Über Programme und Features deinstalliert:

• Avast Free Antivirus
• Avast Secure Browser
• CCleaner
• FileZilla Client 3.38.1
• OpenOffice

Über Programme und Features nicht gefunden:

• Adobe Refresh Manager
• Avast Update Helper
• Avast Update Helper

Firefox und Google Chrome brauch ich, wie Edge wegen meiner Ausbildung. Wir sollen immer in allen drei Browsern die Ergebnisse prüfen und anzeigen.

• Google Chrome

Gut, dann behalte Chrome. Aber alle Programme müssen regelmäßig und zeitnah aktualisiert werden.

adwCleaner

Führe AdwCleaner gemäß der bebilderten Anleitung aus und poste abschließend die Logdatei in CODE-Tags.

adwcleaner zwecks Kontrolle bitte wiederholen, falls es Funde gab.

Und was mach ich wegen diesen drei? Die find ich nicht in der Liste.

• Adobe Refresh Manager
• Avast Update Helper
• Avast Update Helper

Erstmal ignorieren.

Also eine vorinstallierte Software hat er gefunden: Preinstalled.HPCleanFLC, die hab ich auch in Quarantäne verschieben lassen. Die Version von adwCleaner war 8.4.0.

Code: Alles auswählenAufklappen

ATTFilter

# -------------------------------
# Malwarebytes AdwCleaner 8.4.0.0
# -------------------------------
# Build:    08-30-2022
# Database: 2022-10-10.1 (Cloud)
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start:    06-03-2023
# Duration: 00:00:00
# OS:       Windows 10 (Build 19045.2965)
# Cleaned:  1
# Failed:   0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

No malicious registry entries cleaned.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

Deleted       Preinstalled.HPCleanFLC   File   C:\Users\Administrator\Desktop\Microsoft Office.lnk


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [1474 octets] - [03/06/2023 12:43:33]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
         

Dann nochmal neue FRST-Logs.

Diese vorinstallierte Software (Preinstalled.HPCleanFLC), welche der adwCleaner gefunden hatte, war das schon Malware? Und ist jede vorinstallierte Software bei adwCleaner eine Malware?

FRST.txt

Code: Alles auswählenAufklappen

ATTFilter

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 29-05-2023
durchgeführt von ***** (Administrator) auf SANDARA (MSI MS-7918) (03-06-2023 13:31:49)
Gestartet von C:\Users\*****\Desktop\FRST05\FRST64.exe
Geladene Profile: *****
Plattform: Microsoft Windows 10 Home Version 22H2 19045.2965 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: Chrome
Start-Modus: Normal

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <12>
(explorer.exe ->) (Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3206.0_x64__kzf8qxf38zg5c\Skype\Skype.exe <6>
(Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) O:\Spiele Programme\Origin\OriginWebHelperService.exe
(services.exe ->) (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(services.exe ->) (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.3-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.3-0\NisSrv.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_ee20464bb4ac57f4\Display.NvContainer\NVDisplay.Container.exe <2>
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.823.3261.0_x64__8wekyb3d8bbwe\GameBar.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.823.3261.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registry (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2014-04-11] (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7637208 2014-07-15] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM-x32\...\Run: [TeamsMachineInstaller] => C:\Program Files (x86)\Teams Installer\Teams.exe [109324536 2021-03-12] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [GaomonTablet] => C:\Users\*****\AppData\Roaming\GaomonTablet\GaomonTablet.exe [2154696 2021-06-26] (GUANZHOU GAOMON ELECTRONIC TECHNOLOGY CO.,LTD . -> Guangzhou Gaomon Technology Co., Ltd.)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ACHTUNG
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot% <==== ACHTUNG
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ProgramFilesDir% <==== ACHTUNG
HKU\S-1-5-21-3304759667-497493644-3126985197-1001\...\Run: [Steam] => O:\Spiele Programme\Steam\steam.exe [4362600 2023-05-30] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-3304759667-497493644-3126985197-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2603944 2023-05-29] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3304759667-497493644-3126985197-1001\...\Run: [Discord] => C:\Users\*****\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub)
HKU\S-1-5-21-3304759667-497493644-3126985197-1001\...\Run: [com.blitz.app] => "C:\Users\*****\AppData\Local\Programs\Blitz\Blitz.exe" --autostart (Keine Datei)
HKU\S-1-5-21-3304759667-497493644-3126985197-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [152025856 2023-05-24] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-3304759667-497493644-3126985197-1001\...\Run: [Adobe Acrobat Synchronizer] => "O:\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe" (Keine Datei)
HKU\S-1-5-21-3304759667-497493644-3126985197-1001\...\Run: [EpicGamesLauncher] => P:\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37134288 2023-05-24] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-3304759667-497493644-3126985197-1001\...\Run: [Opera GX Browser Assistant] => O:\Programme\OperaGX\assistant\browser_assistant.exe [3291288 2021-02-01] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-3304759667-497493644-3126985197-1001\...\Run: [MicrosoftEdgeAutoLaunch_0A4B5550BC55371102823A12F4742CEA] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4152208 2023-05-25] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3304759667-497493644-3126985197-1001\...\MountPoints2: {06ff0d2f-97f0-11ec-8369-d8cb8a5b2b42} - "H:\HiSuiteDownLoader.exe" 
HKU\S-1-5-21-3304759667-497493644-3126985197-1001\...\MountPoints2: {1caba028-16b0-11ed-838d-d8cb8a5b2b42} - "I:\HiSuiteDownLoader.exe" 
HKU\S-1-5-21-3304759667-497493644-3126985197-1001\...\MountPoints2: {4e70d56c-8a97-11eb-832a-d8cb8a5b2b42} - "H:\HiSuiteDownLoader.exe" 
HKU\S-1-5-21-3304759667-497493644-3126985197-1001\...\MountPoints2: {61f760ae-5588-11eb-8326-d8cb8a5b2b42} - "I:\HiSuiteDownLoader.exe" 
HKU\S-1-5-21-3304759667-497493644-3126985197-1001\...\MountPoints2: {e0477c3a-3e67-11ea-8307-d8cb8a5b2b42} - "G:\HiSuiteDownLoader.exe" 
HKU\S-1-5-21-3304759667-497493644-3126985197-1001\...\MountPoints2: {edfab538-f025-11e4-8270-d8cb8a55d3e0} - "H:\AutoRun.exe" TMM70
HKU\S-1-5-21-3304759667-497493644-3126985197-500\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2603944 2023-05-29] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Print\Monitors\KM Language Monitor: C:\Windows\system32\KMPJL64.DLL [80384 2013-04-08] (Microsoft Windows Hardware Compatibility Publisher -> KYOCERA Document Solutions Inc.)
HKLM\Software\...\AppCompatFlags\Custom\DKII.EXE: [{47c14aa9-ab36-4d1e-bbe9-c635680b11bb}.sdb] -> GOG.com Dungeon Keeper 2
HKLM\Software\...\AppCompatFlags\Custom\Earth2150.exe: [{198a5108-7711-4905-8385-f6539803ca0b}.sdb] -> goggame
HKLM\Software\...\AppCompatFlags\InstalledSDB\{198a5108-7711-4905-8385-f6539803ca0b}: [DatabasePath] -> C:\WINDOWS\AppPatch\CustomSDB\{198a5108-7711-4905-8385-f6539803ca0b}.sdb [2021-11-18]
HKLM\Software\...\AppCompatFlags\InstalledSDB\{47c14aa9-ab36-4d1e-bbe9-c635680b11bb}: [DatabasePath] -> C:\WINDOWS\AppPatch\CustomSDB\{47c14aa9-ab36-4d1e-bbe9-c635680b11bb}.sdb [2018-02-10]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> "C:\Program Files (x86)\AVAST Software\Browser\Application\91.1.10672.124\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\113.0.5672.129\Installer\chrmstp.exe [2023-06-01] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2179C5D3-EBFF-11CF-B6FD-00AA00B4E220}] -> 
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] -> C:\Windows\SysWOW64\advpack.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> "C:\Program Files (x86)\AVAST Software\Browser\Application\88.0.7844.104\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Beschränkung <==== ACHTUNG
HKLM\SOFTWARE\Policies\Google: Beschränkung <==== ACHTUNG

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {04825F0C-C6A3-4947-BC0B-3FE2725C668B} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [123872 2023-05-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {06B1C6B1-0847-493F-AE0F-BF41703D8889} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {0E0A1367-D428-4359-86B0-67F85ABF9A6C} - \Microsoft\Windows\UNP\RunCampaignManager -> Keine Datei <==== ACHTUNG
Task: {12F00D42-A06E-415A-9AD9-B164C58ADB17} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {13656366-DE78-4ED5-A476-995988CCC20C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.23050.3-0\MpCmdRun.exe [1649976 2023-06-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2AD72AAF-40D6-4D41-8CD0-B524F3970F9B} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {3251174F-AB05-49AA-9D7A-66F624BAAE7B} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3304759667-497493644-3126985197-500 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4147632 2023-05-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => %SystemRoot%\System32\AutoWorkplace.exe  join (Keine Datei)
Task: {3D357343-54FF-4672-9934-9F7D9596AE23} - System32\Tasks\AdobeAAMUpdater-1.0-Sandara-***** => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe  -mode=scheduled (Keine Datei)
Task: {3ECB7701-2A62-4F4D-B370-5DD83DA69825} - \Microsoft\Windows\Setup\gwx\rundetector -> Keine Datei <==== ACHTUNG
Task: {43B96C72-0EA7-45D1-8789-8E0E32F69A49} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe  /backup /iavs (Keine Datei)
Task: {44D4F18A-E7F2-4D17-AE18-AFECDD090D78} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
Task: {4A3E5AEB-21EA-4098-BD4D-A4A2A3A27382} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA}
Task: {4DF1CF13-134C-46E0-AF72-C34CD8F4D341} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26513416 2023-05-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {5A0826CD-8389-423B-8080-C25708FD069E} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {5B08B8DF-8BB7-4F75-8735-9AAD23867F8A} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {5CA9DBD8-05FD-4F9A-A120-89326E21EE16} - System32\Tasks\Opera GX scheduled Autoupdate 1635152109 => O:\Programme\OperaGX\launcher.exe [2611608 2023-05-25] (Opera Norway AS -> Opera Software)
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {6E9A143B-6586-4D08-A396-3F96F8182352} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {7123287A-4A19-40ED-8933-5EE4FAE4E784} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-25] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {7918D3E6-6775-4350-9851-B8F506013781} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905984 2022-05-04] (Nvidia Corporation -> NVIDIA Corporation)
Task: {7D489210-919B-4DDD-A184-DE23E129EBE5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.23050.3-0\MpCmdRun.exe [1649976 2023-06-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {835E78F5-4C4F-4BF6-BE9C-56BD6DBD4E76} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {83DB3BB0-6172-49E1-BAFB-8A7E97E402A5} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> Keine Datei <==== ACHTUNG
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {8C039388-3DD5-482D-8EDC-C2B7D1248C2C} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
Task: {99F48B93-9EFA-48F1-B589-492FFDCC7B8D} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1649920 2022-05-04] (Nvidia Corporation -> NVIDIA Corporation)
Task: {9D06494E-6B0F-4793-8157-07B8F395A974} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26513416 2023-05-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {9DFF6B95-7B2E-4F3E-8B78-08D6D1B75DDD} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> Keine Datei <==== ACHTUNG
Task: {A0F9B4C9-568A-4135-8896-149A89866A47} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1649920 2022-05-04] (Nvidia Corporation -> NVIDIA Corporation)
Task: {A18AF29E-8F69-4A07-BD47-6600D1FED888} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4147632 2023-05-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {A645DCAE-798A-461C-BC8E-8365B3383A97} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> Keine Datei <==== ACHTUNG
Task: {A7957736-7468-4245-9CE7-0DC178624DA8} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3304759667-497493644-3126985197-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4147632 2023-05-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {A83F8060-DD4C-4802-885C-75FB33E99BB2} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1649920 2022-05-04] (Nvidia Corporation -> NVIDIA Corporation)
Task: {AB23C507-390B-4BD5-AC31-BCC7DA5E48CA} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG
Task: {B9CF8777-D11B-4617-961D-E4A9C9446A16} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-09-05] (Google Inc -> Google Inc.)
Task: {BFF40044-6020-4C82-A54A-4E2DDB95A4B9} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [647424 2022-05-04] (Nvidia Corporation -> NVIDIA Corporation)
Task: {C30BCC7B-A507-48C4-A321-1DA3DFA08DF6} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3341432 2022-05-06] (Nvidia Corporation -> NVIDIA Corporation)
Task: {CA0DD305-834B-48A1-9710-331658CA99D8} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [123872 2023-05-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {CBEAADD1-09F2-45E4-9266-2C17F705569E} - System32\Tasks\Opera GX scheduled assistant Autoupdate 1636391419 => O:\Programme\OperaGX\launcher.exe [2611608 2023-05-25] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="O:\Programme\OperaGX\assistant" $(Arg0)
Task: {CDD0DAFD-7D2B-431D-85DB-152DA78ADDAA} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1649920 2022-05-04] (Nvidia Corporation -> NVIDIA Corporation)
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {D72B8ACF-36B4-46E3-AA5B-7CEC9A80562C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.23050.3-0\MpCmdRun.exe [1649976 2023-06-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D8EF2743-FB47-4B45-AC98-26E5669CF66D} - System32\Tasks\Mozilla\Firefox Background Update E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\firefox.exe [592248 2022-08-06] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\E7CF176E110C211B\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {DD4163E9-6325-4FFB-AB34-7483092E10CC} - System32\Tasks\Microsoft\Office\Office Serviceability Manager => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe [3843776 2023-05-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {F275208A-63F4-44B5-ADAD-D376B82A2491} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [661368 2022-08-06] (Mozilla Corporation -> Mozilla Foundation)
Task: {F2A77090-586B-47ED-AB91-821DC378F3D6} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-09-05] (Google Inc -> Google Inc.)
Task: {F5EF4B39-2BBA-45F6-A04A-5ED11440CE50} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.23050.3-0\MpCmdRun.exe [1649976 2023-06-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F775DACD-291E-4173-A61C-ADBAA64D17C5} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905984 2022-05-04] (Nvidia Corporation -> NVIDIA Corporation)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)


==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{922bce0b-0c2a-420c-9b33-8371627edab5}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{f2c636d0-262c-4fec-8a37-583fb1a74aba}: [DhcpNameServer] 192.168.0.1 192.168.0.1

Edge: 
=======
Edge Extension: (Kein Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [nicht gefunden]
Edge Extension: (Kein Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [nicht gefunden]
Edge Extension: (Kein Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [nicht gefunden]
Edge Extension: (Kein Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [nicht gefunden]
Edge DefaultProfile: Default
Edge Profile: C:\Users\*****\AppData\Local\Microsoft\Edge\User Data\Default [2023-06-03]
Edge Extension: (Edge relevant text changes) - C:\Users\*****\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-04-24]
Edge Profile: C:\Users\*****\AppData\Local\Microsoft\Edge\User Data\Guest Profile [2022-07-02]

FireFox:
========
FF DefaultProfile: p8evsnph.default
FF ProfilePath: C:\Users\*****\AppData\Roaming\Mozilla\Firefox\Profiles\p8evsnph.default [2023-06-01]
FF Session Restore: Mozilla\Firefox\Profiles\p8evsnph.default -> ist aktiviert.
FF Extension: (Firebug) - C:\Users\*****\AppData\Roaming\Mozilla\Firefox\Profiles\p8evsnph.default\Extensions\firebug@software.joehewitt.com.xpi [2017-03-31] []
FF Extension: (Adblock Plus - kostenloser Adblocker) - C:\Users\*****\AppData\Roaming\Mozilla\Firefox\Profiles\p8evsnph.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2023-05-02]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-01-07] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-01-07] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-11-02] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-11-02] (Microsoft Corporation -> Microsoft Corporation)

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default [2023-06-03]
CHR Notifications: Default -> hxxps://www.f-list.net; hxxps://www.youtube.com
CHR Extension: (uBlock Origin) - C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2023-04-27]
CHR Extension: (NoScript) - C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\doojmbjmlfjjnbmnoijecmcbfeoakpjm [2023-03-04]
CHR Extension: (Dark Reader) - C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\eimadpbcbfnmbkopoojfekhnkhdbieeh [2023-04-11]
CHR Extension: (Google Docs Offline) - C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-05-24]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Profile: C:\Users\*****\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-02-21]
CHR Profile: C:\Users\*****\AppData\Local\Google\Chrome\User Data\System Profile [2022-07-02]

Opera: 
=======
StartMenuInternet: (HKU\S-1-5-21-3304759667-497493644-3126985197-1001) Opera GXStable - "O:\Programme\OperaGX\Launcher.exe"

