| Sterrare | 03.06.2022 21:13 |
Hier der aktuelle Stand:
FRST-Log:
FRST Logfile: Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 02-06-2022 01
durchgeführt von SteMu (Administrator) auf MASTER-PC-STEFA (Micro-Star International Co., Ltd. MS-7B85) (03-06-2022 22:10:41)
Gestartet von C:\Users\SteMu\Desktop
Geladene Profile: SteMu
Plattform: Microsoft Windows 10 Home Version 21H2 19044.1741 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: FF
Start-Modus: Normal
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(A-Volute SAS -> A-Volute) C:\Users\SteMu\AppData\Local\NhNotifSys\nahimic\nahimicNotifSys.exe
(C:\Program Files (x86)\MSI\One Dragon Center\MSI.CentralServer.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\One Dragon Center\Nahimic\NahimicMonitorX64.exe
(C:\Program Files (x86)\MSI\One Dragon Center\MSI.CentralServer.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\One Dragon Center\CC_Engine_x64.exe
(C:\Program Files (x86)\MSI\One Dragon Center\MSI_Central_Service.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\MSI.CentralServer.exe
(C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe ->) (Razer USA Ltd. -> ) C:\Program Files (x86)\Razer\Synapse3\UserProcess\Razer Synapse Service Process.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(C:\Program Files\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe ->) (Oculus VR, LLC -> Facebook Technologies, LLC) C:\Program Files\Oculus\Support\oculus-runtime\OVRRedir.exe
(C:\Program Files\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe ->) (Oculus VR, LLC -> Facebook Technologies, LLC) C:\Program Files\Oculus\Support\oculus-runtime\OVRServer_x64.exe
(MICRO-STAR INTERNATIONAL CO., LTD) C:\Program Files\WindowsApps\9426MICRO-STARINTERNATION.DragonCenter_2.0.121.0_x64__kzh8wxbdkxb8p\DCv2\DCv2.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <13>
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (A-Volute SAS -> Nahimic) C:\Windows\System32\NahimicService.exe
(services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(services.exe ->) (Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\NisSrv.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\One Dragon Center\Game_Summary\MSI_Companion_Service.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\MSI_Central_Service.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LightKeeperService.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\Mystic_Light_Service.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\One Dragon Center\VoiceControl\VoiceControl_Service.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <4>
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_7ad37590e62d4afc\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (NZXT, Inc. -> ) C:\Program Files\NZXT CAM\resources\app.asar.unpacked\node_modules\@nzxt\rust-cam\dist\target\x86_64-pc-windows-msvc\release\service.exe
(services.exe ->) (Oculus VR, LLC -> Facebook Technologies, LLC) C:\Program Files\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc) C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzChromaStreamServer.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe
(services.exe ->) (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(services.exe ->) (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe
(sihost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.MSPaint_6.2203.1037.0_x64__8wekyb3d8bbwe\PaintStudio.View.exe
(svchost.exe ->) (A-Volute SAS -> Nahimic) C:\Windows\System32\NahimicSvc64.exe
(svchost.exe ->) (A-Volute SAS -> Nahimic) C:\Windows\SysWOW64\NahimicSvc32.exe
(svchost.exe ->) (A-Volute) C:\Program Files\WindowsApps\A-Volute.Nahimic_1.9.8.0_x64__w2gh52qy24etm\Nahimic3.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LEDKeeper2.exe
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\True Color\MSI.True Color.exe
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\One Dragon Center\VoiceControl\VoiceControlEngine.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3831808 2021-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Logitech)
HKLM-x32\...\Run: [RazerCortex] => C:\Program Files (x86)\Razer\Razer Cortex\CortexLauncher.exe [267072 2021-11-25] (Razer USA Ltd. -> Razer Inc.)
HKLM-x32\...\Run: [TeamsMachineInstaller] => C:\Program Files (x86)\Teams Installer\Teams.exe [114379544 2021-01-28] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2450881772-3334122637-3429325221-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2632096 2022-06-02] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2450881772-3334122637-3429325221-1001\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3527240 2022-03-29] (Razer USA Ltd. -> Razer Inc.)
HKU\S-1-5-21-2450881772-3334122637-3429325221-1001\...\Run: [Discord] => C:\Users\SteMu\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub)
HKU\S-1-5-21-2450881772-3334122637-3429325221-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3145920 2021-10-01] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-2450881772-3334122637-3429325221-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\SteMu\AppData\Local\Microsoft\Teams\Update.exe [2452656 2021-03-15] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-2450881772-3334122637-3429325221-1001\...\Run: [Opera GX Browser Assistant] => C:\Users\SteMu\AppData\Local\Programs\Opera GX\assistant\browser_assistant.exe [3291288 2021-02-01] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-2450881772-3334122637-3429325221-1001\...\Run: [Samsung DeX] => C:\Program Files (x86)\Samsung\Samsung DeX\SamsungDeX.exe [10929320 2021-12-03] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
HKU\S-1-5-18\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3527240 2022-03-29] (Razer USA Ltd. -> Razer Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ROCCAT Swarm Monitor.lnk [2021-03-06]
ShortcutTarget: ROCCAT Swarm Monitor.lnk -> C:\Program Files (x86)\ROCCAT\ROCCAT Swarm\ROCCAT_Swarm_Monitor.exe (Voyetra Turtle Beach, Inc. -> ROCCAT)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {04C4789A-4B01-4577-8AAA-98EA50722727} - System32\Tasks\NahimicSvc32Run => C:\Windows\SysWOW64\NahimicSvc32.exe [833704 2021-10-08] (A-Volute SAS -> Nahimic)
Task: {060B44A6-1A87-4897-9A5A-9C7CA1A3363F} - System32\Tasks\MSI Task Host - LEDKeeper2_Host => C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LEDKeeper2.exe [1775440 2021-11-09] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {0EA63EAC-CBC4-4884-9EDC-E580A1BEB416} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {105DC727-7AE2-4309-83F3-90A7FE709643} - System32\Tasks\ROCCAT DEVICE SERVICE => C:\Program Files (x86)\ROCCAT\ROCCAT Swarm\ROCCAT_dev_service.exe [442872 2021-02-23] (Voyetra Turtle Beach, Inc. -> ROCCAT)
Task: {1144DC7B-7B9C-4917-BCAE-7549E353479E} - System32\Tasks\Opera GX scheduled Autoupdate 1628538165 => C:\Users\SteMu\AppData\Local\Programs\Opera GX\launcher.exe [2369792 2022-05-30] (Opera Software AS -> Opera Software)
Task: {219850FA-0EB6-4729-95B0-5A396460FB80} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144792 2022-05-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {2FE5E5F3-EC10-4751-89CA-24B93988410C} - System32\Tasks\NahimicTask32 => C:\WINDOWS\system32\..\SysWOW64\NahimicSvc32.exe [833704 2021-10-08] (A-Volute SAS -> Nahimic)
Task: {321ED8D6-89DC-42F3-B371-365F29B3CFBC} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8304592 2022-05-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {3717770D-D835-49B5-8E23-7A8F31A8E3CB} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4215192 2022-06-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {3DB88F41-0BBC-42F1-9602-A823CB230B91} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {4038C839-2411-4262-9D7F-D544DD31A0D0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {42D718EF-E6D1-4681-A2A3-06C16EF4FF0F} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {4B087852-00E4-4C44-B29D-55129CD8DD28} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {4BCB4C33-A903-4FD1-823B-1DE71034D603} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23244744 2022-05-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {57354CBB-3095-45B2-B02B-65C62670C05A} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342080 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {5E78C242-D529-49ED-8BA0-95F96E8C924D} - System32\Tasks\NahimicSvc64Run => C:\Windows\system32\NahimicSvc64.exe [1094824 2021-10-08] (A-Volute SAS -> Nahimic)
Task: {64E319E4-53A9-4692-8B51-4D3127554D85} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-01] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {6CCCB370-DE26-4713-AF31-75342EF8F9A1} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-18] (Adobe Inc. -> Adobe Inc.)
Task: {70BB1DBE-7B42-4537-BCE8-4BF276E99B29} - System32\Tasks\NahimicTask64 => C:\WINDOWS\system32\.\NahimicSvc64.exe [1094824 2021-10-08] (A-Volute SAS -> Nahimic)
Task: {7DA21BAA-C92C-4C35-AAE1-23E22F9A55FA} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [965552 2022-05-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {8003F5BA-24F1-4F59-9A01-962A4D12B86F} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2450881772-3334122637-3429325221-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4215192 2022-06-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {867D51A7-4C82-4CB1-A260-091D8EEDE06C} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144792 2022-05-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {89358AB0-88C3-40BA-8BA8-865A9730CF6F} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [67472 2022-05-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {8D4DB410-3D91-415A-A22A-F52DE38FB61F} - System32\Tasks\MSI Task Host - MSI.True Color => C:\Program Files (x86)\MSI\One Dragon Center\True Color\MSI.True Color.exe [47416 2021-03-29] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {94E55250-308F-4194-AEEE-4E4D41C1676E} - System32\Tasks\cFos\Registration Tasks\Open Browser => "c:\program files\mozilla firefox\firefox.exe" -osint -url "hxxps://www.cfos.de/en/traffic-shaping/calibration.htm?reg-12.01.2516-msi&tsa="
Task: {9639E916-CDF5-403A-904B-8CA5E908AC09} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {9E0ACB84-6D68-4360-89CD-0C01A26A38A3} - System32\Tasks\MSI Task Host - DisplayID => C:\Program Files (x86)\MSI\One Dragon Center\MSI.NotifyServer.exe [102712 2021-07-05] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {9FFB0A5E-2498-4A6C-AAE9-0FF41A762390} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8304592 2022-05-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {A84FCF63-793C-44D5-8E33-3370E5550A3B} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {AC797E26-EB04-43EE-BCEE-3D07E1855840} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646344 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {B1887951-766D-4CFF-AED0-30E7A43A3C4A} - System32\Tasks\MSI Task Host - Detect_Monitor => C:\Program Files (x86)\MSI\One Dragon Center\MSI.NotifyServer.exe [102712 2021-07-05] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {B6507011-4A0C-4CB0-9A4F-1D4A3AD02682} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {CA3CD245-7051-4346-BFDB-5BE9B018A0C6} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23244744 2022-05-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {D10ED619-22FD-4CA6-A546-9EEE6AF28ECE} - System32\Tasks\Opera GX scheduled assistant Autoupdate 1629110074 => C:\Users\SteMu\AppData\Local\Programs\Opera GX\launcher.exe [2369792 2022-05-30] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\SteMu\AppData\Local\Programs\Opera GX\assistant" $(Arg0)
Task: {DD7221BD-FF67-4A07-9597-D8AE12D354EE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {DF2A1B54-9B76-480A-BC6D-0EA9D58BEA39} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E9AEE8ED-905A-43A2-9072-CF038935CF75} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {ED4EAD19-1EAC-4C43-99A2-F2EE293D43CF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{03ec9416-78c3-45e6-85b3-2a4c2c0b5252}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{5b2131b5-626b-4ee1-aca6-ed86a1e22484}: [DhcpNameServer] 192.168.178.1
