4391-8E80-71B9BA0241C7}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Date: 2023-02-04 05:26:20
Description:
Microsoft Defender Antivirus hat Schadsoftware oder andere potenziell unerwünschte Software erkannt.
Weitere Informationen:
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/Mailpassview&threatid=2147571412&enterprise=0
Name: HackTool:Win32/Mailpassview
Schweregrad: Hoch
Kategorie: Tool
Pfad: containerfile:_C:\Users\Alex\Documents\Programme\mailpv.zip.dat; file:_C:\Users\Alex\Documents\Programme\mailpv.zip.dat->mailpv.exe
Erkennungsursprung: Lokaler Computer
Erkennungstype: Konkret
Erkennungsquelle: Benutzer
Benutzer: Alex-PC-neu\Alex
Prozessname: Unknown
Sicherheitsversion: AV: 1.381.3095.0, AS: 1.381.3095.0, NIS: 1.381.3095.0
Modulversion: AM: 1.1.19900.2, NIS: 1.1.19900.2
Date: 2023-02-03 22:19:04
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {CB9517DF-CBBE-42D0-B53E-3CFB8D5AEA31}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Vollständige Überprüfung
Benutzer: Alex-PC-neu\Alex
Date: 2023-02-02 01:10:11
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {1D8A29A7-21B1-41B5-9940-9A80C34C58B6}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Date: 2023-01-27 16:56:48
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {07CE9D5C-A391-4A36-B421-E7172528B926}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
CodeIntegrity:
===============
Date: 2023-02-04 04:09:41
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2022-12-05 00:48:55
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2022-11-20 22:32:32
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Speicherinformationen ===========================
BIOS: American Megatrends Inc. P1.30 05/23/2014
Hauptplatine: ASRock Z97 Extreme4
Prozessor: Intel(R) Core(TM) i7-4790K CPU @ 4.00GHz
Prozentuale Nutzung des RAM: 43%
Installierter physikalischer RAM: 16332.06 MB
Verfügbarer physikalischer RAM: 9306.47 MB
Summe virtueller Speicher: 21196.06 MB
Verfügbarer virtueller Speicher: 9970.44 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:475.74 GB) (Free:65.27 GB) (Model: Crucial_CT512MX100SSD1) NTFS
Drive d: (Volume) (Fixed) (Total:977.96 GB) (Free:137.64 GB) (Model: Crucial_CT1050MX300SSD1) NTFS
Drive e: (Extension) (Fixed) (Total:931.51 GB) (Free:353.98 GB) (Model: WDC WDS100T2B0A-00SM50) NTFS
\\?\Volume{64b5724c-cf27-11e3-824f-806e6f6e6963}\ (System-reserviert) (Fixed) (Total:0.34 GB) (Free:0.09 GB) NTFS
\\?\Volume{5b16d48b-0000-0000-0000-400577000000}\ () (Fixed) (Total:0.86 GB) (Free:0.41 GB) NTFS
==================== MBR & Partitionstabelle ====================
==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 6105CC1B)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 476.9 GB) (Disk ID: 5B16D48B)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=475.7 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=877 MB) - (Type=27)
==========================================================
Disk: 2 (Protective MBR) (Size: 978.1 GB) (Disk ID: 00000000)
Partition: GPT.
==================== Ende von Addition.txt =======================
|
|
05.02.2023, 01:01
| #3 |
| /// Winkelfunktion /// TB-Süch-Tiger™   | Verdacht auf Malware: Youtube Channel Abo, Key Inputs Du hast da Malwarebytes installiert. Was wurde bereits gefunden? Wo sind die Logs dazu?
__________________
__________________ |
|
05.02.2023, 01:07
| #4 |
| | Verdacht auf Malware: Youtube Channel Abo, Key Inputs Hier die Log-Datei von Malewarebytes Code:
ATTFilter Malwarebytes
www.malwarebytes.com
-Protokolldetails-
Scan-Datum: 04.02.23
Scan-Zeit: 04:06
Protokolldatei: f2bd0f88-a438-11ed-b0be-005056c00001.json
-Softwaredaten-
Version: 4.5.21.231
Komponentenversion: 1.0.1890
Version des Aktualisierungspakets: 1.0.65277
Lizenz: Testversion
-Systemdaten-
Betriebssystem: Windows 10 (Build 19044.2486)
CPU: x64
Dateisystem: NTFS
Benutzer: System
-Scan-Übersicht-
Scan-Typ: Bedrohungs-Scan
Scan gestartet von: Zeitplaner
Ergebnis: Abgeschlossen
Gescannte Objekte: 350208
Erkannte Bedrohungen: 2
In die Quarantäne verschobene Bedrohungen: 2
Abgelaufene Zeit: 5 Min., 43 Sek.
-Scan-Optionen-
Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Aktiviert
Heuristik: Aktiviert
PUP: Erkennung
PUM: Erkennung
-Scan-Details-
Prozess: 0
(keine bösartigen Elemente erkannt)
Modul: 0
(keine bösartigen Elemente erkannt)
Registrierungsschlüssel: 0
(keine bösartigen Elemente erkannt)
Registrierungswert: 2
PUM.Optional.DisableMRT, HKLM\SOFTWARE\POLICIES\MICROSOFT\MRT|DONTREPORTINFECTIONINFORMATION, In Quarantäne, 6369, 676881, 1.0.65277, , ame, , ,
PUM.Optional.DisableMRT, HKLM\SOFTWARE\WOW6432NODE\POLICIES\MICROSOFT\MRT|DONTREPORTINFECTIONINFORMATION, In Quarantäne, 6369, 676881, 1.0.65277, , ame, , ,
Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)
Daten-Stream: 0
(keine bösartigen Elemente erkannt)
Ordner: 0
(keine bösartigen Elemente erkannt)
Datei: 0
(keine bösartigen Elemente erkannt)
Physischer Sektor: 0
(keine bösartigen Elemente erkannt)
WMI: 0
(keine bösartigen Elemente erkannt)
(end)
|
|
05.02.2023, 01:26
| #5 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Verdacht auf Malware: Youtube Channel Abo, Key Inputs Mehr wurde da nicht gefunden? Wir oft hast du schon mit MBAM gescannt?
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
05.02.2023, 01:48
| #6 |
| | Verdacht auf Malware: Youtube Channel Abo, Key Inputs Bisher 2x. Soll ich nochmal scannen? |
|
05.02.2023, 02:08
| #7 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Verdacht auf Malware: Youtube Channel Abo, Key Inputs Nee mir gehts darum, dass du alle Funde hier postest. adwCleaner Führe AdwCleaner gemäß der bebilderten Anleitung aus und poste abschließend die Logdatei in CODE-Tags. adwcleaner zwecks Kontrolle bitte wiederholen, falls es Funde gab.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
05.02.2023, 16:13
| #8 |
| | Verdacht auf Malware: Youtube Channel Abo, Key Inputs Alles klar, habe nur nachfragen wollen. Hier das ADW-Cleaner Log: Code:
ATTFilter # -------------------------------
# Malwarebytes AdwCleaner 8.4.0.0
# -------------------------------
# Build: 08-30-2022
# Database: 2022-10-10.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 02-05-2023
# Duration: 00:00:00
# OS: Windows 10 (Build 19044.2486)
# Cleaned: 4
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
No malicious registry entries cleaned.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
Deleted Preinstalled.HPTouchSmartMyDisplay Folder C:\Program Files (x86)\Common Files\PORTRAIT DISPLAYS\DRIVERS
Deleted Preinstalled.HPTouchSmartMyDisplay Registry HKLM\Software\Classes\CLSID\{8602BDD8-9780-4717-B89A-7F89AF75B2AB}
Deleted Preinstalled.HPTouchSmartMyDisplay Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved|{8602BDD8-9780-4717-B89A-7F89AF75B2AB}
Deleted Preinstalled.HPTouchSmartMyDisplay Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{0DEA342C-15CB-4F52-97B6-06A9C4B9C06F}
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1935 octets] - [05/02/2023 16:10:33]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
|
|
05.02.2023, 18:36
| #9 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Verdacht auf Malware: Youtube Channel Abo, Key Inputs Dann bitte jetzt neue FRST-Logs.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
05.02.2023, 18:43
| #10 |
| | Verdacht auf Malware: Youtube Channel Abo, Key Inputs Hier die neuen FRST-Logs: FRST.exe: FRST Logfile: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 03-02-2023
durchgeführt von Alex (Administrator) auf ALEX-PC-NEU (05-02-2023 18:38:59)
Gestartet von C:\Users\Alex\Downloads\Farbar_x86_x64
Geladene Profile: Alex
Plattform: Microsoft Windows 10 Pro Version 21H2 19044.2486 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: FF
Start-Modus: Normal
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Blish HUD) [Datei ist nicht signiert] E:\SteamLibrary\steamapps\common\Guild Wars 2\Blish.HUD.1.0.0\Blish HUD.exe
(C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\wpCtrl.exe ->) (Portrait Displays, Inc. -> ) C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\Floater.exe
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <8>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(C:\Program Files\SteelSeries\GG\apps\engine\SteelSeriesEngine.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\apps\engine\prism\SteelSeriesPrism.exe
(C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\apps\engine\SteelSeriesEngine.exe
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCopyAccelerator.exe
(CMedia) [Datei ist nicht signiert] C:\Program Files\ASUS Xonar Essence STX Audio\Customapp\AsusAudioCenter.exe
(explorer.exe ->) () [Datei ist nicht signiert] C:\Program Files (x86)\NetMeter\NetMeterEvo_200\NetMeterEvo.exe
(explorer.exe ->) (Logitech -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(explorer.exe ->) (Skutta, Kristjan -> ) C:\Program Files (x86)\Steam\SteamApps\common\wallpaper_engine\wallpaper32.exe
(explorer.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe
(explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(explorer.exe ->) (Vincent Burel -> VB-AUDIO Software) C:\Program Files (x86)\VB\Voicemeeter\voicemeeterpro.exe
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Portrait Displays, Inc. -> ) C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\wpCtrl.exe
(services.exe ->) () [Datei ist nicht signiert] C:\Program Files (x86)\DSDCS\InputMapper HidGuardian\InputMapperCerberusWhitelister.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Broadcom Corporation -> Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(services.exe ->) (Cisco Systems, Inc. -> Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
(services.exe ->) (devolo AG -> devolo AG) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
(services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(services.exe ->) (Foxit Software Incorporated -> Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitConnectedPDFService.exe
(services.exe ->) (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(services.exe ->) (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(services.exe ->) (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(services.exe ->) (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\NisSrv.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d1bd230cd08e7436\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Portrait Displays, Inc. -> Portrait Displays, Inc.) C:\Program Files (x86)\Common Files\Portrait Displays\Shared\DTSRVC.exe
(services.exe ->) (TechSmith Corporation) [Datei ist nicht signiert] C:\Program Files (x86)\Common Files\TechSmith Shared\Uploader\UploaderService.exe
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(services.exe ->) (VMware, Inc. -> VMware, Inc.) C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe
(services.exe ->) (VMware, Inc. -> VMware, Inc.) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
(services.exe ->) (VMware, Inc. -> VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe
(services.exe ->) (VMware, Inc. -> VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21314.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21314.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22112.142.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
==================== Registry (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2014-05-28] (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [10801944 2014-07-28] (Logitech -> Logitech Inc.)
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-10-01] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [Cmaudio8788] => C:\Windows\Syswow64\cmicnfgp.dll [12943360 2013-10-17] (C-Media Corporation) [Datei ist nicht signiert]
HKLM\...\Run: [Cmaudio8788GX] => C:\Windows\syswow64\HsMgr.exe [200704 2008-07-11] () [Datei ist nicht signiert]
HKLM\...\Run: [Cmaudio8788GX64] => C:\Windows\system\HsMgr64.exe [282112 2008-07-11] () [Datei ist nicht signiert]
HKLM\...\Run: [SteelSeriesGG] => C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe [12903296 2023-01-30] (SteelSeries ApS -> SteelSeries ApS)
HKLM\...\Run: [KeePass 2 PreLoad] => C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [3190384 2021-09-10] (Open Source Developer, Dominik Reichl -> Dominik Reichl)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3941528 2016-05-14] (Logitech Inc -> Logitech, Inc.)
HKLM-x32\...\Run: [PivotSoftware] => C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\Pivot_startup.exe [112424 2013-06-18] (Portrait Displays, Inc. -> )
HKLM-x32\...\Run: [DT BEN] => C:\Program Files (x86)\Common Files\Portrait Displays\Shared\DT_startup.exe [122384 2013-11-12] (Portrait Displays, Inc. -> Portrait Displays, Inc.)
HKLM-x32\...\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] => C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe [1027472 2015-12-23] (Cisco Systems, Inc. -> Cisco Systems, Inc.)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [235624 2015-01-09] (Canon Inc. -> CANON INC.)
HKLM-x32\...\Run: [PDFPrint] => C:\Program Files (x86)\PDF24\pdf24.exe [210432 2016-07-05] (Geek Software GmbH -> Geek Software GmbH)
HKLM-x32\...\Run: [RoccatKoneXTDOptical] => C:\Program Files (x86)\ROCCAT\Kone XTD Optical Mouse\KoneXTDOpticalMonitor.EXE [552960 2014-04-14] (ROCCAT GmbH) [Datei ist nicht signiert]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [710264 2020-06-18] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Beschränkung <==== ACHTUNG
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Beschränkung <==== ACHTUNG
HKU\S-1-5-21-151591732-769639063-1674776794-1001\...\Run: [NetMeter Evo] => C:\Program Files (x86)\NetMeter\NetMeterEvo_200\NetMeterEvo.exe [1192448 2013-08-12] () [Datei ist nicht signiert]
HKU\S-1-5-21-151591732-769639063-1674776794-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9105112 2016-11-15] (Piriform Ltd -> Piriform Ltd)
HKU\S-1-5-21-151591732-769639063-1674776794-1001\...\Run: [WallpaperEngine] => C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe [2982608 2022-07-03] (Skutta, Kristjan -> )
HKU\S-1-5-21-151591732-769639063-1674776794-1001\...\MountPoints2: {4df76bf4-3582-11eb-841c-d050996a1572} - "F:\HiSuiteDownLoader.exe"
HKLM\...\Windows x64\Print Processors\Canon MG5700 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDCS.DLL [30208 2015-03-15] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows x64\Print Processors\Epson Inkjet: C:\Windows\System32\spool\prtprocs\x64\EP0NPP01.DLL [38912 2011-08-30] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG5700 series: C:\Windows\system32\CNMLMCS.DLL [406528 2015-03-15] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJNP Port: C:\Windows\system32\CNMN6PPM.DLL [375296 2015-03-17] (CANON INC.) [Datei ist nicht signiert]
HKLM\...\Print\Monitors\Epson Inbox Language Monitor01: C:\Windows\system32\EP0SLM01.DLL [77824 2011-08-30] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\109.0.5414.120\Installer\chrmstp.exe [2023-01-27] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{50968FF7-10C1-4fb3-98B0-CD654D6CB97E}] -> C:\Program Files\WIDCOMM\Bluetooth Software\\BtwCP.dll (Broadcom Corporation -> Broadcom Corporation.)
AppInit_DLLs: C:\PROGRA~2\GeDoSaTo\shim64.dll => Keine Datei
Startup: C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Voicemeeter Banana.LNK [2018-11-05]
ShortcutTarget: Voicemeeter Banana.LNK -> C:\Program Files (x86)\VB\Voicemeeter\voicemeeterpro.exe (Vincent Burel -> VB-AUDIO Software)
GroupPolicy: Beschränkung ? <==== ACHTUNG
Policies: C:\ProgramData\NTUSER.pol: Beschränkung <==== ACHTUNG
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {023D4647-710B-4976-931E-EE67AB34FF7C} - System32\Tasks\TechSmith Updater => C:\Program Files (x86)\Common Files\TechSmith Shared\Updater\TSCUpdClt.exe [56640 2015-08-11] (TechSmith Corporation -> TechSmith Corporation)
Task: {042FEABE-DDC2-4552-B329-1E9C04D8FFE7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {06D711A9-532B-4DDA-8277-7A015F8905FB} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {16FC02B1-02E0-428A-8C14-9FB7AB49615F} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26334160 2023-02-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {26DFC637-BB7F-4F0B-9882-7CBB036D99D0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {314F5E99-9FD3-4B2B-9355-7751BC15BAC2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {338FBDE6-FF32-4E94-A4BF-4C24CE023815} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1552376 2022-09-26] (Adobe Inc. -> Adobe Inc.)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe join (Keine Datei)
Task: {3B490F52-F286-4942-8A02-9367512D6C2E} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe (Keine Datei)
Task: {4005817E-DC6B-4EEC-B697-E4C5E3CA5047} - System32\Tasks\{15F7F456-B141-4BB9-BC75-2E1C10DDD97E} => C:\Windows\system32\pcalua.exe -a "C:\ProgramData\Battle.net\Agent\Blizzard Uninstaller.exe" -c --lang=deDE --uid=s2_dede --displayname="StarCraft II"
Task: {501B5BF4-3020-426B-AEF4-D47CE8505838} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-17] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {5055E507-7CB8-45CC-B4A4-19ED71F42CFF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-03-31] (Google Inc -> Google Inc.)