==================== Dienste (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [9880840 2023-02-08] (BattlEye Innovations e.K. -> )
S3 BRSptStub; C:\ProgramData\BitRaider\BRSptStub.exe [363208 2020-02-11] (BitRaider LLC -> BitRaider, LLC)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11749376 2023-05-12] (Microsoft Corporation -> Microsoft Corporation)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [802432 2020-07-31] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [584680 2023-01-13] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.096.0507.0001\FileSyncHelper.exe [3444656 2023-05-29] (Microsoft Corporation -> Microsoft Corporation)
S3 GalaxyClientService; C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [2117096 2023-02-11] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7166552 2022-06-13] (GOG Sp. z o.o. -> GOG.com)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [10195200 2023-05-24] (Logitech Inc -> Logitech, Inc.)
S3 OfficeSvcManagerAddons; C:\WINDOWS\system32\dllhost.exe /Processid:{2CA2E202-932F-4BA2-8771-195BB86398F5} [21312 2020-10-16] (Microsoft Windows -> Microsoft Corporation)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.096.0507.0001\OneDriveUpdaterService.exe [3780000 2023-05-29] (Microsoft Corporation -> Microsoft Corporation)
S3 Origin Client Service; O:\Spiele Programme\Origin\OriginClientService.exe [2572096 2023-03-13] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; O:\Spiele Programme\Origin\OriginWebHelperService.exe [3491144 2023-03-13] (Electronic Arts, Inc. -> Electronic Arts)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.23050.3-0\NisSrv.exe [3228464 2023-06-02] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.23050.3-0\MsMpEng.exe [133592 2023-06-02] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_ee20464bb4ac57f4\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_ee20464bb4ac57f4\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Treiber (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 atksgt; C:\WINDOWS\System32\DRIVERS\atksgt.sys [310728 2015-05-01] (Tages SA -> )
S3 BRDriver64_1_3_3_E02B25FC; C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [78088 2020-02-12] (BitRaider -> BitRaider)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2021-09-16] (Microsoft Corporation) [Datei ist nicht signiert]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [154112 2021-10-15] (Microsoft Corporation) [Datei ist nicht signiert]
S3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30352 2015-05-01] (Disc Soft Ltd -> Disc Soft Ltd)
S3 LGSHidFilt; C:\WINDOWS\system32\DRIVERS\LGSHidFilt.Sys [64280 2013-05-30] (Logitech -> Logitech Inc.)
R2 lirsgt; C:\WINDOWS\System32\DRIVERS\lirsgt.sys [42696 2015-05-01] (Tages SA -> )
R3 logi_audio_surround; C:\WINDOWS\system32\drivers\logi_audio_surround.sys [52536 2023-05-24] (Logitech Inc -> Logitech)
R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [44880 2022-09-24] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [32080 2022-09-24] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [73040 2022-09-24] (Logitech Inc -> Logitech)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
S3 rspLLL; C:\WINDOWS\System32\DRIVERS\rspLLL64.sys [26368 2015-07-13] (Daniel Terhell -> Resplendence Software Projects Sp.)
S3 Secdrv; C:\WINDOWS\SysWOW64\drivers\SECDRV.SYS [14368 1999-09-27] () [Datei ist nicht signiert]
S3 SIVDriver; C:\Windows\system32\Drivers\SIVX64.sys [157432 2014-11-14] (RH Software -> Ray Hinchliffe)
R3 SteamStreamingMicrophone; C:\WINDOWS\system32\drivers\SteamStreamingMicrophone.sys [40736 2017-07-28] (Valve Corp. -> )
R3 SteamStreamingSpeakers; C:\WINDOWS\system32\drivers\SteamStreamingSpeakers.sys [40736 2017-07-21] (Valve Corp. -> )
R3 vmulti; C:\WINDOWS\System32\drivers\vmulti.sys [19600 2021-06-26] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49616 2023-06-02] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [498984 2023-06-02] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99608 2023-06-02] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat (erstellte) (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2023-06-03 13:31 - 2023-06-03 13:31 - 000000000 ____D C:\Users\*****\Desktop\FRST05
2023-06-03 11:40 - 2023-06-03 11:40 - 008791352 _____ (Malwarebytes) C:\Users\*****\Desktop\adwcleaner.exe
2023-06-03 11:39 - 2023-06-03 11:39 - 002638680 _____ (Malwarebytes) C:\Users\*****\Desktop\MBSetup.exe
2023-06-01 23:27 - 2023-06-03 13:32 - 000000000 ____D C:\FRST
2023-06-01 23:26 - 2023-06-03 11:47 - 006978782 _____ C:\Users\*****\Desktop\FRST05.zip
2023-05-31 02:50 - 2023-05-31 02:50 - 000000403 _____ C:\Users\*****\Desktop\vamprunde.txt
2023-05-30 20:15 - 2023-05-30 20:15 - 057401864 _____ C:\Users\*****\Desktop\W3-Modul.zip
2023-05-26 20:44 - 2023-05-26 23:59 - 001023900 _____ C:\Users\*****\Desktop\Wraith20_ShadowSheet_Interactive.pdf
2023-05-26 20:37 - 2023-05-26 20:37 - 001176314 _____ C:\Users\*****\Desktop\viola.pdf
2023-05-25 14:35 - 2023-05-25 14:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2023-05-25 14:35 - 2023-05-25 14:35 - 000000000 ____D C:\Program Files\LGHUB
2023-05-24 18:34 - 2023-05-24 18:34 - 002081912 _____ (Logitech) C:\WINDOWS\system32\logi_audio_hx2e_render_apo.dll
2023-05-24 18:34 - 2023-05-24 18:34 - 001893928 _____ (Logitech) C:\WINDOWS\system32\logi_audio_headset_capture_apo.dll
2023-05-22 19:28 - 2023-05-22 19:28 - 007274609 _____ C:\Users\*****\Desktop\Dokumentation_Final_Nadine_Holstein_Winterpruefung22 2.pdf
2023-05-11 18:00 - 2023-05-11 18:00 - 000000000 ___HD C:\$WinREAgent
2023-05-08 23:44 - 2023-05-08 23:44 - 000000095 _____ C:\Users\*****\Desktop\Neues Textdokument (3).txt

==================== Ein Monat (geänderte) ==================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2023-06-03 13:32 - 2015-05-01 15:25 - 000000000 ____D C:\Program Files (x86)\Google
2023-06-03 13:31 - 2020-08-23 15:11 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-06-03 13:23 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-06-03 12:48 - 2020-08-23 15:16 - 001722998 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-06-03 12:48 - 2019-12-07 16:50 - 000743708 _____ C:\WINDOWS\system32\perfh007.dat
2023-06-03 12:48 - 2019-12-07 16:50 - 000150130 _____ C:\WINDOWS\system32\perfc007.dat
2023-06-03 12:48 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2023-06-03 12:45 - 2017-07-24 18:46 - 000000000 ____D C:\ProgramData\NVIDIA
2023-06-03 12:44 - 2020-03-26 12:41 - 000000000 ____D C:\Users\*****\AppData\Roaming\LGHUB
2023-06-03 12:42 - 2020-08-23 15:11 - 009899272 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-06-03 12:42 - 2020-08-23 15:11 - 000000000 ____D C:\Users\*****
2023-06-03 12:42 - 2020-03-26 12:41 - 000000000 ____D C:\Users\*****\AppData\Local\LGHUB
2023-06-03 12:41 - 2021-06-23 07:26 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2023-06-03 12:41 - 2020-08-23 15:17 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-06-03 12:41 - 2020-08-23 15:11 - 000008192 ___SH C:\DumpStack.log.tmp
2023-06-03 12:41 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2023-06-03 12:41 - 2018-04-12 18:27 - 000000000 ____D C:\Users\*****\AppData\Local\AVAST Software
2023-06-03 12:41 - 2015-05-01 15:22 - 000000000 ____D C:\ProgramData\AVAST Software
2023-06-03 12:39 - 2020-08-23 15:17 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2023-06-03 12:39 - 2019-12-07 11:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2023-06-03 12:25 - 2016-12-21 18:27 - 000000000 ____D C:\Users\*****\AppData\LocalLow\Mozilla
2023-06-03 10:53 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-06-03 10:53 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-06-03 10:53 - 2018-01-02 16:58 - 000000000 ____D C:\Users\*****\AppData\Local\Packages
2023-06-03 10:52 - 2015-05-02 02:01 - 000000000 ____D C:\Users\*****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2023-06-03 10:52 - 2015-05-01 21:36 - 000000000 ____D C:\Program Files (x86)\Adobe
2023-06-03 10:48 - 2021-07-05 10:32 - 000000000 ____D C:\Program Files\Adobe
2023-06-03 10:48 - 2015-05-01 21:37 - 000000000 ____D C:\Program Files\Common Files\Adobe
2023-06-03 10:48 - 2015-05-01 13:00 - 000000000 ____D C:\Users\*****\AppData\Roaming\Adobe
2023-06-03 10:45 - 2021-02-01 16:36 - 000000000 ____D C:\Users\*****\.VirtualBox
2023-06-03 10:44 - 2015-05-01 21:36 - 000000000 ____D C:\ProgramData\Adobe
2023-06-03 10:43 - 2021-02-01 16:36 - 000000000 ____D C:\ProgramData\VirtualBox
2023-06-03 10:40 - 2022-07-01 08:10 - 000000000 ___RD C:\Users\*****\Creative Cloud Files
2023-06-03 10:38 - 2021-10-04 08:36 - 000000000 ____D C:\Users\*****\AppData\Roaming\com.adobe.dunamis
2023-06-03 09:07 - 2015-11-21 18:20 - 000000000 ____D C:\Users\*****\AppData\Local\Ubisoft Game Launcher
2023-06-03 09:01 - 2015-11-21 18:20 - 000000000 ____D C:\Program Files (x86)\Ubisoft Game Launcher
2023-06-03 03:32 - 2018-02-12 18:32 - 000000000 ____D C:\Users\*****\AppData\Roaming\discord
2023-06-02 23:22 - 2018-02-12 18:32 - 000000000 ____D C:\Users\*****\AppData\Local\Discord
2023-06-02 17:55 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-06-02 17:33 - 2021-12-13 18:45 - 000003066 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3304759667-497493644-3126985197-1001
2023-06-02 17:33 - 2021-12-13 18:45 - 000003062 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3304759667-497493644-3126985197-500
2023-06-02 17:33 - 2021-11-08 19:10 - 000003672 _____ C:\WINDOWS\system32\Tasks\Opera GX scheduled assistant Autoupdate 1636391419
2023-06-02 17:33 - 2021-10-25 10:55 - 000003486 _____ C:\WINDOWS\system32\Tasks\Opera GX scheduled Autoupdate 1635152109
2023-06-02 17:33 - 2021-06-22 12:44 - 000002716 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2023-06-02 17:33 - 2020-08-23 15:17 - 000003684 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-06-02 17:33 - 2020-08-23 15:17 - 000003568 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2023-06-02 17:33 - 2020-08-23 15:17 - 000003460 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-06-02 17:33 - 2020-08-23 15:17 - 000003398 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-06-02 17:33 - 2020-08-23 15:17 - 000003344 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2023-06-02 17:33 - 2020-08-23 15:17 - 000003152 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-06-02 17:33 - 2020-08-23 15:17 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-06-02 17:33 - 2020-08-23 15:17 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-06-02 17:33 - 2020-08-23 15:17 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-06-02 17:33 - 2020-08-23 15:17 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-06-02 17:33 - 2020-08-23 15:17 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-06-02 17:33 - 2020-08-23 15:17 - 000002914 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-06-02 17:33 - 2020-08-23 15:17 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-06-02 16:42 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Windows Defender
2023-06-02 16:42 - 2018-05-16 15:55 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-06-02 16:32 - 2014-09-24 01:09 - 000803176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2023-06-01 23:15 - 2015-05-01 15:25 - 000002300 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-06-01 23:15 - 2015-05-01 15:25 - 000002259 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2023-06-01 23:01 - 2022-08-06 05:47 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-06-01 23:01 - 2021-12-31 15:29 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2023-05-31 16:58 - 2021-10-25 10:55 - 000000867 _____ C:\Users\*****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Browser Opera GX.lnk
2023-05-31 02:02 - 2015-05-03 19:44 - 000000000 ____D C:\Users\*****\AppData\Roaming\Microsoft\Word
2023-05-30 13:54 - 2016-07-24 21:33 - 000000000 ____D C:\Users\*****\AppData\Local\Battle.net
2023-05-30 08:04 - 2018-05-16 17:03 - 000000000 ____D C:\Users\*****\AppData\Local\D3DSCache
2023-05-29 22:35 - 2021-06-22 12:44 - 000002155 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-05-29 18:41 - 2021-06-19 14:26 - 000000000 ____D C:\Users\*****\Desktop\bfw Dortmund
2023-05-27 00:05 - 2020-06-23 10:56 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-05-27 00:05 - 2020-06-23 10:56 - 000002281 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-05-25 15:37 - 2015-05-01 22:54 - 000000000 ____D C:\Users\*****\AppData\Local\CrashDumps
2023-05-25 01:49 - 2015-05-11 21:15 - 000000000 ____D C:\Users\*****\AppData\Roaming\vlc
2023-05-24 18:34 - 2020-08-07 21:18 - 000052536 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_audio_surround.sys
2023-05-14 12:15 - 2022-11-22 01:31 - 000000000 ____D C:\Users\*****\Desktop\Vampire
2023-05-12 19:36 - 2015-04-13 21:46 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2023-05-12 02:25 - 2019-12-07 16:50 - 000000000 ____D C:\WINDOWS\SysWOW64\de
2023-05-12 02:25 - 2019-12-07 16:50 - 000000000 ____D C:\WINDOWS\system32\de
2023-05-12 02:25 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-05-12 02:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-05-12 02:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2023-05-12 02:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-05-12 02:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-05-12 02:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-05-11 18:28 - 2020-11-22 03:31 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2023-05-11 18:07 - 2020-08-23 15:13 - 003015168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-05-11 16:21 - 2014-09-24 01:08 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-05-11 16:19 - 2014-09-24 01:08 - 159583304 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-05-09 20:41 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-05-07 20:41 - 2015-05-03 19:44 - 000000000 ____D C:\Users\*****\AppData\Roaming\Microsoft\Office

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========

2021-05-18 09:28 - 2022-12-19 19:25 - 000000032 _____ () C:\Users\*****\AppData\Roaming\.machineId
2015-05-18 02:43 - 2015-07-04 12:24 - 000000132 _____ () C:\Users\*****\AppData\Roaming\Adobe PNG Format CS5 Prefs
2022-12-09 21:14 - 2022-12-09 21:30 - 000001456 _____ () C:\Users\*****\AppData\Local\Adobe Für Web speichern 13.0 Prefs
2019-10-17 13:47 - 2019-10-17 13:47 - 000000000 _____ () C:\Users\*****\AppData\Local\D24C00.tmp
2021-04-13 20:16 - 2021-04-13 20:16 - 000000000 _____ () C:\Users\*****\AppData\Local\D28436.tmp
2019-10-14 19:19 - 2019-10-14 19:19 - 000000000 _____ () C:\Users\*****\AppData\Local\D2A886.tmp
2021-04-13 20:08 - 2021-04-13 20:08 - 000000000 _____ () C:\Users\*****\AppData\Local\D2A93A.tmp
2019-10-14 19:19 - 2019-10-14 19:19 - 000000000 _____ () C:\Users\*****\AppData\Local\D2C5F3.tmp
2019-10-14 19:20 - 2019-10-14 19:20 - 000000000 _____ () C:\Users\*****\AppData\Local\D2C61C.tmp
2019-10-16 19:51 - 2019-10-16 19:51 - 000000000 _____ () C:\Users\*****\AppData\Local\D2DE26.tmp
2021-07-05 10:51 - 2023-06-03 10:49 - 000000205 _____ () C:\Users\*****\AppData\Local\oobelibMkey.log
2018-12-05 12:34 - 2019-05-17 11:57 - 000000600 _____ () C:\Users\*****\AppData\Local\PUTTY.RND

==================== SigCheck ============================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

==================== Ende von FRST.txt ========================
         

Addition.txt

Code: Alles auswählenAufklappen

ATTFilter

Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 29-05-2023
durchgeführt von ***** (03-06-2023 13:32:46)
Gestartet von C:\Users\*****\Desktop\FRST05
Microsoft Windows 10 Home Version 22H2 19045.2965 (X64) (2020-08-23 13:17:49)
Start-Modus: Normal
==========================================================


==================== Konten: =============================


(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

Administrator (S-1-5-21-3304759667-497493644-3126985197-500 - Administrator - Disabled) => C:\Users\Administrator
***** (S-1-5-21-3304759667-497493644-3126985197-1001 - Administrator - Enabled) => C:\Users\*****
DefaultAccount (S-1-5-21-3304759667-497493644-3126985197-503 - Limited - Disabled)
Gast (S-1-5-21-3304759667-497493644-3126985197-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3304759667-497493644-3126985197-1003 - Limited - Enabled)
WDAGUtilityAccount (S-1-5-21-3304759667-497493644-3126985197-504 - Limited - Disabled)