Edge:
=======
Edge Extension: (Kein Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [nicht gefunden]
Edge Extension: (Kein Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [nicht gefunden]
Edge Extension: (Kein Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [nicht gefunden]
Edge Extension: (Kein Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [nicht gefunden]
Edge Profile: C:\Users\SteMu\AppData\Local\Microsoft\Edge\User Data\Default [2022-06-01]
FireFox:
========
FF DefaultProfile: rcw8t7dl.default
FF ProfilePath: C:\Users\SteMu\AppData\Roaming\Mozilla\Firefox\Profiles\rcw8t7dl.default [2022-06-02]
FF ProfilePath: C:\Users\SteMu\AppData\Roaming\Mozilla\Firefox\Profiles\2l5xvjk4.default-release-1654268524552 [2022-06-03]
FF Extension: (AdBlocker Ultimate) - C:\Users\SteMu\AppData\Roaming\Mozilla\Firefox\Profiles\2l5xvjk4.default-release-1654268524552\Extensions\adblockultimate@adblockultimate.net.xpi [2022-06-03]
FF Extension: (Starlight Grotto) - C:\Users\SteMu\AppData\Roaming\Mozilla\Firefox\Profiles\2l5xvjk4.default-release-1654268524552\Extensions\{08b48df5-318b-4f75-9628-d34fb35815e8}.xpi [2022-06-03]
FF Extension: (Lone Tree Sunset) - C:\Users\SteMu\AppData\Roaming\Mozilla\Firefox\Profiles\2l5xvjk4.default-release-1654268524552\Extensions\{1d2cb394-788f-4a4f-b485-add64bf87f3d}.xpi [2022-06-03]
FF Extension: (Brushed Metal - XP) - C:\Users\SteMu\AppData\Roaming\Mozilla\Firefox\Profiles\2l5xvjk4.default-release-1654268524552\Extensions\{1d57f168-529b-4d0b-a298-b9b5d2c0f137}.xpi [2022-06-03]
FF Extension: (Fantasy Canyon by candelora) - C:\Users\SteMu\AppData\Roaming\Mozilla\Firefox\Profiles\2l5xvjk4.default-release-1654268524552\Extensions\{1e03f1ca-8fbe-40f3-b920-57b957603874}.xpi [2022-06-03]
FF Extension: (Yosemite) - C:\Users\SteMu\AppData\Roaming\Mozilla\Firefox\Profiles\2l5xvjk4.default-release-1654268524552\Extensions\{2197e0af-098d-4a71-b802-5c194260fbb2}.xpi [2022-06-03]
FF Extension: (City Sunset) - C:\Users\SteMu\AppData\Roaming\Mozilla\Firefox\Profiles\2l5xvjk4.default-release-1654268524552\Extensions\{36da9d30-d002-4c15-87c4-f08dbbad7dbb}.xpi [2022-06-03]
FF Extension: (Rio De Janeiro - Jen) - C:\Users\SteMu\AppData\Roaming\Mozilla\Firefox\Profiles\2l5xvjk4.default-release-1654268524552\Extensions\{40b607f2-8fb0-4a0f-b715-d86bb9e01380}.xpi [2022-06-03]
FF Extension: (Big City Blues) - C:\Users\SteMu\AppData\Roaming\Mozilla\Firefox\Profiles\2l5xvjk4.default-release-1654268524552\Extensions\{519f7f6d-4881-47e6-b21f-ceacb5656390}.xpi [2022-06-03]
FF Extension: (Sunset Over Water by MaDonna) - C:\Users\SteMu\AppData\Roaming\Mozilla\Firefox\Profiles\2l5xvjk4.default-release-1654268524552\Extensions\{633f0fba-b472-4ac5-9584-e780977806b6}.xpi [2022-06-03]
FF Extension: (The Blue Storm) - C:\Users\SteMu\AppData\Roaming\Mozilla\Firefox\Profiles\2l5xvjk4.default-release-1654268524552\Extensions\{67e7d77c-e0c2-4834-8ff1-4242cd1c85d4}.xpi [2022-06-03]
FF Extension: (C.E.Waterfall Sunset 2) - C:\Users\SteMu\AppData\Roaming\Mozilla\Firefox\Profiles\2l5xvjk4.default-release-1654268524552\Extensions\{7e6ad547-ca94-4992-ae47-b5968ac6b9b6}.xpi [2022-06-03]
FF Extension: (Future Bmw) - C:\Users\SteMu\AppData\Roaming\Mozilla\Firefox\Profiles\2l5xvjk4.default-release-1654268524552\Extensions\{832a10b5-6b10-4e97-be5d-25dd5b2f0f16}.xpi [2022-06-03]
FF Extension: (Louder) - C:\Users\SteMu\AppData\Roaming\Mozilla\Firefox\Profiles\2l5xvjk4.default-release-1654268524552\Extensions\{8ceee5ac-ebc4-4254-9789-e8d8694becf5}.xpi [2022-06-03]
FF Extension: (Railroad 2 by CP) - C:\Users\SteMu\AppData\Roaming\Mozilla\Firefox\Profiles\2l5xvjk4.default-release-1654268524552\Extensions\{a3bbe13a-66ab-4646-b713-0d414e2ed076}.xpi [2022-06-03]
FF Extension: (Dreamy__) - C:\Users\SteMu\AppData\Roaming\Mozilla\Firefox\Profiles\2l5xvjk4.default-release-1654268524552\Extensions\{e1eb26b5-452d-4dc0-a80c-79205b2a30b5}.xpi [2022-06-03]
FF Extension: (Sweet Aurora Borealis) - C:\Users\SteMu\AppData\Roaming\Mozilla\Firefox\Profiles\2l5xvjk4.default-release-1654268524552\Extensions\{e2028a58-f7ee-4608-bb71-55e779d8fff4}.xpi [2022-06-03]
FF Extension: (Funny Cats by MaDonna) - C:\Users\SteMu\AppData\Roaming\Mozilla\Firefox\Profiles\2l5xvjk4.default-release-1654268524552\Extensions\{e35db73b-1cab-4392-aa4b-49a29fd8b172}.xpi [2022-06-03]
FF Extension: (Ciel d'orage) - C:\Users\SteMu\AppData\Roaming\Mozilla\Firefox\Profiles\2l5xvjk4.default-release-1654268524552\Extensions\{e68e0cc1-4611-4a91-9158-4b2beeb20e30}.xpi [2022-06-03]
FF Extension: (Space Fantasy Redux) - C:\Users\SteMu\AppData\Roaming\Mozilla\Firefox\Profiles\2l5xvjk4.default-release-1654268524552\Extensions\{f5453979-a039-4066-8aee-cb64fc98f936}.xpi [2022-06-03]
FF Extension: (Fog over Dubai) - C:\Users\SteMu\AppData\Roaming\Mozilla\Firefox\Profiles\2l5xvjk4.default-release-1654268524552\Extensions\{f6809f8a-b2ea-483a-a89b-c2afb2f85814}.xpi [2022-06-03]
FF Extension: (Summerwood) - C:\Users\SteMu\AppData\Roaming\Mozilla\Firefox\Profiles\2l5xvjk4.default-release-1654268524552\Extensions\{fb7d2936-bd43-4dcd-ae06-bf7a15401808}.xpi [2022-06-03]
FF Plugin: @java.com/DTPlugin,version=11.281.2 -> C:\Program Files\Java\jre1.8.0_281\bin\dtplugin\npDeployJava1.dll [Keine Datei]
FF Plugin: @java.com/JavaPlugin,version=11.281.2 -> C:\Program Files\Java\jre1.8.0_281\bin\plugin2\npjp2.dll [Keine Datei]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-04-07] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-04-07] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB) [Datei ist nicht signiert]
FF Plugin-x32: @java.com/DTPlugin,version=11.281.2 -> C:\Program Files (x86)\Java\jre1.8.0_281\bin\dtplugin\npDeployJava1.dll [Keine Datei]
FF Plugin-x32: @java.com/JavaPlugin,version=11.281.2 -> C:\Program Files (x86)\Java\jre1.8.0_281\bin\plugin2\npjp2.dll [Keine Datei]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-03-06] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-03-06] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin HKU\S-1-5-21-2450881772-3334122637-3429325221-1001: @lightspark.github.com/Lightspark;version=1 -> C:\Program Files\Lightspark\nplightsparkplugin.dll [Keine Datei]
Opera:
=======
StartMenuInternet: (HKU\S-1-5-21-2450881772-3334122637-3429325221-1001) Opera GXStable - "C:\Users\SteMu\AppData\Local\Programs\Opera GX\Launcher.exe"
==================== Dienste (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-18] (Adobe Inc. -> Adobe Inc.)
R2 CAMService; C:\Program Files\NZXT CAM\resources\app.asar.unpacked\node_modules\@nzxt\rust-cam\dist\target\x86_64-pc-windows-msvc\release\service.exe [533232 2022-05-26] (NZXT, Inc. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11988424 2022-05-29] (Microsoft Corporation -> Microsoft Corporation)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\22.099.0508.0001\FileSyncHelper.exe [3401112 2022-06-02] (Microsoft Corporation -> Microsoft Corporation)
R2 LightKeeperService; C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LightKeeperService.exe [86776 2020-12-23] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MSI_Central_Service; C:\Program Files (x86)\MSI\One Dragon Center\MSI_Central_Service.exe [147088 2020-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
R2 MSI_Companion_Service; C:\Program Files (x86)\MSI\One Dragon Center\Game_Summary\MSI_Companion_Service.exe [143160 2021-03-31] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MSI_VoiceControl_Service; C:\Program Files (x86)\MSI\One Dragon Center\VoiceControl\VoiceControl_Service.exe [36152 2021-08-25] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 Mystic_Light_Service; C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\Mystic_Light_Service.exe [39760 2021-05-11] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
R2 NahimicService; C:\WINDOWS\system32\NahimicService.exe [1888424 2021-10-08] (A-Volute SAS -> Nahimic)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\22.099.0508.0001\OneDriveUpdaterService.exe [3842464 2022-06-02] (Microsoft Corporation -> Microsoft Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2557144 2021-10-01] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3475680 2021-10-01] (Electronic Arts, Inc. -> Electronic Arts)
S3 OVRLibraryService; C:\Program Files\Oculus\Support\oculus-librarian\OVRLibraryService.exe [144632 2022-01-19] (Oculus VR, LLC -> Facebook Technologies, LLC)
R2 OVRService; C:\Program Files\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe [511736 2022-01-19] (Oculus VR, LLC -> Facebook Technologies, LLC)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2021-03-10] (Even Balance, Inc. -> )
R2 Razer Chroma SDK Server; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe [2029544 2022-03-18] (Razer USA Ltd. -> Razer Inc.)
R2 Razer Chroma SDK Service; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [463856 2022-03-18] (Razer USA Ltd. -> Razer Inc.)
R2 Razer Chroma Stream Server; C:\Program Files (x86)\Razer Chroma SDK\bin\RzChromaStreamServer.exe [1350672 2022-03-18] (Razer USA Ltd. -> Razer Inc.)
R2 Razer Game Manager Service; C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe [254224 2021-11-16] (Razer USA Ltd. -> Razer Inc)
R2 Razer Synapse Service; C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe [298056 2022-03-29] (Razer USA Ltd. -> Razer Inc.)
R2 RzActionSvc; C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe [533824 2022-02-18] (Razer USA Ltd. -> Razer Inc.)
R2 RzKLService; C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe [291320 2021-11-25] (Razer USA Ltd. -> Razer Inc.)
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2021-06-23] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 ss_conn_service2; C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [920768 2021-06-23] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\NisSrv.exe [3116848 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe [133544 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 cFosSpeedS; "C:\Program Files\cFosSpeed\spd.exe" -service [X]
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_7ad37590e62d4afc\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_7ad37590e62d4afc\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
S4 uhssvc; "C:\Program Files\Microsoft Update Health Tools\uhssvc.exe" [X]
===================== Treiber (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R1 cFosSpeed; C:\WINDOWS\system32\DRIVERS\cfosspeed6.sys [1695016 2021-07-29] (cFos Software GmbH -> cFos Software GmbH)
R1 CTIIO; C:\WINDOWS\system32\drivers\CtiIo64.sys [29200 2021-12-29] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Innovation Co., LTd.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 I2cHkBurn; C:\WINDOWS\system32\drivers\I2cHkBurn.sys [38544 2018-12-13] (Feature Integration Technology Inc -> FINTEK Corp.)
S3 MpKsl67f01921; C:\WINDOWS\system32\MpEngineStore\MpKslDrv.sys [139536 2022-04-21] (Microsoft Windows -> Microsoft Corporation)
R1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [17424 2020-01-19] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
R3 Nahimic_Mirroring; C:\WINDOWS\System32\drivers\Nahimic_Mirroring.sys [85616 2021-08-13] (A-Volute -> Windows (R) Win 7 DDK provider)
S3 NTIOLib_CC_Clock; C:\Program Files (x86)\MSI\One Dragon Center\Lib\NTIOLib_X64.sys [14288 2017-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NTIOLib_CC_COMM; C:\Program Files (x86)\MSI\One Dragon Center\Lib\SYS\NTIOLib_X64.sys [14288 2017-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NTIOLib_MysticLight; C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\Lib\NTIOLib_X64.sys [14288 2017-07-11] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
S3 OCULUSUDSVR; C:\WINDOWS\System32\drivers\OCULUSUD.sys [3867552 2021-03-07] (Microsoft Windows Hardware Compatibility Publisher -> Oculus VR, LLC.)
R3 oculusvad_oculusvad; C:\WINDOWS\System32\drivers\oculusvad.sys [75280 2021-10-01] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R3 Oculus_ViGEmBus; C:\WINDOWS\System32\drivers\Oculus_ViGEmBus.sys [32856 2021-10-01] (Oculus VR, LLC -> Facebook Inc.)
