hier die ergebnisse addition.txt ebenso als administrator ausgeführt.
wenn ungewünscht, bitte mitteilen: Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 08-03-2020
durchgeführt von Administrator (10-03-2020 17:42:22)
Gestartet von E:\DOWNLOADS
Windows 10 Pro Version 1909 18363.657 (X64) (2019-11-03 14:27:43)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-427982643-533043240-3968945235-500 - Administrator - Enabled) => C:\Users\Administrator
DefaultAccount (S-1-5-21-427982643-533043240-3968945235-503 - Limited - Disabled)
Gast (S-1-5-21-427982643-533043240-3968945235-501 - Limited - Disabled)
xxxxxxuser(S-1-5-21-427982643-533043240-3968945235-1001 - Limited - Enabled) => C:\Users\*****user
WDAGUtilityAccount (S-1-5-21-427982643-533043240-3968945235-504 - Limited - Disabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 20.006.20034 - Adobe Systems Incorporated)
AMD Catalyst Install Manager (HKLM\...\{AEC70A45-D98B-C34A-F1DC-CA46F2D46F5E}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.8 - Advanced Micro Devices, Inc.)
AVM FRITZ!fax für FRITZ!Box (HKLM-x32\...\FRITZ! 2.0) (Version: - AVM Berlin)
Battlefield™ V (HKLM-x32\...\{e26b382f-e945-4f70-9318-121b683f1d61}) (Version: 1.0.62.45828 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.0 - EA Digital Illusions CE AB)
CoolUtils Outlook Viewer (HKLM-x32\...\CoolUtils Outlook Viewer_is1) (Version: 2.5 - Softplicity, Inc.)
Core Temp 1.15.1 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.15.1 - ALCPU)
Discord (HKU\S-1-5-21-427982643-533043240-3968945235-1001\...\Discord) (Version: 0.0.306 - Discord Inc.)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 417.71 - NVIDIA Corporation) Hidden
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB)
Futuremark SystemInfo (HKLM-x32\...\{3324DFF8-F84D-4761-94B2-B30610FC987F}) (Version: 5.21.735.0 - Futuremark)
Geeks3D FurMark 1.20.7.0 (HKLM-x32\...\{2397CAD4-2263-4CD0-96BE-E43A980B9C9A}_is1) (Version: - Geeks3D)
GIMP 2.10.12 (HKLM\...\GIMP-2_is1) (Version: 2.10.12 - The GIMP Team)
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
IrfanView 4.51 (64-bit) (HKLM\...\IrfanView64) (Version: 4.51 - Irfan Skiljan)
Malwarebytes Version 3.8.3.2965 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.8.3.2965 - Malwarebytes)
Microsoft ASP.NET MVC 2 (HKLM-x32\...\{DD8FF2F3-0D97-4CF3-AF78-FA0E1B242244}) (Version: 2.0.60926.0 - Microsoft Corporation)
Microsoft Office 365 ProPlus - de-de (HKLM\...\O365ProPlusRetail - de-de) (Version: 16.0.11929.20606 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-427982643-533043240-3968945235-1001\...\OneDriveSetup.exe) (Version: 19.232.1124.0008 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-427982643-533043240-3968945235-500\...\OneDriveSetup.exe) (Version: 18.143.0717.0002 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-427982643-533043240-3968945235-1001\...\Teams) (Version: 1.2.00.34161 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.22.27821 (HKLM-x32\...\{6361b579-2795-4886-b2a8-53d5239b6452}) (Version: 14.22.27821.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.22.27821 (HKLM-x32\...\{5bfc1380-fd35-4b85-9715-7351535d077e}) (Version: 14.22.27821.0 - Microsoft Corporation)
Momentum 1.3.0 (HKLM\...\64954139-9cf6-59bf-952e-0637eb939033) (Version: 1.3.0 - Holmez Softsolutions Pte. Ltd)
Momentum Plus 1.4.1 (HKLM\...\69846732-891f-563b-a7f3-958f57d206ec) (Version: 1.4.1 - Holmez Softsolutions Pte. Ltd)
Mozilla Firefox 73.0.1 (x64 de) (HKLM\...\Mozilla Firefox 73.0.1 (x64 de)) (Version: 73.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 71.0 - Mozilla)
Mozilla Thunderbird 68.4.2 (x86 de) (HKU\S-1-5-21-427982643-533043240-3968945235-1001\...\Mozilla Thunderbird 68.4.2 (x86 de)) (Version: 68.4.2 - Mozilla)
MSI Afterburner 4.6.1 (HKLM-x32\...\Afterburner) (Version: 4.6.1 - MSI Co., LTD)
Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 7.8.1 - Notepad++ Team)
NVIDIA Grafiktreiber 436.48 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 436.48 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.38.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.21 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
OEM Application Profile (HKLM-x32\...\{D9559CE2-9C58-F414-43EA-F908FEA13BB8}) (Version: 1.00.0000 - Ihr Firmenname) Hidden
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.11929.20606 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.11929.20606 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.11929.20606 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0407-0000-0000000FF1CE}) (Version: 16.0.11929.20606 - Microsoft Corporation) Hidden
Origin (HKLM-x32\...\Origin) (Version: 10.5.64.37936 - Electronic Arts, Inc.)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8186 - Realtek Semiconductor Corp.)
RivaTuner Statistics Server 7.2.2 (HKLM-x32\...\RTSS) (Version: 7.2.2 - Unwinder)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.18.217 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.4.8 - Rockstar Games)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.63.0 - Samsung Electronics Co., Ltd.)
anwednung sowieso(HKU\S-1-5-21-427982643-533043240-3968945235-1001\...\d9d7e60054b66793) (Version: 1.0.1.141 - hersteller sowiesoCo. KG)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SteelSeries Engine 3.17.4 (HKLM\...\SteelSeries Engine 3) (Version: 3.17.4 - SteelSeries ApS)
Stream What You Hear (SWYH) Version 1.4 (HKLM-x32\...\{5FBEA9D3-668E-4B88-BF6C-E1BCF441ECFD}_is1) (Version: 1.4 - Sebastien.warin.fr)
Teams Machine-Wide Installer (HKLM-x32\...\{39AF0813-FA7B-4860-ADBE-93B9B214B914}) (Version: 1.2.0.34161 - Microsoft Corporation)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{FBA3961B-D1DF-493C-BC1F-E67D3B832895}) (Version: 2.56.0.0 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.8 - VideoLAN)
WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.)