Task: {51C93926-BDA6-42B8-965C-858C4A13271D} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [710560 2023-02-04] (Mozilla Corporation -> Mozilla Foundation)
Task: {5438F2DF-9317-482B-AA5C-5946F7F3BBA8} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {60B68EBC-AD96-4744-9694-7EFD9D6F11AC} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [114616 2023-02-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {677E153F-02B7-4106-9D28-7FC269717AF5} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA}
Task: {6807B9C7-4226-4E8B-BF4E-63CA1C420C73} - System32\Tasks\{90152AE9-2C3E-4CF9-BA2D-EAF6EF169F36} => C:\WINDOWS\system32\pcalua.exe -a F:\START.EXE -d F:\
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {749DCAB4-E9DA-4CAB-B8D5-870F66CD1608} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [7045848 2016-11-15] (Piriform Ltd -> Piriform Ltd)
Task: {7A20C760-BDE9-4CCE-8AF9-139340FB5215} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {81A62E0D-1F69-4E32-821B-E664A98361CB} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [715744 2023-02-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {907D0D67-8378-49A9-BB88-C462D5F3AD9A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-03-31] (Google Inc -> Google Inc.)
Task: {9EFC3276-805E-4BD2-BCC5-FFF8B3B4C1D0} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2637656 2023-01-24] (Overwolf Ltd -> Overwolf LTD)
Task: {9F97C914-31F3-4B46-9198-40D744DDB847} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {A54B212C-5735-48EB-B7B4-955DD24DF1BB} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel(R) Update Manager -> Intel Corporation)
Task: {AFBAD4DC-4581-486D-A87D-6FCD84493237} - \Microsoft\Windows\UNP\RunCampaignManager -> Keine Datei <==== ACHTUNG
Task: {BC4EED84-8A7D-4995-B347-9CF4CE6DC0F5} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649256 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {C7709AB3-9AB1-44B1-809C-72AC3B0062C9} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel(R) Update Manager -> Intel Corporation)
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {D1687917-6A0C-460D-A1B3-29E4682ACCBA} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {D76831BC-41F1-4147-B6F1-0EF11670AA6F} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {D9E13097-0974-4C5C-8FA0-9547CFF94DDC} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26334160 2023-02-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {E36F8826-0202-4F8A-922C-C090A099AB7F} - System32\Tasks\ExclusiveTool => C:\Program Files (x86)\DSDCS\InputMapper\ExclusiveModeTool.exe [19968 2016-10-04] (InputMapper) [Datei ist nicht signiert]
Task: {EC0B3A34-F27A-4C47-96D3-6CECBC455DAC} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe /NOUACCHECK
Task: {F1DA908B-7912-4DF3-90A0-DAB05B6B6742} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {F558BB01-5989-49DB-85E4-DEB8D63D4149} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [114616 2023-02-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {F63D33D6-BAC0-4F74-8BEE-B5A8DD1E8434} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{aaf4c738-df63-4f39-b3bc-ca88103bcf6a}: [DhcpNameServer] 192.168.0.1
Edge:
=======
Edge Profile: C:\Users\Alex\AppData\Local\Microsoft\Edge\User Data\Default [2021-11-27]
FireFox:
========
FF DefaultProfile: 2me8rye7.default-1598034875909
FF ProfilePath: C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\2me8rye7.default-1598034875909 [2023-02-05]
FF Notifications: Mozilla\Firefox\Profiles\2me8rye7.default-1598034875909 -> hxxps://web.whatsapp.com
FF Extension: (BetterTTV) - C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\2me8rye7.default-1598034875909\Extensions\firefox@betterttv.net.xpi [2023-01-30]
FF Extension: (Privacy Badger) - C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\2me8rye7.default-1598034875909\Extensions\jid1-MnnxcxisBPnSXQ@jetpack.xpi [2023-02-03]
FF Extension: (Tree Style Tab) - C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\2me8rye7.default-1598034875909\Extensions\treestyletab@piro.sakura.ne.jp.xpi [2023-01-23]
FF Extension: (uBlock Origin) - C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\2me8rye7.default-1598034875909\Extensions\uBlock0@raymondhill.net.xpi [2022-12-25]
FF Extension: (7TV) - C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\2me8rye7.default-1598034875909\Extensions\{7ef0f00c-2ebe-4626-8ed7-3185847fcfad}.xpi [2022-08-20]
FF Extension: (Adblock Plus - kostenloser Adblocker) - C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\2me8rye7.default-1598034875909\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2022-12-05]
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt => nicht gefunden
FF HKLM-x32\...\Firefox\Extensions: [{8AA36F4F-6DC7-4c06-77AF-5035170634FE}] - C:\ProgramData\Swiss Academic Software\Citavi Picker\Firefox
FF Extension: (Citavi Picker) - C:\ProgramData\Swiss Academic Software\Citavi Picker\Firefox [2015-03-25] [] [ist nicht signiert]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-03-20] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-03-20] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.261.2 -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\dtplugin\npDeployJava1.dll [2020-07-22] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.261.2 -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\plugin2\npjp2.dll [2020-07-22] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-11-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-11-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2023-01-21] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-151591732-769639063-1674776794-1001: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2020-04-20] (Ubisoft Entertainment Sweden AB -> )
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default [2023-02-05]
CHR StartupUrls: Default -> "hxxps://play.spotify.com/browse"
CHR Extension: (Google Docs Offline) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-02-05]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-11]
==================== Dienste (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2022-09-26] (Adobe Inc. -> Adobe Inc.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [9712432 2022-12-19] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12553648 2023-02-02] (Microsoft Corporation -> Microsoft Corporation)
R2 DevoloNetworkService; C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe [3755976 2015-07-01] (devolo AG -> devolo AG)
R2 DTSRVC; C:\Program Files (x86)\Common Files\Portrait Displays\Shared\dtsrvc.exe [138768 2013-11-12] (Portrait Displays, Inc. -> Portrait Displays, Inc.)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [811496 2022-04-17] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [584680 2022-03-26] (EasyAntiCheat Oy -> Epic Games, Inc.)
R2 FoxitReaderService; C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitConnectedPDFService.exe [1659592 2016-10-13] (Foxit Software Incorporated -> Foxit Software Inc.)
R2 InputMapper Cerberus Whitelister; C:\Program Files (x86)\DSDCS\InputMapper HidGuardian\InputMapperCerberusWhitelister.exe [14848 2017-04-21] () [Datei ist nicht signiert]
S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel(R) Update Manager -> Intel Corporation)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [8966256 2023-02-04] (Malwarebytes Inc. -> Malwarebytes)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2579264 2023-02-02] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3497800 2023-02-02] (Electronic Arts, Inc. -> Electronic Arts)
S3 OverwolfUpdater; C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2637656 2023-01-24] (Overwolf Ltd -> Overwolf LTD)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [224184 2022-12-19] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 SteelSeriesUpdateService; C:\Program Files\SteelSeries\GG\SteelSeriesUpdateService.exe [35200 2023-01-30] (SteelSeries ApS -> )
S3 Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [119808 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
R2 TechSmith Uploader Service; C:\Program Files (x86)\Common Files\TechSmith Shared\Uploader\UploaderService.exe [3408384 2015-01-26] (TechSmith Corporation) [Datei ist nicht signiert]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\NisSrv.exe [3191264 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe [133592 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d1bd230cd08e7436\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d1bd230cd08e7436\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
S2 PdiService; C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe [X]
===================== Treiber (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R1 AsrAppCharger; C:\WINDOWS\system32\DRIVERS\AsrAppCharger.sys [17192 2011-11-07] (ASROCK Incorporation -> Windows (R) Win 7 DDK provider)
R3 cmudaxp; C:\WINDOWS\system32\drivers\cmudaxp.sys [2735616 2013-12-11] (C-MEDIA ELECTRONICS INC. -> C-Media Inc)
S3 dc3d; C:\WINDOWS\System32\drivers\dc3d.sys [47616 2011-05-18] (Hardware Group Test Cert -> Microsoft Corporation)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 HidGuardian; C:\WINDOWS\System32\drivers\HidGuardian.sys [26736 2017-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Benjamin Höglinger-Stelzer)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2023-02-04] (Microsoft Windows Early Launch Anti-Malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2023-02-04] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MpKsle42cc112; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{9695558E-41FB-40E1-AC8D-D91FF5355326}\MpKslDrv.sys [214280 2023-02-05] (Microsoft Windows -> Microsoft Corporation)
R2 NPF_devolo; C:\WINDOWS\sysWOW64\drivers\npf_devolo.sys [34048 2015-07-01] (devolo AG -> CACE Technologies)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
R3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-05] (Bruce James -> Scarlet.Crush Productions)
R2 speedfan; C:\WINDOWS\SysWoW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
R3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [48848 2020-09-25] (SteelSeries ApS -> SteelSeries ApS)
R3 sshid; C:\WINDOWS\system32\DRIVERS\sshid.sys [43960 2022-08-18] (Microsoft Windows Hardware Compatibility Publisher -> SteelSeries ApS)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ssudserd; C:\WINDOWS\system32\DRIVERS\ssudserd.sys [206080 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [50720 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 SteelSeries_Sonar_VAD; C:\WINDOWS\System32\DriverStore\FileRepository\steelseries-sonar-vad.inf_amd64_6979b8a94c20d77f\SteelSeries-Sonar-VAD.sys [93872 2023-01-10] (SteelSeries ApS -> Windows (R) Win 7 DDK provider)
R1 UimBus; C:\WINDOWS\System32\drivers\UimBus.sys [102576 2015-08-26] (Paragon Software GmbH -> )
R1 Uim_DEVIM; C:\WINDOWS\System32\drivers\uim_devim.sys [25904 2015-08-26] (Paragon Software GmbH -> )
R1 Uim_IM; C:\WINDOWS\System32\drivers\uim_im.sys [701232 2015-08-26] (Paragon Software GmbH -> )
R3 VBAudioVACMME; C:\WINDOWS\System32\drivers\vbaudio_cable64_win7.sys [41192 2016-03-16] (Vincent Burel -> Windows (R) Win 7 DDK provider)
R3 VBAudioVMAUXVAIOMME; C:\WINDOWS\System32\drivers\vbaudio_vmauxvaio64_win7.sys [41192 2018-11-05] (Vincent Burel -> Windows (R) Win 7 DDK provider)
R3 VBAudioVMVAIOMME; C:\WINDOWS\System32\drivers\vbaudio_vmvaio64_win7.sys [41192 2017-03-04] (Vincent Burel -> Windows (R) Win 7 DDK provider)
R1 vmkbd3; C:\WINDOWS\system32\DRIVERS\vmkbd.sys [52288 2020-03-07] (VMware, Inc. -> VMware, Inc.)
R2 VMnetBridge; C:\WINDOWS\system32\DRIVERS\vmnetbridge.sys [66368 2020-06-04] (VMware, Inc. -> VMware, Inc.)
S3 vpnva; C:\WINDOWS\System32\drivers\vpnva64-6.sys [52592 2014-10-16] (Cisco Systems, Inc. -> Cisco Systems, Inc.)
R0 vsock; C:\WINDOWS\System32\DRIVERS\vsock.sys [103224 2019-08-14] (VMware, Inc. -> VMware, Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49568 2022-12-09] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [473376 2022-12-09] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99616 2022-12-09] (Microsoft Windows -> Microsoft Corporation)
R2 WinI2C-DDC; C:\Windows\system32\drivers\DDCDrv.sys [20832 2014-11-05] (PC Micro Systems Inc. -> Nicomsoft Ltd.)
S3 XBCD; C:\WINDOWS\System32\drivers\XBCD.sys [25728 2009-11-12] (NGO -> XBCD Project) [Datei ist nicht signiert]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat (erstellte) (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2023-02-05 16:09 - 2023-02-05 16:11 - 000000000 ____D C:\AdwCleaner
2023-02-05 16:09 - 2023-02-05 16:09 - 008791352 _____ (Malwarebytes) C:\Users\Alex\Downloads\adwcleaner.exe
2023-02-05 02:09 - 2023-02-05 02:09 - 000001419 _____ C:\Users\Alex\Desktop\Malwarebytes2.txt
2023-02-05 01:06 - 2023-02-05 01:06 - 000001682 _____ C:\Users\Alex\Desktop\Malwarebytes.txt
2023-02-05 00:41 - 2023-02-05 18:39 - 000000000 ____D C:\FRST
2023-02-05 00:41 - 2023-02-05 00:45 - 000000000 ____D C:\Users\Alex\Downloads\Farbar_x86_x64
2023-02-05 00:41 - 2023-02-05 00:41 - 003481013 _____ C:\Users\Alex\Downloads\Farbar_x86_x64.zip
2023-02-05 00:32 - 2023-02-05 00:32 - 000002274 _____ C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Firefox Private Browsing.lnk
2023-02-05 00:32 - 2023-02-05 00:32 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2023-02-04 22:46 - 2023-02-05 16:16 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2023-02-04 21:01 - 2023-02-04 21:02 - 000000000 ____D C:\Users\Alex\Desktop\Neuer Ordner (2)
2023-02-04 03:58 - 2023-02-05 02:04 - 000000000 ____D C:\Users\Alex\AppData\LocalLow\IGDump
2023-02-04 03:52 - 2023-02-04 03:52 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2023-02-04 03:52 - 2023-02-04 03:52 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2023-02-04 03:52 - 2023-02-04 03:52 - 000000000 ____D C:\Users\Alex\AppData\Local\mbam
2023-01-29 01:30 - 2023-01-29 01:30 - 000000000 ____D C:\Users\Alex\AppData\Roaming\NVIDIA
2023-01-28 03:13 - 2023-01-28 03:13 - 000000000 ____D C:\WINDOWS\system32\lxss
2023-01-28 03:13 - 2023-01-28 03:13 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2023-01-28 03:11 - 2022-08-23 23:22 - 000139248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2023-01-28 03:10 - 2023-01-18 06:53 - 002236992 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2023-01-28 03:10 - 2023-01-18 06:53 - 002236992 _____ C:\WINDOWS\system32\vulkaninfo.exe
2023-01-28 03:10 - 2023-01-18 06:53 - 001642560 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2023-01-28 03:10 - 2023-01-18 06:53 - 001642560 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2023-01-28 03:10 - 2023-01-18 06:53 - 001487376 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2023-01-28 03:10 - 2023-01-18 06:53 - 001444416 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2023-01-28 03:10 - 2023-01-18 06:53 - 001444416 _____ C:\WINDOWS\system32\vulkan-1.dll
2023-01-28 03:10 - 2023-01-18 06:53 - 001226776 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2023-01-28 03:10 - 2023-01-18 06:53 - 001168952 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2023-01-28 03:10 - 2023-01-18 06:53 - 001168952 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2023-01-28 03:10 - 2023-01-18 06:49 - 000865256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2023-01-28 03:10 - 2023-01-18 06:49 - 000672296 _____ C:\WINDOWS\system32\nvofapi64.dll
2023-01-28 03:10 - 2023-01-18 06:49 - 000506856 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2023-01-28 03:10 - 2023-01-18 06:48 - 002163736 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2023-01-28 03:10 - 2023-01-18 06:48 - 001619968 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2023-01-28 03:10 - 2023-01-18 06:48 - 001532432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2023-01-28 03:10 - 2023-01-18 06:48 - 001192968 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2023-01-28 03:10 - 2023-01-18 06:48 - 000949736 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2023-01-28 03:10 - 2023-01-18 06:48 - 000743976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2023-01-28 03:10 - 2023-01-18 06:48 - 000734232 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2023-01-28 03:10 - 2023-01-18 06:47 - 012453352 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2023-01-28 03:10 - 2023-01-18 06:47 - 010220536 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2023-01-28 03:10 - 2023-01-18 06:47 - 005890552 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2023-01-28 03:10 - 2023-01-18 06:47 - 005865976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll
2023-01-28 03:10 - 2023-01-18 06:47 - 003334664 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2023-01-28 03:10 - 2023-01-18 06:47 - 000457712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2023-01-28 03:10 - 2023-01-18 06:46 - 005818872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2023-01-28 03:10 - 2023-01-18 06:46 - 000853016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2023-01-28 03:10 - 2023-01-18 06:44 - 007648024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2023-01-28 03:10 - 2023-01-18 06:44 - 006517008 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2023-01-28 03:10 - 2023-01-15 23:41 - 000101010 _____ C:\WINDOWS\system32\nvinfo.pb
2023-01-26 23:11 - 2023-01-26 23:11 - 000001706 _____ C:\Users\Alex\Desktop\Blish HUD.lnk
2023-01-25 19:18 - 2023-01-25 19:18 - 000000000 ___HD C:\$WinREAgent
2023-01-25 12:30 - 2023-01-25 12:31 - 352362873 _____ C:\Users\Alex\Downloads\master-piece-1-720p-v1x.mp4
2023-01-25 12:07 - 2023-01-25 12:07 - 329783619 _____ C:\Users\Alex\Downloads\master-piece-2-720p-v1x.mp4
2023-01-24 20:57 - 2023-01-24 20:57 - 000000000 ____D C:\Users\Alex\Downloads\Blish.HUD.1.0.0
2023-01-24 20:57 - 2023-01-24 20:57 - 000000000 ____D C:\ProgramData\Blish HUD
2023-01-24 20:56 - 2023-01-24 20:56 - 015192302 _____ C:\Users\Alex\Downloads\Blish.HUD.1.0.0.zip
==================== Ein Monat (geänderte) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2023-02-05 18:38 - 2020-06-07 23:03 - 000000000 ____D C:\Users\Alex\AppData\Roaming\discord
2023-02-05 18:38 - 2016-11-17 12:37 - 000000000 ____D C:\Users\Alex\AppData\LocalLow\Mozilla
2023-02-05 18:38 - 2014-08-15 17:49 - 000000000 ____D C:\Users\Alex\AppData\Roaming\TS3Client
2023-02-05 18:38 - 2014-08-15 16:46 - 000000000 ____D C:\Program Files (x86)\Steam
2023-02-05 18:22 - 2020-06-07 23:03 - 000000000 ____D C:\Users\Alex\AppData\Local\Discord
2023-02-05 18:21 - 2020-10-26 01:13 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-02-05 17:41 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-02-05 17:41 - 2016-03-31 00:37 - 000000000 ____D C:\Program Files (x86)\Google
2023-02-05 17:08 - 2022-03-13 22:27 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-02-05 16:22 - 2020-10-26 01:22 - 001727150 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-02-05 16:22 - 2019-12-07 15:51 - 000743714 _____ C:\WINDOWS\system32\perfh007.dat
2023-02-05 16:22 - 2019-12-07 15:51 - 000150136 _____ C:\WINDOWS\system32\perfc007.dat
2023-02-05 16:22 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2023-02-05 16:17 - 2017-08-23 22:28 - 000000000 ____D C:\ProgramData\NVIDIA
2023-02-05 16:17 - 2014-08-15 17:12 - 000000000 ___RD C:\Users\Alex\OneDrive
2023-02-05 16:16 - 2020-10-26 01:20 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-02-05 16:16 - 2020-10-26 01:13 - 000008192 ___SH C:\DumpStack.log.tmp
2023-02-05 16:16 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2023-02-05 16:16 - 2018-11-06 00:44 - 000034189 _____ C:\Users\Alex\AppData\Roaming\VoiceMeeterBananaDefault.xml
2023-02-05 16:16 - 2014-10-14 22:32 - 000000000 ____D C:\ProgramData\VMware
2023-02-05 16:16 - 2014-04-29 00:39 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-02-05 00:33 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-02-05 00:33 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-02-05 00:32 - 2014-04-29 00:39 - 000001228 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-02-04 22:52 - 2016-07-28 16:14 - 000000000 ____D C:\Users\Alex\Documents\Programme
2023-02-04 21:05 - 2014-08-28 15:41 - 000000000 ____D C:\Users\Alex\AppData\Roaming\vlc
2023-02-04 03:52 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-02-04 03:50 - 2018-01-25 21:12 - 000158640 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2023-02-04 03:50 - 2018-01-25 21:12 - 000000000 ____D C:\Program Files\Malwarebytes
2023-02-04 03:50 - 2016-01-06 15:10 - 000000000 ____D C:\ProgramData\Malwarebytes
2023-02-03 18:21 - 2020-03-01 18:47 - 000000000 ____D C:\Users\Alex\AppData\Roaming\KeePass
2023-02-03 18:00 - 2018-11-24 16:54 - 000000000 ____D C:\Program Files (x86)\Origin
2023-02-03 18:00 - 2018-11-24 16:53 - 000000000 ____D C:\ProgramData\Origin
2023-02-03 14:29 - 2015-12-29 20:35 - 000000000 ____D C:\Users\Alex\AppData\Local\CrashDumps
2023-02-02 23:52 - 2022-12-09 23:07 - 000000000 ____D C:\Users\Alex\AppData\Roaming\steelseries-gg-client
2023-02-02 23:52 - 2018-06-18 17:46 - 000000000 ____D C:\Users\Alex\AppData\Local\D3DSCache
2023-02-02 23:49 - 2021-05-16 16:50 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-02-02 01:23 - 2020-10-26 01:14 - 000000000 ____D C:\Users\Alex
2023-02-02 01:10 - 2014-09-03 14:15 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2023-01-30 22:10 - 2015-01-12 22:09 - 000000000 ____D C:\Program Files (x86)\Overwolf
2023-01-30 17:54 - 2021-12-11 23:10 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-151591732-769639063-1674776794-1001
2023-01-30 17:54 - 2020-10-26 01:20 - 000003366 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-151591732-769639063-1674776794-1001
2023-01-30 17:54 - 2020-10-26 01:14 - 000002433 _____ C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-01-29 01:31 - 2020-09-30 17:27 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2023-01-28 03:13 - 2017-08-23 22:28 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2023-01-28 03:11 - 2014-04-29 00:53 - 000000000 ____D C:\Users\Alex\AppData\Local\NVIDIA
2023-01-27 01:41 - 2016-03-31 00:37 - 000002293 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-01-26 20:42 - 2022-11-11 21:00 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader.lnk
2023-01-26 00:03 - 2020-10-26 01:13 - 000443072 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-01-26 00:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-01-26 00:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-01-26 00:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-01-26 00:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-01-25 19:25 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-01-25 19:24 - 2020-10-26 01:14 - 003014656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-01-25 19:18 - 2014-09-03 14:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2023-01-25 19:17 - 2014-04-29 00:45 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-01-25 19:10 - 2014-04-29 00:45 - 150199536 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-01-24 21:41 - 2014-11-01 13:06 - 000000000 ____D C:\Users\Alex\AppData\Local\ElevatedDiagnostics
2023-01-24 20:57 - 2022-12-20 21:40 - 000000000 ____D C:\Users\Alex\Documents\Guild Wars 2
2023-01-24 18:44 - 2020-06-21 20:02 - 000000000 ____D C:\ProgramData\SteelSeries
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========
2015-06-29 14:32 - 2017-06-17 22:29 - 000000302 _____ () C:\Users\Alex\AppData\Roaming\BreakingPoint_Login.ini
2015-06-29 15:40 - 2017-06-18 00:30 - 000001431 _____ () C:\Users\Alex\AppData\Roaming\BreakingPoint_Options.ini
2018-05-31 21:14 - 2018-05-31 21:14 - 000038480 _____ () C:\Users\Alex\AppData\Roaming\Durch Trennzeichen getrennte Werte.ADR
2014-09-03 15:27 - 2014-09-03 15:27 - 000012102 _____ () C:\Users\Alex\AppData\Roaming\Durch Trennzeichen getrennte Werte.CAL
2018-11-06 00:44 - 2023-02-05 16:16 - 000034189 _____ () C:\Users\Alex\AppData\Roaming\VoiceMeeterBananaDefault.xml
2017-03-05 00:01 - 2018-11-05 22:12 - 000004655 _____ () C:\Users\Alex\AppData\Roaming\VoiceMeeterDefault.xml
2022-01-08 22:57 - 2022-01-08 22:57 - 000001559 _____ () C:\Users\Alex\AppData\Local\recently-used.xbel
2015-01-26 14:47 - 2020-12-29 19:38 - 000007600 _____ () C:\Users\Alex\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
==================== Ende von FRST.txt ========================
|
|
05.02.2023, 18:43
| #11 |
| | Verdacht auf Malware: Youtube Channel Abo, Key Inputs Addition.txt: Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 03-02-2023
durchgeführt von Alex (05-02-2023 18:40:39)
Gestartet von C:\Users\Alex\Downloads\Farbar_x86_x64
Microsoft Windows 10 Pro Version 21H2 19044.2486 (X64) (2020-10-26 00:20:17)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
Administrator (S-1-5-21-151591732-769639063-1674776794-500 - Administrator - Disabled)
Alex (S-1-5-21-151591732-769639063-1674776794-1001 - Administrator - Enabled) => C:\Users\Alex
ASPNET (S-1-5-21-151591732-769639063-1674776794-1004 - Limited - Enabled)
DefaultAccount (S-1-5-21-151591732-769639063-1674776794-503 - Limited - Disabled)
Gast (S-1-5-21-151591732-769639063-1674776794-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-151591732-769639063-1674776794-504 - Limited - Disabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
A3Launcher version 0.1.3.4 (HKLM-x32\...\{1E29A86E-9AE2-4CD8-74C8-6B170ED3C4D2}_is1) (Version: 0.1.3.4 - Maca134)
ActivePerl 5.26.1 Build 2601 (64-bit) (HKLM\...\{F25E2736-A81F-435C-8CD5-ED71AD63A2FD}) (Version: 5.26.2601 - ActiveState)
Adobe Acrobat Reader - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 22.003.20314 - Adobe Systems Incorporated)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601032}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
AlienFX for KoneXTD (HKLM\...\{48725548-E470-4816-99DD-6667EABAB982}) (Version: 1.02 - Roccat GmbH) Hidden
AlienFX for KoneXTD (HKLM-x32\...\InstallShield_{48725548-E470-4816-99DD-6667EABAB982}) (Version: 1.02 - Roccat GmbH)
Ant Renamer (HKLM-x32\...\Ant Renamer 2_is1) (Version: 2.12.0 - Ant Software)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.15.0 - Asmedia Technology)
Asmedia ASM106x SATA Host Controller Driver (HKLM-x32\...\{61942EF5-2CD8-47D4-869C-2E9A8BB085F1}) (Version: 2.0.8.0000 - Asmedia Technology)
ASRock App Charger v1.0.6 (HKLM\...\ASRock App Charger_is1) (Version: 1.0.6 - ASRock Inc.)
ASUS Xonar Essence STX Audio (HKLM-x32\...\{71B53BA8-4BE3-49AF-BC3E-07F392008788}) (Version: - ASUSTeK Computer Inc.)
Audacity 2.3.0 (HKLM-x32\...\Audacity_is1) (Version: 2.3.0 - Audacity Team)
AutoHotkey 1.1.22.09 (HKLM-x32\...\AutoHotkey) (Version: 1.1.22.09 - Lexikos)
Battlefield™ 2042 (HKLM-x32\...\{45e281f3-1414-47ea-bb64-4f50d50121f3}) (Version: 1.0.71.11079 - Electronic Arts)
Battlestate Games Launcher 12.12.2.1944 (HKLM-x32\...\{B0FDA062-7581-4D67-B085-C4E7C358037F}_is1) (Version: 12.12.2.1944 - Battlestate Games)
BattlEye for OA Uninstall (HKLM-x32\...\BattlEye for OA) (Version: - )
BattlEye Uninstall (HKLM-x32\...\BattlEye for A2) (Version: - )
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: 1.5.4.4 - Canon Inc.)
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.7.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.1.20.13 - Canon Inc.)
Canon MG5700 series Benutzerregistrierung (HKLM-x32\...\Canon MG5700 series Benutzerregistrierung) (Version: - *Canon Inc.)
Canon MG5700 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5700_series) (Version: 1.00 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.3.0 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.24 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.7.6389 - CDBurnerXP)
Cisco AnyConnect Secure Mobility Client (HKLM-x32\...\Cisco AnyConnect Secure Mobility Client) (Version: 4.2.01035 - Cisco Systems, Inc.)
Cisco AnyConnect Secure Mobility Client (HKLM-x32\...\{010B7227-89DC-4AFE-ACA2-8D067C833441}) (Version: 4.2.01035 - Cisco Systems, Inc.) Hidden
Citavi 4 (HKLM-x32\...\{CC0A85B2-734A-45B3-B678-05F6A6499AC7}) (Version: 4.5.0.11 - Swiss Academic Software)
CnCNet5 Yuri's Revenge (HKLM-x32\...\{D22A250A-085F-415E-959E-8DB49F4E4CCA}_is1) (Version: 1.0 - cncnet.org)
Command & Conquer™ Red Alert 2 and Yuri’s Revenge (HKLM-x32\...\{F5275D1C-D133-486D-8F07-D6C571F0A8EC}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
Command & Conquer™ Red Alert™ 3 and Uprising (HKLM-x32\...\{3C315BF7-4B64-4024-8102-174A197437FA}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
devolo Cockpit (HKLM-x32\...\dlancockpit) (Version: 4.3.1.0 - devolo AG)
Discord (HKU\S-1-5-21-151591732-769639063-1674776794-1001\...\Discord) (Version: 0.0.311 - Discord Inc.)
Display Pilot (HKLM-x32\...\{6DD25D67-4339-47A1-950E-EEFC321CBB24}) (Version: 2.11.002 - Portrait Displays, Inc.)
Dolphin (HKLM-x32\...\Dolphin) (Version: 5.0 - Dolphin Team)
DVDFab 9.3.1.6 (19/09/2016) (HKLM-x32\...\DVDFab 9_is1) (Version: - Fengtao Software Inc.)
Escape from Tarkov (HKLM-x32\...\EscapeFromTarkov) (Version: 0.12.12.32.20765 - Battlestate Games)
Firmware updater for DualSense™ wireless controller (HKLM\...\{9505317F-5C12-489D-8C97-88511D9985B6}) (Version: 1.0.0.2 - Ihr Firmenname)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 8.1.0.1013 - Foxit Software Inc.)
Geeks3D FurMark 1.17.0.0 (HKLM-x32\...\{2397CAD4-2263-4CD0-96BE-E43A980B9C9A}_is1) (Version: - Geeks3D)
GeoGebra 5 (HKLM-x32\...\GeoGebra 5) (Version: 5.0.180.0 - International GeoGebra Institute)
GIMP 2.10.30 (HKLM\...\GIMP-2_is1) (Version: 2.10.30 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 109.0.5414.120 - Google LLC)
Greenshot 1.2.4.10 (HKLM\...\Greenshot_is1) (Version: 1.2.4.10 - Greenshot)
InputMapper (HKLM-x32\...\{026D2025-A7FA-4F5C-AF8C-A6F7A9B917FC}) (Version: 1.6.10.19991 - DSDCS)
InputMapper HidGuardian (HKLM-x32\...\{3753F0EF-7F58-4BBA-B4EA-9E1B83C13B97}) (Version: 1.0.6320.17641 - DSDCS)
Intel(R) Chipset Device Software (HKLM\...\{55398EAC-F58E-4F19-B553-BDF8B9EFD839}) (Version: 10.1.1.9 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.0.1204 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{D4FC649C-0247-4873-930D-D9E6904DCAF5}) (Version: 10.0.0.1204 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{E1CBE9A2-1323-488E-9F3B-736DF6399F38}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Network Connections 19.3.141.0 (HKLM\...\{B508519A-52A3-4B8A-892F-C628558A0879}) (Version: 19.3.141.0 - Intel) Hidden
Intel(R) Network Connections 19.3.141.0 (HKLM\...\PROSetDX) (Version: 19.3.141.0 - Intel)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4531 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.1.0.1058 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{EAF826C0-245E-4D02-9D51-BA4C98717EAE}) (Version: 13.1.0.1058 - Intel Corporation) Hidden
Intel(R) Smart Connect Technology (HKLM\...\{7228EFBA-512B-4EB3-B8A7-E2C331475DF4}) (Version: 5.0.10.2808 - Intel Corporation)
Intel(R) Update Manager (HKLM-x32\...\{7224B7CE-196C-4E2A-A1AE-1D7BF259FD36}) (Version: 3.4.1942 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (HKLM-x32\...\{c7f54569-0018-439c-809a-48046a4d4ebc}) (Version: 10.1.1.9 - Intel(R) Corporation) Hidden
Intel® RealSense™ SDK Runtime (HKLM-x32\...\ARP_for_prd_rs_sdk_runtime_10.0.26.0396) (Version: 10.0.26.0396 - Intel Corporation)
Intel® RealSense™ SDK Runtime Gold (x64): Core (HKLM\...\{7ECCC65E-1D74-11E6-B005-2C44FD873B55}) (Version: 10.0.26.396 - Intel Corporation) Hidden
Intel® RealSense™ SDK Runtime Gold (x64): User Segmentation (HKLM\...\{A315DE30-1D74-11E6-A4F2-2C44FD873B55}) (Version: 10.0.26.396 - Intel Corporation) Hidden
Intel® RealSense™ SDK Runtime Gold (x86): Core (HKLM-x32\...\{4BAB7070-1D73-11E6-8844-2C44FD873B55}) (Version: 10.0.26.396 - Intel Corporation) Hidden
Intel® RealSense™ SDK Runtime Gold (x86): Core: Calibration (HKLM-x32\...\{676C639E-1D73-11E6-BF2F-2C44FD873B55}) (Version: 10.0.26.396 - Intel Corporation) Hidden
Intel® RealSense™ SDK Runtime Gold (x86): User Segmentation (HKLM-x32\...\{51040000-1D73-11E6-A45D-2C44FD873B55}) (Version: 10.0.26.396 - Intel Corporation) Hidden
Intel® Trusted Connect Service Client (HKLM\...\{3DE97849-544D-4D68-9255-11DF6F9F10D8}) (Version: 1.35.127.1 - Intel Corporation) Hidden
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.38 - Irfan Skiljan)
Java 8 Update 261 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180261F0}) (Version: 8.0.2610.12 - Oracle Corporation)
JDownloader 2 (HKLM-x32\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
KeePass Password Safe 2.49 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version: 2.49 - Dominik Reichl)
Kits Configuration Installer (HKLM-x32\...\{FE3AE33E-C2D7-9953-4349-84107B5626B4}) (Version: 8.100.26846 - Microsoft) Hidden
Logitech Gaming Software (HKLM\...\{690285C2-2481-44FB-8402-162EA970A6DD}) (Version: 8.30.28 - Logitech Inc.) Hidden
Logitech Gaming Software 8.55 (HKLM\...\Logitech Gaming Software) (Version: 8.55.137 - Logitech Inc.)