R3 RzCommon; C:\WINDOWS\System32\drivers\RzCommon.sys [54632 2021-03-30] (Razer USA Ltd. -> Razer Inc)
R3 RzDev_005c; C:\WINDOWS\System32\drivers\RzDev_005c.sys [54152 2020-08-24] (Razer USA Ltd. -> Razer Inc)
R3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [44080 2020-10-26] (Shaul Eizikovich -> Nefarius Software Solutions)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49600 2022-04-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [443664 2022-04-08] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [90384 2022-04-08] (Microsoft Windows -> Microsoft Corporation)
S3 cpuz150; \??\C:\WINDOWS\temp\cpuz150\cpuz150_x64.sys [X]
S3 cpuz152; \??\C:\WINDOWS\temp\cpuz152\cpuz152_x64.sys [X]
S1 EneTechIo; \??\C:\Windows\system32\drivers\ene.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat (erstellte) (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2022-06-03 17:55 - 2022-06-03 17:55 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2022-06-03 17:55 - 2022-06-03 17:55 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2022-06-03 17:55 - 2022-06-03 17:55 - 000232288 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2022-06-03 17:55 - 2022-06-03 17:55 - 000104448 _____ C:\WINDOWS\system32\nettraceex.dll
2022-06-03 17:55 - 2022-06-03 17:55 - 000011811 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-06-03 17:48 - 2022-06-03 17:48 - 000000000 ___HD C:\$WinREAgent
2022-06-03 17:40 - 2021-07-29 08:07 - 001695016 _____ (cFos Software GmbH) C:\WINDOWS\system32\Drivers\cfosspeed6.sys
2022-06-03 17:32 - 2022-04-29 22:01 - 008818272 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\Netwtw08.sys
2022-06-03 17:32 - 2022-04-29 22:01 - 001626216 _____ (Intel Corporation) C:\WINDOWS\system32\IntelIHVRouter08.dll
2022-06-03 17:24 - 2022-06-03 17:40 - 000083777 _____ C:\WINDOWS\cFosSpeed_Setup_Log.txt
2022-06-03 17:24 - 2022-06-03 17:24 - 000000000 ____D C:\WINDOWS\system32\Tasks\cFos
2022-06-03 17:01 - 2022-06-03 17:02 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2022-06-03 17:01 - 2022-06-03 17:01 - 000001010 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-06-03 17:01 - 2022-06-03 17:01 - 000000000 ____D C:\Program Files\Mozilla Firefox
2022-06-03 16:43 - 2022-06-03 17:18 - 000000000 ____D C:\Users\SteMu\AppData\Local\D3DSCache
2022-06-03 16:42 - 2022-06-03 16:43 - 055933144 _____ (Mozilla) C:\Users\SteMu\Downloads\Firefox Setup 101.0.exe
2022-06-02 23:09 - 2022-06-02 23:10 - 000000000 ____D C:\AdwCleaner
2022-06-02 23:09 - 2022-06-02 23:09 - 008551608 _____ (Malwarebytes) C:\Users\SteMu\Desktop\adwcleaner.exe
2022-06-02 20:57 - 2022-06-03 22:06 - 104071168 _____ C:\WINDOWS\system32\config\SOFTWARE
2022-06-02 18:03 - 2022-06-03 22:11 - 000037038 _____ C:\Users\SteMu\Desktop\FRST.txt
2022-06-02 18:03 - 2022-06-03 22:08 - 000000000 ____D C:\Users\SteMu\Desktop\Log
2022-06-02 18:03 - 2022-06-02 18:03 - 000000000 ____D C:\Users\SteMu\Desktop\FRST-OlderVersion
2022-05-31 22:37 - 2022-05-31 22:37 - 000000000 ____D C:\ProgramData\Avast Software
2022-05-31 22:04 - 2022-06-03 22:10 - 000000000 ____D C:\FRST
2022-05-31 21:57 - 2022-06-02 18:03 - 002368000 _____ (Farbar) C:\Users\SteMu\Desktop\FRST64.exe
2022-05-31 18:26 - 2022-05-31 18:26 - 000000000 ____D C:\WINDOWS\system32\gf2engine
2022-05-31 18:20 - 2022-05-31 18:20 - 000000000 ___HD C:\$SysReset
2022-05-30 20:28 - 2022-05-30 20:28 - 000024204 _____ C:\Users\SteMu\Downloads\PEM_20220530_202841.pdf
2022-05-29 21:42 - 2022-06-03 22:04 - 000005726 _____ C:\WINDOWS\system32\PerfStringBackup.TMP
2022-05-29 20:29 - 2022-05-29 20:29 - 000000000 ____D C:\Users\SteMu\AppData\Local\MicrosoftEdge
2022-05-25 16:49 - 2022-05-21 05:26 - 001905912 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2022-05-25 16:49 - 2022-05-21 05:26 - 001905912 _____ C:\WINDOWS\system32\vulkaninfo.exe
2022-05-25 16:49 - 2022-05-21 05:26 - 001478384 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2022-05-25 16:49 - 2022-05-21 05:26 - 001478384 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2022-05-25 16:49 - 2022-05-21 05:26 - 001467080 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2022-05-25 16:49 - 2022-05-21 05:26 - 001432304 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2022-05-25 16:49 - 2022-05-21 05:26 - 001432304 _____ C:\WINDOWS\system32\vulkan-1.dll
2022-05-25 16:49 - 2022-05-21 05:26 - 001209408 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2022-05-25 16:49 - 2022-05-21 05:26 - 001145584 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2022-05-25 16:49 - 2022-05-21 05:26 - 001145584 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2022-05-25 16:49 - 2022-05-21 05:23 - 000587336 _____ C:\WINDOWS\system32\nvofapi64.dll
2022-05-25 16:49 - 2022-05-21 05:23 - 000460496 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2022-05-25 16:49 - 2022-05-21 05:22 - 002120896 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2022-05-25 16:49 - 2022-05-21 05:22 - 001603144 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2022-05-25 16:49 - 2022-05-21 05:22 - 001530456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2022-05-25 16:49 - 2022-05-21 05:22 - 001177312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2022-05-25 16:49 - 2022-05-21 05:22 - 000730320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2022-05-25 16:49 - 2022-05-21 05:22 - 000724688 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2022-05-25 16:49 - 2022-05-21 05:22 - 000712416 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2022-05-25 16:49 - 2022-05-21 05:21 - 006964824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2022-05-25 16:49 - 2022-05-21 05:21 - 006226640 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2022-05-25 16:49 - 2022-05-21 05:21 - 005100752 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2022-05-25 16:49 - 2022-05-21 05:21 - 002932952 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2022-05-25 16:49 - 2022-05-21 05:21 - 000582712 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2022-05-25 16:49 - 2022-05-21 05:21 - 000457944 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2022-05-25 16:49 - 2022-05-21 05:20 - 005730880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2022-05-25 16:49 - 2022-05-21 05:19 - 000851136 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2022-05-25 16:49 - 2022-05-20 02:51 - 000089337 _____ C:\WINDOWS\system32\nvinfo.pb
2022-05-21 22:26 - 2022-05-21 22:26 - 000038712 _____ C:\Users\SteMu\Downloads\Verkaufsschild.pdf
2022-05-11 11:52 - 2022-05-11 11:52 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-05-11 11:52 - 2022-05-11 11:52 - 000093696 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
==================== Ein Monat (geänderte) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2022-06-03 22:08 - 2022-02-08 19:23 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-06-03 22:07 - 2021-05-13 12:59 - 000003112 _____ C:\WINDOWS\system32\Tasks\NahimicTask32
2022-06-03 22:07 - 2021-05-13 12:59 - 000003092 _____ C:\WINDOWS\system32\Tasks\NahimicTask64
2022-06-03 22:07 - 2021-03-06 23:26 - 000000000 ____D C:\Users\SteMu\AppData\Local\Oculus
2022-06-03 22:07 - 2021-03-06 21:35 - 000000000 ____D C:\Users\SteMu\AppData\LocalLow\Mozilla
2022-06-03 22:07 - 2021-03-06 21:15 - 000000000 ____D C:\ProgramData\NVIDIA
2022-06-03 22:07 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-06-03 22:06 - 2021-03-13 15:53 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-06-03 22:06 - 2021-03-13 15:47 - 000008192 ___SH C:\DumpStack.log.tmp
2022-06-03 22:06 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-06-03 22:04 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2022-06-03 21:51 - 2021-04-21 21:52 - 000007662 _____ C:\Users\SteMu\AppData\Local\Resmon.ResmonCfg
2022-06-03 21:39 - 2021-03-13 15:47 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-06-03 18:58 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-06-03 18:57 - 2021-03-13 15:47 - 000257920 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-06-03 18:57 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-06-03 18:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2022-06-03 18:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2022-06-03 18:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2022-06-03 18:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2022-06-03 18:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-06-03 18:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-06-03 18:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2022-06-03 18:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-06-03 18:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2022-06-03 18:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2022-06-03 18:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2022-06-03 18:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2022-06-03 18:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-06-03 18:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-06-03 18:57 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2022-06-03 17:57 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-06-03 17:55 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-06-03 17:54 - 2021-03-13 15:51 - 002877952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-06-03 17:00 - 2021-03-07 01:55 - 000410257 _____ C:\WINDOWS\cFosSpeed_Setup_OldLog.txt
2022-06-03 16:59 - 2021-03-06 22:30 - 000000000 ____D C:\Users\SteMu\AppData\Roaming\NZXT CAM
2022-06-02 20:57 - 2022-02-17 12:23 - 000000000 ____D C:\WINDOWS\Microsoft Antimalware
2022-06-02 20:28 - 2021-03-09 21:40 - 000000000 ____D C:\Users\SteMu\AppData\LocalLow\Temp
2022-06-02 19:57 - 2022-03-23 12:07 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2022-06-02 17:40 - 2021-03-06 20:45 - 000000000 ____D C:\ProgramData\Packages
2022-06-02 17:38 - 2022-03-23 12:07 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2022-06-02 17:38 - 2022-03-23 12:07 - 000002153 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-06-02 17:38 - 2021-12-13 18:25 - 000003596 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2450881772-3334122637-3429325221-1001
2022-06-01 19:40 - 2021-03-06 23:28 - 000000000 ____D C:\Program Files (x86)\Google
2022-06-01 13:46 - 2021-03-11 19:39 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-05-31 18:26 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-05-31 18:18 - 2021-03-06 23:39 - 000000000 ____D C:\Program Files (x86)\InstallShield Installation Information
2022-05-31 15:00 - 2021-03-22 19:03 - 000000000 ____D C:\WINDOWS\system32\Tasks\MEGA
2022-05-30 19:49 - 2021-12-28 22:35 - 000000000 ____D C:\Users\SteMu\AppData\Roaming\Sky Go
2022-05-30 17:31 - 2021-08-09 21:42 - 000004240 _____ C:\WINDOWS\system32\Tasks\Opera GX scheduled Autoupdate 1628538165
2022-05-30 17:31 - 2021-08-09 21:42 - 000001443 _____ C:\Users\SteMu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Browser Opera GX.lnk
2022-05-30 17:28 - 2021-03-13 15:48 - 000000000 ____D C:\Users\SteMu
2022-05-29 20:49 - 2021-04-27 15:32 - 000000359 _____ C:\Users\SteMu\Downloads\Papierkorb - Verknüpfung.lnk
2022-05-29 13:29 - 2021-03-06 21:16 - 000000000 ____D C:\Program Files\Microsoft Office
2022-05-28 11:43 - 2021-03-06 23:29 - 000000000 ____D C:\Program Files\NZXT CAM
2022-05-26 22:06 - 2021-03-06 21:23 - 000000000 ____D C:\Program Files (x86)\Steam
2022-05-26 17:56 - 2021-10-06 11:40 - 000000000 ____D C:\Users\SteMu\AppData\Roaming\obs-studio
2022-05-26 16:06 - 2021-08-23 21:09 - 000000000 ____D C:\Users\SteMu\Downloads\Stream
2022-05-25 16:52 - 2021-03-06 23:24 - 000000000 ____D C:\Users\SteMu\AppData\Local\NVIDIA
2022-05-25 00:12 - 2021-03-06 20:45 - 000083200 _____ (Razer Inc) C:\WINDOWS\system32\RazerS2S3Coinstaller.dll
2022-05-22 20:16 - 2021-03-06 23:40 - 000000000 ____D C:\Users\SteMu\AppData\Roaming\discord
2022-05-22 20:12 - 2021-03-06 23:40 - 000000000 ____D C:\Users\SteMu\AppData\Local\Discord
2022-05-22 19:26 - 2022-01-01 19:48 - 000000000 ____D C:\Users\SteMu\AppData\Local\ElevatedDiagnostics
2022-05-21 20:45 - 2021-03-06 21:30 - 000000000 ___RD C:\Users\SteMu\Desktop\PKW
2022-05-21 05:18 - 2021-03-07 12:04 - 007618584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2022-05-21 05:18 - 2021-03-07 12:04 - 006465200 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2022-05-12 23:17 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2022-05-12 23:17 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2022-05-12 23:17 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System
2022-05-12 22:35 - 2022-01-01 23:35 - 000000000 ____D C:\Users\SteMu\Desktop\Kamera_Sony
2022-05-11 11:30 - 2021-03-06 23:11 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-05-11 11:28 - 2021-03-06 23:11 - 145501456 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-05-04 12:17 - 2021-03-06 21:16 - 000000000 ____D C:\ProgramData\A-Volute
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========
2021-04-21 21:52 - 2022-06-03 21:51 - 000007662 _____ () C:\Users\SteMu\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
==================== Ende von FRST.txt ========================
--- --- ---
und hier Addition-Log:
FRST Additions Logfile: Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 02-06-2022 01
durchgeführt von SteMu (03-06-2022 22:11:41)
Gestartet von C:\Users\SteMu\Desktop
Microsoft Windows 10 Home Version 21H2 19044.1741 (X64) (2021-03-13 13:53:28)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
Administrator (S-1-5-21-2450881772-3334122637-3429325221-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2450881772-3334122637-3429325221-503 - Limited - Disabled)
Gast (S-1-5-21-2450881772-3334122637-3429325221-501 - Limited - Disabled)
SteMu (S-1-5-21-2450881772-3334122637-3429325221-1001 - Administrator - Enabled) => C:\Users\SteMu
WDAGUtilityAccount (S-1-5-21-2450881772-3334122637-3429325221-504 - Limited - Disabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
Anno 1800 (HKLM-x32\...\Uplay Install 4553) (Version: - Ubisoft)
Anno 2205 (HKLM-x32\...\Uplay Install 1253) (Version: - Ubisoft)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.0 - EA Digital Illusions CE AB)
cFosSpeed 12.01 (HKLM\...\cFosSpeed) (Version: 12.01 - cFos Software GmbH, Bonn)
CPUID CPU-Z MSI 1.94 (HKLM\...\CPUID CPU-Z MSI_is1) (Version: 1.94 - CPUID, Inc.)
Discord (HKU\S-1-5-21-2450881772-3334122637-3429325221-1001\...\Discord) (Version: 0.0.309 - Discord Inc.)