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

Assassin's Creed Odyssey (HKLM-x32\...\Uplay Install 5059) (Version:  - Ubisoft)
Assassin's Creed Origins (HKLM-x32\...\Uplay Install 3539) (Version:  - Ubisoft)
Assassin's Creed Syndicate (HKLM-x32\...\Uplay Install 1875) (Version:  - Ubisoft)
Avast Update Helper (HKLM-x32\...\{19C3AB22-3718-4E4D-B203-242F5001565B}) (Version: 1.8.1579.3 - AVAST Software) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
BitRaider Streaming Client (HKLM-x32\...\BitRaider Streaming Client) (Version: 1.3.3.4098 - BitRaider, LLC)
Blood and Wine (HKLM-x32\...\1441620909_is1) (Version: 1.32 - GOG.com)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Cyberpunk 2077 (HKLM-x32\...\1423049311_is1) (Version: 1.61_DLSS3 - GOG.com)
Diablo II (HKLM-x32\...\Diablo II) (Version:  - Blizzard Entertainment)
Diablo III (HKLM-x32\...\Diablo III) (Version:  - Blizzard Entertainment)
Discord (HKU\S-1-5-21-3304759667-497493644-3126985197-1001\...\Discord) (Version: 0.0.309 - Discord Inc.)
Dragon Age™: Inquisition (HKLM-x32\...\{DC4C36DC-4E5B-4262-B0C7-157DF534B969}) (Version: 1.0.0.12 - Electronic Arts)
Drakensang (HKLM-x32\...\Drakensang_is1) (Version:  - dtp)
Dungeon Keeper 2 (HKLM-x32\...\1207658959_is1) (Version: 1.7 - GOG.com)
Dungeons 3 (HKLM-x32\...\1346232158_is1) (Version: v1.7 build11 @512e183 - GOG.com)
Earth 2150 - Escape from the Blue Planet (HKLM-x32\...\1207661853_is1) (Version: 2.8.7.1 - GOG.com)
Epic Games Launcher (HKLM-x32\...\{2A27CA16-E158-4B0A-A502-3E6364B1F03E}) (Version: 1.2.17.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Free DLC program (16 DLC) (HKLM-x32\...\1430743168_is1) (Version: 1.32 - GOG.com)
GaomonTablet (HKLM-x32\...\GaomonTablet) (Version: 1.1.1.1 - Gaomon)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version:  - GOG.com)
GOG.com Dungeon Keeper 2 (HKLM\...\{47c14aa9-ab36-4d1e-bbe9-c635680b11bb}.sdb) (Version:  - )
goggame (HKLM\...\{198a5108-7711-4905-8385-f6539803ca0b}.sdb) (Version:  - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 113.0.5672.129 - Google LLC)
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.169 - Google Inc.) Hidden
Gwent (HKLM-x32\...\1971477531_is1) (Version: 11.3 - GOG.com)
Hearts of Stone (HKLM-x32\...\1441355562_is1) (Version: 1.32 - GOG.com)
Intel(R) Chipset Device Software (HKLM\...\{55398EAC-F58E-4F19-B553-BDF8B9EFD839}) (Version: 10.1.1.9 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.38.1036 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{3F94FE8B-BD63-4E8C-9F08-602BE1961E1D}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{E4E75758-4648-4802-87D3-29E3F874B260}) (Version: 10.0.38.1036 - Intel Corporation) Hidden
Intel(R) ME UninstallLegacy (HKLM\...\{7A267678-A258-471B-9035-A51E068531C8}) (Version: 1.0.1.0 - Intel Corporation) Hidden
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.0.3.1001 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{B9C27F57-AB84-425F-9D00-E18C5D65C18D}) (Version: 13.0.3.1001 - Intel Corporation) Hidden
Intel® Chipsatz-Gerätesoftware (HKLM-x32\...\{c7f54569-0018-439c-809a-48046a4d4ebc}) (Version: 10.1.1.9 - Intel(R) Corporation) Hidden
Intel® Trusted Connect Service Client (HKLM\...\{1B444AF9-1DBE-4884-8F35-969BEFCF69A8}) (Version: 1.35.133.1 - Intel Corporation) Hidden
InterActual Player (HKLM-x32\...\InterActual Player) (Version:  - )
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKU\S-1-5-21-3304759667-497493644-3126985197-1001\...\Riot Game league_of_legends.live) (Version:  - Riot Games, Inc)
Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: 2023.4.407679 - Logitech)
Logitech Gaming Software (HKLM\...\{690285C2-2481-44FB-8402-162EA970A6DD}) (Version: 8.30.28 - Logitech Inc.) Hidden
Mass Effect™: Andromeda (HKLM-x32\...\{72BBCA87-9350-48BC-9E2F-6DBC1E80C993}) (Version: 1.0.0.10 - Electronic Arts)
Microsoft 365 Apps for Enterprise - de-de (HKLM\...\O365ProPlusRetail - de-de) (Version: 16.0.16327.20248 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 113.0.1774.57 - Microsoft Corporation)
Microsoft Edge WebView2-Laufzeit (HKLM-x32\...\Microsoft EdgeWebView) (Version: 113.0.1774.57 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation)
Microsoft HEVC Media Extension Installation for Microsoft.HEVCVideoExtension_1.0.2512.0_x64__8wekyb3d8bbwe (x64) (HKLM\...\{B0169E83-757B-EF66-E2F0-391944D785BC}) (Version: 1.0.0.0 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 23.096.0507.0001 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{BB052C53-34CB-42DE-AF41-66FDFCEEC868}) (Version: 3.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (HKLM\...\{AC53FC8B-EE18-3F9C-9B59-60937D0B182C}) (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (HKLM\...\{A2CB1ACB-94A2-32BA-A15E-7D80319F7589}) (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (HKLM-x32\...\{FDB30193-FDA0-3DAA-ACCA-A75EEFE53607}) (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (HKLM-x32\...\{2F73A7B2-E50E-39A6-9ABC-EF89E4C62E36}) (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{3c3aafc8-d898-43ec-998f-965ffdae065a}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.32.31326 (HKLM-x32\...\{2d507699-404c-4c8b-a54a-38e352f32cdd}) (Version: 14.32.31326.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.32.31326 (HKLM-x32\...\{817e21c1-6b3a-4bc1-8c49-67e4e1887b3a}) (Version: 14.32.31326.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.32.31326 (HKLM\...\{38624EB5-356D-4B08-8357-C33D89A5C0C5}) (Version: 14.32.31326 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.32.31326 (HKLM\...\{C96241EA-9900-4FE8-85B3-1E238D509DF6}) (Version: 14.32.31326 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.32.31326 (HKLM-x32\...\{A250E750-DB3F-40C1-8460-8EF77C7582DA}) (Version: 14.32.31326 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.32.31326 (HKLM-x32\...\{46E11E7F-01E1-44D0-BB86-C67342D253DD}) (Version: 14.32.31326 - Microsoft Corporation) Hidden
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Microsoft_VC80_ATL_x86 (HKLM-x32\...\{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}) (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_ATL_x86_x64 (HKLM\...\{925D058B-564A-443A-B4B2-7E90C6432E55}) (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_CRT_x86 (HKLM-x32\...\{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}) (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_CRT_x86_x64 (HKLM\...\{4569AD91-47F4-4D9E-8FC9-717EC32D7AE1}) (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86 (HKLM-x32\...\{D1A19B02-817E-4296-A45B-07853FD74D57}) (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86_x64 (HKLM\...\{C8C1BAD5-54E6-4146-AD07-3A8AD36569C3}) (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86 (HKLM-x32\...\{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}) (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86_x64 (HKLM\...\{1E9FC118-651D-4934-97BE-E53CAE5C7D45}) (Version: 80.50727.4053 - Adobe) Hidden
Microsoft_VC90_ATL_x86 (HKLM-x32\...\{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}) (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_ATL_x86_x64 (HKLM\...\{8557397C-A42D-486F-97B3-A2CBC2372593}) (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (HKLM-x32\...\{08D2E121-7F6A-43EB-97FD-629B44903403}) (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86_x64 (HKLM\...\{92A3CA0D-55CD-4C5D-BA95-5C2600C20F26}) (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86 (HKLM-x32\...\{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}) (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86_x64 (HKLM\...\{A472B9E4-0AFF-4F7B-B25D-F64F8E928AAB}) (Version: 1.00.0000 - Adobe) Hidden
Mozilla Firefox (x86 de) (HKLM-x32\...\Mozilla Firefox 103.0.1 (x86 de)) (Version: 103.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 93.0.0.7940 - Mozilla)
MSI Afterburner 4.1.1 (HKLM-x32\...\Afterburner) (Version: 4.1.1 - MSI Co., LTD)
Neverwinter Nights 2 (HKLM-x32\...\{F20C1251-1D0A-4944-B2AE-678581B33B19}) (Version: 1.00.0000 - Obsidian)
Neverwinter Nights Platinum Edition (HKLM-x32\...\{C1583439-B034-4881-819C-D52A0587662B}) (Version:  - )
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.65.2 - Black Tree Gaming)
Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 8.1.4 - Notepad++ Team)
NVIDIA FrameView SDK 1.2.7704.31296923 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.2.7704.31296923 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.24.0.135 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.24.0.135 - NVIDIA Corporation)
NVIDIA Grafiktreiber 516.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 516.94 - NVIDIA Corporation)
NVIDIA Miracast Virtueller Ton 361.43 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Miracast.VirtualAudio) (Version: 361.43 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.16130.20218 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.16130.20218 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.16327.20248 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0407-0000-0000000FF1CE}) (Version: 16.0.16130.20218 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Opera GX Stable 98.0.4759.82 (HKU\S-1-5-21-3304759667-497493644-3126985197-1001\...\Opera GX 98.0.4759.82) (Version: 98.0.4759.82 - Opera Software)
Origin (HKLM-x32\...\Origin) (Version: 10.5.122.52971 - Electronic Arts, Inc.)
Overlay (HKLM-x32\...\1430742867_is1) (Version: 1.32 - GOG.com)
Paradox Launcher v2 (HKLM\...\{66DA3501-823A-4F07-A20D-C64495A59DC8}) (Version: 2.1.0 - Paradox Interactive)
Pathfinder: Kingmaker - Arcane Unleashed (HKLM-x32\...\1741795642_is1) (Version: 2.1.7b.fix. - GOG.com)
Pathfinder: Kingmaker - Beneath The Stolen Lands (HKLM-x32\...\1524437501_is1) (Version: 2.1.7b.fix. - GOG.com)
Pathfinder: Kingmaker - Bloody Mess (HKLM-x32\...\1329787908_is1) (Version: 2.1.7b.fix. - GOG.com)
Pathfinder: Kingmaker - In-Game Pet - Red Panda (HKLM-x32\...\1975006427_is1) (Version: 2.1.7b.fix. - GOG.com)
Pathfinder: Kingmaker - In-game player's portraits (HKLM-x32\...\1429768868_is1) (Version: 2.1.7b.fix. - GOG.com)
Pathfinder: Kingmaker - Premium Digital Copy (HKLM-x32\...\1853261348_is1) (Version: 2.1.7b.fix. - GOG.com)
Pathfinder: Kingmaker - The Wildcards (HKLM-x32\...\2026597518_is1) (Version: 2.1.7b.fix. - GOG.com)
Pathfinder: Kingmaker - Varnhold's lot (HKLM-x32\...\1076965365_is1) (Version: 2.1.7b.fix. - GOG.com)
Pathfinder: Kingmaker (HKLM-x32\...\1982293831_is1) (Version: 2.1.7b.fix. - GOG.com)
Pathfinder: Wrath of the Righteous - A Visitor from Distant Lands (HKLM-x32\...\2124635480_is1) (Version: Windows 2.0.7o.818 Release - GOG.com)
Pathfinder: Wrath of the Righteous - Commander Pack (HKLM-x32\...\2090543924_is1) (Version: Windows 2.0.7o.818 Release - GOG.com)
Pathfinder: Wrath of the Righteous - Faces of War (HKLM-x32\...\1913607829_is1) (Version: Windows 2.0.7o.818 Release - GOG.com)
Pathfinder: Wrath of the Righteous - Inevitable Excess (HKLM-x32\...\2059476258_is1) (Version: Windows 2.0.7o.818 Release - GOG.com)
Pathfinder: Wrath of the Righteous - Love Beyond Death (HKLM-x32\...\1916250442_is1) (Version: Windows 2.0.7o.818 Release - GOG.com)
Pathfinder: Wrath of the Righteous - Paint of War (HKLM-x32\...\1638896011_is1) (Version: Windows 2.0.7o.818 Release - GOG.com)
Pathfinder: Wrath of the Righteous - Through the Ashes (HKLM-x32\...\1784183575_is1) (Version: Windows 2.0.7o.818 Release - GOG.com)
Pathfinder: Wrath of the Righteous (HKLM-x32\...\1207187357_is1) (Version: Windows 2.0.7o.818 Release - GOG.com)
Pathfinder: Wrath of the Righteous – The Treasure of the Midnight Isles (HKLM-x32\...\2063089768_is1) (Version: Windows 2.0.7o.818 Release - GOG.com)
Pflanzen gegen Zombies™ (HKLM-x32\...\{5E6536C2-E79A-49CF-83EA-817AD81F9FC8}) (Version: 1.2.0.1093 - Electronic Arts, Inc.)
Pillars of Eternity II: Deadfire - Beard & Hair Pack (HKLM-x32\...\1778402290_is1) (Version: v5.0.0.0040 - GOG.com)
Pillars of Eternity II: Deadfire - Deck of Many Things (HKLM-x32\...\1764969052_is1) (Version: v5.0.0.0040 - GOG.com)
Pillars of Eternity II: Deadfire - Explorer's Pack - Pet Cosmo (HKLM-x32\...\2077656881_is1) (Version: v5.0.0.0040 - GOG.com)
Pillars of Eternity II: Deadfire - Explorer's Pack - Tricorn Hat (HKLM-x32\...\1399818689_is1) (Version: v5.0.0.0040 - GOG.com)
Pillars of Eternity II: Deadfire - Prize Crew (HKLM-x32\...\1707179423_is1) (Version: v5.0.0.0040 - GOG.com)
Pillars of Eternity II: Deadfire - Rum Runner's Pack (HKLM-x32\...\1595632428_is1) (Version: v5.0.0.0040 - GOG.com)
Pillars of Eternity II: Deadfire - Seeker, Slayer, Survivor (HKLM-x32\...\1998155087_is1) (Version: v5.0.0.0040 - GOG.com)
Pillars of Eternity II: Deadfire - The Beast of Winter (HKLM-x32\...\1962809988_is1) (Version: v5.0.0.0040 - GOG.com)
Pillars of Eternity II: Deadfire - The Forgotten Sanctum (HKLM-x32\...\1877382801_is1) (Version: v5.0.0.0040 - GOG.com)
Pillars of Eternity II: Deadfire - Vox Machina Pack (HKLM-x32\...\1686421021_is1) (Version: v5.0.0.0040 - GOG.com)
Pillars of Eternity II: Deadfire (HKLM-x32\...\1788509829_is1) (Version: v5.0.0.0040 - GOG.com)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7293 - Realtek Semiconductor Corp.)
SlimDX Runtime .NET 4.0 x64 (January 2012) (HKLM\...\{A2199A06-89C4-4187-AA4A-3A9676FB799D}) (Version: 2.0.13.43 - SlimDX Group)
Star Wars The Old Republic (HKLM-x32\...\swtor_swtor) (Version:  - Bioware/EA)
Star Wars: The Old Republic (HKLM-x32\...\{3B11D799-48E0-48ED-BFD7-EA655676D8BB}) (Version: 1.00 - Electronic Arts, Inc.)
StarCraft (HKLM-x32\...\StarCraft) (Version:  - Blizzard Entertainment)
StarCraft II (HKLM-x32\...\StarCraft II) (Version:  - Blizzard Entertainment)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Teams Machine-Wide Installer (HKLM-x32\...\{731F6BAA-A986-45A4-8936-7C3AAAAA760B}) (Version: 1.4.0.7174 - Microsoft Corporation)
The Witcher (HKLM-x32\...\{F138762F-5A1F-4CF0-A5E1-1588EF6088A4}) (Version: 1.00.0000 - CD Projekt Red)
The Witcher 2 (HKLM-x32\...\{F0A209B7-7F85-4BDD-8F1F-B98EEAD9E04B}) (Version: 1.00.0000 - CD Projekt Red)
The Witcher 3: Wild Hunt - Blood and Wine (HKLM-x32\...\Blood and Wine_is1) (Version: 1.24.0.0 - GOG.com)
The Witcher 3: Wild Hunt - Free DLC program (16 DLC) (HKLM-x32\...\Free DLC program (16 DLC)_is1) (Version: 1.24.0.0 - GOG.com)
The Witcher 3: Wild Hunt - Hearts of Stone (HKLM-x32\...\Hearts of Stone_is1) (Version: 1.24.0.0 - GOG.com)
The Witcher 3: Wild Hunt (HKLM-x32\...\1207664643_is1) (Version: 1.32 - GOG.com)
Thronebreaker (HKLM-x32\...\1297352383_is1) (Version: 1.2 - GOG.com)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 13.0 - Ubisoft)
UE4 Prerequisites (x64) (HKLM-x32\...\{2890ae6b-90e9-448d-b3e6-97e43c21e2fd}) (Version: 1.0.13.0 - Epic Games, Inc.) Hidden
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{C22F49B1-0F67-47DC-A490-E8B4B6558EA9}) (Version: 8.91.0.0 - Microsoft Corporation)
VisiPics V1.31 (HKLM-x32\...\VisiPics_is1) (Version:  - Ozone)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.16 - VideoLAN)
Windows-PC-Integritätsprüfung (HKLM\...\{B3956CF3-F6C5-4567-AC38-1FD4432B319C}) (Version: 3.6.2204.08001 - Microsoft Corporation)
WinRAR 6.11 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 6.11.0 - win.rar GmbH)
XAMPP (HKLM\...\xampp) (Version: 8.0.10-0 - Bitnami)