Malwarebytes version 4.5.21.231 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.5.21.231 - Malwarebytes)
Microsoft .NET Core Host - 3.1.32 (x64) (HKLM\...\{8A8E3A04-83BC-4CDE-9259-893B666C1AB1}) (Version: 24.192.31915 - Microsoft Corporation) Hidden
Microsoft .NET Core Host FX Resolver - 3.1.32 (x64) (HKLM\...\{ABC6B3C2-1A8D-4C5E-AC16-C2AE44F02743}) (Version: 24.192.31915 - Microsoft Corporation) Hidden
Microsoft .NET Core Runtime - 3.1.32 (x64) (HKLM\...\{A741B803-3F0E-4684-81EF-FC128D15A92C}) (Version: 24.192.31915 - Microsoft Corporation) Hidden
Microsoft .NET Framework 1.1 (HKLM-x32\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 - Microsoft)
Microsoft 365 Apps for Enterprise - de-de (HKLM\...\O365ProPlusRetail - de-de) (Version: 16.0.16026.20146 - Microsoft Corporation)
Microsoft ASP.NET MVC 2 (HKLM-x32\...\{DD8FF2F3-0D97-4CF3-AF78-FA0E1B242244}) (Version: 2.0.60926.0 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Edge WebView2-Laufzeit (HKLM-x32\...\Microsoft EdgeWebView) (Version: 109.0.1518.78 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation)
Microsoft HEVC Media Extension Installation for Microsoft.HEVCVideoExtension_1.0.2512.0_x64__8wekyb3d8bbwe (x64) (HKLM\...\{B0169E83-757B-EF66-E2F0-391944D785BC}) (Version: 1.0.0.0 - Microsoft Corporation) Hidden
Microsoft Office 64-bit Components 2013 (HKLM\...\{90150000-002A-0000-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Korrekturhilfen 2013 - Deutsch (HKLM-x32\...\{90150000-001F-0407-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office OSM MUI (German) 2013 (HKLM-x32\...\{90150000-00E1-0407-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2013 (HKLM-x32\...\{90150000-002C-0407-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2013 - English (HKLM-x32\...\{90150000-001F-0409-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2013 - Italiano (HKLM-x32\...\{90150000-001F-0410-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (German) 2013 (HKLM\...\{90150000-002A-0407-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2013 (HKLM-x32\...\{90150000-006E-0407-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKU\S-1-5-21-151591732-769639063-1674776794-1001\...\OneDriveSetup.exe) (Version: 23.007.0109.0004 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-151591732-769639063-1674776794-1001\...\Teams) (Version: 1.2.00.34161 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{89581302-705F-42C5-99B0-E368A845DAD5}) (Version: 3.70.0.0 - Microsoft Corporation)
Microsoft Visio MUI (German) 2013 (HKLM-x32\...\{90150000-0054-0407-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Visio Professional 2013 (HKLM-x32\...\{91150000-0051-0000-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Visio Professional 2013 (HKLM-x32\...\Office15.VISPROR) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (HKLM\...\{AC53FC8B-EE18-3F9C-9B59-60937D0B182C}) (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (HKLM\...\{A2CB1ACB-94A2-32BA-A15E-7D80319F7589}) (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (HKLM-x32\...\{FDB30193-FDA0-3DAA-ACCA-A75EEFE53607}) (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (HKLM-x32\...\{2F73A7B2-E50E-39A6-9ABC-EF89E4C62E36}) (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.31.31103 (HKLM-x32\...\{2aaf1df0-eb13-4099-9992-962bb4e596d1}) (Version: 14.31.31103.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.31.31103 (HKLM-x32\...\{41d7b770-418a-43b7-95a5-f925fff05789}) (Version: 14.31.31103.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.31.31103 (HKLM\...\{A977984B-9244-49E3-BD24-43F0A8009667}) (Version: 14.31.31103 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.31.31103 (HKLM\...\{A181A302-3F6D-4BAD-97A8-A426A6499D78}) (Version: 14.31.31103 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.31.31103 (HKLM-x32\...\{5720EC03-F26F-40B7-980C-50B5D420B5DE}) (Version: 14.31.31103 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.31.31103 (HKLM-x32\...\{799E3FFF-705C-461F-B400-6DE27398B3E5}) (Version: 14.31.31103 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\{9495AEB4-AB97-39DE-8C42-806EEF75ECA7}) (Version: 10.0.50908 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio Code (HKLM\...\{EA457B21-F73E-494C-ACAB-524FDE069978}_is1) (Version: 1.52.1 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 3.1.32 (x64) (HKLM\...\{5BEE5F3E-4D78-4DE8-A8F3-36D3E9D8868C}) (Version: 24.192.31915 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 3.1.32 (x64) (HKLM-x32\...\{0eddeab6-01c1-4cf7-83ba-164ea8974c90}) (Version: 3.1.32.31915 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{B3B750C0-8C22-439D-B7CE-67F3ED99CC2B}) (Version: 1.20.146.0 - Microsoft)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Mozilla Firefox (x64 en-US) (HKLM\...\Mozilla Firefox 109.0.1 (x64 en-US)) (Version: 109.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 56.0.2 - Mozilla)
MSVCRT Redists (HKLM\...\{3BFC9CAE-091D-11E4-886A-F04DA23A5C58}) (Version: 1.0 - Sony Creative Software Inc.) Hidden
MZ-Tools 8.0 - VBA (HKU\S-1-5-21-151591732-769639063-1674776794-1001\...\{A831F45B-3864-4D2E-B586-3E7DCEB5EA66}_is1) (Version: - MZTools Software)
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 8.2.1 - Notepad++ Team)
NVIDIA FrameView SDK 1.3.8107.31782123 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8107.31782123 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.26.0.160 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.26.0.160 - NVIDIA Corporation)
NVIDIA Grafiktreiber 528.24 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 528.24 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.39.16 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.39.16 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 18.0.0 - OBS Project)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.15726.20202 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.15726.20202 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.16026.20146 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0407-0000-0000000FF1CE}) (Version: 16.0.15726.20202 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Origin (HKLM-x32\...\Origin) (Version: 10.5.118.52644 - Electronic Arts, Inc.)
Outils de vérification linguistique 2013 de Microsoft Office*- Français (HKLM-x32\...\{90150000-001F-040C-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.217.0.9 - Overwolf Ltd.)
Paragon Backup and Recovery™ 14 Free (HKLM\...\{C268B5E1-A5DA-11DF-A289-005056C00008}) (Version: 90.00.0003 - Paragon Software)
PBO Manager v.1.4 beta (HKLM\...\{127B5371-1802-4EDD-A25A-A43BF761D383}) (Version: 1.4.0 - )
PDF24 Creator 7.9.0 (HKLM-x32\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version: - PDF24.org)
Pivot Pro Plugin (HKLM-x32\...\{0217E1D1-BCEF-4A61-AF6D-F7740F65A066}) (Version: 9.61.004 - Portrait Displays, Inc.) Hidden
PokerStars.eu (HKLM-x32\...\PokerStars.eu) (Version: - PokerStars.eu)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7004 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
ROCCAT Kone XTD Optical Mouse Driver (HKLM-x32\...\{AD43B296-FE63-42C0-AA39-D8759B905420}) (Version: - Roccat GmbH)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.7.8 - Rockstar Games)
SDK ARM Additions (HKLM-x32\...\{61C9A3E6-04AB-866D-E1CA-39F757369483}) (Version: 8.100.26846 - Microsoft Corporation) Hidden
SDK ARM Additions EULA (HKLM-x32\...\{EF466A11-70C0-6AE8-4BDF-B255D7180AEC}) (Version: 8.100.26846 - Microsoft Corporations) Hidden
SDK ARM Redistributables (HKLM-x32\...\{A5596E7E-9360-A80C-08F9-6A0AA8658323}) (Version: 8.100.26846 - Microsoft Corporation) Hidden
SDK Debuggers ARM (HKLM-x32\...\{D9ACDBF9-C215-1024-89FC-87B78B3AA9E8}) (Version: 8.100.26846 - Microsoft Corporation) Hidden
Secure Download Manager (HKLM-x32\...\{C58626D6-7EBD-460D-8B6C-75B3C3464879}) (Version: 3.1.60 - Kivuto Solutions Inc.)
Snagit 12 (HKLM-x32\...\{1896C92E-E1C2-4735-92BC-1B18503C6496}) (Version: 12.4.1 - TechSmith Corporation) Hidden
Snagit 12 (HKLM-x32\...\{195fed3b-37a7-4123-9ba4-6ce14f1708e9}) (Version: 12.4.1.3036 - TechSmith Corporation)
Sound Lock (HKLM-x32\...\{F84098A4-28E4-482F-A5A0-1BB29F2808DD}) (Version: 1.3.2 - 3 APPES) Hidden
Sound Lock (HKLM-x32\...\Sound Lock 1.3.2) (Version: 1.3.2 - 3 APPES)
SpeechRedist (HKLM-x32\...\{8795CBED-55E2-4693-9F14-84EC446935BE}) (Version: 1.0.0 - Epic Games Inc.)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
Spotify (HKU\S-1-5-21-151591732-769639063-1674776794-1001\...\Spotify) (Version: 1.2.0.1165.gabf054ab - Spotify AB)
StarCraft II (HKLM-x32\...\StarCraft II) (Version: - Blizzard Entertainment)
Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation)
SteelSeries GG 31.0.0 (HKLM\...\SteelSeries GG) (Version: 31.0.0 - SteelSeries ApS)
System Requirements Lab for Intel (HKLM-x32\...\{04C4B49D-45D9-4A28-9ED1-B45CBD99B8C7}) (Version: 4.5.24.0 - Husdawg, LLC)
Teams Machine-Wide Installer (HKLM-x32\...\{39AF0813-FA7B-4860-ADBE-93B9B214B914}) (Version: 1.2.0.34161 - Microsoft Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TreeSize Free V3.1 (HKLM-x32\...\TreeSize Free_is1) (Version: 3.1 - JAM Software)
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Update for Skype for Business 2015 (KB4484289) 32-Bit Edition (HKLM-x32\...\{90150000-002A-0000-1000-0000000FF1CE}_Office15.VISPROR_{F97B139A-D8BF-46FF-A6F6-50710FED8644}) (Version: - Microsoft)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{82BD0A1C-815F-487F-9AE7-CE73DA413CFF}) (Version: 4.91.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{F339C545-24DC-4870-AA32-6EB6B0500B95}) (Version: 1.24.0.0 - Microsoft Corporation) Hidden
Uplay (HKLM-x32\...\Uplay) (Version: 85.1 - Ubisoft)
VBCABLE, The Virtual Audio Cable (HKLM\...\VB:VBCABLE {87459874-1236-4469}) (Version: - VB-Audio Software)
Vegas Pro 13.0 (64-bit) (HKLM\...\{386F5740-091D-11E4-B13E-F04DA23A5C58}) (Version: 13.0.373 - Sony)
VidCoder 1.5.34 (x64) (HKLM\...\VidCoder-x64_is1) (Version: 1.5.34 - RandomEngy)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.12 - VideoLAN)
Voicemeeter, The Virtual Mixing Console (HKLM-x32\...\VB:Voicemeeter {17359A74-1236-5467}) (Version: - VB-Audio Software)
WestwoodOnline (HKLM-x32\...\{BBCD6D56-8A26-4DDE-9482-DBC9C7B7341D}) (Version: 1.0.0.0 - WestwoodOnline)
WIDCOMM Bluetooth Software (HKLM\...\{C6D9ED03-6FCF-4410-9CB7-45CA285F9E11}) (Version: 12.0.0.2700 - Broadcom Corporation)
Windows Debugging WDK Integration (HKLM-x32\...\{B1FD2289-F3E5-E148-18EC-A9E0FAE773A9}) (Version: 8.100.26846 - Microsoft Corporation) Hidden
Windows Driver Kit (HKLM-x32\...\{ABD7052F-A64A-2E71-57E2-1E7BEB9D298D}) (Version: 8.100.26846 - Microsoft Corporation) Hidden
Windows Driver Kit ARM Additions Dev12 (HKLM-x32\...\{DEB2EE34-50D3-2780-B418-78786E760CB1}) (Version: 8.100.26846 - Microsoft Corporation) Hidden
Windows Driver Kit ARM Additions MSBuild Content Dev12 (HKLM-x32\...\{762E40D6-49D5-5951-CE73-94245978883C}) (Version: 8.100.26846 - Microsoft Corporation) Hidden
Windows Driver Kit for Windows 8.1 (HKLM-x32\...\{aba88724-37eb-4f03-b83b-45199c5a7cf5}) (Version: 8.100.26846 - Microsoft Corporation)
Windows Driver Kit MSBuild Content Dev12 (HKLM-x32\...\{DEC04130-35D0-BEAF-2EC4-D9A65C96C0AC}) (Version: 8.100.26846 - Microsoft Corporation) Hidden
Windows-PC-Integritätsprüfung (HKLM\...\{B3956CF3-F6C5-4567-AC38-1FD4432B319C}) (Version: 3.6.2204.08001 - Microsoft Corporation)
WinMerge 2.16.8.0 (HKLM-x32\...\WinMerge_is1) (Version: 2.16.8.0 - Thingamahoochie Software)
XBCD Uninstaller (HKLM\...\{04054166-0801-48A9-89E0-BC4B53FE7A81}_is1) (Version: 0.2.7 - XBCD Project)
Packages:
=========
Canon Inkjet Print Utility -> C:\Program Files\WindowsApps\34791E63.CanonInkjetPrintUtility_3.1.0.0_neutral__6e5tt8cgb93ep [2021-02-23] (Canon Inc.)
Media Engine-Add-On für Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2022-01-06] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-02-07] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-02-07] (Microsoft Corporation) [MS Ad]
Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_53.10114.505.0_x64__8wekyb3d8bbwe [2023-01-25] (Microsoft Corporation)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.963.0_x64__56jybvy8sckqj [2023-01-28] (NVIDIA Corp.)
Shazam -> C:\Program Files\WindowsApps\ShazamEntertainmentLtd.Shazam_4.7.9.0_x86__pqbynwjfrbcg4 [2018-01-25] (Shazam Entertainment Ltd)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-151591732-769639063-1674776794-1001_Classes\CLSID\{076F0FE0-8244-405D-A794-A666BB459307}\InprocServer32 -> C:\Users\Alex\AppData\Local\MZTools Software\MZTools8VBA\MZTools8VBA.dll (MZTools Software) [Datei ist nicht signiert]
CustomCLSID: HKU\S-1-5-21-151591732-769639063-1674776794-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\Alex\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.19317.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-151591732-769639063-1674776794-1001_Classes\CLSID\{8AD40A95-0D64-4B90-A2FD-775BDB238988}\InprocServer32 -> C:\Users\Alex\AppData\Local\MZTools Software\MZTools8VBA\MZTools8VBA.dll (MZTools Software) [Datei ist nicht signiert]
CustomCLSID: HKU\S-1-5-21-151591732-769639063-1674776794-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\Alex\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.19317.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2010-11-18] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2022-01-19] (Notepad++ -> )
ContextMenuHandlers1: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x64.dll [2016-10-14] (Foxit Software Incorporated -> Foxit Software Inc.)
ContextMenuHandlers1: [SnagItMainShellExt] -> {CF74B903-3389-469c-B3B6-0204D204FCBD} => C:\Program Files (x86)\TechSmith\Snagit 12\DLLx64\SnagitShellExt64.dll [2015-08-14] (TechSmith Corporation -> TechSmith Corporation)
ContextMenuHandlers1: [WinMerge] -> {4E716236-AA30-4C65-B225-D68BBA81E9C2} => C:\Program Files (x86)\WinMerge\ShellExtensionX64.dll [2020-07-20] (hxxp://winmerge.org) [Datei ist nicht signiert]
ContextMenuHandlers2-x32: [VMDiskMenuHandler] -> {271DC252-6FE1-4D59-9053-E4CF50AB99DE} => C:\Program Files (x86)\VMware\VMware Player\vmdkShellExt.dll [2020-06-04] (VMware, Inc. -> VMware, Inc.)
ContextMenuHandlers2: [VMDiskMenuHandler64] -> {E4D28EDC-8C0B-43EE-9E7D-C8A8682334DC} => C:\Program Files (x86)\VMware\VMware Player\x64\vmdkShellExt64.dll [2020-06-04] (VMware, Inc. -> VMware, Inc.)
ContextMenuHandlers2: [WinMerge] -> {4E716236-AA30-4C65-B225-D68BBA81E9C2} => C:\Program Files (x86)\WinMerge\ShellExtensionX64.dll [2020-07-20] (hxxp://winmerge.org) [Datei ist nicht signiert]
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2010-11-18] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers4: [SnagItMainShellExt] -> {CF74B903-3389-469c-B3B6-0204D204FCBD} => C:\Program Files (x86)\TechSmith\Snagit 12\DLLx64\SnagitShellExt64.dll [2015-08-14] (TechSmith Corporation -> TechSmith Corporation)
ContextMenuHandlers4: [WinMerge] -> {4E716236-AA30-4C65-B225-D68BBA81E9C2} => C:\Program Files (x86)\WinMerge\ShellExtensionX64.dll [2020-07-20] (hxxp://winmerge.org) [Datei ist nicht signiert]
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Keine Datei
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => -> Keine Datei
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d1bd230cd08e7436\nvshext.dll [2023-01-18] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers5: [PortraitDisplaysContextMenu] -> {8602BDD8-9780-4717-B89A-7F89AF75B2AB} => -> Keine Datei
ContextMenuHandlers5: [WinMerge] -> {4E716236-AA30-4C65-B225-D68BBA81E9C2} => C:\Program Files (x86)\WinMerge\ShellExtensionX64.dll [2020-07-20] (hxxp://winmerge.org) [Datei ist nicht signiert]
ContextMenuHandlers6: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x64.dll [2016-10-14] (Foxit Software Incorporated -> Foxit Software Inc.)