ENE_DRAM_RGB_AIO (HKLM\...\{1745D314-9077-46C9-8562-1C62BAE189B7}) (Version: 1.0.3.17 - Ene Tech.) Hidden
ENE_DRAM_RGB_AIO (HKLM-x32\...\{e201736e-db02-4616-bc33-5eda2f791ee1}) (Version: 1.0.3.17 - Ene Tech.) Hidden
ENE_EHD_M2_HAL (HKLM\...\{37A48B7F-D4EA-4863-844E-A284E2AA3C5D}) (Version: 1.0.9.0 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_M2_HAL (HKLM-x32\...\{d6c7bfc9-8ecb-45a5-967b-f1c3c04cc972}) (Version: 1.0.9.0 - ENE TECHNOLOGY INC.) Hidden
ENE_MousePad_HAL (HKLM\...\{9E97178A-ADB8-4778-BE60-7E28E2A72721}) (Version: 1.0.2.0 - ENE TECHNOLOGY INC.) Hidden
ENE_MousePad_HAL (HKLM-x32\...\{c2c794a4-7986-4c45-884d-d4ca43b88df9}) (Version: 1.0.2.0 - ENE TECHNOLOGY INC.) Hidden
ENE_X-JMI_HAL (HKLM\...\{2B8E611F-0B51-4FAC-87BB-AF50D82E7DDA}) (Version: 1.0.5.1 - ENE Tech) Hidden
ENE_X-JMI_HAL (HKLM-x32\...\{50ec3a07-291b-463e-be86-487eb8cbb71c}) (Version: 1.0.5.1 - ENE Tech) Hidden
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB)
Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 18.151.0729.0013 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-2450881772-3334122637-3429325221-1001\...\Teams) (Version: 1.4.00.2781 - Microsoft Corporation)
Mozilla Firefox (x64 de) (HKLM\...\Mozilla Firefox 101.0 (x64 de)) (Version: 101.0 - Mozilla)
MSI SDK (HKLM-x32\...\{EE7D557C-3AE7-4348-8DCA-3A89790D0002}}_is1) (Version: 2.2021.1110.01 - MSI)
NZXT CAM 4.34.3 (HKLM\...\ac0666ae-ee66-5310-ac01-9d6348133b2d) (Version: 4.34.3 - NZXT, Inc.)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 27.1.3 - OBS Project)
Oculus (HKLM\...\Oculus) (Version: <3 - Facebook Technologies, LLC)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.15225.20150 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.15225.20194 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0407-1000-0000000FF1CE}) (Version: 16.0.15128.20178 - Microsoft Corporation) Hidden
Opera GX Stable 86.0.4363.70 (HKU\S-1-5-21-2450881772-3334122637-3429325221-1001\...\Opera GX 86.0.4363.70) (Version: 86.0.4363.70 - Opera Software)
Origin (HKLM-x32\...\Origin) (Version: 10.5.105.49133 - Electronic Arts, Inc.)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
Razer Cortex (HKLM-x32\...\Razer Cortex_is1) (Version: 9.18.7.1508 - Razer Inc.)
Razer Synapse (HKLM-x32\...\Razer Synapse) (Version: 3.7.0331.032911 - Razer Inc.)
RGSS-RTP Standard (HKLM-x32\...\{5A9FE525-8B8F-4701-A937-7F6745A4E9C7}) (Version: 1.0.0 - Enterbrain)
ROCCAT Swarm (HKLM-x32\...\{9D12397F-45AF-4517-B492-1D1E2FA475EE}) (Version: 1.93.860 - ROCCAT GmbH) Hidden
ROCCAT Swarm (HKLM-x32\...\InstallShield_{9D12397F-45AF-4517-B492-1D1E2FA475EE}) (Version: 1.93.860 - ROCCAT GmbH)
Samsung DeX (HKLM-x32\...\{43409A91-7C1A-4D28-B628-AD78F09DA3F0}) (Version: 2.4.0.27 - Samsung Electronics Co., Ltd.) Hidden
Samsung DeX (HKLM-x32\...\{a306c372-6ec4-43f0-b372-b1de15b0e935}) (Version: 2.4.0.27 - Samsung Electronics Co., Ltd.)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.7.46.0 - Samsung Electronics Co., Ltd.)
SHIFT 2 UNLEASHED™ (HKLM-x32\...\{E8C37E27-5205-4C8A-BECB-B00533045AAE}) (Version: 1.0.2.2 - Electronic Arts)
Sky Go 22.4.2.0 (HKU\S-1-5-21-2450881772-3334122637-3429325221-1001\...\com.bskyb.skygoplayer_is1) (Version: 22.4.2.0 - Sky)
Teams Machine-Wide Installer (HKLM-x32\...\{731F6BAA-A986-45A4-8936-7C3AAAAA760B}) (Version: 1.4.0.2781 - Microsoft Corporation)
theSettlers5 (HKLM-x32\...\Uplay Install 11786) (Version: - )
Tom Clancy's The Division 2 (HKLM-x32\...\Uplay Install 4932) (Version: - Ubisoft)
Trident Z Lighting Control (HKLM-x32\...\{97CD7AFC-0ED3-41B8-9CCD-22717E8631D0}_is1) (Version: 1.00.29 - ENG)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 119.0.10382 - Ubisoft)
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1-2) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
WD_BLACK AN1500 (HKLM\...\{085E2365-0A70-4230-B664-02D5E4FE7E9C}) (Version: 1.0.12.0 - ENE TECHNOLOGY INC.) Hidden
WD_BLACK AN1500 (HKLM-x32\...\{9c94735f-73fd-4b0f-9ddb-8be7b3cc4681}) (Version: 1.0.12.0 - ENE TECHNOLOGY INC.) Hidden
WD_BLACK D50 (HKLM\...\{BDE43F26-5917-44F8-B86A-F1D9A6B80B32}) (Version: 1.0.9.0 - ENE TECHNOLOGY INC.) Hidden
WD_BLACK D50 (HKLM-x32\...\{a1d1ba00-92b7-4a99-8ebd-65b25c0e9e44}) (Version: 1.0.9.0 - ENE TECHNOLOGY INC.) Hidden
Packages:
=========
Desktop Live Wallpapers -> C:\Program Files\WindowsApps\48405AmbientSoftware.LiveDesktopWallpapers_1.2.17.0_neutral__agy8jafheqhng [2022-04-06] (Ambient Software) [Startup Task]
DragonCenter -> C:\Program Files\WindowsApps\9426MICRO-STARINTERNATION.DragonCenter_2.0.121.0_x64__kzh8wxbdkxb8p [2022-04-07] (MICRO-STAR INTERNATIONAL CO., LTD) [Startup Task]
Epson Print and Scan -> C:\Program Files\WindowsApps\SEIKOEPSONCORPORATION.EpsonPrintandScan_1.1.0.0_x64__ezaqdwkaef94e [2021-08-12] (SEIKO EPSON CORPORATION)
Fitbit -> C:\Program Files\WindowsApps\Fitbit.Fitbit_2.44.1997.0_x64__6mqt6hf9g46tw [2021-03-07] (Fitbit)
Fotos-Add-On -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2022-01-06] (Microsoft Corporation)
GoPro Player -> C:\Program Files\WindowsApps\GoPro.GoProPlayer_2.0.10.0_x64__1h9vz9xjm6b8c [2022-06-03] (GoPro)
Huetro for Hue -> C:\Program Files\WindowsApps\27078NielsLaute.HuetroforHue_7.5.5.0_x64__91se88q2mhfz2 [2022-04-07] (NielsLaute)
Media Engine-Add-On für Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-08-31] (Microsoft Corporation)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.12.5120.0_x64__8wekyb3d8bbwe [2022-05-18] (Microsoft Studios) [MS Ad]
Nahimic -> C:\Program Files\WindowsApps\A-Volute.Nahimic_1.9.8.0_x64__w2gh52qy24etm [2022-05-04] (A-Volute)
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.98.1805.0_x64__mcm4njqhnhss8 [2022-02-16] (Netflix, Inc.)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.962.0_x64__56jybvy8sckqj [2022-05-25] (NVIDIA Corp.)
Prime Video for Windows -> C:\Program Files\WindowsApps\AmazonVideo.PrimeVideo_1.0.99.0_x64__pwbj9vvecjh7j [2022-05-25] (Amazon Development Centre (London) Ltd)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.186.857.0_x86__zpdnekdrzrea0 [2022-05-28] (Spotify AB) [Startup Task]
WhatsApp Desktop -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2218.8.0_x64__cv1g1gvanyjgm [2022-05-30] (WhatsApp Inc.)
Xbox Zubehör -> C:\Program Files\WindowsApps\Microsoft.XboxDevices_300.2202.25001.0_x64__8wekyb3d8bbwe [2022-03-10] (Microsoft Corporation)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-2450881772-3334122637-3429325221-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\SteMu\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2450881772-3334122637-3429325221-1001_Classes\CLSID\{80172dde-4e20-4df0-81a2-0a48553e80bb}\localserver32 -> C:\Users\SteMu\AppData\Local\NhNotifSys\nahimic\nahimicNotifSys.exe (A-Volute SAS -> A-Volute)
CustomCLSID: HKU\S-1-5-21-2450881772-3334122637-3429325221-1001_Classes\CLSID\{a3d7e084-b0df-4d14-8e0a-27a572a6332c}\localserver32 -> "C:\Program Files\Sony\Imaging Edge Desktop\ied.exe" -ToastActivated => Keine Datei
CustomCLSID: HKU\S-1-5-21-2450881772-3334122637-3429325221-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\SteMu\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2450881772-3334122637-3429325221-1001_Classes\CLSID\{FD848478-65F5-4F01-ACD9-69195EC3631F}\localserver32 -> "C:\Program Files\cFosSpeed\win10\cfosspeed.exe" -ToastActivated => Keine Datei
ShellIconOverlayIdentifiers: [� MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\SteMu\AppData\Local\MEGAsync\ShellExtX64.dll -> Keine Datei
ShellIconOverlayIdentifiers: [� MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\SteMu\AppData\Local\MEGAsync\ShellExtX64.dll -> Keine Datei
ShellIconOverlayIdentifiers: [� MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\SteMu\AppData\Local\MEGAsync\ShellExtX64.dll -> Keine Datei
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.099.0508.0001\FileSyncShell64.dll [2022-06-02] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\SteMu\AppData\Local\MEGAsync\ShellExtX64.dll -> Keine Datei
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\SteMu\AppData\Local\MEGAsync\ShellExtX64.dll -> Keine Datei
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\SteMu\AppData\Local\MEGAsync\ShellExtX64.dll -> Keine Datei
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.099.0508.0001\FileSyncShell64.dll [2022-06-02] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\SteMu\AppData\Local\MEGAsync\ShellExtX64.dll -> Keine Datei
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.099.0508.0001\FileSyncShell64.dll [2022-06-02] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_7ad37590e62d4afc\nvshext.dll [2022-05-21] (Nvidia Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers1_.DEFAULT: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.099.0508.0001\FileSyncShell64.dll [2022-06-02] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4_.DEFAULT: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.099.0508.0001\FileSyncShell64.dll [2022-06-02] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5_.DEFAULT: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.099.0508.0001\FileSyncShell64.dll [2022-06-02] (Microsoft Corporation -> Microsoft Corporation)
==================== Codecs (Nicht auf der Ausnahmeliste) ====================
==================== Verknüpfungen & WMI ========================
==================== Geladene Module (Nicht auf der Ausnahmeliste) =============
2022-05-04 12:15 - 2022-05-04 12:15 - 020785152 _____ () [Datei ist nicht signiert] C:\Program Files\WindowsApps\A-Volute.Nahimic_1.9.8.0_x64__w2gh52qy24etm\Nahimic3.dll
2021-03-07 01:55 - 2018-11-15 15:08 - 002200784 _____ (Dexin Corp -> MICRO-STAR INTERNATIONAL) [Datei ist nicht signiert] C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\IcMSIDll.dll
2021-03-07 01:53 - 2021-03-07 01:53 - 002972368 _____ (Dexin Corp -> MICRO-STAR INTERNATIONAL) [Datei ist nicht signiert] C:\Program Files\WindowsApps\9426MICRO-STARINTERNATION.DragonCenter_2.0.121.0_x64__kzh8wxbdkxb8p\DCv2\Device\GM6070\IcMSIDll.dll
2021-03-06 21:46 - 2019-02-21 18:00 - 000078336 _____ (Igor Pavlov) [Datei ist nicht signiert] C:\Program Files\7-Zip\7-zip.dll
2021-03-07 01:55 - 2018-08-31 08:26 - 000053760 _____ (MS) [Datei ist nicht signiert] C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\MsIo32_Galax.dll
2021-03-07 20:29 - 2021-03-07 20:28 - 001282048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\LIBEAY32.dll
2021-03-07 20:29 - 2021-03-07 20:28 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\ssleay32.dll
2021-03-07 20:29 - 2021-03-07 20:28 - 001611264 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2021-10-15 13:48 - 2021-03-07 20:28 - 005487104 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Core.dll
2021-10-15 13:48 - 2021-03-07 20:28 - 005841920 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Gui.dll
2021-10-15 13:48 - 2021-03-07 20:28 - 001179136 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Network.dll
2021-10-15 13:48 - 2021-03-07 20:28 - 000146432 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5WebSockets.dll
2021-10-15 13:48 - 2021-03-07 20:28 - 005089792 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2021-10-15 13:48 - 2021-03-07 20:28 - 000184832 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Xml.dll
2021-12-23 22:08 - 2016-10-04 05:43 - 000399872 _____ (TODO: <公司名稱>) [Datei ist nicht signiert] C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\Lib\SDKDLL.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================
==================== Internet Explorer (Nicht auf der Ausnahmeliste) ==========
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2022-04-07] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_281\bin\ssv.dll => Keine Datei
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_281\bin\jp2ssv.dll => Keine Datei
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2022-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_281\bin\ssv.dll => Keine Datei
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_281\bin\jp2ssv.dll => Keine Datei
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-05-29] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-05-29] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-05-29] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-05-29] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-05-29] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-05-29] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-05-29] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-05-29] (Microsoft Corporation -> Microsoft Corporation)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - Keine Datei
==================== Hosts Inhalt: =========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2019-03-19 06:49 - 2019-03-19 06:49 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Andere Bereiche ===========================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Oculus\Support\oculus-runtime;C:\Program Files (x86)\Razer\ChromaBroadcast\bin;C:\Program Files\Razer\ChromaBroadcast\bin;C:\Program Files (x86)\Razer Chroma SDK\bin;C:\Program Files\Razer Chroma SDK\bin;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\WindowsApps;C:\Users\SteMu\AppData\Local\Microsoft\WindowsApps
HKU\S-1-5-21-2450881772-3334122637-3429325221-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\SteMu\Desktop\Kamera_Sony\Auswahl\MINI\vom 09.04.2022\Insta\JPG\SW_insta_DSC2221.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
ist aktiviert.