Packages:
=========
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.17.945.0_x64__rz1tebttyb220 [2023-05-09] (Dolby Laboratories)
Fotos-Add-On -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-08-27] (Microsoft Corporation)
Media Engine-Add-On für Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-08-27] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2022-01-26] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2022-01-26] (Microsoft Corporation) [MS Ad]
Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_53.10126.517.0_x64__8wekyb3d8bbwe [2023-06-02] (Microsoft Corporation)
MSN Gesundheit & Fitness -> C:\Program Files\WindowsApps\Microsoft.BingHealthAndFitness_3.0.4.336_x64__8wekyb3d8bbwe [2022-04-28] (Microsoft Corporation) [MS Ad]
MSN Kochen & Genuss -> C:\Program Files\WindowsApps\Microsoft.BingFoodAndDrink_3.0.4.336_x64__8wekyb3d8bbwe [2022-04-28] (Microsoft Corporation) [MS Ad]
MSN Reisen -> C:\Program Files\WindowsApps\Microsoft.BingTravel_3.0.4.336_x64__8wekyb3d8bbwe [2022-04-28] (Microsoft Corporation) [MS Ad]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.964.0_x64__56jybvy8sckqj [2023-03-09] (NVIDIA Corp.)
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.16.3140.0_x64__8wekyb3d8bbwe [2023-03-19] (Microsoft Studios) [MS Ad]
XING -> C:\Program Files\WindowsApps\XINGAG.XING_4.0.9.0_x86__xpfg3f7e9an52 [2022-04-28] (New Work SE)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-3304759667-497493644-3126985197-1001_Classes\CLSID\{04271989-C4D2-8A8B-D5DE-7BE04960DC8C} -> [OneDrive] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}
CustomCLSID: HKU\S-1-5-21-3304759667-497493644-3126985197-1001_Classes\CLSID\{2F81B25E-7507-4844-BFF2-77D2CC24CED4}\localserver32 -> "C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" -ToastActivated => Keine Datei
CustomCLSID: HKU\S-1-5-21-3304759667-497493644-3126985197-1001_Classes\CLSID\{d1b22d3d-8585-53a6-acb3-0e803c7e8d2a}\localserver32 -> "C:\Users\*****\AppData\Local\Microsoft\Teams\current\Teams.exe" --toast => Keine Datei
ShellIconOverlayIdentifiers: [    OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.096.0507.0001\FileSyncShell64.dll [2023-05-29] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [    OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.096.0507.0001\FileSyncShell64.dll [2023-05-29] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [    OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.096.0507.0001\FileSyncShell64.dll [2023-05-29] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [    OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.096.0507.0001\FileSyncShell64.dll [2023-05-29] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [    OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.096.0507.0001\FileSyncShell64.dll [2023-05-29] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [    OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.096.0507.0001\FileSyncShell64.dll [2023-05-29] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [    OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.096.0507.0001\FileSyncShell64.dll [2023-05-29] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [    OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.096.0507.0001\FileSyncShell64.dll [2023-05-29] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [    OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.096.0507.0001\FileSyncShell64.dll [2023-05-29] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [    OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.096.0507.0001\FileSyncShell64.dll [2023-05-29] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [    OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.096.0507.0001\FileSyncShell64.dll [2023-05-29] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [    OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.096.0507.0001\FileSyncShell64.dll [2023-05-29] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [    OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.096.0507.0001\FileSyncShell64.dll [2023-05-29] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [    OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.096.0507.0001\FileSyncShell64.dll [2023-05-29] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.096.0507.0001\FileSyncShell64.dll [2023-05-29] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => O:\Programme\Notepad++\NppShell_06.dll [2021-08-21] (Notepad++ -> )
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.096.0507.0001\FileSyncShell64.dll [2023-05-29] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.096.0507.0001\FileSyncShell64.dll [2023-05-29] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_ee20464bb4ac57f4\nvshext.dll [2022-08-24] (Nvidia Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Drivers32: [vidc.iv50] => C:\WINDOWS\SysWOW64\ir50_32original.dll [746496 2019-12-07] (Microsoft Windows -> Intel Corporation)
HKLM\...\Drivers32: [msacm.iac2] => C:\WINDOWS\SysWOW64\iac25_32.ax [197632 2019-12-07] (Microsoft Windows -> Intel Corporation)
HKLM\...\Drivers32: [VIDC.IV41] => C:\Windows\SysWOW64\IR41_32.AX [9216 2019-12-07] (Microsoft Windows -> Microsoft Corporation)

==================== Verknüpfungen & WMI ========================

==================== Geladene Module (Nicht auf der Ausnahmeliste) =============

2014-04-11 18:31 - 2014-04-11 18:31 - 000297984 _____ (Intel Corporation) [Datei ist nicht signiert] [Datei wird verwendet] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\PsiData.dll
2014-04-11 18:31 - 2014-04-11 18:31 - 000523264 _____ (Intel Corporation) [Datei ist nicht signiert] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\ISDI2.dll
2023-03-14 23:04 - 2020-03-16 15:05 - 001282048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Datei ist nicht signiert] O:\Spiele Programme\Origin\LIBEAY32.dll
2023-03-14 23:04 - 2020-03-16 15:06 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Datei ist nicht signiert] O:\Spiele Programme\Origin\ssleay32.dll
2023-03-14 23:04 - 2019-07-12 09:23 - 001611264 _____ (The Qt Company Ltd) [Datei ist nicht signiert] O:\Spiele Programme\Origin\platforms\qwindows.dll
2023-03-14 23:04 - 2019-07-12 09:23 - 005487104 _____ (The Qt Company Ltd) [Datei ist nicht signiert] O:\Spiele Programme\Origin\Qt5Core.dll
2023-03-14 23:04 - 2019-07-12 09:23 - 005841920 _____ (The Qt Company Ltd) [Datei ist nicht signiert] O:\Spiele Programme\Origin\Qt5Gui.dll
2023-03-14 23:04 - 2019-07-12 09:23 - 001179136 _____ (The Qt Company Ltd) [Datei ist nicht signiert] O:\Spiele Programme\Origin\Qt5Network.dll
2023-03-14 23:04 - 2019-07-12 09:23 - 000146432 _____ (The Qt Company Ltd) [Datei ist nicht signiert] O:\Spiele Programme\Origin\Qt5WebSockets.dll
2023-03-14 23:04 - 2019-07-12 09:23 - 005089792 _____ (The Qt Company Ltd) [Datei ist nicht signiert] O:\Spiele Programme\Origin\Qt5Widgets.dll
2023-03-14 23:04 - 2019-07-12 09:23 - 000184832 _____ (The Qt Company Ltd) [Datei ist nicht signiert] O:\Spiele Programme\Origin\Qt5Xml.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================

==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================

==================== Internet Explorer (Nicht auf der Ausnahmeliste) ==========

HKU\S-1-5-21-3304759667-497493644-3126985197-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://localoem.msn.com/
HKU\S-1-5-21-3304759667-497493644-3126985197-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://localoem.msn.com
HKU\S-1-5-21-3304759667-497493644-3126985197-500\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://localoem.msn.com
HKU\S-1-5-21-3304759667-497493644-3126985197-500\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://localoem.msn.com
SearchScopes: HKU\S-1-5-21-3304759667-497493644-3126985197-1001 -> DefaultScope {9E195D6E-9095-4A7F-9650-103B4B541590} URL = 
SearchScopes: HKU\S-1-5-21-3304759667-497493644-3126985197-1001 -> {9E195D6E-9095-4A7F-9650-103B4B541590} URL = 
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2023-02-01] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2023-03-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2023-05-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2023-05-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2023-05-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2023-05-03] (Microsoft Corporation -> Microsoft Corporation)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)

IE trusted site: HKU\S-1-5-21-3304759667-497493644-3126985197-1001\...\sharepoint.com -> hxxps://bfwdortmundde-files.sharepoint.com

