| |
| |||||||
Log-Analyse und Auswertung: Unsicher nach Neuinstallation wegen VirusWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML |
 |
07.03.2024, 01:03
| #1 |
 |  Unsicher nach Neuinstallation wegen Virus Hallo, nach einen Fehler indem ich auf eine Exe geklickt habe, und Mein PC bzw Passwörter geleakt wurden denke ich? ( für eine bessere beschreibung siehe mein 1 Post: https://www.trojaner-board.de/208761-hilfe-hack-virus-verdacht.html#post1780095 ) Die Neuinstalation via creation tool ist bereits erfolgt, sowie die Daten soweit ich weiß überall geändert. Die Tipps werde ich noch nach und nach abarbeiten. Meine Frage ist allerdings noch, die leider nicht beantwortet wurde und der Thread geschlossen ist? Ob in meinen System noch irgendetwas komisch ist, bringt mir ja nix alle tipps zu befolgen wen ich nicht sicher weiß ob nun alles clean ist. Ich poste hier noch mal Die FSRT Logs:  schon mal im vorraus.Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 26.02.2024 01
durchgeführt von tobby (Administrator) auf SENPAI (Micro-Star International Co., Ltd. MS-7C91) (04-03-2024 20:29:18)
Gestartet von C:\Users\tobby\Downloads\FRST64.exe
Geladene Profile: tobby
Plattform: Microsoft Windows 10 Pro Version 22H2 19045.4123 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: Chrome
Start-Modus: Normal
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe ->) (Alexey Nicolaychuk -> ) C:\Program Files (x86)\RivaTuner Statistics Server\EncoderServer.exe
(C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe ->) (Alexey Nicolaychuk -> ) C:\Program Files (x86)\RivaTuner Statistics Server\RTSSHooksLoader64.exe
(C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe ->) (Skutta Software GmbH -> ) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\webwallpaper32.exe <5>
(C:\Program Files\Google\Chrome\Application\chrome.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\NVIDIA Overlay.exe <5>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA App\ShadowPlay\nvsphelper64.exe
(C:\Users\tobby\AppData\Local\Discord\app-1.0.9034\Discord.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <18>
(cmd.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MbamBgNativeMsg.exe
(Discord Inc. -> Discord Inc.) C:\Users\tobby\AppData\Local\Discord\app-1.0.9034\Discord.exe <6>
(explorer.exe ->) (04797BBC-C7BB-462F-9B66-331C81E27C0E -> TranslucentTB Open-Source-Entwickler) C:\Program Files\WindowsApps\28017CharlesMilette.TranslucentTB_2023.2.0.0_x64__v826wp6bftszj\TranslucentTB.exe
(explorer.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\tobby\Downloads\MSERT.exe
(explorer.exe ->) (Skutta Software GmbH -> ) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe
(explorer.exe ->) (Voyetra Turtle Beach, Inc. -> ROCCAT) C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\ROCCAT_Swarm_Monitor.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Corporation -> MSPCManagerService) C:\Program Files\Microsoft PC Manager\MSPCManagerService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24010.12-0\MsMpEng.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_f2364b8cd60b763b\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (TunnelBear (McAfee Canada ULC) -> TunnelBear) C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.exe
(svchost.exe ->) (Alexey Nicolaychuk -> ) C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21830.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21830.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> ) C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
(svchost.exe ->) (Voyetra Turtle Beach, Inc. -> ROCCAT) C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\ROCCAT_Dev_Service.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [WindowsMasterUI] => C:\Program Files\Microsoft PC Manager\MSPCManager.exe [952352 2023-11-27] (Microsoft Corporation -> MSPCManager)
HKLM-x32\...\Run: [Genshin Impact_launcher_pcseaepic_1_3] => [X]
HKU\S-1-5-21-2297492589-26117319-3987669191-1001\...\Run: [MicrosoftEdgeAutoLaunch_4800549307E325D0534F6938D6AF857A] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4060728 2024-03-01] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2297492589-26117319-3987669191-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4388712 2024-02-29] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-2297492589-26117319-3987669191-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37371856 2024-03-01] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-2297492589-26117319-3987669191-1001\...\Run: [Discord] => C:\Users\tobby\AppData\Local\Discord\Update.exe [1525024 2024-02-12] (Discord Inc. -> GitHub)
HKU\S-1-5-21-2297492589-26117319-3987669191-1001\...\Run: [WallpaperEngine] => C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe [3311032 2024-02-26] (Skutta Software GmbH -> )
HKU\S-1-5-21-2297492589-26117319-3987669191-1001\...\Run: [Wargaming.net Game Center] => C:\ProgramData\Wargaming.net\GameCenter\wgc.exe [2189080 2024-01-17] (Wargaming Group Limited -> Wargaming.net)
HKU\S-1-5-21-2297492589-26117319-3987669191-1001\...\Run: [RiotClient] => C:\Riot Games\Riot Client\RiotClientServices.exe [70920704 2024-02-17] (Riot Games, Inc. -> Riot Games, Inc.)
HKU\S-1-5-21-2297492589-26117319-3987669191-1001\...\Run: [GalaxyClient] => [X]
HKU\S-1-5-21-2297492589-26117319-3987669191-1001\...\Run: [GogGalaxy] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [13993440 2023-10-25] (GOG sp. z o.o -> GOG.com)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\122.0.6261.95\Installer\chrmstp.exe [2024-03-02] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ROCCAT Swarm Monitor.lnk [2024-02-17]
ShortcutTarget: ROCCAT Swarm Monitor.lnk -> C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\ROCCAT_Swarm_Monitor.exe (Voyetra Turtle Beach, Inc. -> ROCCAT)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {26C51504-9D3B-4A3E-876C-124974BC4045} - System32\Tasks\BlueStacksHelper_nxt => C:\Program Files\BlueStacks_nxt\BlueStacksHelper.exe [302968 2024-02-19] (Now.gg, INC -> BlueStack Systems, Inc.)