WinRAR 5.60 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.60.0 - win.rar GmbH)
Wireshark 2.6.5 64-bit (HKLM-x32\...\Wireshark) (Version: 2.6.5 - The Wireshark developer community, hxxps://www.wireshark.org)
Packages:
=========
Mail und Kalender -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12026.20218.0_x64__8wekyb3d8bbwe [2019-09-28] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-17] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-17] (Microsoft Corporation) [MS Ad]
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-427982643-533043240-3968945235-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\*****user\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.19317.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-427982643-533043240-3968945235-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\*****user\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.19317.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => P:\notepad+\NppShell_06.dll [2019-10-27] (Notepad++ -> )
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => P:\WinRAR\rarext.dll [2018-06-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => P:\WinRAR\rarext32.dll [2018-06-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_c7bdd6222811a2ee\nvshext.dll [2019-09-27] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => P:\WinRAR\rarext.dll [2018-06-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => P:\WinRAR\rarext32.dll [2018-06-24] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Drivers32: [vidc.i420] => C:\Windows\system32\lvcod64.dll [176416 2011-08-19] (Logitech, Inc. -> Logitech Inc.)
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\system32\rtvcvfw64.dll [246272 2012-09-28] () [Datei ist nicht signiert]
HKLM\...\Drivers32: [vidc.i420] => C:\Windows\SysWOW64\lvcodec2.dll [307488 2011-08-19] (Logitech, Inc. -> Logitech Inc.)
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [Datei ist nicht signiert]
==================== Verknüpfungen & WMI ========================
==================== Geladene Module (Nicht auf der Ausnahmeliste) =============
2018-10-30 10:37 - 2006-02-23 11:35 - 000020480 _____ () [Datei ist nicht signiert] C:\WINDOWS\System32\FritzColorPort64.dll
2018-10-30 10:37 - 2006-02-22 10:39 - 000020480 _____ () [Datei ist nicht signiert] C:\WINDOWS\System32\FritzPort64.dll
2019-03-06 19:18 - 2019-03-06 19:18 - 002146304 _____ (Holtek Semiconductor Inc.) [Datei ist nicht signiert] C:\Program Files\SteelSeries\SteelSeries Engine 3\HIDDLL.dll
2019-03-06 19:18 - 2019-03-06 19:18 - 002284032 _____ (Holtek) [Datei ist nicht signiert] C:\Program Files\SteelSeries\SteelSeries Engine 3\ISPDLL.dll
2019-11-03 16:12 - 2019-11-03 16:12 - 001654784 _____ (Microsoft Corporation) [Datei ist nicht signiert] C:\WINDOWS\WinSxS\amd64_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_8448b2bd328df189\MFC80U.DLL
2019-11-03 16:05 - 2019-11-03 16:05 - 000054272 _____ (Microsoft Corporation) [Datei ist nicht signiert] C:\WINDOWS\WinSxS\amd64_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_bc20f59b0bdd1acd\MFC80DEU.DLL
2018-10-30 10:37 - 2006-02-23 12:16 - 000047616 _____ (TODO: <Company name>) [Datei ist nicht signiert] C:\WINDOWS\System32\AvmColorFax.dll
2018-10-30 10:37 - 2006-02-22 10:53 - 000043520 _____ (TODO: <Company name>) [Datei ist nicht signiert] C:\WINDOWS\System32\AvmFax.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\Users\*****user:Heroes & Generals [38]
AlternateDataStreams: C:\ProgramData\TEMP:76650B61 [103]
AlternateDataStreams: C:\Users\*****user\Anwendungsdaten:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\*****user\Application Data:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\*****user\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394]
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ==========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE trusted site: HKU\S-1-5-21-427982643-533043240-3968945235-1001\...\sharepoint.com -> hxxps://ittuberlin-files.sharepoint.com
==================== Hosts Inhalt: =========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2018-04-12 00:38 - 2018-07-25 22:37 - 000005482 _____ C:\WINDOWS\system32\drivers\etc\hosts
0.0.0.0 0.0.0.0 # Entry added with W10Privacy (www.winprivacy.de)!
0.0.0.0 choice.microsoft.com # Entry added with W10Privacy (www.winprivacy.de)!
0.0.0.0 choice.microsoft.com.nsatc.net # Entry added with W10Privacy (www.winprivacy.de)!
0.0.0.0 df.telemetry.microsoft.com # Entry added with W10Privacy (www.winprivacy.de)!
0.0.0.0 diagnostics.support.microsoft.com # Entry added with W10Privacy (www.winprivacy.de)!
0.0.0.0 feedback.microsoft-hohm.com # Entry added with W10Privacy (www.winprivacy.de)!
0.0.0.0 feedback.search.microsoft.com # Entry added with W10Privacy (www.winprivacy.de)!
0.0.0.0 feedback.windows.com # Entry added with W10Privacy (www.winprivacy.de)!
0.0.0.0 oca.telemetry.microsoft.com # Entry added with W10Privacy (www.winprivacy.de)!
0.0.0.0 oca.telemetry.microsoft.com.nsatc.net # Entry added with W10Privacy (www.winprivacy.de)!
0.0.0.0 onesettings-bn2.metron.live.com.nsatc.net # Entry added with W10Privacy (www.winprivacy.de)!
0.0.0.0 onesettings-cy2.metron.live.com.nsatc.net # Entry added with W10Privacy (www.winprivacy.de)!