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
==================== Codecs (Nicht auf der Ausnahmeliste) ====================
==================== Verknüpfungen & WMI ========================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
ShortcutWithArgument: C:\Users\Alex\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\d249d9ddd424b688\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default
==================== Geladene Module (Nicht auf der Ausnahmeliste) =============
2018-08-31 22:03 - 2022-11-07 11:17 - 000387072 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\libegl.dll
2018-08-31 22:03 - 2022-11-07 11:17 - 008052736 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\libglesv2.dll
2018-11-05 22:10 - 2018-11-05 22:10 - 000454656 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\VB\Voicemeeter\mp3lame\lame_enc.dll
2015-02-17 16:02 - 2012-06-06 09:56 - 000143360 ____N () [Datei ist nicht signiert] C:\Program Files\ASUS Xonar Essence STX Audio\Customapp\VmixP8.dll
2016-06-09 11:15 - 2015-03-17 07:51 - 000375296 _____ (CANON INC.) [Datei ist nicht signiert] C:\WINDOWS\System32\CNMN6PPM.DLL
2015-02-17 16:02 - 2012-08-22 18:57 - 000430080 ____N (C-Media Electronics Inc.) [Datei ist nicht signiert] C:\Program Files\ASUS Xonar Essence STX Audio\CustomApp\cmdevice.dll
2022-08-17 23:06 - 2022-08-17 23:06 - 002146304 _____ (Holtek Semiconductor Inc.) [Datei ist nicht signiert] C:\Program Files\SteelSeries\GG\apps\engine\HIDDLL.dll
2022-08-17 23:06 - 2022-08-17 23:06 - 002284032 _____ (Holtek) [Datei ist nicht signiert] C:\Program Files\SteelSeries\GG\apps\engine\ISPDLL.dll
2014-05-28 09:10 - 2014-05-28 09:10 - 000296960 _____ (Intel Corporation) [Datei ist nicht signiert] [Datei wird verwendet] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\PsiData.dll
2014-11-06 20:43 - 2013-06-18 12:24 - 000372736 _____ (Intel Corporation) [Datei ist nicht signiert] C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\ijl15.dll
2014-05-28 09:10 - 2014-05-28 09:10 - 000526336 _____ (Intel Corporation) [Datei ist nicht signiert] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\ISDI2.dll
2022-08-21 18:33 - 2020-03-29 13:54 - 001282048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\LIBEAY32.dll
2022-08-21 18:33 - 2020-03-29 13:54 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\ssleay32.dll
2022-08-21 18:33 - 2020-03-29 13:54 - 001611264 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2023-02-03 18:00 - 2020-03-29 13:54 - 005487104 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Core.dll
2023-02-03 18:00 - 2020-03-29 13:54 - 005841920 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Gui.dll
2023-02-03 18:00 - 2020-03-29 13:54 - 001179136 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Network.dll
2023-02-03 18:00 - 2020-03-29 13:54 - 000146432 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5WebSockets.dll
2023-02-03 18:00 - 2020-03-29 13:54 - 005089792 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2023-02-03 18:00 - 2020-03-29 13:54 - 000184832 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Xml.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================
==================== Internet Explorer (Nicht auf der Ausnahmeliste) ==========
HKU\S-1-5-21-151591732-769639063-1674776794-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
HKU\S-1-5-21-151591732-769639063-1674776794-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.de.msn.com/
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2023-02-02] (Microsoft Corporation -> Microsoft Corporation)
BHO: Citavi Picker -> {609D670F-B735-4da7-AC6D-F3BD358E325E} -> C:/Program Files (x86)/Internet Explorer/Citavi Picker/x64/SwissAcademic.Citavi.IEPicker.DLL => Keine Datei
BHO: Kein Name -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> Keine Datei
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2022-11-11] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Citavi Picker -> {609D670F-B735-4da7-AC6D-F3BD358E325E} -> C:/Program Files (x86)/Internet Explorer/Citavi Picker/SwissAcademic.Citavi.IEPicker.dll => Keine Datei
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\ssv.dll [2020-07-22] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\jp2ssv.dll [2020-07-22] (Oracle America, Inc. -> Oracle Corporation)
DPF: HKLM-x32 {7530BFB8-7293-4D34-9923-61A11451AFC5} hxxp://download.eset.com/special/eos/OnlineScanner.cab
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2023-02-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2023-02-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2023-02-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2023-02-02] (Microsoft Corporation -> Microsoft Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE trusted site: HKU\S-1-5-21-151591732-769639063-1674776794-1001\...\sharepoint.com -> hxxps://fauerlnue.sharepoint.com
==================== Hosts Inhalt: =========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2013-08-22 14:25 - 2013-08-22 14:25 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Andere Bereiche ===========================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Perl64\site\bin;C:\Perl64\bin;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files\Microsoft VS Code\bin;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files\dotnet\
HKU\S-1-5-21-151591732-769639063-1674776794-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Alex\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\infinity-1920x1080.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
ist aktiviert.
Network Binding:
=============
VMware Network Adapter VMnet8: VMware Bridge Protocol -> vmware_bridge (disabled)
VMware Network Adapter VMnet1: VMware Bridge Protocol -> vmware_bridge (disabled)
Ethernet 3: VMware Bridge Protocol -> vmware_bridge (enabled)
Ethernet: VMware Bridge Protocol -> vmware_bridge (enabled)
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
HKLM\...\StartupApproved\Run: => "IAStorIcon"
HKLM\...\StartupApproved\Run: => "ISCT Tray"
HKLM\...\StartupApproved\Run: => "Cmaudio8788GX64"
HKLM\...\StartupApproved\Run: => "Cmaudio8788GX"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "Cisco AnyConnect Secure Mobility Agent for Windows"
HKLM\...\StartupApproved\Run32: => "PDFPrint"
HKLM\...\StartupApproved\Run32: => "IJNetworkScannerSelectorEX"
HKLM\...\StartupApproved\Run32: => "RoccatKoneXTDOptical"
HKLM\...\StartupApproved\Run32: => "TeamsMachineInstaller"
HKU\S-1-5-21-151591732-769639063-1674776794-1001\...\StartupApproved\StartupFolder: => "An OneNote senden.lnk"
HKU\S-1-5-21-151591732-769639063-1674776794-1001\...\StartupApproved\StartupFolder: => "Voicemeeter (VB-Audio).LNK"
HKU\S-1-5-21-151591732-769639063-1674776794-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{62317B25-9E71-4A78-974C-91D1EF9AAE19}] => (Allow) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe (VMware, Inc. -> VMware, Inc.)
FirewallRules: [{3DD99935-484C-408F-8904-0537AA5D24F4}] => (Allow) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe (VMware, Inc. -> VMware, Inc.)
FirewallRules: [{4D09D995-0B1B-4DBB-AF5E-3087C10368FA}] => (Allow) D:\SteamLibrary\steamapps\common\DOOMEternal\idTechLauncher.exe () [Datei ist nicht signiert]
FirewallRules: [{637D2691-57E5-4115-A416-55D05BE6E1C7}] => (Allow) D:\SteamLibrary\steamapps\common\DOOMEternal\idTechLauncher.exe () [Datei ist nicht signiert]
FirewallRules: [{6D064227-F4EC-4202-B002-FB8B455A9F7D}] => (Allow) D:\SteamLibrary\steamapps\common\RimWorld\RimWorldWin64.exe () [Datei ist nicht signiert]
FirewallRules: [{AE205550-35EE-4EFF-B5A4-A820AD6E9FE4}] => (Allow) D:\SteamLibrary\steamapps\common\RimWorld\RimWorldWin64.exe () [Datei ist nicht signiert]
FirewallRules: [UDP Query User{FC109BE4-3F2D-4DE1-A872-3B13F1E66DD6}D:\steamlibrary\steamapps\common\divinity original sin 2\defed\bin\eocapp.exe] => (Allow) D:\steamlibrary\steamapps\common\divinity original sin 2\defed\bin\eocapp.exe => Keine Datei
FirewallRules: [TCP Query User{75B8F6A8-FFEB-431C-8F10-1803E09A7A6F}D:\steamlibrary\steamapps\common\divinity original sin 2\defed\bin\eocapp.exe] => (Allow) D:\steamlibrary\steamapps\common\divinity original sin 2\defed\bin\eocapp.exe => Keine Datei
FirewallRules: [{B0A17839-7272-48BC-840C-983AE42439B2}] => (Block) C:\program files (x86)\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe => Keine Datei
FirewallRules: [{FBC40CF9-F48B-4569-8AD2-6877A1669355}] => (Block) C:\program files (x86)\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe => Keine Datei
FirewallRules: [UDP Query User{16DF867A-4525-41A6-AF07-30B9F4B9FED5}C:\program files (x86)\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe => Keine Datei
FirewallRules: [TCP Query User{3457C842-E2A0-4E8C-8F41-05BC9EB1240C}C:\program files (x86)\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe => Keine Datei
FirewallRules: [{257B7B85-7888-4812-8246-7C0E65893572}] => (Block) C:\program files (x86)\steam\steamapps\common\seven the days long gone\seven\binaries\win64\seven-win64-shipping.exe => Keine Datei
FirewallRules: [{818EC92A-FC65-42CC-A2E1-3E17A8358564}] => (Block) C:\program files (x86)\steam\steamapps\common\seven the days long gone\seven\binaries\win64\seven-win64-shipping.exe => Keine Datei
FirewallRules: [UDP Query User{1DD280F3-B846-4DC9-9B81-E07C4A549EF0}C:\program files (x86)\steam\steamapps\common\seven the days long gone\seven\binaries\win64\seven-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\seven the days long gone\seven\binaries\win64\seven-win64-shipping.exe => Keine Datei
FirewallRules: [TCP Query User{D61101DA-D9BF-447E-A71E-45A10CEC1568}C:\program files (x86)\steam\steamapps\common\seven the days long gone\seven\binaries\win64\seven-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\seven the days long gone\seven\binaries\win64\seven-win64-shipping.exe => Keine Datei
FirewallRules: [{A67476DB-174E-41EF-997B-FD69D89665F9}] => (Block) C:\program files (x86)\steam\steamapps\common\anno 1404\tools\anno4web.exe () [Datei ist nicht signiert]
FirewallRules: [{BC0F4114-9F01-4915-9999-880C2663F74F}] => (Block) C:\program files (x86)\steam\steamapps\common\anno 1404\tools\anno4web.exe () [Datei ist nicht signiert]
FirewallRules: [UDP Query User{2F040192-80F3-491E-A1E2-C09ABC157C29}C:\program files (x86)\steam\steamapps\common\anno 1404\tools\anno4web.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\anno 1404\tools\anno4web.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{63833E57-2037-441F-B539-68AD00F7FC36}C:\program files (x86)\steam\steamapps\common\anno 1404\tools\anno4web.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\anno 1404\tools\anno4web.exe () [Datei ist nicht signiert]
FirewallRules: [{98F4A69C-36D4-43D3-A35C-AAF0595D443B}] => (Block) C:\program files (x86)\steam\steamapps\common\anno 1404\tools\addonweb.exe () [Datei ist nicht signiert]
FirewallRules: [{08D675B1-0D04-4D98-9F7B-A94733969DAC}] => (Block) C:\program files (x86)\steam\steamapps\common\anno 1404\tools\addonweb.exe () [Datei ist nicht signiert]
FirewallRules: [UDP Query User{FABD5205-9D82-4100-9C6A-7C1EADB39F4A}C:\program files (x86)\steam\steamapps\common\anno 1404\tools\addonweb.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\anno 1404\tools\addonweb.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{0DE4E375-FAE1-43C6-AE93-690E3E5549FC}C:\program files (x86)\steam\steamapps\common\anno 1404\tools\addonweb.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\anno 1404\tools\addonweb.exe () [Datei ist nicht signiert]
FirewallRules: [{0C5F7563-840E-4E22-9EB7-7D6E5D655105}] => (Block) C:\program files (x86)\steam\steamapps\common\styx shards of darkness\styx2\binaries\win64\styx2-win64-shipping.exe (Focus Home Interactive -> Epic Games, Inc.)
FirewallRules: [{0B97BA3B-CA66-4044-B91C-EA72527E7DA0}] => (Block) C:\program files (x86)\steam\steamapps\common\styx shards of darkness\styx2\binaries\win64\styx2-win64-shipping.exe (Focus Home Interactive -> Epic Games, Inc.)
FirewallRules: [UDP Query User{413B57B2-1845-4FE3-AAEE-C57CE7B34A67}C:\program files (x86)\steam\steamapps\common\styx shards of darkness\styx2\binaries\win64\styx2-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\styx shards of darkness\styx2\binaries\win64\styx2-win64-shipping.exe (Focus Home Interactive -> Epic Games, Inc.)
FirewallRules: [TCP Query User{7A8CC300-6A8D-4721-ADD4-5FE0857DBF95}C:\program files (x86)\steam\steamapps\common\styx shards of darkness\styx2\binaries\win64\styx2-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\styx shards of darkness\styx2\binaries\win64\styx2-win64-shipping.exe (Focus Home Interactive -> Epic Games, Inc.)