==================== Hosts Inhalt: =========================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2015-05-01 21:23 - 2023-06-02 15:07 - 000000825 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Andere Bereiche ===========================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-3304759667-497493644-3126985197-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\*****\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\diablo_iv__4__hellgate_by_holyknight3000_ddl2pwy.jpg
HKU\S-1-5-21-3304759667-497493644-3126985197-500\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
 ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\Services: OneDrive Updater Service => 3
MSCONFIG\Services: VBoxSDS => 3
HKLM\...\StartupApproved\Run: => "RTHDVCPL"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run32: => "AdobeCS5ServiceManager"
HKLM\...\StartupApproved\Run32: => "SwitchBoard"
HKLM\...\StartupApproved\Run32: => "TeamsMachineInstaller"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run32: => "Adobe CCXProcess"
HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0"
HKU\S-1-5-21-3304759667-497493644-3126985197-1001\...\StartupApproved\Run: => "DAEMON Tools Lite"
HKU\S-1-5-21-3304759667-497493644-3126985197-1001\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-3304759667-497493644-3126985197-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-3304759667-497493644-3126985197-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-3304759667-497493644-3126985197-1001\...\StartupApproved\Run: => "GalaxyClient"
HKU\S-1-5-21-3304759667-497493644-3126985197-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-3304759667-497493644-3126985197-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-3304759667-497493644-3126985197-1001\...\StartupApproved\Run: => "Adobe Acrobat Synchronizer"
HKU\S-1-5-21-3304759667-497493644-3126985197-1001\...\StartupApproved\Run: => "com.blitz.app"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [{D907A45C-6F33-43CE-B3DD-C8D8319EB070}] => (Allow) P:\Steam\steamapps\common\Overlord II\Config.exe () [Datei ist nicht signiert]
FirewallRules: [{8AEAC011-EB13-4E8E-BEC3-C75EFFA0344E}] => (Allow) P:\Steam\steamapps\common\Overlord II\Config.exe () [Datei ist nicht signiert]
FirewallRules: [{1FF13ACB-AB8B-428B-990F-C1EB04F64EFF}] => (Allow) P:\Steam\steamapps\common\Overlord II\Overlord2.exe () [Datei ist nicht signiert]
FirewallRules: [{985F39AF-C981-45BB-A8B5-F7FD699D4F75}] => (Allow) P:\Steam\steamapps\common\Overlord II\Overlord2.exe () [Datei ist nicht signiert]
FirewallRules: [{B982A478-28DF-4941-B87F-FEB874C1A998}] => (Allow) F:\Steam\steamapps\common\Total War WARHAMMER II\launcher\launcher.exe => Keine Datei
FirewallRules: [{DBE39716-7906-4D45-B37D-D300C5E74BBE}] => (Allow) F:\Steam\steamapps\common\Total War WARHAMMER II\launcher\launcher.exe => Keine Datei
FirewallRules: [UDP Query User{20F8566D-E97D-464D-940D-22DCA388B493}P:\steam\steamapps\common\battlefleet gothic armada ii\battlefleetgothic2\binaries\win64\battlefleetgothic2-win64-shipping.exe] => (Allow) P:\steam\steamapps\common\battlefleet gothic armada ii\battlefleetgothic2\binaries\win64\battlefleetgothic2-win64-shipping.exe (Focus Home Interactive S.A -> Epic Games, Inc.)
FirewallRules: [TCP Query User{9CD36F0D-ED15-41D9-987E-8C02FA2BA9B6}P:\steam\steamapps\common\battlefleet gothic armada ii\battlefleetgothic2\binaries\win64\battlefleetgothic2-win64-shipping.exe] => (Allow) P:\steam\steamapps\common\battlefleet gothic armada ii\battlefleetgothic2\binaries\win64\battlefleetgothic2-win64-shipping.exe (Focus Home Interactive S.A -> Epic Games, Inc.)
FirewallRules: [{32B30F2E-2143-4B0C-908A-57EFD9E8E903}] => (Allow) P:\Steam\steamapps\common\Battlefleet Gothic Armada II\BattlefleetGothic2.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{B1C72850-CE0C-464E-A79D-DA1730BFBD71}] => (Allow) P:\Steam\steamapps\common\Battlefleet Gothic Armada II\BattlefleetGothic2.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{C1545783-71CF-4D96-BFFE-13C65D6AAC62}] => (Allow) F:\Steam\steamapps\common\Conan Exiles\ConanSandbox\Binaries\Win64\ConanSandbox.exe (FUNCOM OSLO AS -> Funcom Oslo AS)
FirewallRules: [{5E833D83-97BD-4469-AD32-A192A00737A9}] => (Allow) F:\Steam\steamapps\common\Conan Exiles\ConanSandbox\Binaries\Win64\ConanSandbox.exe (FUNCOM OSLO AS -> Funcom Oslo AS)
FirewallRules: [{8C4C4A4B-5293-4C03-8CCA-53CAA1376CFF}] => (Allow) F:\Steam\steamapps\common\Conan Exiles\ConanSandbox\Binaries\Win64\ConanSandbox_BE.exe (FUNCOM OSLO AS -> BattlEye Innovations)
FirewallRules: [{3D2F36CB-0F0B-465B-815F-2AB37259A38E}] => (Allow) F:\Steam\steamapps\common\Conan Exiles\ConanSandbox\Binaries\Win64\ConanSandbox_BE.exe (FUNCOM OSLO AS -> BattlEye Innovations)
FirewallRules: [{7106DE2F-467E-4D47-AFE7-5E1333E09976}] => (Allow) P:\Steam\steamapps\common\Total War THREE KINGDOMS\launcher\launcher.exe => Keine Datei
FirewallRules: [{DBE221CC-625B-4B64-8CE6-9FA0E1D89FC5}] => (Allow) P:\Steam\steamapps\common\Total War THREE KINGDOMS\launcher\launcher.exe => Keine Datei
FirewallRules: [UDP Query User{98A236AA-53A1-443E-AEAF-1DEBC9C52E6E}P:\steam\steamapps\common\divinity original sin 2\defed\bin\eocapp.exe] => (Allow) P:\steam\steamapps\common\divinity original sin 2\defed\bin\eocapp.exe (Larian Studios Games Ltd. -> )
FirewallRules: [TCP Query User{5B3D4BB5-7403-461C-874C-A493BA0CA339}P:\steam\steamapps\common\divinity original sin 2\defed\bin\eocapp.exe] => (Allow) P:\steam\steamapps\common\divinity original sin 2\defed\bin\eocapp.exe (Larian Studios Games Ltd. -> )
FirewallRules: [{684F91A3-D324-4B36-96B4-317A4D331087}] => (Allow) P:\Steam\steamapps\common\Divinity Original Sin 2\bin\SupportTool.exe (LariLauncher) [Datei ist nicht signiert]
FirewallRules: [{73D34C98-0395-4E4B-BCE2-9C08D32AE345}] => (Allow) P:\Steam\steamapps\common\Divinity Original Sin 2\bin\SupportTool.exe (LariLauncher) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{56FFA0F8-4905-48F6-829E-F92B358E7F48}P:\steam\steamapps\common\space hulk deathwing - enhanced edition\spacehulkgame\binaries\win64\spacehulkgame-win64-shipping.exe] => (Allow) P:\steam\steamapps\common\space hulk deathwing - enhanced edition\spacehulkgame\binaries\win64\spacehulkgame-win64-shipping.exe => Keine Datei
FirewallRules: [TCP Query User{59C284E1-83F6-423C-B55C-65FCB2840725}P:\steam\steamapps\common\space hulk deathwing - enhanced edition\spacehulkgame\binaries\win64\spacehulkgame-win64-shipping.exe] => (Allow) P:\steam\steamapps\common\space hulk deathwing - enhanced edition\spacehulkgame\binaries\win64\spacehulkgame-win64-shipping.exe => Keine Datei
FirewallRules: [{84B1601C-1E9B-4CEF-BA94-FAD324DB50BF}] => (Allow) P:\Steam\steamapps\common\Dawn of War 2\DOW2.exe (Sega Corporation) [Datei ist nicht signiert]
FirewallRules: [{BC66C856-01D7-4B51-AE0A-63E9184A9F3A}] => (Allow) P:\Steam\steamapps\common\Dawn of War 2\DOW2.exe (Sega Corporation) [Datei ist nicht signiert]
FirewallRules: [{7F491E2D-EEFC-49A2-B8D1-9BC8C8E05703}] => (Allow) P:\Steam\steamapps\common\Dawn of War II - Retribution\DOW2.exe (Relic Entertainment, Inc. -> Sega Corporation)
FirewallRules: [{87734796-C529-4010-8776-A63D1315780C}] => (Allow) P:\Steam\steamapps\common\Dawn of War II - Retribution\DOW2.exe (Relic Entertainment, Inc. -> Sega Corporation)
FirewallRules: [UDP Query User{F66E5169-39C0-43FD-9CFF-50B7C6622612}F:\steam\steamapps\common\total war warhammer ii\warhammer2.exe] => (Allow) F:\steam\steamapps\common\total war warhammer ii\warhammer2.exe => Keine Datei
FirewallRules: [TCP Query User{E0BC22C0-5249-403A-B424-D91DC24A7F1C}F:\steam\steamapps\common\total war warhammer ii\warhammer2.exe] => (Allow) F:\steam\steamapps\common\total war warhammer ii\warhammer2.exe => Keine Datei
FirewallRules: [{DFD87D1F-4EFD-475F-807A-9D0743D01994}] => (Allow) P:\Steam\steamapps\common\Total War WARHAMMER II\launcher\launcher.exe => Keine Datei
FirewallRules: [{5EC353EB-370C-4946-93E4-66AF31C41CFE}] => (Allow) P:\Steam\steamapps\common\Total War WARHAMMER II\launcher\launcher.exe => Keine Datei
FirewallRules: [{53DBC2D9-9F5A-497F-820C-AF455EA44EDD}] => (Allow) O:\Spiele Programme\Steam\steamapps\common\Warhammer 40,000 Inquisitor - Martyr\Warhammer.exe (NeoCore Games) [Datei ist nicht signiert]
FirewallRules: [{95FC1B4E-62EC-4B02-8CAE-B53761532127}] => (Allow) O:\Spiele Programme\Steam\steamapps\common\Warhammer 40,000 Inquisitor - Martyr\Warhammer.exe (NeoCore Games) [Datei ist nicht signiert]
FirewallRules: [{466530A2-D9E9-40F8-8FD0-C4F559D90379}] => (Allow) P:\Steam\steamapps\common\Total War WARHAMMER\launcher\launcher.exe => Keine Datei
FirewallRules: [{D19DE395-D55F-4970-A74F-B60AD194C549}] => (Allow) P:\Steam\steamapps\common\Total War WARHAMMER\launcher\launcher.exe => Keine Datei
FirewallRules: [{E50E3814-7B56-475E-B0D1-78897D8D421D}] => (Allow) P:\Steam\steamapps\common\Sid Meier's Civilization V\LaunchPad\LaunchPad.exe => Keine Datei
FirewallRules: [{3F1992D5-1012-41C6-92BA-12DBB61B834F}] => (Allow) P:\Steam\steamapps\common\Sid Meier's Civilization V\LaunchPad\LaunchPad.exe => Keine Datei
FirewallRules: [{59C783C3-C6CA-412F-B82B-DA6E395D30CD}] => (Allow) P:\Steam\steamapps\common\Mechanicus\Mechanicus.exe () [Datei ist nicht signiert]
FirewallRules: [{F1076BA6-2D06-4595-8EB7-0371C79687B6}] => (Allow) P:\Steam\steamapps\common\Mechanicus\Mechanicus.exe () [Datei ist nicht signiert]
FirewallRules: [{EBD49782-F7A0-45DB-9B9F-7B9203CD5596}] => (Allow) P:\Steam\steamapps\common\Dawn of War III\RelicDoW3.exe (Relic Entertainment, Inc -> The build server will stamp this field)
FirewallRules: [{719FB9C8-C71B-4731-9E52-2B350BEFB69D}] => (Allow) P:\Steam\steamapps\common\Dawn of War III\RelicDoW3.exe (Relic Entertainment, Inc -> The build server will stamp this field)
FirewallRules: [UDP Query User{9238967B-B8D2-4164-9476-7F42A0FA7CC3}C:\users\*****\appdata\local\programs\blitz\blitz.exe] => (Allow) C:\users\*****\appdata\local\programs\blitz\blitz.exe => Keine Datei
FirewallRules: [TCP Query User{A6BA0E35-4E53-47E8-AED6-5A3910B54CCA}C:\users\*****\appdata\local\programs\blitz\blitz.exe] => (Allow) C:\users\*****\appdata\local\programs\blitz\blitz.exe => Keine Datei
FirewallRules: [UDP Query User{014D6CC9-BF7E-406B-92F3-723DAFB6D8F7}P:\steam\steamapps\common\total war three kingdoms\three_kingdoms.exe] => (Allow) P:\steam\steamapps\common\total war three kingdoms\three_kingdoms.exe => Keine Datei
FirewallRules: [TCP Query User{8940DF4D-2D45-4D77-9863-E71C6D278343}P:\steam\steamapps\common\total war three kingdoms\three_kingdoms.exe] => (Allow) P:\steam\steamapps\common\total war three kingdoms\three_kingdoms.exe => Keine Datei
FirewallRules: [UDP Query User{6B9CE016-74A5-4E9F-8982-7203B60535A1}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [TCP Query User{27181DA4-2F3A-4974-B03D-27F254D379DD}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [{20F4B96C-E32F-4863-8131-8BF750049DEB}] => (Allow) P:\MMO\Star Wars-The Old Republic\launcher.exe (Electronic Arts, Inc. -> BioWare)
FirewallRules: [{D40DFD72-45C8-4AA4-A4B3-2A50A11A3DC4}] => (Allow) P:\MMO\Star Wars-The Old Republic\launcher.exe (Electronic Arts, Inc. -> BioWare)
FirewallRules: [{4CB014D5-62AA-4CE3-B02B-C93390EFF9C4}] => (Allow) P:\MMO\Star Wars-The Old Republic\launcher.exe (Electronic Arts, Inc. -> BioWare)
FirewallRules: [{E475E88B-2FFB-4886-82D6-08585D2E771C}] => (Allow) P:\MMO\Star Wars-The Old Republic\launcher.exe (Electronic Arts, Inc. -> BioWare)
FirewallRules: [UDP Query User{642D8449-CD30-48F9-94A0-E0A4F6335FDF}C:\users\*****\appdata\local\blitz\current\blitz.exe] => (Allow) C:\users\*****\appdata\local\blitz\current\blitz.exe => Keine Datei
FirewallRules: [TCP Query User{0120526D-A2F1-404B-9D34-429C458ACE79}C:\users\*****\appdata\local\blitz\current\blitz.exe] => (Allow) C:\users\*****\appdata\local\blitz\current\blitz.exe => Keine Datei
FirewallRules: [UDP Query User{575C7944-B591-4B30-9181-A0A95A20FDCC}P:\riot games\league of legends\game\league of legends.exe] => (Allow) P:\riot games\league of legends\game\league of legends.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [TCP Query User{79E53372-C406-4DC2-8A43-C232020EC33B}P:\riot games\league of legends\game\league of legends.exe] => (Allow) P:\riot games\league of legends\game\league of legends.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [{F6D40191-CB15-4F3F-BAC2-0FBFD7958366}] => (Allow) P:\Steam\steamapps\common\Portal Knights\portal_knights_x64.exe () [Datei ist nicht signiert]
FirewallRules: [{85B748A6-A939-4B07-B08D-142A5FFF66E3}] => (Allow) P:\Steam\steamapps\common\Portal Knights\portal_knights_x64.exe () [Datei ist nicht signiert]
FirewallRules: [{C1B9A84A-4E03-498C-937C-842510EEA700}] => (Allow) P:\Steam\steamapps\common\Portal 2\portal2.exe () [Datei ist nicht signiert]
FirewallRules: [{B7814EB5-C8C2-4B4F-B0BA-82E01763C37A}] => (Allow) P:\Steam\steamapps\common\Portal 2\portal2.exe () [Datei ist nicht signiert]
FirewallRules: [UDP Query User{8C2963AE-BA82-4CEB-8B48-96880A906AE3}P:\steam\steamapps\common\war for the overworld\wftogame.exe] => (Allow) P:\steam\steamapps\common\war for the overworld\wftogame.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{C21104C2-0EE6-476D-B1AC-4E306DCD43EF}P:\steam\steamapps\common\war for the overworld\wftogame.exe] => (Allow) P:\steam\steamapps\common\war for the overworld\wftogame.exe () [Datei ist nicht signiert]
FirewallRules: [{11251F10-BB8F-40C6-A8F3-9D6A9E657F44}] => (Allow) P:\Steam\steamapps\common\War For The Overworld\WFTO.exe => Keine Datei
FirewallRules: [{7F930418-4C38-46DC-90AB-34C9C183159A}] => (Allow) P:\Steam\steamapps\common\War For The Overworld\WFTO.exe => Keine Datei
FirewallRules: [{471D5866-0E24-4FBA-A9AA-6B0E5605EE89}] => (Allow) O:\Spiele Programme\Steam\steamapps\common\Spore\SporeBin\SporeApp.exe (Maxis, a division of Electronic Arts Inc.) [Datei ist nicht signiert]
FirewallRules: [{FAF4187C-B34A-4F7B-A9EE-1E53F7C4107B}] => (Allow) O:\Spiele Programme\Steam\steamapps\common\Spore\SporeBin\SporeApp.exe (Maxis, a division of Electronic Arts Inc.) [Datei ist nicht signiert]
FirewallRules: [{8118641D-FA34-44E0-91F2-3AFEC0C5C6D5}] => (Allow) O:\Spiele Programme\Steam\steamapps\common\Spore\runme.exe () [Datei ist nicht signiert]
FirewallRules: [{E19BC1B6-4599-48F2-AA13-1D4838677171}] => (Allow) O:\Spiele Programme\Steam\steamapps\common\Spore\runme.exe () [Datei ist nicht signiert]
FirewallRules: [UDP Query User{56A1AA47-95AE-41F5-A26D-CD50A082C020}P:\rollenspiel\neverwinternights\nwmain.exe] => (Allow) P:\rollenspiel\neverwinternights\nwmain.exe (BioWare -> BioWare)
FirewallRules: [TCP Query User{15CD721A-52CD-4E51-B884-1BED643B2AE9}P:\rollenspiel\neverwinternights\nwmain.exe] => (Allow) P:\rollenspiel\neverwinternights\nwmain.exe (BioWare -> BioWare)
FirewallRules: [UDP Query User{EA6A068F-F540-40CE-87EA-D453F7279ED7}P:\rollenspiel\neverwinternights\nwserver.exe] => (Allow) P:\rollenspiel\neverwinternights\nwserver.exe (BioWare -> BioWare)
FirewallRules: [TCP Query User{5E22BD8C-BBA1-4B48-8955-3C9A9E1C1ECC}P:\rollenspiel\neverwinternights\nwserver.exe] => (Allow) P:\rollenspiel\neverwinternights\nwserver.exe (BioWare -> BioWare)
FirewallRules: [UDP Query User{7C3A6227-858F-435D-8826-31CF10216B1A}P:\steam\steamapps\common\total war warhammer ii\warhammer2.exe] => (Allow) P:\steam\steamapps\common\total war warhammer ii\warhammer2.exe => Keine Datei
FirewallRules: [TCP Query User{58C867A2-F025-4F2A-919A-01EED46650BE}P:\steam\steamapps\common\total war warhammer ii\warhammer2.exe] => (Allow) P:\steam\steamapps\common\total war warhammer ii\warhammer2.exe => Keine Datei
FirewallRules: [{6CE831D0-2CF9-44B0-A6DF-655006224EE6}] => (Allow) P:\Action\Assassins Creed Saga\Assassin's Creed Origins\ACOrigins.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{EA6675E1-A8A9-436E-9843-C8B9428A8E3A}] => (Allow) P:\Action\Assassins Creed Saga\Assassin's Creed Origins\ACOrigins.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [UDP Query User{39674B91-80E1-45BF-9AB5-04ABA8F64A61}P:\strategie\diablo iii\x64\diablo iii64.exe] => (Allow) P:\strategie\diablo iii\x64\diablo iii64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [TCP Query User{25C364BC-7BF8-4B40-AE9A-AB81A066FC0B}P:\strategie\diablo iii\x64\diablo iii64.exe] => (Allow) P:\strategie\diablo iii\x64\diablo iii64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{1D2A27E6-F4DF-497F-BF7F-711BACF31ABF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{A83AA022-44A7-40F0-8544-894CFB7EDF04}] => (Allow) P:\Origin\Dragon Age Inquisition\DragonAgeInquisition.exe (Electronic Arts -> Electronic Arts)
FirewallRules: [{D0B4726A-EF43-46B9-AA7C-522A799550E5}] => (Allow) P:\Origin\Dragon Age Inquisition\DragonAgeInquisition.exe (Electronic Arts -> Electronic Arts)
FirewallRules: [UDP Query User{9F0E2A82-3235-4668-9EFF-95613B2AE6FD}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe => Keine Datei
FirewallRules: [TCP Query User{0F6CD30C-9E99-4E50-B8CC-8A29A06308F4}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe => Keine Datei
FirewallRules: [{17ADB976-FE00-4244-8D34-AC38C5A32B5A}] => (Allow) P:\Steam\steamapps\common\Tyranny\Tyranny.exe (Obsidian Entertainment, Inc. -> Obsidian Entertainment, Inc.)
FirewallRules: [{27D819EB-7B99-4037-AF36-091B6FD63777}] => (Allow) P:\Steam\steamapps\common\Tyranny\Tyranny.exe (Obsidian Entertainment, Inc. -> Obsidian Entertainment, Inc.)
FirewallRules: [{387CF63C-28AA-4CED-8390-64CFB4A5A9E3}] => (Allow) P:\Steam\steamapps\common\Dungeon Siege III\Dungeon Siege III.exe (Obsidian Entertainment, Inc.) [Datei ist nicht signiert]
FirewallRules: [{6F0D26C8-E3D0-4E90-8885-1FB21858A1E4}] => (Allow) P:\Steam\steamapps\common\Dungeon Siege III\Dungeon Siege III.exe (Obsidian Entertainment, Inc.) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{C64FD58B-D007-4E6A-B27B-378B49653D64}P:\steam\steamapps\common\battlefleet gothic armada\battlefleetgothic\binaries\win64\battlefleetgothic-win64-shipping.exe] => (Allow) P:\steam\steamapps\common\battlefleet gothic armada\battlefleetgothic\binaries\win64\battlefleetgothic-win64-shipping.exe (Focus Home Interactive S.A -> Epic Games, Inc.)