0.0.0.0 onesettings-db5.metron.live.com.nsatc.net # Entry added with W10Privacy (www.winprivacy.de)!
0.0.0.0 onesettings-hk2.metron.live.com.nsatc.net # Entry added with W10Privacy (www.winprivacy.de)!
0.0.0.0 reports.wes.df.telemetry.microsoft.com # Entry added with W10Privacy (www.winprivacy.de)!
0.0.0.0 services.wes.df.telemetry.microsoft.com # Entry added with W10Privacy (www.winprivacy.de)!
0.0.0.0 settings.data.glbdns2.microsoft.com # Entry added with W10Privacy (www.winprivacy.de)!
0.0.0.0 settings-sandbox.data.microsoft.com # Entry added with W10Privacy (www.winprivacy.de)!
0.0.0.0 sqm.df.telemetry.microsoft.com # Entry added with W10Privacy (www.winprivacy.de)!
0.0.0.0 sqm.telemetry.microsoft.com # Entry added with W10Privacy (www.winprivacy.de)!
0.0.0.0 sqm.telemetry.microsoft.com.nsatc.net # Entry added with W10Privacy (www.winprivacy.de)!
0.0.0.0 statsfe1.ws.microsoft.com # Entry added with W10Privacy (www.winprivacy.de)!
0.0.0.0 statsfe2.update.microsoft.com.akadns.net # Entry added with W10Privacy (www.winprivacy.de)!
0.0.0.0 statsfe2.ws.microsoft.com # Entry added with W10Privacy (www.winprivacy.de)!
0.0.0.0 survey.watson.microsoft.com # Entry added with W10Privacy (www.winprivacy.de)!
0.0.0.0 telecommand.telemetry.microsoft.com # Entry added with W10Privacy (www.winprivacy.de)!
0.0.0.0 telecommand.telemetry.microsoft.com.nsat*c.net # Entry added with W10Privacy (www.winprivacy.de)!
0.0.0.0 telecommand.telemetry.microsoft.com.nsatc.net # Entry added with W10Privacy (www.winprivacy.de)!
0.0.0.0 telemetry.appex.bing.net # Entry added with W10Privacy (www.winprivacy.de)!
0.0.0.0 telemetry.microsoft.com # Entry added with W10Privacy (www.winprivacy.de)!
==================== Andere Bereiche ===========================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-427982643-533043240-3968945235-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\*****user\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
HKU\S-1-5-21-427982643-533043240-3968945235-500\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 1) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
HKLM\...\StartupApproved\Run: => "RTHDVCPL"
HKU\S-1-5-21-427982643-533043240-3968945235-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-427982643-533043240-3968945235-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-427982643-533043240-3968945235-1001\...\StartupApproved\Run: => "Discord"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{4D759071-A0CA-474F-A68D-D7CD50677145}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FirewallRules: [{42A9A64E-1A78-41B8-822D-20F1F84AB317}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FirewallRules: [{54EC6C23-C886-4AA7-B5DA-10500736E392}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{5DD09EFF-E28A-46D7-B35B-C248EB1A600A}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{66D57FC8-5FDF-4AC7-BCCC-788486D6DCD1}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{BD741457-3F14-4184-B9CF-911BC1F2CE2E}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{6C10516A-C40E-4F80-A679-FBD66924A03F}] => (Allow) C:0\Origingames\BF4\Battlefield 4\BFLauncher_x86.exe Keine Datei
FirewallRules: [{FEBA2727-DC49-40B9-8BA2-54ED0AC0E998}] => (Allow) C:0\Origingames\BF4\Battlefield 4\BFLauncher_x86.exe Keine Datei
FirewallRules: [{EBC1884C-ECA1-4D2E-B564-152CA9F87632}] => (Allow) C:0\Origingames\BF4\Battlefield 4\BFLauncher.exe Keine Datei
FirewallRules: [{B538F0AA-3FD5-4EEC-96F0-89975CC7956D}] => (Allow) C:0\Origingames\BF4\Battlefield 4\BFLauncher.exe Keine Datei
FirewallRules: [{E1CF1FD8-0027-4627-996A-D05B9160C6EC}] => (Allow) D:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [Datei ist nicht signiert]
FirewallRules: [{B4EA8F9B-3C05-40A5-AEEF-300037ECE2AC}] => (Allow) D:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{4DBF637E-4538-411F-B696-6E6DC6CC3781}C:4\origingames\battlefield 4\bf4.exe] => (Allow) C:4\origingames\battlefield 4\bf4.exe Keine Datei
FirewallRules: [TCP Query User{5E7A4A00-CDEF-4B7D-9BF8-79FF597AAFF3}C:4\origingames\battlefield 4\bf4.exe] => (Allow) C:4\origingames\battlefield 4\bf4.exe Keine Datei
FirewallRules: [{A6694619-6EEA-4ADF-9A15-179F41C96861}] => (Allow) C:4\OriginGames\Battlefield 4\BFLauncher_x86.exe Keine Datei
FirewallRules: [{6C1B3BDD-D028-4525-82D1-A3DC1B04A14F}] => (Allow) C:4\OriginGames\Battlefield 4\BFLauncher_x86.exe Keine Datei
FirewallRules: [{4919950F-392E-4A52-9C44-2A77755DF2F0}] => (Allow) C:4\OriginGames\Battlefield 4\BFLauncher.exe Keine Datei
FirewallRules: [{F21FCF4F-F47F-4A0F-AFD7-6628B673FBE7}] => (Allow) C:4\OriginGames\Battlefield 4\BFLauncher.exe Keine Datei
FirewallRules: [{9AFD8997-1A29-411B-8108-FE29D95CFCD6}] => (Allow) D:\OriginGames\Battlefield 4\BFLauncher_x86.exe Keine Datei
FirewallRules: [{1A4E3C04-C083-4ADA-A2DF-FBC0A55DAABF}] => (Allow) D:\OriginGames\Battlefield 4\BFLauncher_x86.exe Keine Datei
FirewallRules: [{FB251439-AE24-4489-AE35-67DB8160929A}] => (Allow) D:\OriginGames\Battlefield 4\BFLauncher.exe Keine Datei