Task: {C21EDD17-0AF0-4BA1-A7CC-0EB4D5776B7C} - System32\Tasks\Driver Booster SkipUAC (tobby) => C:\Program Files (x86)\IObit\Driver Booster\11.3.0\DriverBooster.exe [9045480 2024-02-27] (IObit CO., LTD -> IObit)
Task: {2CE2EAA6-C2B8-443B-9BF3-B197A259BB2D} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\IObit\Driver Booster\11.3.0\AutoUpdate.exe [2525160 2024-02-27] (IObit CO., LTD -> IObit)
Task: {8ACAE323-ADFB-4A4B-9BA4-81532369BB58} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem124.0.6315.0{7C8EB1FD-2D5E-499C-B6C4-F2CAF1C46C15} => C:\Program Files (x86)\Google\GoogleUpdater\124.0.6315.0\updater.exe [4698400 2024-02-22] (Google LLC -> Google LLC) <==== ACHTUNG
Task: {379B565B-0079-48E1-89C2-64B4F79492F5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24010.12-0\MpCmdRun.exe [1646000 2024-02-28] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4487CD07-58C3-42F4-9196-B30F0DE7A297} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24010.12-0\MpCmdRun.exe [1646000 2024-02-28] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {1B07C7C0-B11E-4143-B52D-D289C17D44F6} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24010.12-0\MpCmdRun.exe [1646000 2024-02-28] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {808226C5-AC1A-423E-9443-7FAD49145B53} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24010.12-0\MpCmdRun.exe [1646000 2024-02-28] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {9DA449B1-129F-400B-8833-F3F68877D1EF} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [671136 2024-02-20] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {F22BECE1-3EA9-4C25-A6FB-2B7EC07C46B8} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-2297492589-26117319-3987669191-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [671136 2024-02-20] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {6CE8953D-6D8C-46CA-890A-153CE2C0AED6} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34720 2024-02-20] (Mozilla Corporation -> Mozilla Foundation)
Task: {693A774D-17AE-40C6-8D81-1D3C04B08672} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [817536 2024-02-08] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
Task: {1E22D411-E850-4617-9095-D676BA814B1F} - System32\Tasks\NVIDIA App SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\NVIDIA App.exe [3867176 2024-02-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {61A25582-EDFC-4539-AAA1-66CCD6607629} - System32\Tasks\ROCCAT DEVICE SERVICE => C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\ROCCAT_dev_service.exe [459160 2023-12-27] (Voyetra Turtle Beach, Inc. -> ROCCAT)
Task: {829C6ADC-B5C6-44BE-AE31-7CD71318E5F8} - System32\Tasks\RTSS => C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe [524096 2024-02-06] (Alexey Nicolaychuk -> )
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{08f4d989-e3eb-4cb9-8e04-a254a6baef2b}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{08f4d989-e3eb-4cb9-8e04-a254a6baef2b}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{08f4d989-e3eb-4cb9-8e04-a254a6baef2b}: [DhcpDomain] speedport.ip
Tcpip\..\Interfaces\{aca7924c-bda1-447f-b5f8-f15265a2e736}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{aca7924c-bda1-447f-b5f8-f15265a2e736}: [DhcpDomain] speedport.ip
Edge:
=======
Edge DefaultProfile: Profile 1
Edge Profile: C:\Users\tobby\AppData\Local\Microsoft\Edge\User Data\Profile 1 [2024-03-04]
Edge Extension: (Google Docs Offline) - C:\Users\tobby\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-02-26]
Edge Extension: (Edge relevant text changes) - C:\Users\tobby\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-02-26]
FireFox:
========
FF DefaultProfile: tuzq9mq0.default
FF ProfilePath: C:\Users\tobby\AppData\Roaming\Mozilla\Firefox\Profiles\tuzq9mq0.default [2024-02-17]
FF ProfilePath: C:\Users\tobby\AppData\Roaming\Mozilla\Firefox\Profiles\o2rzjxbc.default-release [2024-03-04]
FF Extension: (SteamDB) - C:\Users\tobby\AppData\Roaming\Mozilla\Firefox\Profiles\o2rzjxbc.default-release\Extensions\firefox-extension@steamdb.info.xpi [2024-03-03]
FF Extension: (uBlock Origin) - C:\Users\tobby\AppData\Roaming\Mozilla\Firefox\Profiles\o2rzjxbc.default-release\Extensions\uBlock0@raymondhill.net.xpi [2024-02-23]
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @wanmei.com/npArcPlayNowPlugin -> [Keine Datei]
Chrome:
=======
CHR DefaultProfile: Profile 2
CHR Profile: C:\Users\tobby\AppData\Local\Google\Chrome\User Data\Profile 2 [2024-03-04]
CHR Extension: (uBlock Origin development build) - C:\Users\tobby\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\cgbcahbpdhpcegmbfconppldiemgcoii [2024-03-04]
CHR Extension: (Google Docs Offline) - C:\Users\tobby\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-02-17]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\tobby\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2024-02-28]
CHR Extension: (SteamDB) - C:\Users\tobby\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\kdbmhfkmnlmbkgbabkdealhhbfhlmmon [2024-02-17]
CHR Extension: (Video DownloadHelper) - C:\Users\tobby\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\lmjnegcaeklhafolokijcfjliaokphfk [2024-02-19]
CHR Extension: (Live Stream Downloader) - C:\Users\tobby\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\looepbdllpjgdmkpdcdffhdbmpbcfekj [2024-02-17]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\tobby\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-02-17]
CHR Profile: C:\Users\tobby\AppData\Local\Google\Chrome\User Data\System Profile [2024-02-17]
==================== Dienste (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 AntiCheatExpert Service; C:\Program Files\AntiCheatExpert\SGuard\x64\SGuardSvc64.exe [2699120 2024-02-17] (HIGH MORALE DEVELOPMENTS LIMITED -> )
S3 battlenet_helpersvc; C:\ProgramData\Battle.net_components\battlenet_helpersvc\AgentHelper.exe [2530440 2024-02-17] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [9880840 2024-02-17] (BattlEye Innovations e.K. -> )
S3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [12096104 2024-03-04] (Electronic Arts, Inc. -> Electronic Arts)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1135648 2024-02-29] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [943528 2024-02-19] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2023-08-02] (Epic Games Inc. -> Epic Games, Inc.)