Network Binding:
=============
WLAN: cFosSpeed for faster Internet connections (NDIS 6) -> cfosspeed (enabled)
Ethernet: cFosSpeed for faster Internet connections (NDIS 6) -> cfosspeed (enabled)
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
HKLM\...\StartupApproved\StartupFolder: => "ROCCAT Swarm Monitor.lnk"
HKLM\...\StartupApproved\StartupFolder: => "Imaging Edge Desktop.lnk"
HKLM\...\StartupApproved\Run: => "Logitech Download Assistant"
HKLM\...\StartupApproved\Run32: => "RazerCortex"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "Spectrum"
HKLM\...\StartupApproved\Run32: => "TeamsMachineInstaller"
HKU\S-1-5-21-2450881772-3334122637-3429325221-1001\...\StartupApproved\StartupFolder: => "MEGAsync.lnk"
HKU\S-1-5-21-2450881772-3334122637-3429325221-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2450881772-3334122637-3429325221-1001\...\StartupApproved\Run: => "Synapse3"
HKU\S-1-5-21-2450881772-3334122637-3429325221-1001\...\StartupApproved\Run: => "Samsung DeX"
HKU\S-1-5-21-2450881772-3334122637-3429325221-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-2450881772-3334122637-3429325221-1001\...\StartupApproved\Run: => "EADM"
HKU\S-1-5-21-2450881772-3334122637-3429325221-1001\...\StartupApproved\Run: => "com.squirrel.Teams.Teams"
HKU\S-1-5-21-2450881772-3334122637-3429325221-1001\...\StartupApproved\Run: => "Opera GX Browser Assistant"
HKU\S-1-5-21-2450881772-3334122637-3429325221-1001\...\StartupApproved\Run: => "Bloom"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{27D89E85-50B0-4CFA-BCF3-AE66BE323B0E}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FirewallRules: [{CBF8A30C-6146-4105-A075-9E807BE61586}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FirewallRules: [{831BD685-C3FC-4AD8-AC35-ECEBF2F0E689}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{1D76AC2F-E135-401B-B163-D398BE864D37}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{EB4CDFE2-0998-4CDD-A75F-B2860DE560B8}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{E0ED1B28-545F-463D-8F39-614CE98245B9}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{2FC80D7F-D909-4D12-BEBA-B777EEFE6A72}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe (CD Projekt Red) [Datei ist nicht signiert]
FirewallRules: [{A4013447-B23B-4D30-9E3D-E0B71D7A93B4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe (CD Projekt Red) [Datei ist nicht signiert]
FirewallRules: [{CA9A7972-E80D-4DCC-964E-632BA73A46A8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cyberpunk 2077\REDprelauncher.exe (GOG Sp. z o.o. -> GOG.com)
FirewallRules: [{6EE0117F-ACAC-42AA-8A09-210982758C5D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cyberpunk 2077\REDprelauncher.exe (GOG Sp. z o.o. -> GOG.com)
FirewallRules: [{81E6592D-22B7-45A7-A63B-744E43C20292}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\launcher.exe (Skutta, Kristjan -> )
FirewallRules: [{5C547752-E19C-4AEA-A830-EA0C01352948}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\launcher.exe (Skutta, Kristjan -> )
FirewallRules: [{29344FC7-848F-4FB6-BA8B-A0FFD61FC3DA}] => (Allow) E:\origin\SHIFT 2 UNLEASHED\shift2u.exe (Electronic Arts -> Electronic Arts Inc.)
FirewallRules: [{B648D820-E832-42AE-8ED7-46FEF8D97D90}] => (Allow) E:\origin\SHIFT 2 UNLEASHED\shift2u.exe (Electronic Arts -> Electronic Arts Inc.)
FirewallRules: [{190F3AB8-73E2-41BB-9C06-FF911468C7B8}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{CA60BE08-5E64-4FFF-8E5B-7F76EEE18355}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{22AB4FFF-592D-41DB-A5D4-BBF35E124C68}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{55011896-0E3E-4D22-A448-8F83E1404D1F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{55EE64FA-B72E-4887-AB93-4807AD37CCD5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{59CE0641-2873-40DB-A473-60DAFB6E249E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{CBDD761D-B76A-4E3C-8321-A264FE9DF62F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{1E151A0F-A6A3-4568-8569-BA7729DD72AD}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{32BB487C-E3CD-404C-9D72-86441260BA45}] => (Allow) C:\Program Files (x86)\Steam\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{30F76363-FDF2-4EC1-8898-2BD7660EC0B7}] => (Allow) C:\Program Files (x86)\Steam\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{FDDB741E-49DF-4487-AA7A-E5ACFE726BF7}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe => Keine Datei
FirewallRules: [{F78650DE-D132-445D-A4D3-25D187CFE3F1}] => (Allow) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHost.exe => Keine Datei
FirewallRules: [{F7C64DD7-6563-469C-AE4F-4119765DDFB9}] => (Allow) C:\Program Files (x86)\Common Files\Mcafee\MMSSHost\MMSSHost.exe => Keine Datei
FirewallRules: [{01198E82-20A0-4729-BC15-BBD23A07372B}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{F42DD2AF-884B-441A-A9F5-D3961F381BBE}C:\users\stemu\desktop\vizonica_v0.22e_by_rizgames\vizonica\binaries\win64\vizonica-win64-shipping.exe] => (Allow) C:\users\stemu\desktop\vizonica_v0.22e_by_rizgames\vizonica\binaries\win64\vizonica-win64-shipping.exe => Keine Datei
FirewallRules: [UDP Query User{13F5A012-275F-4EF8-90DB-AD085AAFF0BB}C:\users\stemu\desktop\vizonica_v0.22e_by_rizgames\vizonica\binaries\win64\vizonica-win64-shipping.exe] => (Allow) C:\users\stemu\desktop\vizonica_v0.22e_by_rizgames\vizonica\binaries\win64\vizonica-win64-shipping.exe => Keine Datei
FirewallRules: [{378E5988-B72A-4C60-BBC0-4F85D446A26D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\bin\win32\vrstartup.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{FA7BB1D3-F9CC-4F88-A4D6-DD6F7CFC917C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\bin\win32\vrstartup.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{BE255135-E132-464E-B183-147AC99663D1}] => (Allow) E:\SteamLibrary2\steamapps\common\Hades\x64\Hades.exe () [Datei ist nicht signiert]
FirewallRules: [{C51804B6-1DA0-47E5-AE5A-ADB70DA66D4B}] => (Allow) E:\SteamLibrary2\steamapps\common\Hades\x64\Hades.exe () [Datei ist nicht signiert]
FirewallRules: [{03A0C3FB-85B5-45C8-8080-34736F58C89F}] => (Allow) E:\SteamLibrary2\steamapps\common\Hades\x64Vk\Hades.exe () [Datei ist nicht signiert]
FirewallRules: [{A1967D45-BB61-41A2-BC9D-AFC495B58320}] => (Allow) E:\SteamLibrary2\steamapps\common\Hades\x64Vk\Hades.exe () [Datei ist nicht signiert]
FirewallRules: [{65C73F76-4B7A-4816-BD77-1DB758AB2346}] => (Allow) E:\SteamLibrary2\steamapps\common\Hades\x86\Hades.exe () [Datei ist nicht signiert]
FirewallRules: [{9BEE0879-FB0D-4A05-9F27-4EB023B34E0A}] => (Allow) E:\SteamLibrary2\steamapps\common\Hades\x86\Hades.exe () [Datei ist nicht signiert]
FirewallRules: [{2D0C7FFD-D14C-4756-B68F-13A3CA7BAC36}] => (Allow) E:\SteamLibrary2\steamapps\common\F1 2020\F1_2020_dx12.exe (Codemasters Software Company Limited) [Datei ist nicht signiert]
FirewallRules: [{294F7FD4-4B96-4423-B917-18A14450DB49}] => (Allow) E:\SteamLibrary2\steamapps\common\F1 2020\F1_2020_dx12.exe (Codemasters Software Company Limited) [Datei ist nicht signiert]
FirewallRules: [{E24D0C4C-9A2A-4461-BF66-38C36E963E0C}] => (Allow) E:\SteamLibrary2\steamapps\common\F1 2020\F1_2020.exe (Codemasters Software Company Limited) [Datei ist nicht signiert]
FirewallRules: [{37B54C28-268E-42B5-BF50-FE19BA102AFD}] => (Allow) E:\SteamLibrary2\steamapps\common\F1 2020\F1_2020.exe (Codemasters Software Company Limited) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{EEBFAEC0-53FE-4B94-AF5C-FD072982FBE3}C:\users\stemu\downloads\neuer ordner\neuer ordner (3)\gspot master\g-spot-master.exe] => (Allow) C:\users\stemu\downloads\neuer ordner\neuer ordner (3)\gspot master\g-spot-master.exe => Keine Datei
FirewallRules: [UDP Query User{FD41CE3A-F4E9-4589-ACBD-3BC5B110600B}C:\users\stemu\downloads\neuer ordner\neuer ordner (3)\gspot master\g-spot-master.exe] => (Allow) C:\users\stemu\downloads\neuer ordner\neuer ordner (3)\gspot master\g-spot-master.exe => Keine Datei
FirewallRules: [TCP Query User{0DA68740-FF2C-4096-AD5A-E4A35E375851}H:\neuer ordner (3)\vizonica_v0.22e_by_rizgames\vizonica\binaries\win64\vizonica-win64-shipping.exe] => (Allow) H:\neuer ordner (3)\vizonica_v0.22e_by_rizgames\vizonica\binaries\win64\vizonica-win64-shipping.exe => Keine Datei
FirewallRules: [UDP Query User{004E59AD-864D-40D2-9DB5-1C7F2752E6E9}H:\neuer ordner (3)\vizonica_v0.22e_by_rizgames\vizonica\binaries\win64\vizonica-win64-shipping.exe] => (Allow) H:\neuer ordner (3)\vizonica_v0.22e_by_rizgames\vizonica\binaries\win64\vizonica-win64-shipping.exe => Keine Datei
FirewallRules: [{532694F7-ED10-46BD-89C1-7DFA8CE3B485}] => (Allow) C:\Program Files (x86)\Ubisoft\Anno 1800\Bin\Win64\Anno1800.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [TCP Query User{689F68BF-7A0E-4AFA-895F-25DC40A87E2E}D:\0\_02\25-\elritclover\app.exe] => (Allow) D:\0\_02\25-\elritclover\app.exe => Keine Datei
FirewallRules: [UDP Query User{0FC57338-B45A-402C-9106-F3EB2AC398AA}D:\0\_02\25-\elritclover\app.exe] => (Allow) D:\0\_02\25-\elritclover\app.exe => Keine Datei
FirewallRules: [TCP Query User{EA9ED269-9024-43DC-8FD1-54BB24C1A057}C:\program files\oculus\software\software\hyperbolic-magnetism-beat-saber\beat saber.exe] => (Allow) C:\program files\oculus\software\software\hyperbolic-magnetism-beat-saber\beat saber.exe () [Datei ist nicht signiert]
FirewallRules: [UDP Query User{E1802155-9994-4612-929B-512916B90CED}C:\program files\oculus\software\software\hyperbolic-magnetism-beat-saber\beat saber.exe] => (Allow) C:\program files\oculus\software\software\hyperbolic-magnetism-beat-saber\beat saber.exe () [Datei ist nicht signiert]
FirewallRules: [{E1F1CC0B-43A0-4BDB-BD8A-1E95AE45BD45}] => (Allow) E:\SteamLibrary2\steamapps\common\Forts\Forts.exe (EarthWork Games Pty Ltd -> )
FirewallRules: [{51CA02AB-08E7-4877-9A40-C7C7ADF80223}] => (Allow) E:\SteamLibrary2\steamapps\common\Forts\Forts.exe (EarthWork Games Pty Ltd -> )
FirewallRules: [{CDB56E25-87B1-4963-B2F9-46B5E5E930EE}] => (Allow) E:\SteamLibrary2\steamapps\common\Halo The Master Chief Collection\mcclauncher.exe (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{3AA536A0-8587-41FF-AC68-A1EBA4AAA782}] => (Allow) E:\SteamLibrary2\steamapps\common\Halo The Master Chief Collection\mcclauncher.exe (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{2AADE91B-7D43-448E-82CB-12595AE4684D}] => (Allow) E:\SteamLibrary2\steamapps\common\Halo The Master Chief Collection\MCC\Binaries\Win64\MCC-Win64-Shipping.exe (343 Industries (Microsoft Corporation) -> Microsoft Corporation)
FirewallRules: [{9E3B3064-67DA-4930-B156-F0ED3CB5B0AB}] => (Allow) E:\SteamLibrary2\steamapps\common\Halo The Master Chief Collection\MCC\Binaries\Win64\MCC-Win64-Shipping.exe (343 Industries (Microsoft Corporation) -> Microsoft Corporation)
FirewallRules: [{1A6FD18D-009F-45FC-8BAF-714E9BC69BC4}] => (Allow) E:\SteamLibrary2\steamapps\common\Sid Meier's Civilization VI\2KLauncher\LauncherPatcher.exe (Take-Two Interactive Software, Inc. -> Take-Two Interactive Software, Inc.)