FirewallRules: [{F5910E51-C2D7-4A8B-8218-345BBF18144C}] => (Allow) D:\OriginGames\Battlefield 4\BFLauncher.exe Keine Datei
FirewallRules: [UDP Query User{A5AC960E-6FED-42DD-8821-0E71584FF6C9}D:\origingames\battlefield 4\bf4.exe] => (Allow) D:\origingames\battlefield 4\bf4.exe Keine Datei
FirewallRules: [TCP Query User{44E6EDCF-7C27-42ED-9D1D-2CF0E5701146}D:\origingames\battlefield 4\bf4.exe] => (Allow) D:\origingames\battlefield 4\bf4.exe Keine Datei
FirewallRules: [{92D5701F-87AB-4C3A-B2FA-03D54A0B9F4C}] => (Allow) D:\SteamLibrary\steamapps\common\3DMark\bin\x64\3DMark.exe Keine Datei
FirewallRules: [{FB2ECAA3-008D-46CF-B09E-FDF116B9A48E}] => (Allow) D:\SteamLibrary\steamapps\common\3DMark\bin\x64\3DMark.exe Keine Datei
FirewallRules: [{65CF8CC1-C91B-4262-A90F-6C235C609B53}] => (Allow) D:\SteamLibrary\steamapps\common\3DMark\bin\x86\3DMark.exe Keine Datei
FirewallRules: [{53B130CC-AFF1-4BB7-93A4-CCC87ACEAC73}] => (Allow) D:\SteamLibrary\steamapps\common\3DMark\bin\x86\3DMark.exe Keine Datei
FirewallRules: [UDP Query User{B01E7F79-7286-4CEA-AF16-DF4075407B36}C:0\steamlibrary\steamapps\common\insurgency2\insurgency_x64.exe] => (Block) C:0\steamlibrary\steamapps\common\insurgency2\insurgency_x64.exe Keine Datei
FirewallRules: [TCP Query User{9207069F-CC03-41D2-BA1C-E852315D60CA}C:0\steamlibrary\steamapps\common\insurgency2\insurgency_x64.exe] => (Block) C:0\steamlibrary\steamapps\common\insurgency2\insurgency_x64.exe Keine Datei
FirewallRules: [UDP Query User{93A1F5CB-2F85-4DA5-877A-573188EE0CEA}C:\program files (x86)\fritz!\frifax32.exe] => (Block) C:\program files (x86)\fritz!\frifax32.exe (AVM Computersysteme Vertriebs GmbH -> AVM Berlin)
FirewallRules: [TCP Query User{C35E9C59-5533-4E25-A355-128DAD20105D}C:\program files (x86)\fritz!\frifax32.exe] => (Block) C:\program files (x86)\fritz!\frifax32.exe (AVM Computersysteme Vertriebs GmbH -> AVM Berlin)
FirewallRules: [UDP Query User{3D8F08EC-92BC-47BE-A9A4-180AFC91C054}D:\steamlibrary\steamapps\common\sandstorm\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe] => (Allow) D:\steamlibrary\steamapps\common\sandstorm\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe Keine Datei
FirewallRules: [TCP Query User{394BE430-E222-4C48-94C4-53304590A710}D:\steamlibrary\steamapps\common\sandstorm\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe] => (Allow) D:\steamlibrary\steamapps\common\sandstorm\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe Keine Datei
FirewallRules: [{A57913C7-6DBC-44A6-BDC4-B283A6DB4048}] => (Allow) C:0\SteamLibrary\steamapps\common\Day of Defeat Source\hl2.exe Keine Datei
FirewallRules: [{E97DDD2E-52C9-4544-9E7E-9074A80F94A3}] => (Allow) C:0\SteamLibrary\steamapps\common\Day of Defeat Source\hl2.exe Keine Datei
FirewallRules: [{FDF3C6DB-2ED2-44ED-852F-B43980101143}] => (Allow) C:0\SteamLibrary\steamapps\common\insurgency2\insurgency_BE.exe Keine Datei
FirewallRules: [{75EBD9A1-B270-47E6-9691-3E8E1BD06A3F}] => (Allow) C:0\SteamLibrary\steamapps\common\insurgency2\insurgency_BE.exe Keine Datei
FirewallRules: [{467AC035-B20E-4664-B649-F26342F38B2A}] => (Allow) D:\SteamLibrary\steamapps\common\Day of Defeat Source\hl2.exe (Valve -> )
FirewallRules: [{89C766BA-0BF9-434F-B6F5-60D61C170315}] => (Allow) D:\SteamLibrary\steamapps\common\Day of Defeat Source\hl2.exe (Valve -> )
FirewallRules: [UDP Query User{BEDE2BFB-A123-40FD-BA7A-AB21C87A6422}C:0\q3a\quake3.exe] => (Block) C:0\q3a\quake3.exe Keine Datei
FirewallRules: [TCP Query User{1A8BD63C-8C53-4087-8988-5F9987B40E0F}C:0\q3a\quake3.exe] => (Block) C:0\q3a\quake3.exe Keine Datei
FirewallRules: [{692FF3B6-5294-46ED-86D5-44A5154846A1}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{04619D45-D81E-4E4C-B1B0-B06D3872A138}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{23A3BE07-09C7-472C-B34C-9714CAA57038}P:\@min\admin\fakenet1.0b\fakenet.exe] => (Allow) P:\@min\admin\fakenet1.0b\fakenet.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{8593222D-3448-4E93-96A0-41D731A4C6D4}P:\@min\admin\fakenet1.0b\fakenet.exe] => (Allow) P:\@min\admin\fakenet1.0b\fakenet.exe () [Datei ist nicht signiert]
FirewallRules: [UDP Query User{81F30A28-7AAA-4F2E-99D2-E5F67F02635C}D:\steamlibrary\steamapps\common\insurgency2\insurgency_x64.exe] => (Allow) D:\steamlibrary\steamapps\common\insurgency2\insurgency_x64.exe (New World Interactive LLC -> New World Interactive LLC)
FirewallRules: [TCP Query User{205C6CD3-688B-479B-9454-9B57A64A3389}D:\steamlibrary\steamapps\common\insurgency2\insurgency_x64.exe] => (Allow) D:\steamlibrary\steamapps\common\insurgency2\insurgency_x64.exe (New World Interactive LLC -> New World Interactive LLC)
FirewallRules: [{8BBE91B2-1B30-4EAF-8C2F-971908664068}] => (Allow) D:\SteamLibrary\steamapps\common\insurgency2\insurgency_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{16342588-4598-4D0F-955A-905975EC39B3}] => (Allow) D:\SteamLibrary\steamapps\common\insurgency2\insurgency_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [UDP Query User{5F3ECA81-52EA-43E4-B3A2-4F60FFE167BA}G:\q3a\quake3.exe] => (Allow) G:\q3a\quake3.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{D3F8679F-E847-40FD-8DDA-85A3B08CF161}G:\q3a\quake3.exe] => (Allow) G:\q3a\quake3.exe () [Datei ist nicht signiert]