S3 FacSvc_Infestation; C:\Users\tobby\AppData\Roaming\FAC\Infestation\FacSvc.exe [506968 2024-02-20] (Fredaikis AB -> )
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [2350048 2023-10-25] (GOG sp. z o.o -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7173088 2023-10-25] (GOG sp. z o.o -> GOG.com)
S3 GameforgeClientService; C:\Program Files (x86)\GameforgeClient\gfservice.exe [635968 2024-02-15] (Gameforge 4D GmbH -> )
S2 GoogleUpdaterInternalService124.0.6315.0; C:\Program Files (x86)\Google\GoogleUpdater\124.0.6315.0\updater.exe [4698400 2024-02-22] (Google LLC -> Google LLC) <==== ACHTUNG
S2 GoogleUpdaterService124.0.6315.0; C:\Program Files (x86)\Google\GoogleUpdater\124.0.6315.0\updater.exe [4698400 2024-02-22] (Google LLC -> Google LLC) <==== ACHTUNG
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9410296 2024-03-04] (Malwarebytes Inc. -> Malwarebytes)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_f2364b8cd60b763b\Display.NvContainer\NVDisplay.Container.exe [1274992 2024-02-17] (NVIDIA Corporation -> NVIDIA Corporation)
R2 PCManager Service; C:\Program Files\Microsoft PC Manager\MSPCManagerService.exe [188336 2023-11-27] (Microsoft Corporation -> MSPCManagerService)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [5209072 2024-02-17] (Rockstar Games, Inc. -> Rockstar Games)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [522184 2024-03-03] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 TunnelBearMaintenance; C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.exe [142864 2023-08-30] (TunnelBear (McAfee Canada ULC) -> TunnelBear)
S3 ucldr_battlegrounds_gl; C:\Program Files\Common Files\Wellbia.com\ucldr_battlegrounds_gl.exe [5084200 2024-02-21] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24010.12-0\NisSrv.exe [3191256 2024-02-28] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24010.12-0\MsMpEng.exe [133576 2024-02-28] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 zksvc; C:\Program Files\Common Files\PUBG\zksvc.exe [12557152 2024-02-28] (KRAFTON, Inc. -> KRAFTON, Inc)
===================== Treiber (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 ACE-BASE; C:\Windows\system32\drivers\ACE-BASE.sys [1874008 2024-03-04] (HIGH MORALE DEVELOPMENTS LIMITED -> ANTICHEATEXPERT.COM)
R1 Ahflt; C:\Windows\System32\drivers\ahflt.sys [49704 2023-11-27] (Microsoft Corporation -> Microsoft Corporation)
R3 amdgpio3; C:\Windows\System32\drivers\amdgpio3.sys [36928 2022-09-16] (ASMedia Technology Inc. -> Advanced Micro Devices, Inc)
R2 BlueStacksDrv_nxt; C:\Program Files\BlueStacks_nxt\BstkDrv_nxt.sys [394176 2024-02-19] (Microsoft Windows Hardware Compatibility Publisher -> Bluestack System Inc.)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Datei ist nicht signiert]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Datei ist nicht signiert]
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [158640 2024-03-04] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 HoYoProtect; C:\Windows\system32\HoYoKProtect.sys [3768896 2023-11-09] (Microsoft Windows Hardware Compatibility Publisher -> miHoYo)
U3 HtAntiCheatDriver; D:\SteamLibrary\steamapps\common\Perfect World Mobile\PerfectWorldLaunch\driver\gamedriverX64.sys [57552 2024-02-23] (Fedeen Games Limited -> GameDriver)
R3 KOBRAKAHN; C:\Windows\System32\drivers\KOBRAKAHN.sys [3859376 2020-07-22] (Microsoft Windows Hardware Compatibility Publisher -> C-MEDIA Inc.)
S3 ksophon_x64; D:\SteamLibrary\steamapps\common\Tower of Fantasy\Tower of Fantasy\Hotta\Binaries\Win64\ksophon_x64.sys [9986168 2024-03-03] (PROXIMA BETA PTE. LIMITED -> PROXIMA BETE)
R2 mbamchameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [223296 2024-03-04] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [21480 2024-03-04] (Microsoft Windows Early Launch Anti-Malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [200104 2024-03-04] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [78400 2024-03-04] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [239576 2024-03-04] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMWebProtection; C:\Windows\system32\DRIVERS\mwac.sys [188784 2024-03-04] (Malwarebytes Inc. -> Malwarebytes)
S3 polarbear-split-tunneling; C:\Program Files (x86)\TunnelBear\Drivers\x64\SplitTunnelingDriver.sys [29176 2023-07-10] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [36824 2020-07-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
R3 tap-tb-0901; C:\Windows\System32\drivers\tap-tb-0901.sys [38656 2023-07-10] (TunnelBear, Inc. -> The OpenVPN Project)
R0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [21040 2024-02-28] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [608648 2024-02-28] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105752 2024-02-28] (Microsoft Windows -> Microsoft Corporation)