FirewallRules: [{17D10B81-9F5F-4836-8C8A-186FDED589E9}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Styx Shards of Darkness\Styx2.exe (Focus Home Interactive -> )
FirewallRules: [{B63CCF1F-5809-492C-8300-F6AC8A6CD118}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Styx Shards of Darkness\Styx2.exe (Focus Home Interactive -> )
FirewallRules: [{459CF9C4-23CD-4228-96A8-4D7E6DF62A56}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Dishonored\Binaries\Win32\Dishonored.exe => Keine Datei
FirewallRules: [{3378DE97-4AC0-4F29-9612-007563D7C444}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Dishonored\Binaries\Win32\Dishonored.exe => Keine Datei
FirewallRules: [{269C069F-0D1A-4E59-8CAA-4F2732EAA0E6}] => (Allow) C:\WINDOWS\SysWOW64\PnkBstrB.exe => Keine Datei
FirewallRules: [{A9BC1755-2A6B-4437-A274-9201FFBF0BCB}] => (Allow) C:\WINDOWS\SysWOW64\PnkBstrB.exe => Keine Datei
FirewallRules: [{BA808120-9A21-40A3-8F85-70C5C3C407D9}] => (Allow) C:\WINDOWS\SysWOW64\PnkBstrA.exe => Keine Datei
FirewallRules: [{9ED74A96-751E-4D04-AECF-1E3A4819DEE3}] => (Allow) C:\WINDOWS\SysWOW64\PnkBstrA.exe => Keine Datei
FirewallRules: [{61CA36A4-1133-4F31-AD68-7897DA6C877A}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\wallpaper_engine\launcher.exe (Skutta, Kristjan -> )
FirewallRules: [{FED956BF-3AEB-4EDF-8C19-5C22205AE71A}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\wallpaper_engine\launcher.exe (Skutta, Kristjan -> )
FirewallRules: [{BB700A22-141F-4E18-9324-493478699C13}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\ShadowOfMordor\x64\ShadowOfMordor.exe => Keine Datei
FirewallRules: [{3DCB7C24-1277-43E2-9FCB-4E1CA87B79B3}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\ShadowOfMordor\x64\ShadowOfMordor.exe => Keine Datei
FirewallRules: [{6923DF0E-0328-4DA2-AE18-63291ED34E30}] => (Block) C:\program files (x86)\steam\steamapps\common\arma 3\arma3_x64.exe => Keine Datei
FirewallRules: [{C929646E-447C-4B5B-A16B-C5ED69D42A80}] => (Block) C:\program files (x86)\steam\steamapps\common\arma 3\arma3_x64.exe => Keine Datei
FirewallRules: [UDP Query User{C9B218FC-D305-456D-AE97-9C3634B6AD07}C:\program files (x86)\steam\steamapps\common\arma 3\arma3_x64.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\arma 3\arma3_x64.exe => Keine Datei
FirewallRules: [TCP Query User{316A5AC2-2FFC-4DF6-8BDA-874E79725415}C:\program files (x86)\steam\steamapps\common\arma 3\arma3_x64.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\arma 3\arma3_x64.exe => Keine Datei
FirewallRules: [{3C24CE73-1DB4-4EE9-92BA-0068544AC682}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{3943CB96-D26A-4140-AF64-2125488253BC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{34131704-F55E-411D-834B-430BCD83A8AF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe => Keine Datei
FirewallRules: [{EFAC7F92-25B9-4876-BD78-59DFB62FC9B2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{97A1D6C9-1CDE-45A1-888D-ACE85175FC0C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{B6007AC6-09B0-40FB-99D2-354955AF8524}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Keine Datei
FirewallRules: [{5E048FF2-D2E6-4FA0-9408-AC131937F9EA}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Keine Datei
FirewallRules: [UDP Query User{DBCD5091-C00E-4D93-A41E-C945ABB3989C}C:\program files (x86)\ut2004\system\ut2004.exe] => (Allow) C:\program files (x86)\ut2004\system\ut2004.exe => Keine Datei
FirewallRules: [TCP Query User{B95722F5-A464-4526-85EA-476E7AF32537}C:\program files (x86)\ut2004\system\ut2004.exe] => (Allow) C:\program files (x86)\ut2004\system\ut2004.exe => Keine Datei
FirewallRules: [UDP Query User{A927269E-9420-49BE-A382-547BA7F0B351}C:\program files (x86)\activision\call of duty 2\cod2mp_s.exe] => (Allow) C:\program files (x86)\activision\call of duty 2\cod2mp_s.exe => Keine Datei
FirewallRules: [TCP Query User{107B9A41-AA76-4F05-8E37-684B170FC918}C:\program files (x86)\activision\call of duty 2\cod2mp_s.exe] => (Allow) C:\program files (x86)\activision\call of duty 2\cod2mp_s.exe => Keine Datei
FirewallRules: [UDP Query User{04EA3569-55AB-48C4-8033-20F8CCBFFBDA}C:\users\alex\desktop\warcraft iii\festplattenversion\war3.exe] => (Allow) C:\users\alex\desktop\warcraft iii\festplattenversion\war3.exe => Keine Datei
FirewallRules: [TCP Query User{ED695309-98EC-42FD-ADD3-61C77A89C829}C:\users\alex\desktop\warcraft iii\festplattenversion\war3.exe] => (Allow) C:\users\alex\desktop\warcraft iii\festplattenversion\war3.exe => Keine Datei
FirewallRules: [{0B2CCF46-00AE-400F-B9DB-BF54CCE0F559}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Broforce\Broforce_beta.exe () [Datei ist nicht signiert]
FirewallRules: [{31313C53-27A0-4C77-9F78-2DD583F0BEF9}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Broforce\Broforce_beta.exe () [Datei ist nicht signiert]
FirewallRules: [{F7402006-1B91-40BD-B0FC-7643D765183A}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\KOAReckoning\Reckoning.exe (38 Studios Baltimore -> Big Huge Games) [Datei ist nicht signiert]
FirewallRules: [{C2A0A4BB-0736-435B-8F72-321003788D88}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\KOAReckoning\Reckoning.exe (38 Studios Baltimore -> Big Huge Games) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{446F8911-1577-4529-BC4B-55086051E8F6}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe => Keine Datei
FirewallRules: [TCP Query User{878CBF3D-85BA-41B6-858A-13673D7B6C77}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe => Keine Datei
FirewallRules: [{57E09B92-F3FC-43F9-A6E3-B9510E66783F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\The Swapper\TheSwapper.exe (Facepalm Games) [Datei ist nicht signiert]
FirewallRules: [{43F8284C-059A-45A5-A1C9-1755D3799A1F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\The Swapper\TheSwapper.exe (Facepalm Games) [Datei ist nicht signiert]
FirewallRules: [{A1569004-59A6-4DD1-88D6-D7D4EBD8E8D3}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\SunlessSea\Sunless Sea.exe () [Datei ist nicht signiert]
FirewallRules: [{BAC2A16E-B3DB-4CB7-A11C-B1F0DFF3B033}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\SunlessSea\Sunless Sea.exe () [Datei ist nicht signiert]
FirewallRules: [{C97E2778-2626-498B-A336-92981247DD21}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Lara Croft and the Guardian of Light\lcgol.exe (Valve Corp. -> Square Enix Limited) [Datei ist nicht signiert]
FirewallRules: [{41EF60A6-ACE0-4A4F-BD1B-BCBFA9D47165}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Lara Croft and the Guardian of Light\lcgol.exe (Valve Corp. -> Square Enix Limited) [Datei ist nicht signiert]
FirewallRules: [{AD02BCEA-F0DD-43B0-A1E4-632D95912BAD}] => (Allow) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe (devolo AG -> devolo AG)
FirewallRules: [{312197B5-0B2C-4902-9D07-575369EF21E5}] => (Allow) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe (devolo AG -> devolo AG)
FirewallRules: [{F9580A94-FD94-415B-B1B0-5DFC5EEA2743}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3286\Agent.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{116BD42A-F708-4A05-B992-B04495876432}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3286\Agent.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{4CC29BE6-A78E-4B62-A665-C1235FA3EC99}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\BattleBlock Theater\BattleBlockTheater.exe () [Datei ist nicht signiert]
FirewallRules: [{F853BBCA-AE7D-4072-B4E4-DAC753965C4F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\BattleBlock Theater\BattleBlockTheater.exe () [Datei ist nicht signiert]
FirewallRules: [{C242A9C1-EC92-46D1-B5D5-480AC99504BA}] => (Block) C:\Program Files (x86)\TechSmith\Snagit 12\TscHelp.exe (TechSmith Corporation) [Datei ist nicht signiert]
FirewallRules: [{F5369BAE-2E80-4CE3-BFEF-14BC394D52DE}] => (Block) C:\Program Files (x86)\TechSmith\Snagit 12\SnagPriv.exe (TechSmith Corporation -> TechSmith Corporation)
FirewallRules: [{F694D389-EDBD-4BF1-9915-67A2F29D406E}] => (Block) C:\Program Files (x86)\TechSmith\Snagit 12\SnagitPI64.exe (TechSmith Corporation -> TechSmith Corporation)
FirewallRules: [{E04706DF-1C58-42A8-B59E-EE543526D289}] => (Block) C:\Program Files (x86)\TechSmith\Snagit 12\SnagitPI.exe (TechSmith Corporation -> TechSmith Corporation)
FirewallRules: [{9EE140A1-5C67-4ABD-B3B0-69C774CC541D}] => (Block) C:\Program Files (x86)\TechSmith\Snagit 12\SnagitEditor.exe (TechSmith Corporation -> TechSmith Corporation)
FirewallRules: [{01D48DA3-FCD6-4577-9C17-CFEC18C6B94E}] => (Block) C:\Program Files (x86)\TechSmith\Snagit 12\Snagit32.exe (TechSmith Corporation -> TechSmith Corporation)
FirewallRules: [{B27D16C2-83B7-4A20-A840-3FAFEF7D0D63}] => (Allow) LPort=8298
FirewallRules: [{9B8CE4EF-CCFC-456F-8B87-85814F9B8A93}] => (Allow) LPort=8298
FirewallRules: [{6B3A6E82-8CC9-4716-8EEB-0E2D3F370C70}] => (Allow) LPort=8298
FirewallRules: [{A69ED811-F8F1-48E8-9298-8581D907EC7E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{9E419BE2-A930-447D-9D96-C2BEA7B8725A}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{9C4BE15D-C533-4786-8B3C-F8588E769792}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe => Keine Datei
FirewallRules: [{D8453FF1-3259-4290-AF7D-BF1AD899D81C}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe => Keine Datei
FirewallRules: [{3FC29E5B-843A-4A12-917E-C3077664E4E6}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Super Meat Boy\SuperMeatBoy.exe () [Datei ist nicht signiert]
FirewallRules: [{2C9703A9-2E1C-49E8-B334-77879D6BE279}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Super Meat Boy\SuperMeatBoy.exe () [Datei ist nicht signiert]
FirewallRules: [{A6E7A595-F21A-45ED-83DE-C74FF1EE67E1}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve Corp. -> )
FirewallRules: [{DAF5B25D-8E18-4BFA-8BD4-26E18842991E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve Corp. -> )
FirewallRules: [{3A79F374-0250-4424-8A00-F4AE3D48B7CE}] => (Block) C:\program files (x86)\world_of_warships\wowslauncher.exe => Keine Datei
FirewallRules: [{37DAC65C-ECB3-4EC6-8C08-5EB0641A120A}] => (Block) C:\program files (x86)\world_of_warships\wowslauncher.exe => Keine Datei
FirewallRules: [UDP Query User{BEFB9F4A-4289-4349-BA66-80F9EB5988C4}C:\program files (x86)\world_of_warships\wowslauncher.exe] => (Allow) C:\program files (x86)\world_of_warships\wowslauncher.exe => Keine Datei
FirewallRules: [TCP Query User{BB270C37-52C9-4543-9843-9D39C3C00629}C:\program files (x86)\world_of_warships\wowslauncher.exe] => (Allow) C:\program files (x86)\world_of_warships\wowslauncher.exe => Keine Datei
FirewallRules: [{AB9D5632-E661-4CF2-BC83-214D0AF718E2}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\The Witcher 3\bin\x64\witcher3.exe (CD PROJEKT SPÓŁKA AKCYJNA -> CD Projekt Red)
FirewallRules: [{99BAE54C-CBAC-4E50-A492-27103691BAA2}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\The Witcher 3\bin\x64\witcher3.exe (CD PROJEKT SPÓŁKA AKCYJNA -> CD Projekt Red)
FirewallRules: [{ABEF468C-2051-460A-B262-D3D775525D13}] => (Block) C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe => Keine Datei
FirewallRules: [{6128DF08-AF8A-4E53-B07A-8018F43A7C7E}] => (Block) C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe => Keine Datei
FirewallRules: [UDP Query User{04225250-D625-49F4-98BC-DB798B545A53}C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe => Keine Datei
FirewallRules: [TCP Query User{18812ABD-79E6-454D-9645-BAE69B14866A}C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe => Keine Datei
FirewallRules: [{90B29793-A770-4C5C-935B-E3D37B656AD0}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\ValveTestApp207490\Rayman Origins.exe (Ubisoft Entertainment SA -> )
FirewallRules: [{5A701B54-0275-4FAC-B986-39D2C497F50A}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\ValveTestApp207490\Rayman Origins.exe (Ubisoft Entertainment SA -> )
FirewallRules: [UDP Query User{D369E308-C1AA-4780-B51F-3BDB5024A4A5}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{6EF5FBD7-B4FB-4099-8666-5C0FAD052455}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{ACF7069B-5E96-4D31-A3BA-8D7B36407689}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Dark Souls Prepare to Die Edition\DATA\DARKSOULS.exe => Keine Datei
FirewallRules: [{0350C848-D9B2-4410-8881-AD2F1D51AD88}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Dark Souls Prepare to Die Edition\DATA\DARKSOULS.exe => Keine Datei
FirewallRules: [{9DA08F09-4232-400B-B827-8489DABE0436}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{814775BA-A50F-461B-BAA9-227C307E6457}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{802FD11A-EA79-4125-A7C8-5E4E99E45F4F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\mark_of_the_ninja\bin\game.exe => Keine Datei
FirewallRules: [{4E7EA7F1-F4F5-45BC-BB4F-B0500902D944}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\mark_of_the_ninja\bin\game.exe => Keine Datei
FirewallRules: [{72EF8EB0-2023-413A-A5EB-16064E503D75}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Banished\Application-steam-x64.exe () [Datei ist nicht signiert]
FirewallRules: [{0DDB5C4F-91DD-4E2D-BB12-BA030F6951ED}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Banished\Application-steam-x64.exe () [Datei ist nicht signiert]
FirewallRules: [{12F92DF5-FF9F-4354-B714-D9FBF798F237}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3286\Agent.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{41D27F41-1668-4BF4-9F89-4367F4FAAB34}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3286\Agent.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{F152B4CA-15DF-4CCF-9A4E-492845619B60}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe => Keine Datei
FirewallRules: [{C635B2BA-1EB4-41E2-BD67-775AF324024F}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe => Keine Datei
FirewallRules: [UDP Query User{A52C9EEA-A8A6-46BE-91DC-4457F628420B}C:\program files (x86)\starcraft ii\versions\base28667\sc2.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base28667\sc2.exe => Keine Datei
FirewallRules: [TCP Query User{11DF07B3-2C72-4BAE-99CB-0131B05A62EB}C:\program files (x86)\starcraft ii\versions\base28667\sc2.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base28667\sc2.exe => Keine Datei
FirewallRules: [{3D342B35-D287-4607-BED8-314BC62517A9}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II Public Test.exe => Keine Datei
FirewallRules: [{292CAEF0-A264-4EDA-B181-5C234E82B579}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II Public Test.exe => Keine Datei
FirewallRules: [{5D64CA53-753B-4E6A-8144-8D4BB586AEDA}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II.exe => Keine Datei
FirewallRules: [{272CF8E8-2327-4A44-A82B-CB8451B2DB10}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II.exe => Keine Datei
FirewallRules: [{A0D273B8-A9FC-45AF-A5A6-469FFE33CAB8}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1040\Agent.exe => Keine Datei
FirewallRules: [{A5031FFB-C6CF-4407-A684-5B648294E4B0}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1040\Agent.exe => Keine Datei
FirewallRules: [UDP Query User{CC3F615E-08D2-47FA-8BCC-2769093B53B7}C:\program files (x86)\starcraft ii\sc2-x.x.x.x-1.5.0.22342-enus-downloader.exe] => (Allow) C:\program files (x86)\starcraft ii\sc2-x.x.x.x-1.5.0.22342-enus-downloader.exe => Keine Datei
FirewallRules: [TCP Query User{BCA264FD-4632-4954-B9D2-695A43C3EFD1}C:\program files (x86)\starcraft ii\sc2-x.x.x.x-1.5.0.22342-enus-downloader.exe] => (Allow) C:\program files (x86)\starcraft ii\sc2-x.x.x.x-1.5.0.22342-enus-downloader.exe => Keine Datei
FirewallRules: [{826F797C-103B-4ABB-8F47-B1C4CFBA175E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 3\arma3.exe => Keine Datei
FirewallRules: [{5779A1EE-4898-4524-9288-920C24CCDC6F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 3\arma3.exe => Keine Datei
FirewallRules: [{1D869043-5078-48EB-91E3-F0E44B475CB6}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\dota.exe () [Datei ist nicht signiert]
FirewallRules: [{6664D226-3854-4508-BBEA-2D9CEB11C603}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\dota.exe () [Datei ist nicht signiert]
FirewallRules: [{07C71E79-3B2A-4CE8-991F-09ED3C11E259}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe => Keine Datei
FirewallRules: [{9A53B7A1-BFEC-4180-ACC0-FED4251576EC}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe => Keine Datei
FirewallRules: [{C65F41DC-C5D7-4F8D-9846-43D122905C96}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{27EE474D-7DFA-4593-B625-8C20A2F733DE}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{75EF2329-EBFC-4EED-BF8D-9F3CD2A1D974}] => (Allow) C:\Program Files\Logitech Gaming Software\LCore.exe (Logitech -> Logitech Inc.)
FirewallRules: [{8C9386CA-6D98-485B-A3D1-FEEBE50D6C28}] => (Allow) C:\Program Files\Logitech Gaming Software\LCore.exe (Logitech -> Logitech Inc.)