FirewallRules: [UDP Query User{266CEE6D-C4B2-4787-A823-B078B8E1B2B9}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [TCP Query User{8B183439-2D24-4B79-BE91-A63553C59D77}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{AE49139C-7FE6-4E3D-98AF-F96172B5FF9E}G:\steamlibrary\steamapps\common\notmycar\prototype\binaries\win64\prototype-win64-shipping.exe] => (Allow) G:\steamlibrary\steamapps\common\notmycar\prototype\binaries\win64\prototype-win64-shipping.exe Keine Datei
FirewallRules: [TCP Query User{76E96494-7522-4337-B834-E051E93E12CB}G:\steamlibrary\steamapps\common\notmycar\prototype\binaries\win64\prototype-win64-shipping.exe] => (Allow) G:\steamlibrary\steamapps\common\notmycar\prototype\binaries\win64\prototype-win64-shipping.exe Keine Datei
FirewallRules: [{9637D43C-7EDD-4915-BB58-FEE7E5713D3D}] => (Allow) P:\xxxyyyapplication\xxxyyyapplication.exe usenet -> Rdl)
FirewallRules: [{24E6C13F-6E1F-47B5-9B0D-494246ABEB27}] => (Allow) P:\xxxyyyapplication\xxxyyyapplication.exe usenet -> Rdl)
FirewallRules: [UDP Query User{986300EB-74FC-436A-BF3E-22695A7A23B0}D:\origingames\apex\r5apex.exe] => (Allow) D:\origingames\apex\r5apex.exe Keine Datei
FirewallRules: [TCP Query User{7A45D5D0-C70F-4E33-8011-1268C7F2BE6E}D:\origingames\apex\r5apex.exe] => (Allow) D:\origingames\apex\r5apex.exe Keine Datei
FirewallRules: [UDP Query User{55B8DCF1-4B7E-4413-8C8B-6082720A850C}D:\steamlibrary\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steamlibrary\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (Bluehole, Inc. -> Bluehole GinnoGames, Inc.)
FirewallRules: [TCP Query User{94BFCC09-5071-40E0-87AA-D699697DD2FA}D:\steamlibrary\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steamlibrary\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (Bluehole, Inc. -> Bluehole GinnoGames, Inc.)
FirewallRules: [{38E3B1A2-FD31-4CD0-A50B-A816DFCDCAE8}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{AD525992-D495-44E1-BB61-C8DE537151BF}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5C899C36-689C-4366-9475-0FF40E77EEC0}] => (Allow) G:\STEAM\Steam.exe Keine Datei
FirewallRules: [{49D64003-BC6A-4FBC-BDAE-5DCB98706790}] => (Allow) G:\STEAM\Steam.exe Keine Datei
FirewallRules: [{D56395C4-E739-42BB-8C93-8DC90515976F}] => (Allow) G:\STEAM\bin\cef\cef.win7\steamwebhelper.exe Keine Datei
FirewallRules: [{722DC791-22E9-44DB-B7DB-B22AB7D63C44}] => (Allow) G:\STEAM\bin\cef\cef.win7\steamwebhelper.exe Keine Datei
FirewallRules: [{265B7A34-D620-45FE-B8B8-DF05B1C44DB6}] => (Allow) G:\STEAM\SteamApps\common\Half-Life\hl.exe Keine Datei
FirewallRules: [{CB8D2A72-AA42-4239-B160-A5BE4125509F}] => (Allow) G:\STEAM\SteamApps\common\Half-Life\hl.exe Keine Datei
FirewallRules: [{890CF5A5-1AB0-4A7C-925E-2670A9D2FCC4}] => (Allow) G:\STEAM\SteamApps\common\rocketleague\Binaries\Win32\RocketLeague.exe Keine Datei
FirewallRules: [{AFE07B6B-F06E-4967-8651-7093A547F939}] => (Allow) G:\STEAM\SteamApps\common\rocketleague\Binaries\Win32\RocketLeague.exe Keine Datei
FirewallRules: [{8EE203D1-FDA2-4DC0-9F4C-39674586D13E}] => (Block) C:\Windows\systemapps\Microsoft.AAD.BrokerPlugin_cw5n1h2txyewy\Microsoft.AAD.BrokerPlugin.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{B4D840F1-23D8-465E-B764-6A4D4E082E76}] => (Block) C:\Windows\systemapps\Microsoft.AccountsControl_cw5n1h2txyewy\AccountsControlHost.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{06D1E0D8-6F45-4BE7-AB5D-90504CA38AEE}] => (Block) C:\Windows\systemapps\Microsoft.BioEnrollment_cw5n1h2txyewy\BioEnrollmentHost.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{F01651B7-0EE3-4034-8C08-2F51F129B240}] => (Block) C:\Windows\systemapps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{20239FB2-ACCD-401B-916E-1C4AC074A41D}] => (Block) C:\Windows\systemapps\Microsoft.Windows.AssignedAccessLockApp_cw5n1h2txyewy\AssignedAccessLockApp.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{145E177C-0A5A-4F5E-A436-B7A6A9DF54D6}] => (Block) C:\Windows\systemapps\Microsoft.Windows.Cortana_cw5n1h2txyewy\searchui.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{E7D40414-437B-4F61-A6CE-6F3FBD09DE38}] => (Block) C:\Windows\systemapps\Microsoft.XboxGameCallableUI_cw5n1h2txyewy\XBox.TCUI.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{D83C5157-9BDB-4C99-A435-0738AC5508A5}] => (Block) C:\Windows\systemapps\ParentalControls_cw5n1h2txyewy\WpcUapApp.exe (Microsoft Windows -> )