S3 xhunter1; C:\Windows\xhunter1.sys [215864 2024-03-04] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat (erstellte) (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2024-03-04 20:29 - 2024-03-04 20:30 - 000023025 _____ C:\Users\tobby\Downloads\FRST.txt
2024-03-04 20:13 - 2024-03-04 20:29 - 000000000 ____D C:\FRST
2024-03-04 20:12 - 2024-03-04 20:13 - 002386944 _____ (Farbar) C:\Users\tobby\Downloads\FRST64.exe
2024-03-04 19:11 - 2024-03-04 19:11 - 000188784 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2024-03-04 19:11 - 2024-03-04 19:11 - 000000000 ____D C:\Users\tobby\AppData\LocalLow\IGDump
2024-03-04 17:55 - 2024-03-04 19:11 - 000000000 ____D C:\Users\tobby\AppData\Local\Malwarebytes
2024-03-04 17:55 - 2024-03-04 18:08 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2024-03-04 17:55 - 2024-03-04 17:55 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2024-03-04 17:55 - 2024-03-04 17:55 - 000000000 ____D C:\ProgramData\Malwarebytes
2024-03-04 17:55 - 2024-03-04 17:55 - 000000000 ____D C:\Program Files\Malwarebytes
2024-03-04 16:49 - 2024-03-04 18:13 - 001555610 _____ C:\Windows\ntbtlog.txt
2024-03-04 16:49 - 2024-03-04 18:07 - 000000214 _____ C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job
2024-03-04 16:26 - 2024-03-04 16:26 - 000007631 _____ C:\Users\tobby\AppData\Local\Resmon.ResmonCfg
2024-03-04 15:58 - 2024-03-04 15:58 - 006107096 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2024-03-04 15:57 - 2024-03-04 15:57 - 000003288 _____ C:\Windows\system32\Tasks\Driver Booster SkipUAC (tobby)
2024-03-04 15:57 - 2024-03-04 15:57 - 000003162 _____ C:\Windows\system32\Tasks\Driver Booster Update
2024-03-04 15:57 - 2024-03-04 15:57 - 000000000 ____D C:\Users\tobby\AppData\Local\EALaunchHelper
2024-03-04 15:57 - 2024-03-04 15:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 11
2024-03-03 17:06 - 2024-03-03 17:06 - 000000000 ___HD C:\$WinREAgent
2024-03-03 17:03 - 2024-03-04 19:10 - 084148224 _____ C:\Windows\system32\config\SOFTWARE
2024-03-03 16:39 - 2024-03-03 16:39 - 000019530 _____ C:\Windows\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-03-03 16:38 - 2024-03-03 16:38 - 000019530 _____ C:\Windows\system32\IntegratedServicesRegionPolicySet.json
2024-03-03 16:36 - 2024-03-03 16:36 - 000000000 ____D C:\Users\tobby\AppData\Local\mbam
2024-02-29 02:12 - 2024-02-29 02:12 - 000000000 ____D C:\Users\tobby\AppData\Local\XERA
2024-02-28 23:09 - 2024-02-28 23:11 - 000000000 ____D C:\Users\tobby\AppData\Roaming\FuncomLauncher
2024-02-28 19:57 - 2024-02-28 20:15 - 000000000 ____D C:\Users\tobby\AppData\Roaming\WeMod
2024-02-28 19:57 - 2024-02-28 19:57 - 000000000 ____D C:\Users\tobby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WeMod
2024-02-28 19:57 - 2024-02-28 19:57 - 000000000 ____D C:\Users\tobby\AppData\Local\WeMod
2024-02-28 05:33 - 2024-03-03 17:50 - 000000000 ____D C:\ProgramData\bst_boost_interprocess
2024-02-28 05:33 - 2024-02-28 05:33 - 000003920 _____ C:\Windows\system32\Tasks\BlueStacksHelper_nxt
2024-02-28 05:33 - 2024-02-28 05:33 - 000002087 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks 5.lnk
2024-02-28 05:33 - 2024-02-28 05:33 - 000001969 _____ C:\Users\Public\Desktop\BlueStacks 5.lnk
2024-02-28 05:33 - 2024-02-28 05:33 - 000001287 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks Multi-Instance Manager.lnk
2024-02-28 05:32 - 2024-02-28 05:32 - 000000000 ____D C:\Program Files\BlueStacks_nxt
2024-02-27 04:28 - 2024-02-27 04:28 - 000000000 ____D C:\Users\tobby\AppData\Local\NCSOFT
2024-02-26 16:31 - 2024-02-26 16:32 - 000000000 ____D C:\Users\tobby\PowerPlay3DS
2024-02-26 15:38 - 2024-02-26 15:38 - 000000000 ____D C:\Users\tobby\Documents\Black Desert
2024-02-26 02:07 - 2024-02-17 12:38 - 002031464 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2024-02-26 02:07 - 2024-02-17 12:38 - 002031464 _____ C:\Windows\system32\vulkaninfo.exe
2024-02-26 02:07 - 2024-02-17 12:38 - 001578752 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2024-02-26 02:07 - 2024-02-17 12:38 - 001578752 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2024-02-26 02:07 - 2024-02-17 12:38 - 001487904 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2024-02-26 02:07 - 2024-02-17 12:38 - 001445224 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2024-02-26 02:07 - 2024-02-17 12:38 - 001445224 _____ C:\Windows\system32\vulkan-1.dll
2024-02-26 02:07 - 2024-02-17 12:38 - 001295208 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2024-02-26 02:07 - 2024-02-17 12:38 - 001295208 _____ C:\Windows\SysWOW64\vulkan-1.dll
2024-02-26 02:07 - 2024-02-17 12:38 - 001227296 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2024-02-26 02:07 - 2024-02-17 12:35 - 001046152 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll
2024-02-26 02:07 - 2024-02-17 12:35 - 000669816 _____ (NVIDIA Corporation) C:\Windows\system32\nvofapi64.dll
2024-02-26 02:07 - 2024-02-17 12:35 - 000505456 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvofapi.dll
2024-02-26 02:07 - 2024-02-17 12:34 - 002173448 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2024-02-26 02:07 - 2024-02-17 12:34 - 001625096 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2024-02-26 02:07 - 2024-02-17 12:34 - 001541640 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2024-02-26 02:07 - 2024-02-17 12:34 - 001199112 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2024-02-26 02:07 - 2024-02-17 12:34 - 001024032 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2024-02-26 02:07 - 2024-02-17 12:34 - 000842272 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe
2024-02-26 02:07 - 2024-02-17 12:34 - 000786952 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2024-02-26 02:07 - 2024-02-17 12:33 - 016033824 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2024-02-26 02:07 - 2024-02-17 12:33 - 012928032 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2024-02-26 02:07 - 2024-02-17 12:33 - 006780528 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2024-02-26 02:07 - 2024-02-17 12:33 - 005773448 _____ (NVIDIA Corporation) C:\Windows\system32\nvcudadebugger.dll
2024-02-26 02:07 - 2024-02-17 12:33 - 003721760 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2024-02-26 02:07 - 2024-02-17 12:33 - 000459272 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe
2024-02-26 02:07 - 2024-02-17 12:32 - 005912712 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2024-02-26 02:07 - 2024-02-17 12:32 - 000853000 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe
2024-02-26 02:07 - 2024-02-15 17:42 - 000119184 _____ C:\Windows\system32\nvinfo.pb
2024-02-26 01:58 - 2024-02-26 01:58 - 000003834 _____ C:\Windows\system32\Tasks\NVIDIA App SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-02-26 01:58 - 2024-02-26 01:58 - 000000000 ____D C:\Users\tobby\ansel
2024-02-26 01:58 - 2024-02-26 01:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2024-02-26 01:58 - 2024-02-19 10:22 - 003132456 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2024-02-26 01:58 - 2024-02-19 10:22 - 002418216 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2024-02-26 01:58 - 2024-02-19 10:22 - 000306728 _____ C:\Windows\system32\FvSDK_x64.dll
2024-02-26 01:58 - 2024-02-19 10:22 - 000268840 _____ C:\Windows\SysWOW64\FvSDK_x86.dll
2024-02-26 01:58 - 2024-02-19 10:22 - 000171048 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2024-02-26 01:58 - 2024-02-19 10:22 - 000150056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2024-02-26 01:58 - 2024-02-19 10:22 - 000050216 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2024-02-23 03:31 - 2024-02-23 03:31 - 000000000 ____D C:\Users\tobby\AppData\LocalLow\PWRD
2024-02-23 03:30 - 2024-02-23 03:30 - 000000000 ____D C:\Users\tobby\AppData\Local\PerfectWorldGame
2024-02-22 22:05 - 2024-02-22 22:05 - 000000000 ____D C:\Users\tobby\AppData\LocalLow\Temp
2024-02-22 18:19 - 2024-02-22 18:19 - 000000000 ____D C:\Users\tobby\AppData\LocalLow\P1Team
2024-02-22 00:24 - 2024-02-22 00:24 - 000000000 ____D C:\Users\tobby\AppData\Roaming\WinRAR
2024-02-21 19:01 - 2024-02-21 19:01 - 000000000 ____D C:\Users\tobby\AppData\Local\TslGame
2024-02-21 18:59 - 2024-03-04 13:55 - 000000000 ____D C:\Program Files\Common Files\PUBG
2024-02-21 18:59 - 2024-03-04 13:53 - 000215864 _____ (Wellbia.com Co., Ltd.) C:\Windows\xhunter1.sys
2024-02-21 18:59 - 2024-02-28 23:10 - 000000000 ____D C:\Users\tobby\AppData\Local\BattlEye
2024-02-21 18:59 - 2024-02-21 18:59 - 000000000 ____D C:\Users\tobby\AppData\Local\WELLBIA
2024-02-21 18:59 - 2024-02-21 18:59 - 000000000 ____D C:\Program Files\Common Files\Wellbia.com
2024-02-21 18:51 - 2024-02-21 18:51 - 000000000 ____D C:\Users\tobby\AppData\Local\HerovsGame
2024-02-21 17:34 - 2024-02-21 17:34 - 000000000 ____D C:\Users\tobby\AppData\LocalLow\Cognosphere
2024-02-21 16:55 - 2024-02-21 16:55 - 000000000 ____D C:\Users\tobby\AppData\Roaming\GMEGLOBAL
2024-02-21 16:54 - 2024-02-21 16:54 - 000000000 ____D C:\Users\tobby\AppData\Roaming\DSS
2024-02-21 04:58 - 2024-02-21 04:58 - 000000000 ____D C:\Users\tobby\AppData\LocalLow\Alpha Blend Interactive
2024-02-21 04:56 - 2024-02-21 04:56 - 000000000 ____D C:\Users\tobby\AppData\LocalLow\Solirax
2024-02-21 02:49 - 2024-03-02 21:45 - 000000000 ____D C:\Users\tobby\.junique
2024-02-21 02:49 - 2024-02-21 02:50 - 000000000 ____D C:\Users\tobby\.minion
2024-02-21 02:49 - 2024-02-21 02:49 - 000000620 _____ C:\Users\tobby\Documents\Minion.lnk