FirewallRules: [{8936435A-F697-460A-AC82-47D663E0FAEE}] => (Allow) E:\SteamLibrary2\steamapps\common\Sid Meier's Civilization VI\2KLauncher\LauncherPatcher.exe (Take-Two Interactive Software, Inc. -> Take-Two Interactive Software, Inc.)
FirewallRules: [TCP Query User{B2E0B638-C102-43AE-AD70-90FA1B976A44}C:\users\stemu\downloads\neuer ordner\neuer ordner\datejournal\datejournal.exe] => (Block) C:\users\stemu\downloads\neuer ordner\neuer ordner\datejournal\datejournal.exe => Keine Datei
FirewallRules: [UDP Query User{DA0476B7-0D49-493A-8FB6-546C6164F9E2}C:\users\stemu\downloads\neuer ordner\neuer ordner\datejournal\datejournal.exe] => (Block) C:\users\stemu\downloads\neuer ordner\neuer ordner\datejournal\datejournal.exe => Keine Datei
FirewallRules: [TCP Query User{F2C85D79-9738-4E06-A956-3176838A0D1E}C:\users\stemu\downloads\neuer ordner\neuer ordner (4)\otaku's rage waifu strikes back\otaku's rage.exe] => (Block) C:\users\stemu\downloads\neuer ordner\neuer ordner (4)\otaku's rage waifu strikes back\otaku's rage.exe => Keine Datei
FirewallRules: [UDP Query User{DA89A261-F5D8-4391-8973-1E71E9F2E036}C:\users\stemu\downloads\neuer ordner\neuer ordner (4)\otaku's rage waifu strikes back\otaku's rage.exe] => (Block) C:\users\stemu\downloads\neuer ordner\neuer ordner (4)\otaku's rage waifu strikes back\otaku's rage.exe => Keine Datei
FirewallRules: [TCP Query User{5DB6DB68-992A-4484-9E40-A3B21653C568}D:\0\_01\25\jerez's arena [v1.0.16] [eternal alice]\jerez's arena\jerez'sarena.exe] => (Block) D:\0\_01\25\jerez's arena [v1.0.16] [eternal alice]\jerez's arena\jerez'sarena.exe => Keine Datei
FirewallRules: [UDP Query User{EC408871-7628-42DE-899D-5C49AE3AF7BC}D:\0\_01\25\jerez's arena [v1.0.16] [eternal alice]\jerez's arena\jerez'sarena.exe] => (Block) D:\0\_01\25\jerez's arena [v1.0.16] [eternal alice]\jerez's arena\jerez'sarena.exe => Keine Datei
FirewallRules: [TCP Query User{171EF606-4960-4C50-857E-E8508BA770AA}D:\0\_01\40\escapedungeon\escapedungeon.exe] => (Block) D:\0\_01\40\escapedungeon\escapedungeon.exe => Keine Datei
FirewallRules: [UDP Query User{6C8401DA-774D-4010-98C4-746641CD53E3}D:\0\_01\40\escapedungeon\escapedungeon.exe] => (Block) D:\0\_01\40\escapedungeon\escapedungeon.exe => Keine Datei
FirewallRules: [TCP Query User{72241E99-72CD-44D6-BE48-1228AE7FB121}D:\0\_01\80\midsummer\midsummer.exe] => (Block) D:\0\_01\80\midsummer\midsummer.exe => Keine Datei
FirewallRules: [UDP Query User{DAA7623E-45BD-4965-A7EC-5AAFC4311880}D:\0\_01\80\midsummer\midsummer.exe] => (Block) D:\0\_01\80\midsummer\midsummer.exe => Keine Datei
FirewallRules: [TCP Query User{6693DC47-722D-4897-9AD1-5EA5B05DE12D}D:\0\_04\neuer ordner (8)\datejournal\datejournal.exe] => (Block) D:\0\_04\neuer ordner (8)\datejournal\datejournal.exe => Keine Datei
FirewallRules: [UDP Query User{4791D2D6-F206-421D-9B28-1A1A77432441}D:\0\_04\neuer ordner (8)\datejournal\datejournal.exe] => (Block) D:\0\_04\neuer ordner (8)\datejournal\datejournal.exe => Keine Datei
FirewallRules: [TCP Query User{E19E2410-D801-4B4C-BF71-4197813CAE39}D:\0\_04\neuer ordner (5)\otaku's rage waifu strikes back\otaku's rage.exe] => (Block) D:\0\_04\neuer ordner (5)\otaku's rage waifu strikes back\otaku's rage.exe => Keine Datei
FirewallRules: [UDP Query User{1FB78A77-EDC0-457B-A43B-E9057A9F6F22}D:\0\_04\neuer ordner (5)\otaku's rage waifu strikes back\otaku's rage.exe] => (Block) D:\0\_04\neuer ordner (5)\otaku's rage waifu strikes back\otaku's rage.exe => Keine Datei
FirewallRules: [TCP Query User{1FD38A02-5ACB-4B5F-A97D-D20F53F076E8}D:\0\_03\neuer ordner (12)\elritclover\app.exe] => (Block) D:\0\_03\neuer ordner (12)\elritclover\app.exe => Keine Datei
FirewallRules: [UDP Query User{AB8FA77A-10E1-4308-97F7-4CC2EBB29BB0}D:\0\_03\neuer ordner (12)\elritclover\app.exe] => (Block) D:\0\_03\neuer ordner (12)\elritclover\app.exe => Keine Datei
FirewallRules: [TCP Query User{D9FDA407-1C34-4F5B-8800-F5F7045CEEEA}D:\0\_03\neuer ordner\the.suffering.of.larina\the suffering of larina\engine\binaries\win64\ue4game.exe] => (Block) D:\0\_03\neuer ordner\the.suffering.of.larina\the suffering of larina\engine\binaries\win64\ue4game.exe => Keine Datei
FirewallRules: [UDP Query User{89B48EA9-C2A4-4291-B9BC-360EDFE4A87D}D:\0\_03\neuer ordner\the.suffering.of.larina\the suffering of larina\engine\binaries\win64\ue4game.exe] => (Block) D:\0\_03\neuer ordner\the.suffering.of.larina\the suffering of larina\engine\binaries\win64\ue4game.exe => Keine Datei
FirewallRules: [TCP Query User{4D2AF492-1B55-4305-A536-5C53AE89E283}C:\program files (x86)\steam\steamapps\common\steamvr\tools\steamvr_environments\game\bin\win64\steamtours.exe] => (Block) C:\program files (x86)\steam\steamapps\common\steamvr\tools\steamvr_environments\game\bin\win64\steamtours.exe (Valve -> )
FirewallRules: [UDP Query User{1F3446AC-AA6E-4A18-85B5-EE99987EA930}C:\program files (x86)\steam\steamapps\common\steamvr\tools\steamvr_environments\game\bin\win64\steamtours.exe] => (Block) C:\program files (x86)\steam\steamapps\common\steamvr\tools\steamvr_environments\game\bin\win64\steamtours.exe (Valve -> )
FirewallRules: [{4B0B517C-E36B-4C0D-8DCB-965E946B4D86}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{449DE480-7990-41F9-A1C2-04D71A057996}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{39BA714D-E192-4E8E-8657-73A435F09758}] => (Allow) E:\SteamLibrary2\steamapps\common\Subnautica\Subnautica.exe () [Datei ist nicht signiert]
FirewallRules: [{76113DD7-4380-4D8A-84FA-FD2C8F751653}] => (Allow) E:\SteamLibrary2\steamapps\common\Subnautica\Subnautica.exe () [Datei ist nicht signiert]
FirewallRules: [{D6FA12FA-A69C-4E38-88CE-A26B33143121}] => (Allow) C:\Program Files (x86)\GoPro\GoPro Webcam\GoPro Webcam.exe => Keine Datei
FirewallRules: [{D5AF52F1-96B8-4666-89FE-11194B509CEB}] => (Allow) E:\SteamLibrary2\steamapps\common\Ori DE\oriDE.exe () [Datei ist nicht signiert]
FirewallRules: [{086AB0C4-EDA2-4D38-BBE4-E4F636AA7596}] => (Allow) E:\SteamLibrary2\steamapps\common\Ori DE\oriDE.exe () [Datei ist nicht signiert]
FirewallRules: [{C537E9B4-1108-4CF0-B092-D3D03AC8F989}] => (Allow) E:\SteamLibrary2\steamapps\common\Ori\ori.exe () [Datei ist nicht signiert]
FirewallRules: [{CB9245B4-6437-4223-8CEE-FA8FCAF801C9}] => (Allow) E:\SteamLibrary2\steamapps\common\Ori\ori.exe () [Datei ist nicht signiert]
FirewallRules: [{D7DF18D6-5CF5-4F5A-9178-B2C906E03124}] => (Allow) E:\SteamLibrary2\steamapps\common\Cities_Skylines\dowser.exe (Paradox Interactive AB (publ) -> )
FirewallRules: [{119BEC8D-9B38-49F9-882E-1B2702482AF9}] => (Allow) E:\SteamLibrary2\steamapps\common\Cities_Skylines\dowser.exe (Paradox Interactive AB (publ) -> )
FirewallRules: [{1387E2A0-E570-4404-897C-7A1F69B3258E}] => (Allow) E:\SteamLibrary2\steamapps\common\Company of Heroes 2\RelicCoH2.exe (RELIC ENTERTAINMENT, INC. -> Relic Entertainment Inc.)
FirewallRules: [{DB25DDAB-49CB-4E4E-96DC-1BBC5F16BF30}] => (Allow) E:\SteamLibrary2\steamapps\common\Company of Heroes 2\RelicCoH2.exe (RELIC ENTERTAINMENT, INC. -> Relic Entertainment Inc.)
FirewallRules: [{AC3BA4A6-DE31-41B3-9E17-485E233B9667}] => (Allow) E:\SteamLibrary2\steamapps\common\Raft\Raft.exe () [Datei ist nicht signiert]
FirewallRules: [{8FD9A268-B669-404A-8876-C4091D43013F}] => (Allow) E:\SteamLibrary2\steamapps\common\Raft\Raft.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{90B8A9E2-A3D2-492B-B4D6-971CCEDA609E}C:\users\stemu\downloads\neuer ordner g\neuer ordner (5)\succubuscafe\succubuscafe.exe] => (Allow) C:\users\stemu\downloads\neuer ordner g\neuer ordner (5)\succubuscafe\succubuscafe.exe => Keine Datei
FirewallRules: [UDP Query User{A1975813-67AA-4D29-8F6E-CBD4D075BDBA}C:\users\stemu\downloads\neuer ordner g\neuer ordner (5)\succubuscafe\succubuscafe.exe] => (Allow) C:\users\stemu\downloads\neuer ordner g\neuer ordner (5)\succubuscafe\succubuscafe.exe => Keine Datei
FirewallRules: [{8E708F15-3004-4F65-BA8D-9354CA4EAD7E}] => (Allow) E:\SteamLibrary2\steamapps\common\Frostpunk\Frostpunk.exe (11 bit studios S.A.) [Datei ist nicht signiert]
FirewallRules: [{1873E62E-E8FF-4145-9B24-5CA2C4894B4E}] => (Allow) E:\SteamLibrary2\steamapps\common\Frostpunk\Frostpunk.exe (11 bit studios S.A.) [Datei ist nicht signiert]
FirewallRules: [{325266B6-BED5-487A-BCE8-5E0F631C2585}] => (Allow) C:\Program Files\Oculus\Support\oculus-runtime\OVRRedir.exe (Oculus VR, LLC -> Facebook Technologies, LLC)
FirewallRules: [{4B0B98C6-922A-4E89-9C41-C46FBE899E62}] => (Allow) C:\Program Files\Oculus\Support\oculus-runtime\OVRRedir.exe (Oculus VR, LLC -> Facebook Technologies, LLC)
FirewallRules: [{2E04C337-DD44-47A7-BCE4-5542BF18E78D}] => (Allow) C:\Program Files\Oculus\Support\oculus-runtime\OVRServer_x64.exe (Oculus VR, LLC -> Facebook Technologies, LLC)
FirewallRules: [{0E9CC60D-C375-443F-982B-EEE0617A151D}] => (Allow) C:\Program Files\Oculus\Support\oculus-runtime\OVRServer_x64.exe (Oculus VR, LLC -> Facebook Technologies, LLC)
FirewallRules: [{15A35F1D-2B33-4253-8517-5AA1884030C4}] => (Allow) C:\Program Files\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe (Oculus VR, LLC -> Facebook Technologies, LLC)
FirewallRules: [{E2E162F5-B65B-46A4-B913-6D5C310E73C5}] => (Allow) C:\Program Files\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe (Oculus VR, LLC -> Facebook Technologies, LLC)
FirewallRules: [{E75CFD0D-F7B7-435A-BF64-2692CC3A9A5A}] => (Allow) C:\Program Files\Oculus\Support\oculus-dash\dash\bin\OculusDash.exe (Oculus VR, LLC -> )
FirewallRules: [{E5586DD3-E145-48D5-B838-41776E383EA2}] => (Allow) C:\Program Files\Oculus\Support\oculus-dash\dash\bin\OculusDash.exe (Oculus VR, LLC -> )
FirewallRules: [{F803968D-0434-4541-A126-7D5391A7644D}] => (Allow) C:\Program Files\Oculus\Support\oculus-worlds\Home2.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [{F46B7FC0-CCDC-4035-98A1-76CFD7EF14B3}] => (Allow) C:\Program Files\Oculus\Support\oculus-worlds\Home2.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [{E0CDC248-3601-4FFA-961D-9BF122054C49}] => (Allow) C:\Program Files\Oculus\Support\oculus-worlds\Home2\Binaries\Win64\Home2-Win64-Shipping.exe (Oculus VR, LLC -> Epic Games, Inc.)