FirewallRules: [{1D80EC26-1F66-452B-B8C5-12CF5CF86E2E}] => (Block) C:\windows\system32\backgroundtaskhost.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{7D203708-F382-4E3C-BE12-187ED72CC67F}] => (Block) C:\windows\system32\taskhostw.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{B2DC945D-AF71-461E-8E8A-115689639FA7}] => (Block) C:\windows\system32\settingsynchost.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{D38C00E3-B008-41DA-9B3F-33B2E1283EB2}] => (Block) C:\windows\system32\compattelrunner.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{F28E35C6-2FB9-44F3-A73F-2C74C6F89C4D}] => (Block) C:\windows\system32\dmclient.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{4907364C-70D2-40CB-8649-BD5ADD162772}] => (Block) C:\windows\system32\msfeedssync.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{FD775425-BDC1-4306-B9E3-95B21F09999A}] => (Block) C:\windows\system32\sihclient.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [{0A79598B-1871-46CF-AF8A-F25D66F9EC4A}] => (Block) C:\windows\system32\wermgr.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{14EB9490-80F3-4148-ADA5-F4DCC9D0056D}] => (Block) C:\windows\system32\wsqmcons.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{0308AFA9-BF74-41BC-AFE3-704DFF9C7C0D}] => (Allow) P:\STEAM\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{A2EA17F0-49F6-4B68-9C97-67CA176A18C1}] => (Allow) P:\STEAM\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{7DF67BF1-37ED-494A-B984-7F63195FF0B9}] => (Allow) P:\STEAM\bin\cef\cef.win7\steamwebhelper.exe Keine Datei
FirewallRules: [{B76DFA40-B8D5-45F7-8BF1-A2137A5AA0E2}] => (Allow) P:\STEAM\bin\cef\cef.win7\steamwebhelper.exe Keine Datei
FirewallRules: [{136EE2CC-13D3-4F9F-9877-7AE59FED4EBC}] => (Allow) D:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{2336D319-6442-4F85-A014-E87D79560051}] => (Allow) D:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{99983F12-55BD-42EF-9609-724BE79C3430}] => (Allow) D:\SteamLibrary\steamapps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{473A9C40-D4CE-4C7F-A8A8-0C4F53D30A5C}] => (Allow) D:\SteamLibrary\steamapps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{50605D8E-0E56-4B3A-8D46-9F018157E305}] => (Allow) P:\STEAM\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{FA9EDB97-41AA-4517-95F7-5E82531D3675}] => (Allow) P:\STEAM\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{C0BBDF5E-3E46-47EB-9B01-A01FA7B74E67}] => (Allow) D:\SteamLibrary\steamapps\common\Counter-Strike Source\hl2.exe (Valve -> )
FirewallRules: [{DD5244A7-8297-4B52-9788-1F891EEE208D}] => (Allow) D:\SteamLibrary\steamapps\common\Counter-Strike Source\hl2.exe (Valve -> )
FirewallRules: [{1CFC6241-7D6D-4CDC-A8D2-BD29EB9E9144}] => (Allow) D:\SteamLibrary\steamapps\common\Half-Life\hl.exe (Valve -> Valve)
FirewallRules: [{B34999EA-01E0-407A-A2F5-8F40EC142571}] => (Allow) D:\SteamLibrary\steamapps\common\Half-Life\hl.exe (Valve -> Valve)
FirewallRules: [{6D9D6B95-F7D9-4443-A008-A08E281FDA6B}] => (Allow) D:\SteamLibrary\steamapps\common\Heroes & Generals\hngsteamlauncher.exe (Reto-Moto ApS -> Reto-Moto ApS)
FirewallRules: [{7641B0CB-B387-4C58-A65F-D9ACF34EE022}] => (Allow) D:\SteamLibrary\steamapps\common\Heroes & Generals\hngsteamlauncher.exe (Reto-Moto ApS -> Reto-Moto ApS)
FirewallRules: [{2A05E10D-0D88-4869-B679-661D989914FC}] => (Allow) D:\SteamLibrary\steamapps\common\RNR\ShooterGame\Binaries\Win64\RadicalHeights.exe Keine Datei
FirewallRules: [{23794D68-3085-44DD-8AA5-E060491B655A}] => (Allow) D:\SteamLibrary\steamapps\common\RNR\ShooterGame\Binaries\Win64\RadicalHeights.exe Keine Datei
FirewallRules: [TCP Query User{F713DFC1-173F-4673-9109-9645BEFE098F}D:\origingames\neuer ordner\battlefield 4\bf4.exe] => (Allow) D:\origingames\neuer ordner\battlefield 4\bf4.exe Keine Datei
FirewallRules: [UDP Query User{C1395D30-97D1-436A-B3BC-227965D94211}D:\origingames\neuer ordner\battlefield 4\bf4.exe] => (Allow) D:\origingames\neuer ordner\battlefield 4\bf4.exe Keine Datei
FirewallRules: [TCP Query User{612BF544-4018-4C73-A620-A29C6991A29E}G:\wot\wotlauncher.exe] => (Allow) G:\wot\wotlauncher.exe Keine Datei
FirewallRules: [UDP Query User{0A0E6825-7B33-4C56-AC29-1743D44B57CC}G:\wot\wotlauncher.exe] => (Allow) G:\wot\wotlauncher.exe Keine Datei
FirewallRules: [TCP Query User{457ECD5D-0AE4-4B4C-95F3-76670ABB3F6A}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe Keine Datei
FirewallRules: [UDP Query User{CB979C8B-E374-4F48-BCE1-EE8F3EA6C485}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe Keine Datei
FirewallRules: [TCP Query User{072E77A5-3B82-43CA-9B89-30ADFE6D26CE}G:\wot\win32\worldoftanks.exe] => (Allow) G:\wot\win32\worldoftanks.exe Keine Datei
FirewallRules: [UDP Query User{330A8258-E2B5-4097-B0B3-8F592FEEBC28}G:\wot\win32\worldoftanks.exe] => (Allow) G:\wot\win32\worldoftanks.exe Keine Datei
FirewallRules: [{2112089B-45CA-4E65-A3FB-45C4FD10B493}] => (Allow) D:\SteamLibrary\steamapps\common\Age2HD\Launcher.exe (TODO: <Company name>) [Datei ist nicht signiert]
FirewallRules: [{A1D93436-3094-4ADF-ABC5-0CA1568861BC}] => (Allow) D:\SteamLibrary\steamapps\common\Age2HD\Launcher.exe (TODO: <Company name>) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{A2EA18FA-177E-4898-9739-ACEAA042886A}D:\steamlibrary\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steamlibrary\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe Keine Datei