FirewallRules: [TCP Query User{4A457D75-A5A6-42CF-B0C9-AEBF2C0C747A}P:\steam\steamapps\common\battlefleet gothic armada\battlefleetgothic\binaries\win64\battlefleetgothic-win64-shipping.exe] => (Allow) P:\steam\steamapps\common\battlefleet gothic armada\battlefleetgothic\binaries\win64\battlefleetgothic-win64-shipping.exe (Focus Home Interactive S.A -> Epic Games, Inc.)
FirewallRules: [UDP Query User{903DF23E-6CDB-49C8-BFEB-3D4C4A5C7936}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe => Keine Datei
FirewallRules: [TCP Query User{9F3639AA-F424-46FA-9D3C-79343D49807C}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe => Keine Datei
FirewallRules: [{F377A6DE-91EE-4971-86E8-A79F9C2C2FFA}] => (Allow) P:\Steam\steamapps\common\Battlefleet Gothic Armada\BattleFleetGothic.exe (Focus Home Interactive S.A -> )
FirewallRules: [{9D086E1A-505D-488D-AF2B-C4760B1244CA}] => (Allow) P:\Steam\steamapps\common\Battlefleet Gothic Armada\BattleFleetGothic.exe (Focus Home Interactive S.A -> )
FirewallRules: [{64C9BFA2-F108-4518-BB76-A82BD18B6DB4}] => (Allow) P:\Steam\steamapps\common\Vampire The Masquerade - Bloodlines\vampire.exe () [Datei ist nicht signiert]
FirewallRules: [{BC4E29D9-E189-4405-9419-0ED5197F6739}] => (Allow) P:\Steam\steamapps\common\Vampire The Masquerade - Bloodlines\vampire.exe () [Datei ist nicht signiert]
FirewallRules: [{CE1EF2B9-6C2F-46EE-89B7-23411970B388}] => (Allow) P:\Steam\steamapps\common\Sword Coast Legends\SwordCoast.exe () [Datei ist nicht signiert]
FirewallRules: [{73CC2378-C69D-4276-B594-F562D8AB1F31}] => (Allow) P:\Steam\steamapps\common\Sword Coast Legends\SwordCoast.exe () [Datei ist nicht signiert]
FirewallRules: [{37A24C6A-AD3C-48E9-8342-E1FA686B638B}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{11E0393E-7AC8-42C6-9EFA-0EE1BE5E2789}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{F311AFA5-D283-4F98-B4E9-A106AC65692F}] => (Allow) P:\Steam\steamapps\common\Wasteland 2 Director's Cut\Build\WL2.exe () [Datei ist nicht signiert]
FirewallRules: [{2872EC26-E95D-4668-8C37-52D3848E3AFF}] => (Allow) P:\Steam\steamapps\common\Wasteland 2 Director's Cut\Build\WL2.exe () [Datei ist nicht signiert]
FirewallRules: [{4D8EACDB-06AF-4E77-B77D-4A52C7C06401}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{E45354C9-092D-4EC0-BA65-1DFECE740849}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{8C23945D-BAFF-4E6C-A426-4B600BE72F89}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{1A8D228E-6F23-4A1D-8CA1-3B5AA3C1051F}] => (Allow) P:\Steam\steamapps\common\Pillars of Eternity\PillarsOfEternity.exe (Obsidian Entertainment) [Datei ist nicht signiert]
FirewallRules: [{46E58BE5-4AC4-418E-BD6A-E782B9D7FAE3}] => (Allow) P:\Steam\steamapps\common\Pillars of Eternity\PillarsOfEternity.exe (Obsidian Entertainment) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{F89CDCF9-88DB-48CB-A114-A725B5C51015}P:\steam\steamapps\common\xcom-enemy-unknown\xew\binaries\win32\xcomew.exe] => (Allow) P:\steam\steamapps\common\xcom-enemy-unknown\xew\binaries\win32\xcomew.exe (Valve Corp. -> Firaxis Games) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{9A033E19-F0D1-4DED-9747-C3411633551E}P:\steam\steamapps\common\xcom-enemy-unknown\xew\binaries\win32\xcomew.exe] => (Allow) P:\steam\steamapps\common\xcom-enemy-unknown\xew\binaries\win32\xcomew.exe (Valve Corp. -> Firaxis Games) [Datei ist nicht signiert]
FirewallRules: [{A863262B-0907-442E-9884-0BBFC88F5C36}] => (Allow) P:\Steam\steamapps\common\XCom-Enemy-Unknown\Binaries\Win32\XComGame.exe (Valve Corp. -> Firaxis Games) [Datei ist nicht signiert]
FirewallRules: [{CD180201-B36A-450E-B612-0BDCA1DE62AE}] => (Allow) P:\Steam\steamapps\common\XCom-Enemy-Unknown\Binaries\Win32\XComGame.exe (Valve Corp. -> Firaxis Games) [Datei ist nicht signiert]
FirewallRules: [{37B254CE-CB3C-49D6-91E1-2F58BCBCB257}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{0203DC8C-EDC1-4D7E-B33E-A7866178D2F3}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{E810F8DD-55AB-4F88-8A66-66CDE15A690F}] => (Allow) P:\Steam\steamapps\common\Sid Meier's Civilization V\Launcher.exe => Keine Datei
FirewallRules: [{E7E4A642-73C8-44B1-B2CB-2B13665F2E45}] => (Allow) P:\Steam\steamapps\common\Sid Meier's Civilization V\Launcher.exe => Keine Datei
FirewallRules: [{44F423E9-05D5-42AB-B337-89C6B74FDED5}] => (Allow) P:\Steam\steamapps\common\Thief\Binaries\Win64\Shipping-ThiefGame.exe () [Datei ist nicht signiert]
FirewallRules: [{8AA6B37A-E445-4E1B-BCBE-52F205346C35}] => (Allow) P:\Steam\steamapps\common\Thief\Binaries\Win64\Shipping-ThiefGame.exe () [Datei ist nicht signiert]
FirewallRules: [{9E05028D-4B3F-4D3B-86C3-F4CC45449EAB}] => (Allow) O:\Spiele Programme\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{F82884B2-7CE0-45D7-9801-891BF605CEF3}] => (Allow) O:\Spiele Programme\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{20696EB8-81BE-49FE-B5B8-A052A7B4AB29}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{E71AA041-8145-4D44-B606-F9132BA089F8}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{5648C57E-1C4B-4288-81FD-78EE7699AE12}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{6AF15A2C-C8EF-4E50-BE4F-CD023B23AC7E}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{0AF98EE8-0125-4534-B6A4-C3162D93D843}] => (Allow) P:\Rollenspiel\Neverwinter Nights 2\nwn2main.exe (Obsidian Entertainment, Inc.) [Datei ist nicht signiert]
FirewallRules: [{BF3E85AF-FC0E-42A8-AD08-24727DCDD7CA}] => (Allow) P:\Rollenspiel\Neverwinter Nights 2\nwn2main.exe (Obsidian Entertainment, Inc.) [Datei ist nicht signiert]
FirewallRules: [{F46F6DD5-7BF8-4E91-9B68-AB601104C136}] => (Allow) P:\Rollenspiel\Neverwinter Nights 2\nwn2main_amdxp.exe (Obsidian Entertainment, Inc.) [Datei ist nicht signiert]
FirewallRules: [{5C920E5B-6ECB-46C5-AF5C-05E9CE77EA38}] => (Allow) P:\Rollenspiel\Neverwinter Nights 2\nwn2main_amdxp.exe (Obsidian Entertainment, Inc.) [Datei ist nicht signiert]
FirewallRules: [{CCA1B9C0-BC85-425C-A97B-DAC89B6C5AE7}] => (Allow) P:\Rollenspiel\Neverwinter Nights 2\nwupdate.exe (Obsidian Entertainment, Inc.) [Datei ist nicht signiert]
FirewallRules: [{662D6587-1FEF-464C-9853-4D4B4D84E2E8}] => (Allow) P:\Rollenspiel\Neverwinter Nights 2\nwupdate.exe (Obsidian Entertainment, Inc.) [Datei ist nicht signiert]
FirewallRules: [{C083F91E-4E7D-4D54-98CC-AD99DADAE5E4}] => (Allow) P:\Rollenspiel\Neverwinter Nights 2\nwn2server.exe (Obsidian Entertainment, Inc.) [Datei ist nicht signiert]
FirewallRules: [{9697595B-D113-4195-8EC0-9DE9223E1E81}] => (Allow) P:\Rollenspiel\Neverwinter Nights 2\nwn2server.exe (Obsidian Entertainment, Inc.) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{425FF4E1-50CF-4385-B06E-3A57A3254B6A}P:\steam\steamapps\common\total war warhammer\warhammer.exe] => (Allow) P:\steam\steamapps\common\total war warhammer\warhammer.exe => Keine Datei
FirewallRules: [UDP Query User{77E22A57-71DB-451D-9468-B58EA23AACAA}P:\steam\steamapps\common\total war warhammer\warhammer.exe] => (Allow) P:\steam\steamapps\common\total war warhammer\warhammer.exe => Keine Datei
FirewallRules: [TCP Query User{F9CA8872-335A-4ABF-AA21-FC7B360DF376}P:\rollenspiel\witcher-saga\the witcher 2\bin\witcher2.exe] => (Allow) P:\rollenspiel\witcher-saga\the witcher 2\bin\witcher2.exe () [Datei ist nicht signiert]
FirewallRules: [UDP Query User{66AFB13C-2E1D-4BB3-9C45-5107D67B9641}P:\rollenspiel\witcher-saga\the witcher 2\bin\witcher2.exe] => (Allow) P:\rollenspiel\witcher-saga\the witcher 2\bin\witcher2.exe () [Datei ist nicht signiert]
FirewallRules: [{A7070280-413A-4F02-8E08-ADE78D2C6FC1}] => (Allow) P:\Steam\steamapps\common\Skyrim Special Edition\SkyrimSELauncher.exe (Bethesda Softworks) [Datei ist nicht signiert]
FirewallRules: [{342671E1-2520-4B91-B51D-F9BB60EACE20}] => (Allow) P:\Steam\steamapps\common\Skyrim Special Edition\SkyrimSELauncher.exe (Bethesda Softworks) [Datei ist nicht signiert]
FirewallRules: [{3B1DF7CF-8A56-4B0B-A5E7-682509DAF417}] => (Allow) P:\Origin\Mass Effect Andromeda\MassEffectAndromedaTrial.exe (Electronic Arts - BioWare) [Datei ist nicht signiert]
FirewallRules: [{B6DF1FBD-0C1C-468C-A187-898956C1D47F}] => (Allow) P:\Origin\Mass Effect Andromeda\MassEffectAndromedaTrial.exe (Electronic Arts - BioWare) [Datei ist nicht signiert]
FirewallRules: [{FA2EAB52-9E3D-4CC6-B32E-B78AC387C4B6}] => (Allow) P:\Origin\Mass Effect Andromeda\MassEffectAndromeda.exe (Electronic Arts -> Electronic Arts - BioWare)
FirewallRules: [{F8A6DFBF-1FCF-47D3-B23C-5E89C898037A}] => (Allow) P:\Origin\Mass Effect Andromeda\MassEffectAndromeda.exe (Electronic Arts -> Electronic Arts - BioWare)
FirewallRules: [{8832E621-47D3-4F19-AB77-DE6F6D2533E0}] => (Allow) P:\Steam\steamapps\common\TheDarkEye Cos\satinav.exe (Daedalic Entertainment) [Datei ist nicht signiert]
FirewallRules: [{C3C45B64-8BA6-498A-A34D-D4639C94AF6B}] => (Allow) P:\Steam\steamapps\common\TheDarkEye Cos\satinav.exe (Daedalic Entertainment) [Datei ist nicht signiert]
FirewallRules: [{D85A01A7-08F4-4C33-8FCF-0F5F34666015}] => (Allow) P:\Steam\steamapps\common\TheDarkEye Cos\VisionaireConfigurationTool.exe (Daedalic Entertainment) [Datei ist nicht signiert]
FirewallRules: [{293036C9-CB17-4769-B34C-F30B12C42D69}] => (Allow) P:\Steam\steamapps\common\TheDarkEye Cos\VisionaireConfigurationTool.exe (Daedalic Entertainment) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{421E6383-49D5-4D10-86E7-76C743E6BD22}P:\rollenspiel\witcher-saga\the witcher 2\bin\witcher2.exe] => (Allow) P:\rollenspiel\witcher-saga\the witcher 2\bin\witcher2.exe () [Datei ist nicht signiert]
FirewallRules: [UDP Query User{02A8533D-577C-45EB-B8C0-CA216729C390}P:\rollenspiel\witcher-saga\the witcher 2\bin\witcher2.exe] => (Allow) P:\rollenspiel\witcher-saga\the witcher 2\bin\witcher2.exe () [Datei ist nicht signiert]
FirewallRules: [{A28B2B71-561B-417D-9838-FCFA15BE7D67}] => (Allow) P:\Steam\steamapps\common\Deus Ex - Human Revolution\dxhr.exe (Square Enix LTD -> Square Enix Limited)
FirewallRules: [{F0C7EE0D-E230-4A39-BB28-91FDED928C36}] => (Allow) P:\Steam\steamapps\common\Deus Ex - Human Revolution\dxhr.exe (Square Enix LTD -> Square Enix Limited)
FirewallRules: [TCP Query User{41034814-DE27-4868-B3A2-F50543BE203D}P:\origin\mass effect 2\binaries\me2game.exe] => (Allow) P:\origin\mass effect 2\binaries\me2game.exe => Keine Datei
FirewallRules: [UDP Query User{84F0E04A-D134-4C6A-A21C-1B0DE555FFBA}P:\origin\mass effect 2\binaries\me2game.exe] => (Allow) P:\origin\mass effect 2\binaries\me2game.exe => Keine Datei
FirewallRules: [{465CC63D-F347-48BC-8F61-283F4463E3E5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{C57C5CC4-2DAC-4A22-8157-48076E45B291}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{C3F7CFD9-1604-4392-B699-87A542D07DDD}] => (Allow) P:\Steam\steamapps\common\Frostpunk\Frostpunk.exe (11 bit studios S.A.) [Datei ist nicht signiert]
FirewallRules: [{407F0E5A-E679-486D-A837-EE357E1F2BEC}] => (Allow) P:\Steam\steamapps\common\Frostpunk\Frostpunk.exe (11 bit studios S.A.) [Datei ist nicht signiert]
FirewallRules: [{593E98BC-4A47-4766-A475-E4D8B08F3731}] => (Allow) P:\Steam\steamapps\common\Deus Ex Mankind Divided\retail\DXMD.exe () [Datei ist nicht signiert]
FirewallRules: [{BFAC1C5D-3E45-4E20-B2CF-99688D8EB35D}] => (Allow) P:\Steam\steamapps\common\Deus Ex Mankind Divided\retail\DXMD.exe () [Datei ist nicht signiert]
FirewallRules: [{9FD9B19A-1AA8-4DAC-94BF-84A778DE144B}] => (Allow) P:\Steam\steamapps\common\Fallout 4\Fallout4Launcher.exe (Bethesda Softworks) [Datei ist nicht signiert]
FirewallRules: [{C5CF44D8-8A38-48A6-86C2-9E481A2C6E69}] => (Allow) P:\Steam\steamapps\common\Fallout 4\Fallout4Launcher.exe (Bethesda Softworks) [Datei ist nicht signiert]
FirewallRules: [{73625C81-12F6-42CF-81A3-726EA80CDC89}] => (Allow) O:\Spiele Programme\Nexus Mod Manager\NexusClient.exe (Black Tree Gaming Limited -> Black Tree Gaming)
FirewallRules: [{F041F34B-F158-4783-8D17-AD10C5C816BD}] => (Allow) O:\Spiele Programme\Nexus Mod Manager\NexusClient.exe (Black Tree Gaming Limited -> Black Tree Gaming)
FirewallRules: [{5B3B6ADF-78AE-439B-80B4-DA74C9CD989F}] => (Allow) O:\Spiele Programme\Nexus Mod Manager\NexusClient.exe (Black Tree Gaming Limited -> Black Tree Gaming)
FirewallRules: [{D36EA03A-FFAB-467D-BB89-5B0CC6D1C5BD}] => (Allow) O:\Spiele Programme\Nexus Mod Manager\NexusClient.exe (Black Tree Gaming Limited -> Black Tree Gaming)
FirewallRules: [{94B48DA5-A589-4443-A392-E2B03C949BB6}] => (Allow) P:\Origin\Plants vs. Zombies\PlantsVsZombies.exe (PopCap Games -> )
FirewallRules: [{371066C0-99CF-4482-945E-857996CA23B2}] => (Allow) P:\Origin\Plants vs. Zombies\PlantsVsZombies.exe (PopCap Games -> )
FirewallRules: [{5818B400-E7DA-4089-ABE3-6404411A2548}] => (Allow) P:\Steam\steamapps\common\Sid Meier's Civilization VI\Base\Binaries\Win64Steam\CivilizationVI.exe (Firaxis Games) [Datei ist nicht signiert]
FirewallRules: [{078BCC34-CFCE-4A2A-9ACA-DC31A75B3A2A}] => (Allow) P:\Steam\steamapps\common\Sid Meier's Civilization VI\Base\Binaries\Win64Steam\CivilizationVI.exe (Firaxis Games) [Datei ist nicht signiert]
FirewallRules: [{168CACD2-36A4-4CCD-AA6C-040441BB2E57}] => (Allow) P:\Steam\steamapps\common\Sid Meier's Civilization VI\Base\Binaries\Win64Steam\CivilizationVI_DX12.exe (Firaxis Games) [Datei ist nicht signiert]
FirewallRules: [{36494A20-9166-4B67-9651-8525B308895D}] => (Allow) P:\Steam\steamapps\common\Sid Meier's Civilization VI\Base\Binaries\Win64Steam\CivilizationVI_DX12.exe (Firaxis Games) [Datei ist nicht signiert]
FirewallRules: [{F2ABF7F7-C80D-4A50-8F5D-28C924DDA307}] => (Allow) P:\Steam\steamapps\common\Shadow Tactics\Shadow Tactics.exe () [Datei ist nicht signiert]
FirewallRules: [{9659D58B-EDFE-4067-9E90-8B61826F93AE}] => (Allow) P:\Steam\steamapps\common\Shadow Tactics\Shadow Tactics.exe () [Datei ist nicht signiert]
FirewallRules: [{BCD5B7C9-A211-465E-B29C-E13F8716851D}] => (Allow) O:\Spiele Programme\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{7C294C48-346A-4083-AD00-A3476BA13374}] => (Allow) O:\Spiele Programme\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{D5042F4F-B84B-4B8B-9C28-8D3B0C488085}] => (Allow) P:\Steam\steamapps\common\Dawn of War Soulstorm\Soulstorm.exe (Relic Entertainment, Inc. -> Sega Corporation)
FirewallRules: [{E39A3103-374D-4E50-A557-5B5691A8D0EC}] => (Allow) P:\Steam\steamapps\common\Dawn of War Soulstorm\Soulstorm.exe (Relic Entertainment, Inc. -> Sega Corporation)
FirewallRules: [{1EADF650-437C-409B-B04F-14564A2415DE}] => (Allow) P:\Steam\steamapps\common\They Are Billions\TheyAreBillions.exe (Numantian Games) [Datei ist nicht signiert]
FirewallRules: [{ABB90B15-0DC4-41BC-9D2B-DA8A49C2B0C2}] => (Allow) P:\Steam\steamapps\common\They Are Billions\TheyAreBillions.exe (Numantian Games) [Datei ist nicht signiert]
FirewallRules: [{35BB23C2-BAF2-4E5B-B129-FB6AAB360EB0}] => (Allow) P:\Action\Assassins Creed Saga\Assassin's Creed Odyssey\ACOdyssey.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{6B9A394D-43EB-47D8-B8E1-FDCC04DDAAF7}] => (Allow) P:\Steam\steamapps\common\The Incredible Adventures of Van Helsing II\VanHelsing.exe (NeoCore Games) [Datei ist nicht signiert]
FirewallRules: [{4EB295C9-EF2F-465C-915F-42DE5A772718}] => (Allow) P:\Steam\steamapps\common\The Incredible Adventures of Van Helsing II\VanHelsing.exe (NeoCore Games) [Datei ist nicht signiert]
FirewallRules: [{6DD2E746-4F6F-4445-A617-3312401B8516}] => (Allow) P:\Steam\steamapps\common\Vampyr\AVGame\Binaries\Win64\AVGame-Win64-Shipping.exe (Focus Home Interactive -> Focus Home Interactive)
FirewallRules: [{D26A9BDD-CA12-4C10-9E5D-968E5A0A985C}] => (Allow) P:\Steam\steamapps\common\Vampyr\AVGame\Binaries\Win64\AVGame-Win64-Shipping.exe (Focus Home Interactive -> Focus Home Interactive)
FirewallRules: [{25307D7A-46DD-4FDA-AE9E-75CFCEA4CDEA}] => (Allow) P:\Steam\steamapps\common\Terraria\Terraria.exe (Re-Logic) [Datei ist nicht signiert]
FirewallRules: [{1CAB102C-796C-4565-8ACE-39AE4B9CCD61}] => (Allow) P:\Steam\steamapps\common\Terraria\Terraria.exe (Re-Logic) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{85A9A065-A008-4BA4-BB47-34D3E966F6BC}P:\steam\steamapps\common\terraria\terrariaserver.exe] => (Allow) P:\steam\steamapps\common\terraria\terrariaserver.exe (Re-Logic) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{10EF0CBB-A7E0-4158-B4BB-F0ED62416465}P:\steam\steamapps\common\terraria\terrariaserver.exe] => (Allow) P:\steam\steamapps\common\terraria\terrariaserver.exe (Re-Logic) [Datei ist nicht signiert]
FirewallRules: [{8AC67B73-0F2F-4AEC-8034-08F5D3BB8E46}] => (Allow) P:\Steam\steamapps\common\A Plague Tale Innocence\APlagueTaleInnocence_x64.exe (Focus Home Interactive -> Asobo Studio)
FirewallRules: [{73B11282-3B5D-4DB4-915E-B190FB51F264}] => (Allow) P:\Steam\steamapps\common\A Plague Tale Innocence\APlagueTaleInnocence_x64.exe (Focus Home Interactive -> Asobo Studio)
FirewallRules: [{0203E172-4CE2-4023-9805-64A0CB97573F}] => (Allow) P:\Steam\steamapps\common\Dungeons & Dragons HD\ManaGame.exe () [Datei ist nicht signiert]
FirewallRules: [{B0F572FA-AE10-4807-BF5E-188D9BE382D3}] => (Allow) P:\Steam\steamapps\common\Dungeons & Dragons HD\ManaGame.exe () [Datei ist nicht signiert]
FirewallRules: [{EEC5889C-BE31-4BB7-BE0A-E89302E6E67C}] => (Allow) P:\Steam\steamapps\common\Slime Rancher\SlimeRancher.exe () [Datei ist nicht signiert]
FirewallRules: [{0C70E0C7-17B5-42A7-A7DC-7ADF6569708F}] => (Allow) P:\Steam\steamapps\common\Slime Rancher\SlimeRancher.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{15DEC58C-B4CC-41A2-8B98-D93E5BD1C9D2}P:\gog games\pathfinder kingmaker\kingmaker.exe] => (Allow) P:\gog games\pathfinder kingmaker\kingmaker.exe () [Datei ist nicht signiert]
FirewallRules: [UDP Query User{58665B12-B2DC-4E1F-8F90-BDB718B5B764}P:\gog games\pathfinder kingmaker\kingmaker.exe] => (Allow) P:\gog games\pathfinder kingmaker\kingmaker.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{23AF7A47-770B-42CD-9112-3E1D39734893}P:\gog games\pathfinder kingmaker\kingmaker.exe] => (Allow) P:\gog games\pathfinder kingmaker\kingmaker.exe () [Datei ist nicht signiert]
FirewallRules: [UDP Query User{38FC5A14-31B9-4C50-B0A5-FC060463BF7F}P:\gog games\pathfinder kingmaker\kingmaker.exe] => (Allow) P:\gog games\pathfinder kingmaker\kingmaker.exe () [Datei ist nicht signiert]
FirewallRules: [{BAADD808-CCC5-465B-9BFE-3B2D7B7A9099}] => (Allow) P:\Steam\steamapps\common\Sid Meier's Civilization Beyond Earth\CivilizationBE_DX11.exe (Valve Corp. -> Firaxis Games) [Datei ist nicht signiert]