FirewallRules: [{4717C4E3-7187-4F57-9182-F4CC96250278}] => (Allow) C:\Program Files\Oculus\Support\oculus-worlds\Home2\Binaries\Win64\Home2-Win64-Shipping.exe (Oculus VR, LLC -> Epic Games, Inc.)
FirewallRules: [{3BDEE3C4-4F2D-43BB-AEFE-82F1FD7CAC29}] => (Allow) C:\Program Files\Oculus\Support\oculus-worlds\Engine\Binaries\Win64\UnrealCEFSubProcess.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [{5B4DC059-6CAD-4EF8-ADDE-9011AE66DBBD}] => (Allow) C:\Program Files\Oculus\Support\oculus-worlds\Engine\Binaries\Win64\UnrealCEFSubProcess.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [{641C413B-A045-4889-AAFA-D110A589B739}] => (Allow) C:\Program Files\Oculus\Support\oculus-client\OculusClient.exe (Oculus VR, LLC) [Datei ist nicht signiert]
FirewallRules: [{11E29CF3-AA0F-4361-8B1A-C4F4562CCC88}] => (Allow) C:\Program Files\Oculus\Support\oculus-client\OculusClient.exe (Oculus VR, LLC) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{F911DFBF-64D3-43D7-81F8-A06EA952F7A4}C:\users\stemu\downloads\neuer ordner g\neuer ordner (3)\holyknightricca(demo)_210917\game\holyknightricca_demo.exe] => (Block) C:\users\stemu\downloads\neuer ordner g\neuer ordner (3)\holyknightricca(demo)_210917\game\holyknightricca_demo.exe => Keine Datei
FirewallRules: [UDP Query User{7FE5DB1B-2354-4A47-9614-EF51F1762D85}C:\users\stemu\downloads\neuer ordner g\neuer ordner (3)\holyknightricca(demo)_210917\game\holyknightricca_demo.exe] => (Block) C:\users\stemu\downloads\neuer ordner g\neuer ordner (3)\holyknightricca(demo)_210917\game\holyknightricca_demo.exe => Keine Datei
FirewallRules: [TCP Query User{0B6884A1-AE74-4797-9256-719D5A96C166}C:\users\stemu\downloads\neuer ordner g\neuer ordner (15)\succubus hunt for meal\succubus_hunt_for_meal_clean.exe] => (Block) C:\users\stemu\downloads\neuer ordner g\neuer ordner (15)\succubus hunt for meal\succubus_hunt_for_meal_clean.exe => Keine Datei
FirewallRules: [UDP Query User{6F20D371-E53E-4E8D-AFF7-97630860AE03}C:\users\stemu\downloads\neuer ordner g\neuer ordner (15)\succubus hunt for meal\succubus_hunt_for_meal_clean.exe] => (Block) C:\users\stemu\downloads\neuer ordner g\neuer ordner (15)\succubus hunt for meal\succubus_hunt_for_meal_clean.exe => Keine Datei
FirewallRules: [TCP Query User{A506E202-3E27-4EB8-8125-33A8587B97CF}C:\users\stemu\downloads\neuer ordner g\neuer ordner (18)\adorable witch 2\adorablewitch2.exe] => (Allow) C:\users\stemu\downloads\neuer ordner g\neuer ordner (18)\adorable witch 2\adorablewitch2.exe => Keine Datei
FirewallRules: [UDP Query User{842CC649-79C3-4DFE-A38B-C2B1766528DB}C:\users\stemu\downloads\neuer ordner g\neuer ordner (18)\adorable witch 2\adorablewitch2.exe] => (Allow) C:\users\stemu\downloads\neuer ordner g\neuer ordner (18)\adorable witch 2\adorablewitch2.exe => Keine Datei
FirewallRules: [{C306DE98-634B-42D1-A19D-C8A582CB756A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Halo Infinite\HaloInfinite.exe (343 Industries (Microsoft Corporation) -> Microsoft Corporation)
FirewallRules: [{658E62DB-C09D-48AD-BD29-1343FE33FF92}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Halo Infinite\HaloInfinite.exe (343 Industries (Microsoft Corporation) -> Microsoft Corporation)
FirewallRules: [{8F11A758-F2BF-457D-874A-2BDFAA2F47EA}] => (Allow) E:\SteamLibrary2\steamapps\common\STAR WARS Squadrons\starwarssquadrons_launcher.exe (Electronic Arts, Inc. -> Epic Games, Inc)
FirewallRules: [{0AE02A77-5D1C-48B3-8082-0EB5AE16E0C1}] => (Allow) E:\SteamLibrary2\steamapps\common\STAR WARS Squadrons\starwarssquadrons_launcher.exe (Electronic Arts, Inc. -> Epic Games, Inc)
FirewallRules: [TCP Query User{D77AD6DD-3483-406F-927C-BB73CD3D9BBC}C:\users\stemu\downloads\neuer ordner g\neuer ordner (4)\cute honey bunny girl\cute honey bunny girl\cutehoneybunnygirl\binaries\win64\cutehoneybunnygirl-win64-shipping.exe] => (Allow) C:\users\stemu\downloads\neuer ordner g\neuer ordner (4)\cute honey bunny girl\cute honey bunny girl\cutehoneybunnygirl\binaries\win64\cutehoneybunnygirl-win64-shipping.exe => Keine Datei
FirewallRules: [UDP Query User{EC896965-29B8-4752-A5CF-8B4FEEF2648C}C:\users\stemu\downloads\neuer ordner g\neuer ordner (4)\cute honey bunny girl\cute honey bunny girl\cutehoneybunnygirl\binaries\win64\cutehoneybunnygirl-win64-shipping.exe] => (Allow) C:\users\stemu\downloads\neuer ordner g\neuer ordner (4)\cute honey bunny girl\cute honey bunny girl\cutehoneybunnygirl\binaries\win64\cutehoneybunnygirl-win64-shipping.exe => Keine Datei
FirewallRules: [{3FA605A1-FCEA-4BB5-9282-19A0CCE593E8}] => (Allow) C:\Program Files (x86)\Samsung\Samsung DeX\SamsungDeX.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{B5D3D976-28A4-49F0-B236-9619D930D5C9}] => (Allow) C:\Program Files (x86)\Samsung\Samsung DeX\SamsungDeX.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{2232BF50-C2BF-4962-96AC-1CCAD359638E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\ui32.exe (Skutta, Kristjan -> )
FirewallRules: [{3E7E67FF-0F68-4BFA-A525-25AED24DD333}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\ui32.exe (Skutta, Kristjan -> )
FirewallRules: [{637E01AD-26FE-495F-8F65-2701F1898828}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Neon Abyss\NeonAbyss.exe () [Datei ist nicht signiert]
FirewallRules: [{BB05ECEF-CC90-4F59-959B-00B0911669C7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Neon Abyss\NeonAbyss.exe () [Datei ist nicht signiert]
FirewallRules: [{94C1494F-74F1-4853-AF63-70E23F2E5BCC}] => (Allow) E:\uplay\Anno 2205\Bin\Win64\Anno2205.exe (Blue Byte GmbH -> Ubisoft)
FirewallRules: [{1CA55264-D690-4C96-A32E-C9DE25656DC9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Foundation\foundation.exe (Polymorph Games) [Datei ist nicht signiert]
FirewallRules: [{2D320FE5-0E05-40F0-A828-28B159F58FD9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Foundation\foundation.exe (Polymorph Games) [Datei ist nicht signiert]
FirewallRules: [{5F1623AA-36E6-476A-AD69-42AFA35F4513}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{553EBF20-24B4-45DB-ACF1-D26CA13F26C3}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{6FCED8C6-8036-44B8-BD9B-EE92622ED8D7}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{633BE488-612B-4318-B5ED-6B77AB7B55AE}D:\neuer ordner g\neuer ordner (11)\lockdownlewdup\lolu.exe] => (Allow) D:\neuer ordner g\neuer ordner (11)\lockdownlewdup\lolu.exe => Keine Datei
FirewallRules: [UDP Query User{8D91F7C8-4168-4677-B53F-9BC7FDDCF43D}D:\neuer ordner g\neuer ordner (11)\lockdownlewdup\lolu.exe] => (Allow) D:\neuer ordner g\neuer ordner (11)\lockdownlewdup\lolu.exe => Keine Datei
FirewallRules: [{D164AECF-CBE6-48ED-A314-4E15AB3EF202}] => (Allow) E:\SteamLibrary2\steamapps\common\the witcher 2\Launcher.exe (CD Projekt RED) [Datei ist nicht signiert]
FirewallRules: [{7D870EAE-02FD-4ED9-A64F-680DE2EE42FA}] => (Allow) E:\SteamLibrary2\steamapps\common\the witcher 2\Launcher.exe (CD Projekt RED) [Datei ist nicht signiert]
FirewallRules: [{CBB2BED3-8E3C-4858-95F8-6FCDF6D321B9}] => (Allow) E:\SteamLibrary2\steamapps\common\SubnauticaZero\SubnauticaZero.exe () [Datei ist nicht signiert]
FirewallRules: [{D4FA8492-4F6C-4589-9667-9DFDC862E37F}] => (Allow) E:\SteamLibrary2\steamapps\common\SubnauticaZero\SubnauticaZero.exe () [Datei ist nicht signiert]
FirewallRules: [{BB8B8D1F-139C-4F51-A49B-389176CC34ED}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\diagnostics32.exe (Skutta, Kristjan -> )
FirewallRules: [{819BA527-594E-4348-B8ED-227E59116B42}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\diagnostics32.exe (Skutta, Kristjan -> )
FirewallRules: [TCP Query User{337C4C1A-FB9B-452A-93A9-A2955D00EFB9}H:\neuer ordner g\neuer ordner\onlyfuck - ruru's adventures test\onlyfuck - ruru's adventures.exe] => (Block) H:\neuer ordner g\neuer ordner\onlyfuck - ruru's adventures test\onlyfuck - ruru's adventures.exe => Keine Datei
FirewallRules: [UDP Query User{A7B547A1-F9A4-4380-91CD-5B534D0E0C44}H:\neuer ordner g\neuer ordner\onlyfuck - ruru's adventures test\onlyfuck - ruru's adventures.exe] => (Block) H:\neuer ordner g\neuer ordner\onlyfuck - ruru's adventures test\onlyfuck - ruru's adventures.exe => Keine Datei
FirewallRules: [TCP Query User{D1808664-E481-4387-900D-9EFDF37B2800}G:\g\neuer ordner (3)\engine\binaries\win32\ue4game-win32-shipping.exe] => (Block) G:\g\neuer ordner (3)\engine\binaries\win32\ue4game-win32-shipping.exe => Keine Datei
FirewallRules: [UDP Query User{64217669-1936-4CA3-80DC-604E6324C93B}G:\g\neuer ordner (3)\engine\binaries\win32\ue4game-win32-shipping.exe] => (Block) G:\g\neuer ordner (3)\engine\binaries\win32\ue4game-win32-shipping.exe => Keine Datei
FirewallRules: [TCP Query User{0B823868-74D4-4778-B24E-7FE3228B84BC}G:\g\neuer ordner (2)\sorceresstale\binaries\win64\sorceresstale.exe] => (Block) G:\g\neuer ordner (2)\sorceresstale\binaries\win64\sorceresstale.exe => Keine Datei
FirewallRules: [UDP Query User{4A4F4F0E-2BE8-41F2-A89C-B8BDE3A798FB}G:\g\neuer ordner (2)\sorceresstale\binaries\win64\sorceresstale.exe] => (Block) G:\g\neuer ordner (2)\sorceresstale\binaries\win64\sorceresstale.exe => Keine Datei
FirewallRules: [{B385F106-07C1-421D-AB6D-03C0EAED0B68}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{3D207969-A13F-42A5-9164-61DEDF31984B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{2739595E-AFA0-4184-BC93-0C2E5152795A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{844613D5-CAF2-4722-8C9B-9456733DE63C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{316F72D2-B23F-4D9D-9570-D12A9EB391C8}C:\users\stemu\appdata\local\discord\app-1.0.9004\discord.exe] => (Allow) C:\users\stemu\appdata\local\discord\app-1.0.9004\discord.exe (Discord Inc. -> Discord Inc.)