2024-02-21 02:49 - 2024-02-21 02:49 - 000000000 ____D C:\Users\tobby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Good Game Mods LLC
2024-02-21 02:49 - 2024-02-21 02:49 - 000000000 ____D C:\Users\tobby\AppData\Roaming\gg.minion.Minion
2024-02-21 02:49 - 2024-02-21 02:49 - 000000000 ____D C:\Users\tobby\.oracle_jre_usage
2024-02-21 02:48 - 2024-02-21 02:48 - 000000000 ____D C:\Users\tobby\AppData\Local\Minion
2024-02-21 02:00 - 2024-02-21 04:18 - 000000000 ____D C:\Users\tobby\AppData\Local\Archeage
2024-02-21 01:45 - 2024-02-21 01:45 - 000000000 ____D C:\Users\tobby\AppData\Roaming\CC
2024-02-21 01:18 - 2024-02-21 01:18 - 000000000 ____D C:\Users\tobby\AppData\Roaming\rvlm_launcher
2024-02-21 01:18 - 2024-02-21 01:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revelation M
2024-02-21 00:45 - 2024-02-21 01:43 - 000000000 ____D C:\Users\tobby\AppData\LocalLow\pangu
2024-02-21 00:45 - 2024-02-21 01:16 - 000000000 ____D C:\Users\tobby\AppData\Local\vng_sea
2024-02-21 00:45 - 2024-02-21 00:45 - 000000000 ____D C:\Users\tobby\AppData\Roaming\Netease
2024-02-21 00:45 - 2024-02-21 00:45 - 000000000 ____D C:\Users\tobby\AppData\LocalLow\Crunchyroll Games LLC
2024-02-21 00:45 - 2024-02-21 00:45 - 000000000 ____D C:\Users\tobby\AppData\Local\UniSDK
2024-02-21 00:45 - 2024-02-21 00:45 - 000000000 ____D C:\Users\tobby\AppData\Local\Netease
2024-02-21 00:45 - 2024-02-21 00:45 - 000000000 ____D C:\ProgramData\NeteaseWinDev
2024-02-21 00:17 - 2024-02-21 00:33 - 000000000 ____D C:\Users\tobby\AppData\Local\Warframe
2024-02-20 22:05 - 2024-02-20 22:05 - 000000000 ____D C:\Users\tobby\AppData\Local\Azure
2024-02-20 20:39 - 2024-02-20 20:39 - 000000000 ____D C:\Windows\system32\Tasks\GoogleSystem
2024-02-20 17:18 - 2024-02-20 18:06 - 000000000 ____D C:\Users\tobby\AppData\LocalLow\Konami Digital Entertainment Co., Ltd_
2024-02-20 17:15 - 2024-02-20 17:15 - 000000000 ____D C:\Users\tobby\Documents\FredaikisAB
2024-02-20 17:15 - 2024-02-20 17:15 - 000000000 ____D C:\Users\tobby\AppData\Local\FredaikisAB
2024-02-20 17:15 - 2024-02-20 17:15 - 000000000 ____D C:\Users\tobby\AppData\Local\CrashRpt
2024-02-20 17:14 - 2024-02-20 17:14 - 000000000 ____D C:\Users\tobby\AppData\Roaming\FAC
2024-02-20 17:13 - 2024-02-20 17:13 - 000000000 ____D C:\Users\tobby\AppData\Roaming\riot-client-ux
2024-02-20 17:08 - 2024-03-03 17:03 - 000000000 ____D C:\Windows\Microsoft Antimalware
2024-02-20 16:50 - 2024-02-21 18:51 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat_EOS
2024-02-20 16:20 - 2024-02-21 16:53 - 000000000 ____D C:\Users\tobby\AppData\Local\Hotta
2024-02-20 15:47 - 2024-02-21 16:27 - 000000000 ____D C:\Program Files\Mozilla Firefox
2024-02-20 15:28 - 2024-03-04 14:29 - 001874008 _____ (ANTICHEATEXPERT.COM) C:\Windows\system32\Drivers\ACE-BASE.sys
2024-02-20 15:28 - 2024-03-04 00:45 - 000000000 ____D C:\ProgramData\AntiCheatExpert
2024-02-20 15:28 - 2024-02-28 17:26 - 000000000 ____D C:\Users\tobby\AppData\LocalLow\Unity
2024-02-20 15:28 - 2024-02-20 15:30 - 000000000 ____D C:\Program Files\AntiCheatExpert
2024-02-20 15:28 - 2024-02-20 15:28 - 000000000 ____D C:\Windows\Minidump
2024-02-20 15:28 - 2024-02-20 15:28 - 000000000 ____D C:\Users\tobby\AppData\LocalLow\com_proximabeta
2024-02-20 15:28 - 2024-02-20 15:28 - 000000000 ____D C:\Users\tobby\AppData\LocalLow\com.proximabeta
2024-02-20 15:28 - 2024-02-20 15:28 - 000000000 ____D C:\Users\tobby\AppData\Local\Sentry
2024-02-20 15:27 - 2024-02-20 15:27 - 000000000 ____D C:\ProgramData\INTL
2024-02-20 00:12 - 2024-03-03 18:39 - 000000000 ____D C:\Users\tobby\AppData\Roaming\tof_launcher_Steam
2024-02-20 00:12 - 2024-02-20 16:20 - 000000000 ____D C:\Users\tobby\AppData\Roaming\tof_launcher
2024-02-19 20:46 - 2024-02-19 20:46 - 004134705 _____ C:\Users\tobby\Downloads\LVR_KD_2018_04_Flyer_Spezialambulanz_logo-neu~1.pdf
2024-02-19 03:09 - 2024-02-19 03:09 - 000000000 ____D C:\Users\tobby\Documents\Elder Scrolls Online
2024-02-19 03:09 - 2024-02-19 03:09 - 000000000 ____D C:\Users\tobby\AppData\Local\Elder Scrolls Online
2024-02-19 03:09 - 2024-02-19 03:09 - 000000000 ____D C:\ProgramData\Elder Scrolls Online
2024-02-18 23:15 - 2024-02-18 23:15 - 000000000 ____D C:\Users\tobby\AppData\Local\miHoYo
2024-02-18 23:05 - 2024-02-18 23:05 - 000000000 ____D C:\Windows\jre
2024-02-18 23:05 - 2024-02-18 23:05 - 000000000 ____D C:\Users\tobby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The Elder Scrolls Online
2024-02-18 23:04 - 2024-02-18 23:05 - 000000000 ___HD C:\Program Files (x86)\Zero G Registry
2024-02-18 23:04 - 2024-02-18 23:04 - 000000000 ____D C:\Users\tobby\.InstallAnywhere
2024-02-18 23:04 - 2024-02-18 23:04 - 000000000 ____D C:\ProgramData\Oracle
2024-02-18 17:26 - 2024-02-21 17:05 - 000000000 ____D C:\Users\tobby\AppData\LocalLow\miHoYo
2024-02-18 15:47 - 2024-02-18 15:47 - 000000016 _____ C:\ProgramData\mntemp