FirewallRules: [UDP Query User{609116A7-9793-40CE-8C45-509BB8B12D7C}D:\steamlibrary\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steamlibrary\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe Keine Datei
FirewallRules: [{21C0B29F-B304-4D0A-BF9A-10E7E54E61A4}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C2D922B7-E477-4575-AB87-E678E508F900}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{BE4636A0-9654-48BC-AF79-E6B99C89D74D}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{012C7580-9EE1-4D1C-B342-F7718C522898}] => (Allow) D:\SteamLibrary\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{B6BE52B8-C5C9-44E3-9132-A17B7E0E7687}] => (Allow) D:\SteamLibrary\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{9E0D45A2-29C7-443D-BFB4-4E9692DE0D7E}D:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) D:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{A53B764A-2EC6-4D81-836F-916FEC01E790}D:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) D:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{6DBD44E0-9FC9-478F-804D-DD6A8BE4CF10}] => (Allow) D:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [Datei ist nicht signiert]
FirewallRules: [{DAF76501-712A-4EDC-9477-56E9DC38979A}] => (Allow) D:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [Datei ist nicht signiert]
FirewallRules: [{F32DB020-E0D0-4A24-A1D9-7F536CD9247F}] => (Allow) D:\SteamLibrary\steamapps\common\rocketleague\Binaries\RocketLeague.exe (Psyonix, Inc. -> Psyonix LLC)
FirewallRules: [{40F790D9-AB67-4FDF-A08C-E172EA05B466}] => (Allow) D:\SteamLibrary\steamapps\common\rocketleague\Binaries\RocketLeague.exe (Psyonix, Inc. -> Psyonix LLC)
FirewallRules: [{43D7E02C-B4A1-4874-9A8E-6CBB9A9D3CF1}] => (Allow) D:\OriginGames\Battlefield V\bfvTrial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{5381590B-F077-44F0-A0CF-5831281143DF}] => (Allow) D:\OriginGames\Battlefield V\bfvTrial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{03B36575-98C9-4101-BEB1-9D3253D428E5}] => (Allow) D:\OriginGames\Battlefield V\bfv.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{A2B6801C-CF02-4605-A394-B97CC7802CD2}] => (Allow) D:\OriginGames\Battlefield V\bfv.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [TCP Query User{51933121-0D48-4E70-98D8-0FC24E136F21}P:\foobar2k\foobar2000.exe] => (Allow) P:\foobar2k\foobar2000.exe (Piotr Pawlowski) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{AEC6B7CE-763A-4307-8D29-5141E80E9302}P:\foobar2k\foobar2000.exe] => (Allow) P:\foobar2k\foobar2000.exe (Piotr Pawlowski) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{0976A834-B3AC-4308-BCB4-E60811D51641}P:\stream what you hear\swyh.exe] => (Allow) P:\stream what you hear\swyh.exe (Sebastien.warin.fr) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{55E9C1B4-01AD-4811-9797-777D2556957C}P:\stream what you hear\swyh.exe] => (Allow) P:\stream what you hear\swyh.exe (Sebastien.warin.fr) [Datei ist nicht signiert]
FirewallRules: [{F97AEAD5-52E6-4443-AE8C-53E702FE936E}] => (Allow) D:\SteamLibrary\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (Bluehole, Inc. -> PUBG Corporation )
FirewallRules: [{BAC11048-4155-4880-AE00-4F5E2BB0D0C5}] => (Allow) D:\SteamLibrary\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (Bluehole, Inc. -> PUBG Corporation )
FirewallRules: [{8C85C1B1-872C-4C95-A7D2-3DED95A74343}] => (Allow) D:\SteamLibrary\steamapps\common\Governor of poker 3\GOP3.exe () [Datei ist nicht signiert]
FirewallRules: [{9EDEB264-FA3F-48B7-A586-B31B47D16D86}] => (Allow) D:\SteamLibrary\steamapps\common\Governor of poker 3\GOP3.exe () [Datei ist nicht signiert]
==================== Wiederherstellungspunkte =========================
ACHTUNG: Systemwiederherstellung ist deaktiviert (Total:60.4 GB) (Free:20.44 GB) (34%)
==================== Fehlerhafte Geräte im Gerätemanager ============
==================== Fehlereinträge in der Ereignisanzeige: ========================
Applikationsfehler:
==================
Error: (03/10/2020 05:17:31 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (4312,R,98) TILEREPOSITORYS-1-5-18: Fehler -1023 (0xfffffc01) beim Öffnen von Protokolldatei C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (03/10/2020 02:14:21 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (7752,R,98) TILEREPOSITORYS-1-5-18: Fehler -1023 (0xfffffc01) beim Öffnen von Protokolldatei C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (03/10/2020 01:53:51 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (5972,R,98) TILEREPOSITORYS-1-5-18: Fehler -1023 (0xfffffc01) beim Öffnen von Protokolldatei C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (03/09/2020 09:11:45 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Aufrufen von Routine "CoCreateInstance" ist ein unerwarteter Fehler aufgetreten. hr = 0x8007045b, Der Computer wird heruntergefahren.