FirewallRules: [{A9C2E3DF-D1AD-4E1F-AFBD-8660BF555EFC}] => (Allow) P:\Steam\steamapps\common\Sid Meier's Civilization Beyond Earth\CivilizationBE_DX11.exe (Valve Corp. -> Firaxis Games) [Datei ist nicht signiert]
FirewallRules: [{A4FE5AD0-940F-434E-ACC0-6EF959D8B6B7}] => (Allow) P:\Steam\steamapps\common\Sid Meier's Civilization Beyond Earth\CivilizationBE_Mantle.exe (Valve Corp. -> Firaxis Games) [Datei ist nicht signiert]
FirewallRules: [{07756622-15FF-4A2E-B183-90170B47CA33}] => (Allow) P:\Steam\steamapps\common\Sid Meier's Civilization Beyond Earth\CivilizationBE_Mantle.exe (Valve Corp. -> Firaxis Games) [Datei ist nicht signiert]
FirewallRules: [{2CD6A551-48C5-4B42-8649-1DC5E3A9831C}] => (Allow) P:\Steam\steamapps\common\Hitman™\Launcher.exe (IO INTERACTIVE A/S -> )
FirewallRules: [{6D2713AF-7019-4D52-9D09-3366A65D1878}] => (Allow) P:\Steam\steamapps\common\Hitman™\Launcher.exe (IO INTERACTIVE A/S -> )
FirewallRules: [TCP Query User{41D4C502-9AA9-4B4A-B3A5-C88EF92DF2CD}G:\gog games\cyberpunk 2077\bin\x64\cyberpunk2077.exe] => (Allow) G:\gog games\cyberpunk 2077\bin\x64\cyberpunk2077.exe (CD PROJEKT SPÓŁKA AKCYJNA -> CD PROJEKT S.A.)
FirewallRules: [UDP Query User{B17D245C-6171-485E-B88C-262067785A68}G:\gog games\cyberpunk 2077\bin\x64\cyberpunk2077.exe] => (Allow) G:\gog games\cyberpunk 2077\bin\x64\cyberpunk2077.exe (CD PROJEKT SPÓŁKA AKCYJNA -> CD PROJEKT S.A.)
FirewallRules: [{F24FD88D-6444-4043-9F44-369512666E43}] => (Allow) P:\Steam\steamapps\common\Graveyard Keeper\Graveyard Keeper.exe () [Datei ist nicht signiert]
FirewallRules: [{32854902-40FF-4B2F-98A2-C32108F6CE53}] => (Allow) P:\Steam\steamapps\common\Graveyard Keeper\Graveyard Keeper.exe () [Datei ist nicht signiert]
FirewallRules: [{4479BBBB-DA1E-4B9B-BF64-5CA30ECE2C64}] => (Allow) P:\Steam\steamapps\common\Might and Magic Heroes VI\Might & Magic Heroes VI.exe (Virtuos China Ltd. -> Virtuos) [Datei ist nicht signiert]
FirewallRules: [{8473A6C8-EAF8-4289-AFDE-8B3FB3AE4711}] => (Allow) P:\Steam\steamapps\common\Might and Magic Heroes VI\Might & Magic Heroes VI.exe (Virtuos China Ltd. -> Virtuos) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{FF75AF1D-6874-4FDC-90D3-FEF4F26468B8}P:\strategie\starcraft\x86_64\starcraft.exe] => (Allow) P:\strategie\starcraft\x86_64\starcraft.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{B8D946B1-6B0F-4CC1-AF09-7BAC036FF75C}P:\strategie\starcraft\x86_64\starcraft.exe] => (Allow) P:\strategie\starcraft\x86_64\starcraft.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{84C9F4C6-699E-4B40-9402-4A79BCAEE573}] => (Allow) P:\Steam\steamapps\common\Magicka 2\engine\Magicka2.exe => Keine Datei
FirewallRules: [{70EB205C-8EEF-4893-BCC2-B6780ADFCDF6}] => (Allow) P:\Steam\steamapps\common\Magicka 2\engine\Magicka2.exe => Keine Datei
FirewallRules: [{2648603B-B472-458B-B91C-6E9C84DA8636}] => (Allow) P:\Steam\steamapps\common\SpaceHaven\spacehaven.exe () [Datei ist nicht signiert]
FirewallRules: [{62ECB03C-2757-4920-A303-C9C41FF9EE8F}] => (Allow) P:\Steam\steamapps\common\SpaceHaven\spacehaven.exe () [Datei ist nicht signiert]
FirewallRules: [{DCCE4F35-E9A4-4133-AEF0-2F723B34EE66}] => (Allow) P:\Steam\steamapps\common\Sid Meier's Civilization VI\LaunchPad\LaunchPad.exe (Xsolla (USA), Inc -> 2K)
FirewallRules: [{80FD3091-2467-4118-8474-1D34176D1687}] => (Allow) P:\Steam\steamapps\common\Sid Meier's Civilization VI\LaunchPad\LaunchPad.exe (Xsolla (USA), Inc -> 2K)
FirewallRules: [{D04F845E-8906-426C-8F09-FC93397D34FB}] => (Allow) P:\Steam\steamapps\common\Sid Meier's Civilization VI\2KLauncher\LauncherPatcher.exe (Take-Two Interactive Software, Inc. -> Take-Two Interactive Software, Inc.)
FirewallRules: [{EC9DA7C4-5879-4FCD-A212-250F36B83A1C}] => (Allow) P:\Steam\steamapps\common\Sid Meier's Civilization VI\2KLauncher\LauncherPatcher.exe (Take-Two Interactive Software, Inc. -> Take-Two Interactive Software, Inc.)
FirewallRules: [{B2285CE7-AB42-4962-AFC0-2D362E35A87E}] => (Allow) P:\Steam\steamapps\common\Secret of Mana\Binary\Secret_of_Mana.exe (SQUARE ENIX CO., LTD. -> Square Enix)
FirewallRules: [{BA0A28B5-1489-45E7-A57B-24D017B4B5F8}] => (Allow) P:\Steam\steamapps\common\Secret of Mana\Binary\Secret_of_Mana.exe (SQUARE ENIX CO., LTD. -> Square Enix)
FirewallRules: [{14CFFC73-003E-401F-922A-36F0EAEF2143}] => (Allow) F:\Steam\steamapps\common\Conan Exiles\Launcher\FuncomLauncher.exe (FUNCOM OSLO AS -> Funcom)
FirewallRules: [{B58F8C2C-FAF5-4853-BCF5-BD9AC9662CBF}] => (Allow) F:\Steam\steamapps\common\Conan Exiles\Launcher\FuncomLauncher.exe (FUNCOM OSLO AS -> Funcom)
FirewallRules: [TCP Query User{5BA9CAE7-6814-4904-8EE7-E97F1D25D405}G:\steam\steamapps\common\total war warhammer ii\warhammer2.exe] => (Allow) G:\steam\steamapps\common\total war warhammer ii\warhammer2.exe (The Creative Assembly Ltd -> The Creative Assembly Ltd)
FirewallRules: [UDP Query User{68B76F01-C3DC-40C3-B85C-1E1F7CCE9C6F}G:\steam\steamapps\common\total war warhammer ii\warhammer2.exe] => (Allow) G:\steam\steamapps\common\total war warhammer ii\warhammer2.exe (The Creative Assembly Ltd -> The Creative Assembly Ltd)
FirewallRules: [{DCFFA2C1-4D93-4360-B3C3-784A10878E5F}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{EC7740B7-A3D1-4EA0-A991-C3AFA44AE215}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{0BC43DD3-A83D-43AD-B5A5-AF8952D824AF}C:\users\*****\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\*****\appdata\local\microsoft\teams\current\teams.exe => Keine Datei
FirewallRules: [UDP Query User{9AD0A68C-C050-4C5F-9438-F6E5675668A4}C:\users\*****\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\*****\appdata\local\microsoft\teams\current\teams.exe => Keine Datei
FirewallRules: [{D18DFAFC-A7C8-4B55-91C4-16DE10AC796A}] => (Allow) P:\Steam\steamapps\common\Stellaris\dowser.exe (Paradox Interactive AB (publ) -> )
FirewallRules: [{6D62DF28-D02D-47E0-823D-DD87717BF61D}] => (Allow) P:\Steam\steamapps\common\Stellaris\dowser.exe (Paradox Interactive AB (publ) -> )
FirewallRules: [TCP Query User{CE28A078-B989-49B5-A658-7F38991F8ACB}F:1\adobe\adobe dreamweaver 2021\node\node.exe] => (Block) F:1\adobe\adobe dreamweaver 2021\node\node.exe => Keine Datei
FirewallRules: [UDP Query User{D29E55DB-83F7-4F52-8EB3-5F4CDCCB321F}F:1\adobe\adobe dreamweaver 2021\node\node.exe] => (Block) F:1\adobe\adobe dreamweaver 2021\node\node.exe => Keine Datei
FirewallRules: [TCP Query User{8D08912D-587D-4093-9EA4-A40014DE4BE3}P:\epic games\saintsrowthethird\srttr.exe] => (Allow) P:\epic games\saintsrowthethird\srttr.exe => Keine Datei
FirewallRules: [UDP Query User{2812AFE9-CC5A-4AE4-AE79-00E380D33123}P:\epic games\saintsrowthethird\srttr.exe] => (Allow) P:\epic games\saintsrowthethird\srttr.exe => Keine Datei
FirewallRules: [{159D48C0-4FFC-42D3-9049-538E49CBB8FB}] => (Allow) P:\Steam\steamapps\common\Age of Darkness - Final Stand\Achilles.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [{FAF82760-E8F8-437F-B17D-6AA5BE3F90C8}] => (Allow) P:\Steam\steamapps\common\Age of Darkness - Final Stand\Achilles.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [{916B5204-9EE6-4A79-9001-DF9ECD8E0535}] => (Allow) G:\Steam\steamapps\common\Wasteland 3\WL3.exe (Microsoft Corporation -> )
FirewallRules: [{2D03E446-0D1C-4BEB-8373-0E13AC8DC44C}] => (Allow) G:\Steam\steamapps\common\Wasteland 3\WL3.exe (Microsoft Corporation -> )
FirewallRules: [TCP Query User{E67138A2-1EB7-4F94-BB79-6A3FE74481A3}F:1\programme\operagx\opera.exe] => (Allow) F:1\programme\operagx\opera.exe => Keine Datei
FirewallRules: [UDP Query User{9A22B232-640C-4153-AD3F-BB774F6E1366}F:1\programme\operagx\opera.exe] => (Allow) F:1\programme\operagx\opera.exe => Keine Datei
FirewallRules: [{DE71C755-A9BA-4D4F-BFEF-39D15B28ACEE}] => (Allow) P:\Steam\steamapps\common\Vampire The Masquerade - Coteries of New York\VtM Coteries of New York.exe () [Datei ist nicht signiert]
FirewallRules: [{1EEB88B2-44C0-453F-AA9D-43FB7D38EEE9}] => (Allow) P:\Steam\steamapps\common\Vampire The Masquerade - Coteries of New York\VtM Coteries of New York.exe () [Datei ist nicht signiert]
FirewallRules: [{CA8B8A75-6BB4-48EB-A62B-9491FE9B7FB1}] => (Allow) G:\Steam\steamapps\common\Dishonored2\Dishonored2.exe => Keine Datei
FirewallRules: [{F55EB92F-87B7-4004-802E-C3A3EF3D1802}] => (Allow) G:\Steam\steamapps\common\Dishonored2\Dishonored2.exe => Keine Datei
FirewallRules: [TCP Query User{8FDCDD88-D6C5-4697-88DA-7FA67B107182}P:\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Block) P:\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{04125F49-2CDE-43F8-B575-2C1E2BCB531B}P:\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Block) P:\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{3E5BB316-D8FA-492E-8FCB-9AEDEBD72DE8}] => (Allow) P:\Steam\steamapps\common\Dishonored2\Dishonored2.exe (Arkane Studios) [Datei ist nicht signiert]
FirewallRules: [{7BEB4C91-CF6F-485B-A3D5-A7D0146CEAF8}] => (Allow) P:\Steam\steamapps\common\Dishonored2\Dishonored2.exe (Arkane Studios) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{B2BBF58D-8E74-4236-881F-207DE7E86512}G:\steam\steamapps\common\total war warhammer iii\warhammer3.exe] => (Allow) G:\steam\steamapps\common\total war warhammer iii\warhammer3.exe (The Creative Assembly Ltd) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{25A2672B-ACE4-4EF5-BCC2-74CB920CE591}G:\steam\steamapps\common\total war warhammer iii\warhammer3.exe] => (Allow) G:\steam\steamapps\common\total war warhammer iii\warhammer3.exe (The Creative Assembly Ltd) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{8702B6D9-F7BF-4363-8B97-227A5D7878AE}F:1\anderes\xampp\mysql\bin\mysqld.exe] => (Allow) F:1\anderes\xampp\mysql\bin\mysqld.exe => Keine Datei
FirewallRules: [UDP Query User{6FA06633-DA5C-4D72-8F4F-5EBE7049A7CE}F:1\anderes\xampp\mysql\bin\mysqld.exe] => (Allow) F:1\anderes\xampp\mysql\bin\mysqld.exe => Keine Datei
FirewallRules: [TCP Query User{76CCDE27-6BAF-4C10-8A7E-7A0A13DC3155}F:1\anderes\xampp\apache\bin\httpd.exe] => (Allow) F:1\anderes\xampp\apache\bin\httpd.exe => Keine Datei
FirewallRules: [UDP Query User{F96ACC94-FE7F-4E9D-BB45-352A53557998}F:1\anderes\xampp\apache\bin\httpd.exe] => (Allow) F:1\anderes\xampp\apache\bin\httpd.exe => Keine Datei
FirewallRules: [{53BF83D5-D772-40BE-8C68-135C49C7FEFA}] => (Allow) G:\Steam\steamapps\common\VRising\VRising.exe (Stunlock Studios AB -> )
FirewallRules: [{652A6ABB-FE71-444E-9400-306DD74649E7}] => (Allow) G:\Steam\steamapps\common\VRising\VRising.exe (Stunlock Studios AB -> )
FirewallRules: [TCP Query User{61BFA3DF-3619-402B-9EDB-3B449CE49704}G:\steam\steamapps\common\vrising\vrising_server\vrisingserver.exe] => (Allow) G:\steam\steamapps\common\vrising\vrising_server\vrisingserver.exe (Stunlock Studios AB -> )
FirewallRules: [UDP Query User{0285656F-83D0-4F01-BFA2-68B2DBA6077B}G:\steam\steamapps\common\vrising\vrising_server\vrisingserver.exe] => (Allow) G:\steam\steamapps\common\vrising\vrising_server\vrisingserver.exe (Stunlock Studios AB -> )
FirewallRules: [{3FE5DD68-A218-4C2B-AFA8-55E365DD67A9}] => (Allow) P:\Action\Assassins Creed Saga\Assassin's Creed Syndicate\ACS.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [TCP Query User{5BA8C430-21F2-4323-BF5C-FEFDDF30CEAC}G:\gog games\pathfinder wrath of the righteous\wrath.exe] => (Allow) G:\gog games\pathfinder wrath of the righteous\wrath.exe () [Datei ist nicht signiert]
FirewallRules: [UDP Query User{FF06E29D-890C-409F-B5B0-A9D39E8968D4}G:\gog games\pathfinder wrath of the righteous\wrath.exe] => (Allow) G:\gog games\pathfinder wrath of the righteous\wrath.exe () [Datei ist nicht signiert]
FirewallRules: [{370FE27C-5D55-4EF0-AF6F-B9943E0D2252}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{BEFB4826-B678-45D6-ADC9-8E8F66DF9268}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{F6E0E516-A635-4F32-8FAD-3DCEAA13D715}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{59327BD4-4359-43DF-8FE6-2C72EDBAD9E9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{A9F2E930-5C2F-4088-9F98-E8BD0CBAC58D}] => (Allow) G:\Steam\steamapps\common\Total War WARHAMMER II\launcher\launcher.exe (Creative Assembly Ltd) [Datei ist nicht signiert]
FirewallRules: [{5E0BC4AF-4C85-4653-B1CB-D3F21BB8DDBE}] => (Allow) G:\Steam\steamapps\common\Total War WARHAMMER II\launcher\launcher.exe (Creative Assembly Ltd) [Datei ist nicht signiert]
FirewallRules: [{1BD8AC1D-FD53-4022-8D3D-773D8CD2DB45}] => (Allow) G:\Steam\steamapps\common\Warhammer 40,000 DARKTIDE\launcher\Launcher.exe (Fatshark AB -> Fatshark AB)
FirewallRules: [{ECC29262-684F-4BC0-B2C6-E0B9CB817122}] => (Allow) G:\Steam\steamapps\common\Warhammer 40,000 DARKTIDE\launcher\Launcher.exe (Fatshark AB -> Fatshark AB)
FirewallRules: [TCP Query User{0FB1FACC-F941-472F-ADAE-1BBF1F247153}G:\steam\steamapps\common\warhammer 40,000 darktide\binaries\darktide.exe] => (Allow) G:\steam\steamapps\common\warhammer 40,000 darktide\binaries\darktide.exe (Fatshark Studios AB) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{1CFB26D3-A7A0-41E4-8637-E4722CDDE4D6}G:\steam\steamapps\common\warhammer 40,000 darktide\binaries\darktide.exe] => (Allow) G:\steam\steamapps\common\warhammer 40,000 darktide\binaries\darktide.exe (Fatshark Studios AB) [Datei ist nicht signiert]
FirewallRules: [{5B95396C-1AF6-42C5-9B41-D99D6CA099B1}] => (Allow) P:\Steam\steamapps\common\DarkestDungeon\_windows\Darkest.exe () [Datei ist nicht signiert]
FirewallRules: [{9CA3EF4E-24B6-47C6-9C78-543C01119A3A}] => (Allow) P:\Steam\steamapps\common\DarkestDungeon\_windows\Darkest.exe () [Datei ist nicht signiert]
FirewallRules: [{D1839443-770E-458D-92A8-C38D98D046D0}] => (Allow) F:\Steam\steamapps\common\Grounded\Grounded.exe (Obsidian Entertainment, Inc. -> Epic Games, Inc.)
FirewallRules: [{5271DD2F-6AB7-4D76-B334-EC96EDA6411F}] => (Allow) F:\Steam\steamapps\common\Grounded\Grounded.exe (Obsidian Entertainment, Inc. -> Epic Games, Inc.)
FirewallRules: [{3C483B17-C669-487B-BB59-93D8238B6234}] => (Allow) G:\Steam\steamapps\common\Bloodhunt\Tiger.exe (EasyAntiCheat Oy -> Epic Games, Inc.)
FirewallRules: [{11164110-F250-4EED-B834-82EDD46A62D4}] => (Allow) G:\Steam\steamapps\common\Bloodhunt\Tiger.exe (EasyAntiCheat Oy -> Epic Games, Inc.)
FirewallRules: [TCP Query User{80CA2975-8BE5-421A-8876-7CB4271FC7F9}C:\users\*****\appdata\local\discord\app-1.0.9010\discord.exe] => (Allow) C:\users\*****\appdata\local\discord\app-1.0.9010\discord.exe => Keine Datei
FirewallRules: [UDP Query User{45254174-3BE9-4794-A512-04004FE2516C}C:\users\*****\appdata\local\discord\app-1.0.9010\discord.exe] => (Allow) C:\users\*****\appdata\local\discord\app-1.0.9010\discord.exe => Keine Datei
FirewallRules: [{7E310B6E-A159-4F88-B58E-34B0CACE31FF}] => (Allow) G:\Steam\steamapps\common\Total War WARHAMMER III\launcher\launcher.exe (Creative Assembly Ltd) [Datei ist nicht signiert]
FirewallRules: [{144274F0-C5DB-4B69-B35E-02F0CEB1C432}] => (Allow) G:\Steam\steamapps\common\Total War WARHAMMER III\launcher\launcher.exe (Creative Assembly Ltd) [Datei ist nicht signiert]
FirewallRules: [{78D7603A-74EF-4711-AAFD-0890AFF31787}] => (Allow) P:\Steam\steamapps\common\Neverwinter Nights\bin\win32\nwmain.exe (Beamdog) [Datei ist nicht signiert]
FirewallRules: [{450FA879-480B-4AC3-AC93-2AA2BCEB77E0}] => (Allow) P:\Steam\steamapps\common\Neverwinter Nights\bin\win32\nwmain.exe (Beamdog) [Datei ist nicht signiert]
FirewallRules: [{64541A60-8F2B-45DB-951D-E4F7A5EB7159}] => (Allow) P:\Steam\steamapps\common\Neverwinter Nights\bin\win32\nwtoolset.exe (Beamdog Corp.) [Datei ist nicht signiert]
FirewallRules: [{80806DB1-C21C-4C1B-8D22-11C7B9097A61}] => (Allow) P:\Steam\steamapps\common\Neverwinter Nights\bin\win32\nwtoolset.exe (Beamdog Corp.) [Datei ist nicht signiert]
FirewallRules: [{EFE85F05-1246-43ED-8621-32C69485F268}] => (Allow) F:1\Spiele Programme\Steam\steamapps\common\Among Us\Among Us.exe => Keine Datei
FirewallRules: [{4A5F5BEC-13C8-4E61-8AED-7E41B3A27BD1}] => (Allow) F:1\Spiele Programme\Steam\steamapps\common\Among Us\Among Us.exe => Keine Datei
FirewallRules: [TCP Query User{EE14A359-179E-4854-9DE0-54A627E41756}P:\strategie\diablo iv - beta\diablo iv.exe] => (Allow) P:\strategie\diablo iv - beta\diablo iv.exe => Keine Datei
FirewallRules: [UDP Query User{2EB5BA76-83D2-4A74-9D4C-929DAF16DE34}P:\strategie\diablo iv - beta\diablo iv.exe] => (Allow) P:\strategie\diablo iv - beta\diablo iv.exe => Keine Datei
FirewallRules: [TCP Query User{20AD2399-E477-43A0-8A45-8FF822565D8A}P:\strategie\starcraft ii\versions\base89720\sc2_x64.exe] => (Block) P:\strategie\starcraft ii\versions\base89720\sc2_x64.exe => Keine Datei
FirewallRules: [UDP Query User{CEDF49D2-06BB-4F63-B232-E3DD38F8A3FA}P:\strategie\starcraft ii\versions\base89720\sc2_x64.exe] => (Block) P:\strategie\starcraft ii\versions\base89720\sc2_x64.exe => Keine Datei
FirewallRules: [TCP Query User{AD094D79-DBAC-4FA6-A9B2-F8FE6E69F480}P:\strategie\starcraft ii\versions\base90136\sc2_x64.exe] => (Allow) P:\strategie\starcraft ii\versions\base90136\sc2_x64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment, Inc.)
FirewallRules: [UDP Query User{E2135709-E902-4950-83DC-0B7C4D36532B}P:\strategie\starcraft ii\versions\base90136\sc2_x64.exe] => (Allow) P:\strategie\starcraft ii\versions\base90136\sc2_x64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment, Inc.)
FirewallRules: [{84771B11-D610-46F4-97BC-27C6D2E3129E}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{7BCEF1E5-8DF0-4C1D-957D-0678A29FC14F}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B88161BD-EFB6-484B-8F8D-EF514AF900CD}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1903A9A4-1E8A-4AFA-AC97-89920ED6A1B4}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\113.0.1774.57\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{97915A2F-6D19-4ABF-A5D5-814991241BA8}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3206.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{5243230B-6C64-472E-83EB-15073A44FCF3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3206.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{5823643B-58F0-4497-8AB1-9F1B1936E23F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3206.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{1BE80BB0-9499-4568-A822-D82F95A646FA}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3206.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{CD140378-A400-4EDC-986D-B04A34B2FBFE}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Wiederherstellungspunkte =========================