2024-02-18 15:46 - 2024-02-29 02:12 - 000000000 ____D C:\Users\tobby\AppData\Roaming\EasyAntiCheat
2024-02-18 15:46 - 2024-02-18 15:46 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat
2024-02-18 06:15 - 2024-02-18 06:15 - 000000340 _____ C:\Users\tobby\Desktop\Fortnite.url
2024-02-18 01:53 - 2024-02-18 23:15 - 000000000 ____D C:\Users\tobby\AppData\Local\HoYoverse
2024-02-18 01:45 - 2024-02-18 01:45 - 000000141 _____ C:\Users\tobby\Desktop\AION MMO.url
2024-02-17 23:03 - 2024-02-17 23:03 - 000000148 _____ C:\Users\tobby\Desktop\AION Classic.url
2024-02-17 23:02 - 2024-02-17 23:02 - 000000000 ____D C:\ProgramData\Gameforge4d
2024-02-17 22:12 - 2024-02-22 07:25 - 000000000 ____D C:\Users\tobby\AppData\Roaming\vlc
2024-02-17 22:12 - 2024-02-17 22:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2024-02-17 22:12 - 2024-02-17 22:12 - 000000000 ____D C:\Program Files\VideoLAN
2024-02-17 22:11 - 2024-03-04 15:59 - 000000000 ____D C:\Users\tobby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2024-02-17 22:11 - 2024-03-04 15:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2024-02-17 22:11 - 2024-03-04 15:59 - 000000000 ____D C:\Program Files\WinRAR
2024-02-17 21:18 - 2024-02-27 18:20 - 000000000 ____D C:\Users\tobby\AppData\Local\JDownloader 2.0
2024-02-17 21:18 - 2024-02-17 21:18 - 000000000 ____D C:\Users\tobby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
2024-02-17 21:17 - 2024-02-17 21:17 - 000000000 ____D C:\Users\tobby\AppData\Local\Adaware
2024-02-17 21:15 - 2024-02-17 21:15 - 000000624 _____ C:\Users\tobby\Desktop\osu!.lnk
2024-02-17 21:15 - 2024-02-17 21:15 - 000000624 _____ C:\Users\tobby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\osu!.lnk
2024-02-17 21:12 - 2024-02-17 21:12 - 000000000 ____D C:\Users\tobby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rockstar Games
2024-02-17 21:12 - 2024-02-17 21:12 - 000000000 ____D C:\ProgramData\Rockstar Games
2024-02-17 21:12 - 2024-02-17 21:12 - 000000000 ____D C:\Program Files\Rockstar Games
2024-02-17 21:11 - 2024-03-04 18:17 - 000000000 ____D C:\Program Files\ADWCleaner
2024-02-17 21:11 - 2024-02-21 20:56 - 000000000 ____D C:\AdwCleaner
2024-02-17 21:11 - 2024-02-17 21:11 - 000000000 ____D C:\Users\tobby\AppData\Roaming\TunnelBear
2024-02-17 21:11 - 2024-02-17 21:11 - 000000000 ____D C:\Users\tobby\AppData\Local\TunnelBear
2024-02-17 21:11 - 2024-02-17 21:11 - 000000000 ____D C:\Users\tobby\AppData\Local\IsolatedStorage
2024-02-17 21:11 - 2024-02-17 21:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TunnelBear
2024-02-17 21:10 - 2024-02-17 21:11 - 000000000 ____D C:\Program Files (x86)\TunnelBear
2024-02-17 21:10 - 2024-02-17 21:10 - 000000000 ____D C:\Users\tobby\AppData\Local\GOG.com
2024-02-17 21:10 - 2024-02-17 21:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
2024-02-17 21:10 - 2024-02-17 21:10 - 000000000 ____D C:\Program Files (x86)\GOG Galaxy
2024-02-17 21:09 - 2024-02-17 21:09 - 000000000 ____D C:\ProgramData\GOG.com
2024-02-17 21:08 - 2024-02-17 21:08 - 000000000 ____D C:\Users\tobby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Display Driver Uninstaller
2024-02-17 21:08 - 2024-02-17 21:08 - 000000000 ____D C:\Program Files\GPUZ
2024-02-17 21:08 - 2024-02-17 21:08 - 000000000 ____D C:\Program Files (x86)\Display Driver Uninstaller
2024-02-17 21:07 - 2024-02-17 21:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HWiNFO64
2024-02-17 21:07 - 2024-02-17 21:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2024-02-17 21:07 - 2024-02-17 21:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2024-02-17 21:07 - 2024-02-17 21:07 - 000000000 ____D C:\Program Files\HWiNFO64
2024-02-17 21:07 - 2024-02-17 21:07 - 000000000 ____D C:\Program Files\CrystalDiskInfo
2024-02-17 21:07 - 2024-02-17 21:07 - 000000000 ____D C:\Program Files\CPUID
2024-02-17 20:34 - 2024-03-04 00:45 - 000000000 ____D C:\Users\tobby\AppData\Roaming\nikke_launcher
2024-02-17 20:34 - 2024-02-17 20:35 - 000000000 ____D C:\Users\tobby\AppData\Roaming\CurseForge
2024-02-17 20:34 - 2024-02-17 20:34 - 000002429 _____ C:\Users\tobby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CurseForge.lnk
2024-02-17 20:34 - 2024-02-17 20:34 - 000002421 _____ C:\Users\tobby\Desktop\CurseForge.lnk
2024-02-17 20:34 - 2024-02-17 20:34 - 000001020 _____ C:\Users\tobby\AppData\Roaming\nikke_launcher.reg
2024-02-17 20:34 - 2024-02-17 20:34 - 000000890 _____ C:\Users\Public\Desktop\NIKKE.lnk
2024-02-17 20:34 - 2024-02-17 20:34 - 000000000 ____D C:\Users\tobby\AppData\Roaming\ow-electron
2024-02-17 20:34 - 2024-02-17 20:34 - 000000000 ____D C:\Users\tobby\AppData\Local\curseforge-updater
2024-02-17 20:34 - 2024-02-17 20:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NIKKE