FirewallRules: [{D9EE09B3-AA8A-4C65-8628-EA5DDF2A0CED}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\CastlevaniaLoS\bin\CastlevaniaLoSUE.exe => Keine Datei
FirewallRules: [{09951045-499F-4B2D-8F17-38BB82958455}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\CastlevaniaLoS\bin\CastlevaniaLoSUE.exe => Keine Datei
FirewallRules: [{706C07F8-0E9C-4079-97B5-F9BFDD90FE55}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe => Keine Datei
FirewallRules: [{F6DD01C6-37F7-4492-946A-A758E58F13C2}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe => Keine Datei
FirewallRules: [TCP Query User{3D4CDA7B-D212-4153-BEA8-FF4EB10016DB}C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe => Keine Datei
FirewallRules: [UDP Query User{140FC145-176D-4A93-A816-3530CBE29635}C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe => Keine Datei
FirewallRules: [{829B13CC-4909-4C76-8216-93A7E4391EDD}] => (Block) C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe => Keine Datei
FirewallRules: [{05FB42E3-9885-4901-A948-B37DA01F7DAD}] => (Block) C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe => Keine Datei
FirewallRules: [{0A9EB186-7369-4D28-BCB0-4BC89F4B1BC7}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe (Ubisoft Entertainment Sweden AB -> Ubisoft)
FirewallRules: [{5171CD76-0554-4CC7-BCAF-CE2BA2976B9D}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe (Ubisoft Entertainment Sweden AB -> Ubisoft)
FirewallRules: [TCP Query User{211DEA2F-6027-411F-B499-0EFA80353976}C:\program files (x86)\steam\steamapps\common\pubg_experimental\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg_experimental\tslgame\binaries\win64\tslgame.exe => Keine Datei
FirewallRules: [UDP Query User{D73C0A91-BDCF-4308-8779-E29D6E7EAC70}C:\program files (x86)\steam\steamapps\common\pubg_experimental\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg_experimental\tslgame\binaries\win64\tslgame.exe => Keine Datei
FirewallRules: [{B2D51553-CCF4-4B14-9574-90684E912DE7}] => (Block) C:\program files (x86)\steam\steamapps\common\pubg_experimental\tslgame\binaries\win64\tslgame.exe => Keine Datei
FirewallRules: [{F545CC2E-0162-4B06-8E3F-E29AB6BCFC85}] => (Block) C:\program files (x86)\steam\steamapps\common\pubg_experimental\tslgame\binaries\win64\tslgame.exe => Keine Datei
FirewallRules: [{D3C5642C-89D5-4147-9410-8C8D4ECF3CFC}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Dead Cells\deadcells.exe () [Datei ist nicht signiert]
FirewallRules: [{E33BE5FF-8F9F-49A2-9BA0-63FE607D877F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Dead Cells\deadcells.exe () [Datei ist nicht signiert]
FirewallRules: [{45AA6764-3BE9-4F70-8643-BD9C1110BF13}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Dead Cells\deadcells_gl.exe () [Datei ist nicht signiert]
FirewallRules: [{1C520392-C3FF-4F09-A425-A0369E69993F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Dead Cells\deadcells_gl.exe () [Datei ist nicht signiert]
FirewallRules: [{A5BDF47A-4FAF-49D3-81E0-459076607E40}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization V\Launcher.exe => Keine Datei
FirewallRules: [{77099AD5-F820-4081-A394-0475C4CAE1E8}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization V\Launcher.exe => Keine Datei
FirewallRules: [{CC39C3D6-2288-4EA0-AF26-56847BC585F8}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Transistor\x64\Transistor.exe (Supergiant Games, LLC) [Datei ist nicht signiert]
FirewallRules: [{B77AA54B-C53E-4D7D-9F48-E4F554AE053C}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Transistor\x64\Transistor.exe (Supergiant Games, LLC) [Datei ist nicht signiert]
FirewallRules: [{D28126ED-0F82-45D0-8DEF-362F41EFBF2E}] => (Allow) D:\SteamLibrary\steamapps\common\Hollow Knight\hollow_knight.exe () [Datei ist nicht signiert]
FirewallRules: [{40AEFA9B-2B93-4496-9CB2-DF0589278AC9}] => (Allow) D:\SteamLibrary\steamapps\common\Hollow Knight\hollow_knight.exe () [Datei ist nicht signiert]
FirewallRules: [{0F4231F9-4728-45C3-83DE-D0F5E4E1503F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{297A835E-7A8C-457E-ADEA-EBC7ED56AB36}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{12A7B339-DF59-45F6-923A-3A25F6BDDA9E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Anno 1404\Addon.exe (Related Designs Software -> Related Designs)
FirewallRules: [{79D07907-FDD7-4121-89B7-A7166AD24DCE}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Anno 1404\Addon.exe (Related Designs Software -> Related Designs)
FirewallRules: [{23D2DA78-E257-4FE0-827E-CCC80EE644A6}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Anno 1404\Anno4.exe (Related Designs Software -> Related Designs)
FirewallRules: [{6EECA5D2-31B0-47D5-9799-D4B2E1B9810D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Anno 1404\Anno4.exe (Related Designs Software -> Related Designs)
FirewallRules: [TCP Query User{65EC131D-FEE0-4EC1-A253-EDAB66A6D888}C:\users\alex\desktop\blur(tm)\blur.exe] => (Allow) C:\users\alex\desktop\blur(tm)\blur.exe => Keine Datei
FirewallRules: [UDP Query User{F563AE82-E0DA-4F6B-B8D4-C033AA3AF790}C:\users\alex\desktop\blur(tm)\blur.exe] => (Allow) C:\users\alex\desktop\blur(tm)\blur.exe => Keine Datei
FirewallRules: [{4E714A2A-F84F-4DAA-BC9E-0E408237A243}] => (Block) C:\users\alex\desktop\blur(tm)\blur.exe => Keine Datei
FirewallRules: [{BB689681-0510-4C90-9592-99383E0BF044}] => (Block) C:\users\alex\desktop\blur(tm)\blur.exe => Keine Datei
FirewallRules: [{28EC9AC4-E05B-42C0-A927-91408810B755}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield V\bfvTrial.exe => Keine Datei
FirewallRules: [{DDC66A80-30A9-432D-BD77-077F0DC31D33}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield V\bfvTrial.exe => Keine Datei
FirewallRules: [{E209297A-E999-4D80-ACB5-F6FC54CE5B15}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield V\bfv.exe => Keine Datei
FirewallRules: [{5EF466F6-23EA-41DB-B5FC-993DEA9EC42C}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield V\bfv.exe => Keine Datei
FirewallRules: [{E8C1A8A2-A5B2-4C5B-8480-F728B8A052FF}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe => Keine Datei
FirewallRules: [{58F0AA4C-F4CD-4A7D-A8DD-BD653F2FFA63}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe => Keine Datei
FirewallRules: [{5A72BB2F-0E4A-4B65-A75F-7FEAB9165029}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization V\LaunchPad\LaunchPad.exe => Keine Datei
FirewallRules: [{01594CFF-9096-440C-9F41-9B705C4235AB}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization V\LaunchPad\LaunchPad.exe => Keine Datei
FirewallRules: [{DA235C15-499E-4AD0-B7AB-A6450B1A9CF2}] => (Allow) D:\SteamLibrary\steamapps\common\Castlevania Lords of Shadow 2\bin\CLOS2.exe (Mercury Steam Entertainment S.L.) [Datei ist nicht signiert]
FirewallRules: [{AD41B906-2F22-45D3-8DE5-D077FBE186ED}] => (Allow) D:\SteamLibrary\steamapps\common\Castlevania Lords of Shadow 2\bin\CLOS2.exe (Mercury Steam Entertainment S.L.) [Datei ist nicht signiert]
FirewallRules: [{10DBAEC3-3ADA-4AF4-8C33-E06AF4D0A8F6}] => (Allow) D:\SteamLibrary\steamapps\common\Strider\Strider.exe () [Datei ist nicht signiert]
FirewallRules: [{F53E15EB-C882-43D1-B2A5-AC82E407B173}] => (Allow) D:\SteamLibrary\steamapps\common\Strider\Strider.exe () [Datei ist nicht signiert]
FirewallRules: [{7CD32C1D-37CF-48E2-B1B4-AD58C5829B51}] => (Allow) D:\SteamLibrary\steamapps\common\Magicka 2\engine\Magicka2.exe () [Datei ist nicht signiert]
FirewallRules: [{B16ED351-51D4-431C-91E3-C60EE77079C0}] => (Allow) D:\SteamLibrary\steamapps\common\Magicka 2\engine\Magicka2.exe () [Datei ist nicht signiert]
FirewallRules: [{9A55C83D-24D2-41E0-8C66-9DDFE494323A}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Dishonored2\Dishonored2.exe => Keine Datei
FirewallRules: [{E16886D2-54BD-4891-A5C0-99F4BFBF2B48}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Dishonored2\Dishonored2.exe => Keine Datei
FirewallRules: [{BE2F8264-9F86-45DD-9C29-A800EBAC8F28}] => (Allow) E:\SteamLibrary\steamapps\common\Dishonored2\Dishonored2.exe (Arkane Studios) [Datei ist nicht signiert]
FirewallRules: [{6C7FEBAA-8E06-419D-8E1B-EEC124416B6F}] => (Allow) E:\SteamLibrary\steamapps\common\Dishonored2\Dishonored2.exe (Arkane Studios) [Datei ist nicht signiert]
FirewallRules: [{773EEF9E-FD7D-4B2C-80C7-CFBCCBA848B5}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization VI\LaunchPad\LaunchPad.exe => Keine Datei
FirewallRules: [{6DA17EC8-1372-4EB3-9F0C-0B1D64C13897}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization VI\LaunchPad\LaunchPad.exe => Keine Datei
FirewallRules: [{AD6E873F-EE03-4CC2-A832-FF8508877B99}] => (Allow) E:\SteamLibrary\steamapps\common\Sid Meier's Civilization VI\LaunchPad\LaunchPad.exe (Xsolla (USA), Inc -> 2K)
FirewallRules: [{55AE2872-394B-49D6-B355-53666347994F}] => (Allow) E:\SteamLibrary\steamapps\common\Sid Meier's Civilization VI\LaunchPad\LaunchPad.exe (Xsolla (USA), Inc -> 2K)
FirewallRules: [{D5874015-8C91-440D-80D6-DB42DD951F9F}] => (Allow) E:\SteamLibrary\steamapps\common\Sid Meier's Civilization VI\2KLauncher\LauncherPatcher.exe (Take-Two Interactive Software, Inc. -> Take-Two Interactive Software, Inc.)
FirewallRules: [{8E49D520-9F50-4C4E-AD36-9D076E37D8DF}] => (Allow) E:\SteamLibrary\steamapps\common\Sid Meier's Civilization VI\2KLauncher\LauncherPatcher.exe (Take-Two Interactive Software, Inc. -> Take-Two Interactive Software, Inc.)
FirewallRules: [{B4744CB9-58D1-48A6-BF83-B2963FEC0A05}] => (Allow) E:\SteamLibrary\steamapps\common\Disco Elysium\disco.exe () [Datei ist nicht signiert]
FirewallRules: [{E7F3FE2D-5909-4A82-BED4-147A77C49272}] => (Allow) E:\SteamLibrary\steamapps\common\Disco Elysium\disco.exe () [Datei ist nicht signiert]
FirewallRules: [{4354023D-102D-49CB-92CE-01ED855D32D4}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{8111EB53-33E9-4C61-AE7E-BF290036F2BC}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{03B2FE85-08CA-4BD7-A9F5-7FB7FBEDD7C5}] => (Allow) C:\Program Files (x86)\BsgLauncher\BsgLauncher.exe (BATTLESTATE GAMES LIMITED -> Battlestate Games)
FirewallRules: [{44AA301F-4B4C-4918-A604-B557B0F29FF1}] => (Allow) C:\Program Files (x86)\BsgLauncher\BsgLauncher.exe (BATTLESTATE GAMES LIMITED -> Battlestate Games)
FirewallRules: [TCP Query User{E8DDCEF5-113F-4C79-B100-06ABE47EE2AF}E:\origin\battlefield 2042\bf2042.exe] => (Allow) E:\origin\battlefield 2042\bf2042.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [UDP Query User{D002102B-0269-4CF4-9D6D-B3EEC7E4F6DD}E:\origin\battlefield 2042\bf2042.exe] => (Allow) E:\origin\battlefield 2042\bf2042.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{7CBCFC42-9D81-4364-9DEA-6D2E1AF1B89E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{85D60E80-F9A4-409C-B55B-D0909EF869DD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{5F975BF5-BC18-4CE2-B8B4-5CEDEAAE8534}] => (Allow) E:\Origin\Battlefield 2042\BF2042_launcher.exe (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{83D788C1-4276-4DE1-ACE6-6B079F244195}] => (Allow) E:\Origin\Battlefield 2042\BF2042_launcher.exe (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{2723CE16-6407-4271-B572-290D4758100D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\wallpaper_engine\bin\diagnostics32.exe (Skutta, Kristjan -> )
FirewallRules: [{446B0200-5B21-4BE5-8DA6-D737DF47D8C1}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\wallpaper_engine\bin\diagnostics32.exe (Skutta, Kristjan -> )
FirewallRules: [{7E25E1D1-57EF-46EE-BEE2-9D133E5058AA}] => (Allow) D:\SteamLibrary\steamapps\common\DarkestDungeon\_windows\Darkest.exe () [Datei ist nicht signiert]
FirewallRules: [{565F62F7-358E-4415-B2F1-0DB8B28CC0C0}] => (Allow) D:\SteamLibrary\steamapps\common\DarkestDungeon\_windows\Darkest.exe () [Datei ist nicht signiert]
FirewallRules: [{F674006A-78CF-4B66-BC4F-6830A810A9CF}] => (Allow) E:\Origin\Command and Conquer Red Alert II\RA2Launcher.exe () [Datei ist nicht signiert]
FirewallRules: [{BC913824-56FE-4881-BD8F-E5725643A020}] => (Allow) E:\Origin\Command and Conquer Red Alert II\RA2Launcher.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{ABE615CF-F8AB-4195-8062-631E656D80B0}E:\origin\command and conquer red alert ii\game.exe] => (Block) E:\origin\command and conquer red alert ii\game.exe (Westwood Studios) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{71FF7B1B-794D-491F-8A9B-5A3E3BB8730A}E:\origin\command and conquer red alert ii\game.exe] => (Block) E:\origin\command and conquer red alert ii\game.exe (Westwood Studios) [Datei ist nicht signiert]
FirewallRules: [{2F46B0D1-5C9B-40B4-8B6D-E44163F8C622}] => (Allow) E:\Origin\Command and Conquer Red Alert 3\RA3Launcher.exe (Kalloc Studios, Inc. -> Kalloc Studios) [Datei ist nicht signiert]
FirewallRules: [{8E0396D5-3C8E-43E1-B4EF-8AF6A1EBB341}] => (Allow) E:\Origin\Command and Conquer Red Alert 3\RA3Launcher.exe (Kalloc Studios, Inc. -> Kalloc Studios) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{9B8C2BCE-4725-4923-89F1-E3DBC70801C3}C:\users\alex\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\alex\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{D5B3C2D6-1679-4732-B8CD-505359699818}C:\users\alex\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\alex\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{C789F9D4-59F1-4646-8AD1-8D4DA53759A1}] => (Allow) E:\SteamLibrary\steamapps\common\FTL Faster Than Light\FTLGame.exe () [Datei ist nicht signiert]
FirewallRules: [{7AB8551D-87B2-479A-80F5-AB4EC5D1C30B}] => (Allow) E:\SteamLibrary\steamapps\common\FTL Faster Than Light\FTLGame.exe () [Datei ist nicht signiert]
FirewallRules: [{8D59A125-76BF-4C40-B642-81A21CA26DE1}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{6EB4D9FC-DA35-4A70-8457-0DC4E557E396}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{2C515626-E817-4719-8622-CF9F725BD3EB}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B3FEAA9A-795E-4CF6-8C69-42559DD7A3D6}] => (Allow) E:\SteamLibrary\steamapps\common\Shadow Tactics - Aiko's Choice\Shadow Tactics.exe () [Datei ist nicht signiert]
FirewallRules: [{B0FD1803-4C1A-47DB-83C4-56B15BEEDD56}] => (Allow) E:\SteamLibrary\steamapps\common\Shadow Tactics - Aiko's Choice\Shadow Tactics.exe () [Datei ist nicht signiert]
FirewallRules: [{D297F862-ECFB-42F6-AC1E-DD82D1BC4E8D}] => (Allow) C:\Program Files (x86)\BsgLauncher\BsgLauncher.exe (BATTLESTATE GAMES LIMITED -> Battlestate Games)
FirewallRules: [{1C50568C-62B4-4FF6-AF6C-D550D88C2D4B}] => (Allow) C:\Program Files (x86)\BsgLauncher\BsgLauncher.exe (BATTLESTATE GAMES LIMITED -> Battlestate Games)
FirewallRules: [{77E9BEA8-545A-4E6C-ACC5-E879154CABC9}] => (Allow) E:\SteamLibrary\steamapps\common\[NINJA GAIDEN Master Collection] NINJA GAIDEN 3 Razor's Edge\NINJA GAIDEN 3 Razor's Edge.exe (KOEI TECMO GAMES CO., LTD. -> KOEI TECMO GAMES CO., LTD.)
FirewallRules: [{220C7DD0-2AFE-4954-9654-4F2A757D8BC4}] => (Allow) E:\SteamLibrary\steamapps\common\[NINJA GAIDEN Master Collection] NINJA GAIDEN 3 Razor's Edge\NINJA GAIDEN 3 Razor's Edge.exe (KOEI TECMO GAMES CO., LTD. -> KOEI TECMO GAMES CO., LTD.)
FirewallRules: [{779F18DF-F765-4FD3-B5D1-CF55BABCC3CB}] => (Allow) E:\SteamLibrary\steamapps\common\Blasphemous\Blasphemous.exe () [Datei ist nicht signiert]
FirewallRules: [{03603777-4BCF-4209-A166-8986BE285D61}] => (Allow) E:\SteamLibrary\steamapps\common\Blasphemous\Blasphemous.exe () [Datei ist nicht signiert]
FirewallRules: [{ED43F542-AA5C-43EF-B4FF-7190F18B56BF}] => (Allow) E:\SteamLibrary\steamapps\common\ELDEN RING\Game\start_protected_game.exe (EasyAntiCheat Oy -> Epic Games, Inc.)
FirewallRules: [{BEE4B21A-CB4E-4754-B640-82FCEDDF287C}] => (Allow) E:\SteamLibrary\steamapps\common\ELDEN RING\Game\start_protected_game.exe (EasyAntiCheat Oy -> Epic Games, Inc.)