.
Error: (03/09/2020 09:11:45 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volumenschattenkopie-Dienst-Informationen: Der COM-Server mit CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} und dem Namen "CEventSystem" kann nicht gestartet werden. [0x8007045b, Der Computer wird heruntergefahren.
]
Error: (03/09/2020 06:15:26 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (1312,R,98) TILEREPOSITORYS-1-5-18: Fehler -1023 (0xfffffc01) beim Öffnen von Protokolldatei C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (03/09/2020 04:32:13 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (7304,R,98) TILEREPOSITORYS-1-5-18: Fehler -1023 (0xfffffc01) beim Öffnen von Protokolldatei C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (03/09/2020 02:56:56 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (11616,R,98) TILEREPOSITORYS-1-5-18: Fehler -1023 (0xfffffc01) beim Öffnen von Protokolldatei C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Systemfehler:
=============
Error: (03/07/2020 07:40:56 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80073d02 fehlgeschlagen: 9NMPJ99VJBWV-Microsoft.YourPhone
Error: (03/05/2020 12:08:08 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80073d02 fehlgeschlagen: 9NMPJ99VJBWV-Microsoft.YourPhone
Error: (02/21/2020 12:25:40 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-xxxxxxxPC)
Description: Der Server "{9BA05972-F6A8-11CF-A442-00A0C90A8F39}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (02/14/2020 12:22:54 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-xxxxxxxPC)
Description: Der Server "{4AA0A5C4-1B9B-4F2E-99D7-99C6AEC83474}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (02/13/2020 09:07:43 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Steam Client Service" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Dienst antwortete nicht rechtzeitig auf die Start- oder Steuerungsanforderung.
Error: (02/13/2020 09:07:43 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Steam Client Service erreicht.
Error: (01/29/2020 11:42:15 PM) (Source: nvlddmkm) (EventID: 13) (User: )
Description: Event-ID 13
Error: (01/29/2020 11:42:15 PM) (Source: nvlddmkm) (EventID: 13) (User: )
Description: Event-ID 13
Windows Defender:
===================================
Date: 2020-03-09 14:50:26.996
Description:
Die Windows Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {503FFBEB-946D-4F67-BF4A-5C156CC74F94}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Date: 2020-03-09 14:12:13.374
Description:
Die Windows Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {5DA00238-675C-45F1-9D2D-D9815F8347AF}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Date: 2020-03-09 14:00:17.320
Description:
Die Windows Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {85590E24-7497-4A21-A4E6-284A858919A6}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Date: 2020-03-07 20:46:32.242
Description:
Die Windows Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {6AC55177-8A94-4140-BE1C-E0ADC3DF467A}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Date: 2020-03-04 21:39:58.128
Description:
Die Windows Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {F4B0B89D-067B-4081-87EC-83D3654609C0}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
==================== Speicherinformationen ===========================
BIOS: American Megatrends Inc. P2.60 11/11/2013
Hauptplatine: ASRock 970 Extreme4
Prozessor: AMD FX(tm)-8300 Eight-Core Processor
Prozentuale Nutzung des RAM: 25%
Installierter physikalischer RAM: 16357.67 MB
Verfügbarer physikalischer RAM: 12257.85 MB
Summe virtueller Speicher: 18789.67 MB
Verfügbarer virtueller Speicher: 13880.93 MB
==================== Laufwerke ================================
Drive c: (WIN) (Fixed) (Total:60.4 GB) (Free:20.44 GB) NTFS
Drive d: (SSD) (Fixed) (Total:415.44 GB) (Free:142.91 GB) NTFS
Drive e: (EIGENE DATEIEN) (Fixed) (Total:108.84 GB) (Free:35.42 GB) NTFS
Drive g: (SPIELE) (Fixed) (Total:234.37 GB) (Free:132.45 GB) NTFS
Drive i: (MUSIK) (Fixed) (Total:534.59 GB) (Free:50.25 GB) NTFS
Drive p: (PROG) (Fixed) (Total:53.71 GB) (Free:17.07 GB) NTFS
\\?\Volume{8a37910a-62fc-40d9-81a0-42ea1542422c}\ () (Fixed) (Total:0.52 GB) (Free:0.08 GB) NTFS
\\?\Volume{f8d3ee40-26fb-43b1-8551-e222ef17d7da}\ () (Fixed) (Total:0.48 GB) (Free:0.08 GB) NTFS
\\?\Volume{f5f08f04-ba46-4dfa-bfeb-c2c7801b8b29}\ () (Fixed) (Total:0.1 GB) (Free:0.06 GB) FAT32
==================== MBR & Partitionstabelle ====================
==========================================================
Disk: 0 (Size: 476.9 GB) (Disk ID: 8BD6DB76)
Partition: GPT.
==========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 931.5 GB) (Disk ID: CBCE2081)
Partition 1: (Not Active) - (Size=534.6 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=53.7 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=234.4 GB) - (Type=0F Extended)
Partition 4: (Not Active) - (Size=108.8 GB) - (Type=07 NTFS)
==================== Ende von Addition.txt =======================
|