FirewallRules: [UDP Query User{9EEAF25D-4AA6-43A8-8F83-621E9047E04A}C:\users\stemu\appdata\local\discord\app-1.0.9004\discord.exe] => (Allow) C:\users\stemu\appdata\local\discord\app-1.0.9004\discord.exe (Discord Inc. -> Discord Inc.)
FirewallRules: [{0C846FE2-2367-4B5C-93F8-068601B063CC}] => (Block) C:\users\stemu\appdata\local\discord\app-1.0.9004\discord.exe (Discord Inc. -> Discord Inc.)
FirewallRules: [{87D924C4-D73E-4C0F-BF0C-7C8C6381B6C6}] => (Block) C:\users\stemu\appdata\local\discord\app-1.0.9004\discord.exe (Discord Inc. -> Discord Inc.)
FirewallRules: [{0FA936C1-B238-4FF4-9D79-3BDA963A67F5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Half-Life Alyx\game\bin\win64\hlvr.exe (Valve -> )
FirewallRules: [{8D5F284B-14AB-4490-A65C-688A6E7E2C25}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Half-Life Alyx\game\bin\win64\hlvr.exe (Valve -> )
FirewallRules: [{8B8CE640-4840-4D1A-BB7F-29524BF5CBA5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.186.857.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{A883831C-89F9-4757-AD8A-D69267ED7A6C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.186.857.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{AE3C6381-F470-45F5-8922-6D6DD6CA5280}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.186.857.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{1DA977AB-22A4-4DAF-9FBC-4CD88C5FFAD0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.186.857.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{4F4914E9-3297-4224-9A97-D7EA904B0046}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.186.857.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{3294EBDE-AFF4-47A9-B94D-048F1AC43EA0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.186.857.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{50014B3F-4CDE-4619-9A99-322B132C75B7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.186.857.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{D7A74222-5731-4FE4-BE9C-842EEF5B9AC3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.186.857.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{F52FD04B-1698-4498-AF08-63B8D95F4664}] => (Allow) LPort=32682
==================== Wiederherstellungspunkte =========================
25-05-2022 19:59:39 Geplanter Prüfpunkt
01-06-2022 16:25:09 Removed RGSS-RTP Standard
01-06-2022 16:25:30 Removed RGSS-RTP Standard
03-06-2022 16:53:24 Removed Java 8 Update 281
03-06-2022 16:53:37 Removed Java 8 Update 281 (64-bit)
03-06-2022 16:54:50 Removed RGSS-RTP Standard
03-06-2022 17:47:50 Windows Modules Installer
03-06-2022 17:49:30 Windows Modules Installer
==================== Fehlerhafte Geräte im Gerätemanager ============
Name: USB-Eingabegerät
Description: USB-Eingabegerät
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: (Standardsystemgeräte)
Service: HidUsb
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
==================== Fehlereinträge in der Ereignisanzeige: ========================
Applikationsfehler:
==================
Error: (06/03/2022 10:06:52 PM) (Source: OVRServiceLauncher) (EventID: 0) (User: )
Description: Event-ID 0
Error: (06/03/2022 09:57:11 PM) (Source: OVRServiceLauncher) (EventID: 0) (User: )
Description: Event-ID 0
Error: (06/03/2022 09:56:35 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volumenschattenkopie-Dienst-Informationen: Der COM-Server mit CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} und dem Namen "CEventSystem" kann nicht gestartet werden. [0x8007045b, Der Computer wird heruntergefahren.
]
Error: (06/03/2022 06:57:52 PM) (Source: OVRServiceLauncher) (EventID: 0) (User: )
Description: Event-ID 0
Error: (06/03/2022 06:57:22 PM) (Source: OVRServiceLauncher) (EventID: 0) (User: )
Description: Event-ID 0
Error: (06/03/2022 05:39:52 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Aufrufen von Routine "CoCreateInstance" ist ein unerwarteter Fehler aufgetreten. hr = 0x8007045b, Der Computer wird heruntergefahren.
.
Error: (06/03/2022 05:39:52 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volumenschattenkopie-Dienst-Informationen: Der COM-Server mit CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} und dem Namen "CEventSystem" kann nicht gestartet werden. [0x8007045b, Der Computer wird heruntergefahren.
]
Error: (06/03/2022 04:55:04 PM) (Source: MsiInstaller) (EventID: 11721) (User: MASTER-PC-STEFA)
Description: Product: RGSS-RTP Standard -- Error 1721. There is a problem with this Windows Installer package. A program required for this install to complete could not be run. Contact your support personnel or package vendor. Action: _28CDB486_34DB_4675_A77B_AA0908059BA7, location: C:\Users\SteMu\Downloads\Neuer Ordner G\Neuer Ordner (8)\Inst\Graphics.exe, command: /Uninstall
Systemfehler:
=============
Error: (06/03/2022 10:06:52 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "cFosSpeedS" wurde aufgrund folgenden Fehlers nicht gestartet:
Das System kann die angegebene Datei nicht finden.
Error: (06/03/2022 10:06:22 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.
Modulpfad: C:\WINDOWS\system32\IntelIHVRouter08.dll
Error: (06/03/2022 10:06:22 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.
Modulpfad: C:\WINDOWS\system32\IntelIHVRouter08.dll
Error: (06/03/2022 10:06:21 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.
Modulpfad: C:\WINDOWS\system32\IntelIHVRouter08.dll
Error: (06/03/2022 10:06:21 PM) (Source: DCOM) (EventID: 10010) (User: MASTER-PC-STEFA)
Description: Der Server "{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (06/03/2022 10:06:21 PM) (Source: DCOM) (EventID: 10010) (User: MASTER-PC-STEFA)
Description: Der Server "{F9717507-6651-4EDB-BFF7-AE615179BCCF}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (06/03/2022 10:06:20 PM) (Source: DCOM) (EventID: 10010) (User: MASTER-PC-STEFA)
Description: Der Server "{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (06/03/2022 10:06:20 PM) (Source: DCOM) (EventID: 10010) (User: MASTER-PC-STEFA)
Description: Der Server "{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Windows Defender:
================
Date: 2022-06-03 21:31:48
Description:
Microsoft Defender Antivirus hat Schadsoftware oder andere potenziell unerwünschte Software erkannt.
Weitere Informationen:
https://go.microsoft.com/fwlink/?linkid=37020&name=TrojanDownloader:Win32/ChromeLoader.A&threatid=2147819672&enterprise=0
Name: TrojanDownloader:Win32/ChromeLoader.A
Schweregrad: Schwerwiegend
Kategorie: Downloadtrojaner
Pfad: amsi:_\Device\HarddiskVolume2\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
Erkennungsursprung: Unbekannt
Erkennungstype: Konkret
Erkennungsquelle: AMSI
Benutzer: MASTER-PC-STEFA\SteMu
Prozessname: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
Sicherheitsversion: AV: 1.367.967.0, AS: 1.367.967.0, NIS: 1.367.967.0
Modulversion: AM: 1.1.19200.6, NIS: 1.1.19200.6
Date: 2022-06-03 20:41:48
Description:
Microsoft Defender Antivirus hat Schadsoftware oder andere potenziell unerwünschte Software erkannt.
Weitere Informationen:
https://go.microsoft.com/fwlink/?linkid=37020&name=TrojanDownloader:Win32/ChromeLoader.A&threatid=2147819672&enterprise=0
Name: TrojanDownloader:Win32/ChromeLoader.A
Schweregrad: Schwerwiegend
Kategorie: Downloadtrojaner
Pfad: amsi:_\Device\HarddiskVolume2\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
Erkennungsursprung: Unbekannt
Erkennungstype: Konkret
Erkennungsquelle: AMSI
Benutzer: MASTER-PC-STEFA\SteMu
Prozessname: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
Sicherheitsversion: AV: 1.367.967.0, AS: 1.367.967.0, NIS: 1.367.967.0
Modulversion: AM: 1.1.19200.6, NIS: 1.1.19200.6
Date: 2022-06-03 19:51:48
Description:
Microsoft Defender Antivirus hat Schadsoftware oder andere potenziell unerwünschte Software erkannt.
Weitere Informationen:
https://go.microsoft.com/fwlink/?linkid=37020&name=TrojanDownloader:Win32/ChromeLoader.A&threatid=2147819672&enterprise=0
Name: TrojanDownloader:Win32/ChromeLoader.A
Schweregrad: Schwerwiegend
Kategorie: Downloadtrojaner
Pfad: amsi:_\Device\HarddiskVolume2\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
Erkennungsursprung: Unbekannt
Erkennungstype: Konkret
Erkennungsquelle: AMSI
Benutzer: MASTER-PC-STEFA\SteMu
Prozessname: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
Sicherheitsversion: AV: 1.367.967.0, AS: 1.367.967.0, NIS: 1.367.967.0
Modulversion: AM: 1.1.19200.6, NIS: 1.1.19200.6
Date: 2022-06-03 19:01:50
Description:
Microsoft Defender Antivirus hat Schadsoftware oder andere potenziell unerwünschte Software erkannt.
Weitere Informationen:
https://go.microsoft.com/fwlink/?linkid=37020&name=TrojanDownloader:Win32/ChromeLoader.A&threatid=2147819672&enterprise=0
Name: TrojanDownloader:Win32/ChromeLoader.A
Schweregrad: Schwerwiegend
Kategorie: Downloadtrojaner
Pfad: amsi:_\Device\HarddiskVolume2\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
Erkennungsursprung: Unbekannt
Erkennungstype: Konkret
Erkennungsquelle: AMSI
Benutzer: MASTER-PC-STEFA\SteMu
Prozessname: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
Sicherheitsversion: AV: 1.367.967.0, AS: 1.367.967.0, NIS: 1.367.967.0
Modulversion: AM: 1.1.19200.6, NIS: 1.1.19200.6
Date: 2022-06-03 18:11:50
Description:
Microsoft Defender Antivirus hat Schadsoftware oder andere potenziell unerwünschte Software erkannt.
Weitere Informationen:
https://go.microsoft.com/fwlink/?linkid=37020&name=TrojanDownloader:Win32/ChromeLoader.A&threatid=2147819672&enterprise=0
Name: TrojanDownloader:Win32/ChromeLoader.A
Schweregrad: Schwerwiegend
Kategorie: Downloadtrojaner
Pfad: amsi:_\Device\HarddiskVolume2\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
Erkennungsursprung: Unbekannt
Erkennungstype: Konkret
Erkennungsquelle: AMSI
Benutzer: MASTER-PC-STEFA\SteMu
Prozessname: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
Sicherheitsversion: AV: 1.367.967.0, AS: 1.367.967.0, NIS: 1.367.967.0
Modulversion: AM: 1.1.19200.6, NIS: 1.1.19200.6
CodeIntegrity:
===============
Date: 2022-06-03 19:58:41
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2022-05-31 18:58:43
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SecurityHealthService.exe) attempted to load \Device\HarddiskVolume2\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
Date: 2022-05-31 18:27:33
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume2\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.
==================== Speicherinformationen ===========================
BIOS: American Megatrends Inc. 1.B0 11/08/2019
Hauptplatine: Micro-Star International Co., Ltd. B450 GAMING PRO CARBON AC (MS-7B85)
Prozessor: AMD Ryzen 7 2700X Eight-Core Processor
Prozentuale Nutzung des RAM: 15%
Installierter physikalischer RAM: 32717.17 MB
Verfügbarer physikalischer RAM: 27553 MB
Summe virtueller Speicher: 37581.17 MB
Verfügbarer virtueller Speicher: 30045.71 MB
==================== Laufwerke ================================
Drive c: (M.2_1) (Fixed) (Total:930.95 GB) (Free:188.99 GB) (Model: SanDisk Extreme Pro 1TB) NTFS
Drive e: (SSD_2) (Fixed) (Total:931.51 GB) (Free:495.45 GB) (Model: SanDisk SSD PLUS 1000GB) NTFS
Drive f: (SSD_1) (Fixed) (Total:930.95 GB) (Free:247.89 GB) (Model: SanDisk SSD PLUS 1000GB) NTFS
Drive g: (M.2_2) (Fixed) (Total:465.76 GB) (Free:465.55 GB) (Model: SanDisk Extreme Pro 500GB) NTFS
\\?\Volume{83da91a0-0000-0000-0000-100000000000}\ (System) (Fixed) (Total:0.57 GB) (Free:0.53 GB) NTFS
\\?\Volume{05673095-0000-0000-0000-100000000000}\ (System-reserviert) (Fixed) (Total:0.57 GB) (Free:0.1 GB) NTFS
==================== MBR & Partitionstabelle ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 83DA91A0)
Partition 1: (Active) - (Size=579 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=930.9 GB) - (Type=07 NTFS)
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: CF86942C)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 05673095)
Partition 1: (Active) - (Size=579 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=930.9 GB) - (Type=07 NTFS)
==========================================================
Disk: 3 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: C87B859B)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)
==================== Ende von Addition.txt =======================
--- --- --- |
Firefox-Neuinstallation