FirewallRules: [{4A38920B-3F20-4AA6-8646-F31AE0BBB0C9}] => (Allow) E:\SteamLibrary\steamapps\common\Mr Shifty\MrShifty.exe () [Datei ist nicht signiert]
FirewallRules: [{E531E2BE-FC70-46B5-BAA5-B176AC03781A}] => (Allow) E:\SteamLibrary\steamapps\common\Mr Shifty\MrShifty.exe () [Datei ist nicht signiert]
FirewallRules: [{8F69F186-DB46-481A-A697-B2A6C1545634}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\The Witcher 3\REDprelauncher.exe (GOG Sp. z o.o. -> GOG.com)
FirewallRules: [{528ADD36-29FE-4D3D-9121-E2F0B12A1885}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\The Witcher 3\REDprelauncher.exe (GOG Sp. z o.o. -> GOG.com)
FirewallRules: [{C1934325-EB01-4D36-9DDF-9A9051429F06}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{F60C5FE5-0AEC-4CDB-84F0-B9CC3F34C3FC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{28D36341-2FCF-4539-95E3-37753E343221}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{CDA190E5-B6F1-4564-8069-0E08CC04FE9E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{CD161EFC-074E-48FE-B5FD-3EFE8381F217}] => (Allow) E:\SteamLibrary\steamapps\common\Divinity Original Sin 2\bin\SupportTool.exe (LariLauncher) [Datei ist nicht signiert]
FirewallRules: [{133C6ABF-C471-4344-82EB-08600EDE4544}] => (Allow) E:\SteamLibrary\steamapps\common\Divinity Original Sin 2\bin\SupportTool.exe (LariLauncher) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{D5F18AAC-10C9-495A-9D98-0408BAF63895}E:\steamlibrary\steamapps\common\divinity original sin 2\defed\bin\eocapp.exe] => (Allow) E:\steamlibrary\steamapps\common\divinity original sin 2\defed\bin\eocapp.exe (Larian Studios Games Ltd. -> )
FirewallRules: [UDP Query User{790193C9-1E8F-476D-8DC8-3044CCBF7288}E:\steamlibrary\steamapps\common\divinity original sin 2\defed\bin\eocapp.exe] => (Allow) E:\steamlibrary\steamapps\common\divinity original sin 2\defed\bin\eocapp.exe (Larian Studios Games Ltd. -> )
FirewallRules: [{3365329E-64AE-4D5B-B176-D2AC5138FA23}] => (Allow) E:\SteamLibrary\steamapps\common\Guild Wars 2\Gw2-64.exe (ArenaNet, LLc -> ArenaNet)
FirewallRules: [{9EDF66F5-A7F8-4673-B59D-13D992725AC9}] => (Allow) E:\SteamLibrary\steamapps\common\Guild Wars 2\Gw2-64.exe (ArenaNet, LLc -> ArenaNet)
FirewallRules: [{DFC88054-1CB0-4937-830C-DE2F90E84E61}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\DARK SOULS III\Game\DarkSoulsIII.exe (FromSoftware,Inc. -> BANDAI NAMCO Entertainment Inc.)
FirewallRules: [{653A6EC1-32DE-44E2-A562-1D601714A45D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\DARK SOULS III\Game\DarkSoulsIII.exe (FromSoftware,Inc. -> BANDAI NAMCO Entertainment Inc.)
FirewallRules: [{61A25566-1340-412C-A6CF-17F35E0A68B6}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{BF99655A-14A9-4248-A8B2-328550DC3F21}] => (Allow) C:\Program Files (x86)\Overwolf\0.216.0.26\OverwolfBrowser.exe => Keine Datei
FirewallRules: [{CF389E56-C503-452A-92E1-B0FC506DE2E2}] => (Allow) C:\Program Files (x86)\Overwolf\0.216.0.26\OverwolfBrowser.exe => Keine Datei
FirewallRules: [{15282300-21B2-45CF-9B5A-5D89639BF929}] => (Block) C:\Program Files (x86)\Overwolf\0.216.0.26\OverwolfBrowser.exe => Keine Datei
FirewallRules: [{8B9D8BA7-8C92-4D96-971C-FF81EDB3AEB7}] => (Block) C:\Program Files (x86)\Overwolf\0.216.0.26\OverwolfBrowser.exe => Keine Datei
FirewallRules: [{DE9DD4F2-1FAF-4585-B92E-3EF5F74BC74D}] => (Allow) C:\Program Files (x86)\Overwolf\0.217.0.9\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{C0A9478D-E729-4BF5-A2FC-CB5E5CAF5037}] => (Allow) C:\Program Files (x86)\Overwolf\0.217.0.9\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{B4A9017C-4FC9-4A74-89F2-F2BE1EA7E8AA}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\wallpaper_engine\bin\diagnostics32.exe (Skutta, Kristjan -> )
FirewallRules: [{40F9314B-0B40-4C3C-89D0-6C511BDEAD5B}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\wallpaper_engine\bin\diagnostics32.exe (Skutta, Kristjan -> )
FirewallRules: [{DB63E3D3-75D6-486C-BDB2-7A8E6723E9C3}] => (Allow) D:\SteamLibrary\steamapps\common\DarkestDungeon\_windows\Darkest.exe () [Datei ist nicht signiert]
FirewallRules: [{D509410A-B825-45F1-92D9-E7A6DA014F8D}] => (Allow) D:\SteamLibrary\steamapps\common\DarkestDungeon\_windows\Darkest.exe () [Datei ist nicht signiert]
FirewallRules: [{E2550F4A-2CD6-4AED-A783-F651FF9365B5}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\109.0.1518.78\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
==================== Wiederherstellungspunkte =========================
04-02-2023 05:33:11 Geplanter Prüfpunkt
05-02-2023 16:11:34 AdwCleaner_BeforeCleaning_05/02/2023_16:11:34
==================== Fehlerhafte Geräte im Gerätemanager ============
Name: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Description: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Cisco Systems
Service: vpnva
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Fehlereinträge in der Ereignisanzeige: ========================
Applikationsfehler:
==================
Error: (02/05/2023 04:16:49 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: NVDisplay.Container.exe, Version: 1.37.3103.4323, Zeitstempel: 0x621dbda6
Name des fehlerhaften Moduls: nvapi64.dll, Version: 31.0.15.2824, Zeitstempel: 0x63c4385c
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000005dd69
ID des fehlerhaften Prozesses: 0xa90
Startzeit der fehlerhaften Anwendung: 0x01d93974dd8b5bde
Pfad der fehlerhaften Anwendung: C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d1bd230cd08e7436\Display.NvContainer\NVDisplay.Container.exe
Pfad des fehlerhaften Moduls: C:\WINDOWS\SYSTEM32\nvapi64.dll
Berichtskennung: 5c8f266d-21ac-42b7-aa12-1bd9717e62e0
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (02/05/2023 04:16:21 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Aufrufen von Routine "CoCreateInstance" ist ein unerwarteter Fehler aufgetreten. hr = 0x8007045b, Der Computer wird heruntergefahren.
.
Error: (02/05/2023 04:16:21 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volumenschattenkopie-Dienst-Informationen: Der COM-Server mit CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} und dem Namen "CEventSystem" kann nicht gestartet werden. [0x8007045b, Der Computer wird heruntergefahren.
]
Error: (02/03/2023 03:08:07 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Das Programm Gw2-64.exe Version 1.0.0.1 hat die Interaktion mit Windows beendet und wurde geschlossen. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 2138
Startzeit: 01d937d898dc50cd
Beendigungszeit: 4
Anwendungspfad: E:\SteamLibrary\steamapps\common\Guild Wars 2\Gw2-64.exe
Bericht-ID: 59623f7b-a5d8-469c-9722-61d6c769fc2e
Vollständiger Name des fehlerhaften Pakets:
Relative Anwendungs-ID des fehlerhaften Pakets:
Absturztyp: Unknown
Error: (02/03/2023 02:29:48 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Blish HUD.exe, Version: 1.0.0.0, Zeitstempel: 0xbcec03b7
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 10.0.19041.2364, Zeitstempel: 0x5b7d4d22
Ausnahmecode: 0xe0434352
Fehleroffset: 0x000000000002cd29
ID des fehlerhaften Prozesses: 0x1be0
Startzeit der fehlerhaften Anwendung: 0x01d937d29341cb58
Pfad der fehlerhaften Anwendung: E:\SteamLibrary\steamapps\common\Guild Wars 2\Blish.HUD.1.0.0\Blish HUD.exe
Pfad des fehlerhaften Moduls: C:\WINDOWS\System32\KERNELBASE.dll
Berichtskennung: b6b5418d-598f-4a4a-ae32-e1ec30888305
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (02/03/2023 02:29:48 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: Blish HUD.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund einer unbehandelten Ausnahme beendet.
Ausnahmeinformationen: System.ObjectDisposedException
bei System.Threading.ReaderWriterLockSlim.TryEnterWriteLockCore(TimeoutTracker)
bei System.Threading.ReaderWriterLockSlim.TryEnterWriteLock(TimeoutTracker)
bei BhModule.Community.Pathing.SafeList`1[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]].Clear()
bei BhModule.Community.Pathing.Scripting.ScriptEngine.Unload()
bei BhModule.Community.Pathing.PathingModule.Unload()
bei Blish_HUD.Modules.Module.DoUnload()
bei Blish_HUD.Modules.Module.Dispose(Boolean)
bei Blish_HUD.Modules.Module.Finalize()
Error: (02/02/2023 11:49:46 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: ASUSAUDIOCENTER.EXE, Version: 0.3.0.68, Zeitstempel: 0x5281e5ee
Name des fehlerhaften Moduls: VmixP8.dll, Version: 1.0.0.21, Zeitstempel: 0x4fceb8e0
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00001aa6
ID des fehlerhaften Prozesses: 0x24c4
Startzeit der fehlerhaften Anwendung: 0x01d93758797dbee4
Pfad der fehlerhaften Anwendung: C:\Program Files\ASUS Xonar Essence STX Audio\Customapp\ASUSAUDIOCENTER.EXE
Pfad des fehlerhaften Moduls: C:\Program Files\ASUS Xonar Essence STX Audio\Customapp\VmixP8.dll
Berichtskennung: 4aa6ffce-31c5-490f-802f-b5368779505c
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (02/02/2023 01:00:46 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Blish HUD.exe, Version: 1.0.0.0, Zeitstempel: 0xbcec03b7
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 10.0.19041.2364, Zeitstempel: 0x5b7d4d22
Ausnahmecode: 0xe0434352
Fehleroffset: 0x000000000002cd29
ID des fehlerhaften Prozesses: 0x1814
Startzeit der fehlerhaften Anwendung: 0x01d936994e308d8b
Pfad der fehlerhaften Anwendung: E:\SteamLibrary\steamapps\common\Guild Wars 2\Blish.HUD.1.0.0\Blish HUD.exe
Pfad des fehlerhaften Moduls: C:\WINDOWS\System32\KERNELBASE.dll
Berichtskennung: d51f1727-372e-4e84-9b78-b954e3f5240d
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Systemfehler:
=============
Error: (02/05/2023 06:20:05 PM) (Source: disk) (EventID: 7) (User: )
Description: Fehlerhafter Block bei Gerät \Device\Harddisk2\DR2.
Error: (02/05/2023 06:20:04 PM) (Source: disk) (EventID: 7) (User: )
Description: Fehlerhafter Block bei Gerät \Device\Harddisk2\DR2.
Error: (02/05/2023 06:20:04 PM) (Source: disk) (EventID: 7) (User: )
Description: Fehlerhafter Block bei Gerät \Device\Harddisk2\DR2.
Error: (02/05/2023 06:20:04 PM) (Source: disk) (EventID: 7) (User: )
Description: Fehlerhafter Block bei Gerät \Device\Harddisk2\DR2.
Error: (02/05/2023 06:20:04 PM) (Source: disk) (EventID: 7) (User: )
Description: Fehlerhafter Block bei Gerät \Device\Harddisk2\DR2.
Error: (02/05/2023 06:20:04 PM) (Source: disk) (EventID: 7) (User: )
Description: Fehlerhafter Block bei Gerät \Device\Harddisk2\DR2.
Error: (02/05/2023 06:20:04 PM) (Source: disk) (EventID: 7) (User: )
Description: Fehlerhafter Block bei Gerät \Device\Harddisk2\DR2.
Error: (02/05/2023 06:20:04 PM) (Source: disk) (EventID: 7) (User: )
Description: Fehlerhafter Block bei Gerät \Device\Harddisk2\DR2.
Windows Defender:
================
Date: 2023-02-05 18:11:54
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {9EB7ADA0-1908-48D1-97C0-1999A28785A9}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Date: 2023-02-04 20:42:47
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {6BD2C47D-8573-4391-8E80-71B9BA0241C7}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Date: 2023-02-04 05:26:20
Description:
Microsoft Defender Antivirus hat Schadsoftware oder andere potenziell unerwünschte Software erkannt.
Weitere Informationen:
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/Mailpassview&threatid=2147571412&enterprise=0
Name: HackTool:Win32/Mailpassview
Schweregrad: Hoch
Kategorie: Tool
Pfad: containerfile:_C:\Users\Alex\Documents\Programme\mailpv.zip.dat; file:_C:\Users\Alex\Documents\Programme\mailpv.zip.dat->mailpv.exe
Erkennungsursprung: Lokaler Computer
Erkennungstype: Konkret
Erkennungsquelle: Benutzer
Benutzer: Alex-PC-neu\Alex
Prozessname: Unknown
Sicherheitsversion: AV: 1.381.3095.0, AS: 1.381.3095.0, NIS: 1.381.3095.0
Modulversion: AM: 1.1.19900.2, NIS: 1.1.19900.2
Date: 2023-02-03 22:19:04
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {CB9517DF-CBBE-42D0-B53E-3CFB8D5AEA31}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Vollständige Überprüfung
Benutzer: Alex-PC-neu\Alex
Date: 2023-02-02 01:10:11
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {1D8A29A7-21B1-41B5-9940-9A80C34C58B6}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
CodeIntegrity:
===============
Date: 2023-02-05 18:11:54
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2023-02-05 01:02:55
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Mozilla Firefox\firefox.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.
Date: 2022-12-05 00:48:55
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Speicherinformationen ===========================
BIOS: American Megatrends Inc. P1.30 05/23/2014
Hauptplatine: ASRock Z97 Extreme4
Prozessor: Intel(R) Core(TM) i7-4790K CPU @ 4.00GHz
Prozentuale Nutzung des RAM: 39%
Installierter physikalischer RAM: 16332.06 MB
Verfügbarer physikalischer RAM: 9917.9 MB
Summe virtueller Speicher: 21196.06 MB
Verfügbarer virtueller Speicher: 12446.7 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:475.74 GB) (Free:67.27 GB) (Model: Crucial_CT512MX100SSD1) NTFS
Drive d: (Volume) (Fixed) (Total:977.96 GB) (Free:137.64 GB) (Model: Crucial_CT1050MX300SSD1) NTFS
Drive e: (Extension) (Fixed) (Total:931.51 GB) (Free:353.98 GB) (Model: WDC WDS100T2B0A-00SM50) NTFS
\\?\Volume{64b5724c-cf27-11e3-824f-806e6f6e6963}\ (System-reserviert) (Fixed) (Total:0.34 GB) (Free:0.09 GB) NTFS
\\?\Volume{5b16d48b-0000-0000-0000-400577000000}\ () (Fixed) (Total:0.86 GB) (Free:0.41 GB) NTFS
==================== MBR & Partitionstabelle ====================
==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 6105CC1B)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 476.9 GB) (Disk ID: 5B16D48B)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=475.7 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=877 MB) - (Type=27)
==========================================================
Disk: 2 (Protective MBR) (Size: 978.1 GB) (Disk ID: 00000000)
Partition: GPT.
==================== Ende von Addition.txt =======================
|
|
05.02.2023, 19:06
| #12 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Verdacht auf Malware: Youtube Channel Abo, Key Inputs Irgendwie sieht dein System ziemlich zugemüllt aus. Sehr viele Programme installiert. Und sehr viele davon sind auch superalt... Störende, veraltete oder unnötige Programme deinstallieren Bitte über Programme und Features (appwiz.cpl) deinstallieren:
__________________ Logfiles bitte immer in CODE-Tags posten |
|
05.02.2023, 19:09
| #13 |
| | Verdacht auf Malware: Youtube Channel Abo, Key Inputs Ja da hast du Recht, wobei sich das Verhalten nicht durch die veralteten Programme erklären lässt oder? Gibt es noch eine Möglichkeit nach Malware zu suchen? Evtl. ein Scan im abgesicherten Modus o. ä.? |
|
05.02.2023, 19:25
| #14 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Verdacht auf Malware: Youtube Channel Abo, Key Inputs Hast du meinen Beitrag nicht verstanden? Du sollst die aufgelisteten Programme deinstallieren. Dann gehts weiter.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
05.02.2023, 20:46
| #15 |
| | Verdacht auf Malware: Youtube Channel Abo, Key Inputs Ich habe jetzt die meisten Programme deinstalliert. Diejenigen, die ich häufig nutze und weiterhin benötige habe ich geupdated. Ist das so in Ordnung? 7-Zip 9.20 (x64 edition) - Geupdated Adobe Acrobat Reader - Entfernt Adobe Refresh Manager - Entfernt Audacity 2.3.0 - Geupdated CCleaner - Entfernt Foxit Reader 8.1.0.1013 - Entfernt GIMP 2.10.30 - Geupdated Google Chrome (durch Mozilla Firefox ersetzen) - Entfernt Greenshot 1.2.4.10 - Entfernt IrfanView 4.38 - Entfernt Java 8 Update 261 - Entfernt KeePass Password Safe 2.49 - Geupdated Notepad++ (32-bit x86) 8.2.1 - Geupdated SpeedFan (remove only) - Entfernt TreeSize Free V3.1 - Entfernt VLC media player 3.0.12 - Geupdated |
|
| Themen zu Verdacht auf Malware: Youtube Channel Abo, Key Inputs |
| administrator, adobe, asus, defender, desktop, firefox, geforce, google, internet, malware, malwarebytes, microsoft, mozilla, nvidia, ordner, prozesse, registry, scan, secure, services.exe, software, svchost.exe, teamspeak, usb, windows |
Linear-Darstellung