11-05-2023 18:03:14 Windows Modules Installer
21-05-2023 14:11:27 Geplanter Prüfpunkt
02-06-2023 17:55:05 Windows Modules Installer
03-06-2023 09:04:09 Removed PuTTY release 0.70 (64-bit)
03-06-2023 10:46:20 Removed Oracle VM VirtualBox 6.1.18
03-06-2023 10:48:45 Removed Adobe Community Help
03-06-2023 10:49:33 Removed Adobe Media Player
03-06-2023 12:25:59 OpenOffice 4.1.2 wird entfernt
03-06-2023 12:44:32 AdwCleaner_BeforeCleaning_03/06/2023_12:44:30

==================== Fehlerhafte Geräte im Gerätemanager ============

Name: 
Description: 
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Fehlereinträge in der Ereignisanzeige: ========================

Applikationsfehler:
==================
Error: (06/03/2023 03:32:48 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 15579

Error: (06/03/2023 03:32:48 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 15579

Error: (06/03/2023 03:32:48 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (06/02/2023 06:21:21 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Die Speicheroptimierung konnte erneut optimieren auf Programme (O:) nicht abschließen. Grund: Der angeforderte Vorgang wird von der Hardware des Volumes nicht unterstützt. (0x8900002A)

Error: (06/02/2023 06:17:40 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Die Speicheroptimierung konnte erneut optimieren auf Downloads (N:) nicht abschließen. Grund: Der angeforderte Vorgang wird von der Hardware des Volumes nicht unterstützt. (0x8900002A)

Error: (06/02/2023 06:12:21 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Die Speicheroptimierung konnte erneut optimieren auf Anderes (J:) nicht abschließen. Grund: Der angeforderte Vorgang wird von der Hardware des Volumes nicht unterstützt. (0x8900002A)

Error: (06/02/2023 06:12:14 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Die Speicheroptimierung konnte erneut optimieren auf Videos und Musik (D:) nicht abschließen. Grund: Der angeforderte Vorgang wird von der Hardware des Volumes nicht unterstützt. (0x8900002A)

Error: (06/02/2023 06:12:12 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Die Speicheroptimierung konnte erneut optimieren auf Spiele (P:) nicht abschließen. Grund: Der angeforderte Vorgang wird von der Hardware des Volumes nicht unterstützt. (0x8900002A)


Systemfehler:
=============
Error: (06/03/2023 12:45:08 PM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: Der Server "{784E29F4-5EBE-4279-9948-1E8FE941646D}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (06/03/2023 12:44:44 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "NVIDIA LocalSystem Container" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 6000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (06/03/2023 12:44:43 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Microsoft Office-Klick-und-Los-Dienst" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 0 Millisekunden durchgeführt: Neustart des Diensts.

Error: (06/03/2023 12:44:43 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "NVIDIA Display Container LS" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 6000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (06/03/2023 12:44:43 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel(R) Dynamic Application Loader Host Interface Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (06/03/2023 12:44:43 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "LGHUB Updater Service" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 5000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (06/03/2023 12:44:43 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Dienst "Bonjour"" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (06/03/2023 12:41:56 PM) (Source: volmgr) (EventID: 45) (User: )
Description: Das System konnte den Treiber für das Speicherabbild nicht laden.


Windows Defender:
================
Date: 2023-06-03 11:46:43
Description: 
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {97790133-FF47-4E90-ABF5-4B0AC692D295}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Vollständige Überprüfung
Benutzer: Sandara\*****

Date: 2023-06-03 11:41:46
Description: 
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {E04B88EA-047E-442F-A546-2E9907643F09}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Vollständige Überprüfung
Benutzer: Sandara\*****

Date: 2023-06-02 16:42:24
Description: 
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {0B7FB041-FC30-4D8B-8672-8219A7AE8755}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Vollständige Überprüfung
Benutzer: Sandara\*****

CodeIntegrity:
===============
Date: 2023-06-03 11:39:43
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SecurityHealthService.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2023-06-03 10:41:10
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.


==================== Speicherinformationen =========================== 

BIOS: American Megatrends Inc. V2.6 12/24/2014
Hauptplatine: MSI Z97 GAMING 3 (MS-7918)
Prozessor: Intel(R) Core(TM) i7-4790K CPU @ 4.00GHz
Prozentuale Nutzung des RAM: 34%
Installierter physikalischer RAM: 16335.59 MB
Verfügbarer physikalischer RAM: 10730.84 MB
Summe virtueller Speicher: 32719.59 MB
Verfügbarer virtueller Speicher: 26560.09 MB

==================== Laufwerke ================================

Drive c: (Windows) (Fixed) (Total:216.44 GB) (Free:58.4 GB) (Model: Samsung SSD 850 EVO 250GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive d: (Videos und Musik) (Fixed) (Total:200.44 GB) (Free:82.4 GB) (Model: ST3000DM001-1ER166) NTFS
Drive f: (Favoriten) (Fixed) (Total:238.47 GB) (Free:52.31 GB) (Model: Samsung SSD 850 PRO 256GB) NTFS
Drive g: (Favoriten 2) (Fixed) (Total:465.76 GB) (Free:32.01 GB) (Model: Samsung SSD 860 EVO 500GB) NTFS
Drive j: (Anderes) (Fixed) (Total:200.44 GB) (Free:20.22 GB) (Model: ST3000DM001-1ER166) NTFS
Drive n: (Downloads) (Fixed) (Total:200.44 GB) (Free:137.63 GB) (Model: ST3000DM001-1ER166) NTFS
Drive o: (Programme) (Fixed) (Total:400.44 GB) (Free:207.57 GB) (Model: ST3000DM001-1ER166) NTFS
Drive p: (Spiele) (Fixed) (Total:1792.63 GB) (Free:371.97 GB) (Model: ST3000DM001-1ER166) NTFS

\\?\Volume{4c5977bc-efef-11e4-826a-806e6f6e6963}\ (System) (Fixed) (Total:0.44 GB) (Free:0.09 GB) NTFS
\\?\Volume{4c5977be-efef-11e4-826a-806e6f6e6963}\ (Recovery image) (Fixed) (Total:16 GB) (Free:4.77 GB) NTFS

==================== MBR & Partitionstabelle ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 238.5 GB) (Disk ID: 74C76B89)
Partition 1: (Not Active) - (Size=238.5 GB) - (Type=07 NTFS)

==========================================================
Disk: 1 (Protective MBR) (Size: 2794.5 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 232.9 GB) (Disk ID: AF27F2D8)
Partition 1: (Active) - (Size=450 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=216.4 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=16 GB) - (Type=27)

==========================================================
Disk: 3 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 96B00035)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)

==================== Ende von Addition.txt =======================
         

Kontrollscans mit MBAM und RK

• Malwarebytes
• RogueKiller

Poste nach Abschluss der beiden Scans die Logs in CODE-Tags.

MBAM.txt

Code: Alles auswählenAufklappen

ATTFilter

Malwarebytes
www.malwarebytes.com

-Protokolldetails-
Scan-Datum: 03.06.23
Scan-Zeit: 14:13
Protokolldatei: 122b9ede-0208-11ee-ad27-d8cb8a5b2b42.json

-Softwaredaten-
Version: 4.5.29.268
Komponentenversion: 1.0.2022
Version des Aktualisierungspakets: 1.0.70375
Lizenz: Testversion

-Systemdaten-
Betriebssystem: Windows 10 (Build 19045.2965)
CPU: x64
Dateisystem: NTFS
Benutzer: Sandara\*****

-Scan-Übersicht-
Scan-Typ: Bedrohungs-Scan
Scan gestartet von: Manuell
Ergebnis: Abgeschlossen
Gescannte Objekte: 350403
Erkannte Bedrohungen: 0
In die Quarantäne verschobene Bedrohungen: 0
Abgelaufene Zeit: 5 Min., 30 Sek.

-Scan-Optionen-
Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Aktiviert
Heuristik: Aktiviert
PUP: Erkennung
PUM: Erkennung

-Scan-Details-
Prozess: 0
(keine bösartigen Elemente erkannt)

Modul: 0
(keine bösartigen Elemente erkannt)

Registrierungsschlüssel: 0
(keine bösartigen Elemente erkannt)

Registrierungswert: 0
(keine bösartigen Elemente erkannt)

Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)

Daten-Stream: 0
(keine bösartigen Elemente erkannt)

Ordner: 0
(keine bösartigen Elemente erkannt)

Datei: 0
(keine bösartigen Elemente erkannt)

Physischer Sektor: 0
(keine bösartigen Elemente erkannt)

WMI: 0
(keine bösartigen Elemente erkannt)


(end)
         

RogueKiller hatte einen Fund.

RX.txt

Code: Alles auswählenAufklappen

ATTFilter

Program            : RogueKiller Anti-Malware
Version            : 15.10.0.0
x64                : Yes
Program Date       : May 24 2023
Location           : C:\Program Files\RogueKiller\RogueKiller64.exe
Premium            : No
Company            : Adlice Software
Website            : https://www.adlice.com/
Contact            : https://adlice.com/contact/
Website            : https://adlice.com/download/roguekiller/
Operating System   : Windows 10 (10.0.19045) 64-bit
64-bit OS          : Yes
Startup            : 0
WindowsPE          : No
User               : Datenvampir
User is Admin      : Yes
Date               : 2023/06/03 12:48:41
Type               : Removal
Aborted            : No
Scan Mode          : Standard
Duration           : 798
Found items        : 1
Total scanned      : 150339
Signatures Version : 20230602_134000
Truesight Driver   : Yes
Updates Count      : 7
Arguments          : -minimize

************************* Warnings *************************

************************* Removal *************************
[PUP.Gen1 (Potenziell bösartig)] HKEY_USERS\S-1-5-21-3304759667-497493644-3126985197-1001\Software\OCS --  -> Gelöscht
  [+] scan_what       : 2
  [+] vendors         : PUP.Gen1
  [+] Name            : HKEY_USERS\S-1-5-21-3304759667-497493644-3126985197-1001\Software\OCS
  [+] Type            : Registry
  [+] file_vtscore    : 0
  [+] file_vttotal    : 0
  [+] is_malicious    : Yes
  [+] detection_level : 3
  [+] id              : 0
  [+] status          : 3
  [+] status_str      : Gelöscht
  [+] removed         : Yes
  [+] status_choice   : 2
  [+] malpe_score     : 0
         

Dann wären wir durch!

Wenn Du möchtest, kannst Du das Forum mit einer kleinen Spende unterstützen.

Abschließend unbedingt unsere Sicherheitsmaßnahmen lesen und umsetzen - beides ist in folgendem Lesestoff verlinkt:

Anleitung: Cleanup & Maßnahmen zur Absicherung des Rechners

Waren diese beiden Sachen nun nun Malware oder hatte mein Schutz aus uBlock, NoScript, Windows Defender und Avast alles abgefangen? Das wäre noch schön zu wissen und vielen Dank für die Hilfe.

Da war keine malware auf dem Rechner.

Mir fällt gerade beim Aufräumen auf, dass FRST und AdwCleaner Ordner auf C: hinterlassen haben, kann ich die einfach löschen? Weil in beiden sind Sachen drin, aber beide sind nicht in Programme entfernen aufgelistet.

Einfach löschen.