2024-02-17 20:32 - 2024-02-17 20:34 - 000000000 ____D C:\Users\tobby\AppData\Local\Overwolf
2024-02-17 20:30 - 2024-02-21 00:44 - 000003011 _____ C:\Users\tobby\Desktop\MasterofGarden.lnk
2024-02-17 20:30 - 2024-02-21 00:44 - 000002971 _____ C:\Users\tobby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MasterofGarden.lnk
2024-02-17 20:30 - 2024-02-21 00:44 - 000002965 _____ C:\Users\tobby\AppData\Roaming\Microsoft\Windows\Start Menu\MasterofGarden.lnk
2024-02-17 20:29 - 2024-02-17 20:29 - 000000000 ____D C:\Users\tobby\AppData\Local\nikkeminiloader
2024-02-17 20:29 - 2024-02-17 20:29 - 000000000 ____D C:\ProgramData\intl_ua
2024-02-17 20:28 - 2024-02-17 20:28 - 000000000 ____D C:\Users\tobby\AppData\Roaming\tym_launcher
2024-02-17 20:27 - 2024-02-17 20:27 - 000000675 _____ C:\Users\Public\Desktop\PokeOne.lnk
2024-02-17 20:27 - 2024-02-17 20:27 - 000000675 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PokeOne.lnk
2024-02-17 20:26 - 2024-02-20 21:36 - 000000037 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Gameforge Client.url
2024-02-17 20:26 - 2024-02-20 21:36 - 000000000 ____D C:\Program Files (x86)\GameforgeClient
2024-02-17 20:26 - 2024-02-17 20:26 - 000001286 _____ C:\Users\tobby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Gameforge Client.lnk
2024-02-17 20:26 - 2024-02-17 20:26 - 000000000 ____D C:\Users\tobby\AppData\Local\Gameforge4d
2024-02-17 20:24 - 2024-02-22 22:41 - 000000000 ____D C:\Users\tobby\AppData\Local\DragonRajaLauncher
2024-02-17 20:24 - 2024-02-17 20:24 - 000000000 ____D C:\Users\tobby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DragonRaja
2024-02-17 20:14 - 2024-02-17 20:14 - 000000000 ____D C:\Users\tobby\Documents\League of Legends
2024-02-17 20:05 - 2024-02-17 20:05 - 000000000 ____D C:\Windows\SysWOW64\XPSViewer
2024-02-17 20:05 - 2024-02-17 20:05 - 000000000 ____D C:\Program Files\Reference Assemblies
2024-02-17 20:05 - 2024-02-17 20:05 - 000000000 ____D C:\Program Files\MSBuild
2024-02-17 20:05 - 2024-02-17 20:05 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2024-02-17 20:05 - 2024-02-17 20:05 - 000000000 ____D C:\Program Files (x86)\MSBuild
2024-02-17 20:03 - 2024-02-17 20:03 - 000001681 _____ C:\Users\Public\Desktop\League of Legends.lnk
2024-02-17 20:00 - 2024-03-04 14:29 - 000000000 ____D C:\Users\tobby\AppData\Local\CrashDumps
2024-02-17 20:00 - 2024-02-20 17:14 - 000000000 ____D C:\ProgramData\Riot Games
2024-02-17 20:00 - 2024-02-17 20:14 - 000000000 ____D C:\Users\tobby\AppData\Local\Riot Games
2024-02-17 20:00 - 2024-02-17 20:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riot Games
2024-02-17 20:00 - 2024-02-17 20:00 - 000000000 ____D C:\Users\tobby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Riot Games
2024-02-17 20:00 - 2024-02-17 20:00 - 000000000 ____D C:\Riot Games
2024-02-17 19:59 - 2024-02-17 19:59 - 000000369 _____ C:\Users\tobby\Desktop\Honkai Star Rail.url
2024-02-17 19:57 - 2024-02-17 19:57 - 000000370 _____ C:\Users\tobby\Desktop\Honkai Impact 3rd.url
2024-02-17 19:54 - 2024-02-17 19:54 - 000000368 _____ C:\Users\tobby\Desktop\Genshin Impact.url
2024-02-17 19:22 - 2024-02-17 19:22 - 000000000 ____D C:\Users\tobby\Documents\My Games
2024-02-17 19:22 - 2024-02-17 19:22 - 000000000 ____D C:\Users\tobby\AppData\LocalLow\Kinetic Games
2024-02-17 19:22 - 2024-02-17 19:22 - 000000000 ____D C:\Users\tobby\AppData\LocalLow\Endnight
2024-02-17 19:22 - 2024-02-17 19:22 - 000000000 ____D C:\Users\tobby\AppData\LocalLow\Eek
2024-02-17 19:21 - 2024-03-04 15:59 - 000000000 ____D C:\Users\tobby\AppData\Local\Ubisoft Game Launcher
2024-02-17 19:21 - 2024-03-04 15:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA
2024-02-17 19:21 - 2024-03-04 15:59 - 000000000 ____D C:\ProgramData\EA Desktop
2024-02-17 19:21 - 2024-02-17 19:21 - 000000000 ____D C:\Users\tobby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2024-02-17 19:21 - 2024-02-17 19:21 - 000000000 ____D C:\Users\tobby\AppData\Local\Origin
2024-02-17 19:21 - 2024-02-17 19:21 - 000000000 ____D C:\Users\tobby\AppData\Local\Electronic Arts
2024-02-17 19:21 - 2024-02-17 19:21 - 000000000 ____D C:\Users\tobby\AppData\Local\EADesktop
2024-02-17 19:21 - 2024-02-17 19:21 - 000000000 ____D C:\ProgramData\Ubisoft
2024-02-17 19:21 - 2024-02-17 19:21 - 000000000 ____D C:\Program Files\EA Games
2024-02-17 19:21 - 2024-02-17 19:21 - 000000000 ____D C:\Program Files (x86)\Ubisoft
2024-02-17 19:20 - 2024-02-17 19:20 - 000000000 ____D C:\Users\tobby\AppData\Roaming\Battle.net
2024-02-17 19:20 - 2024-02-17 19:20 - 000000000 ____D C:\Users\tobby\AppData\Local\Battle.net
2024-02-17 19:20 - 2024-02-17 19:20 - 000000000 ____D C:\Program Files\Electronic Arts
2024-02-17 19:18 - 2024-02-20 18:35 - 000000000 ____D C:\Users\tobby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wargaming.net
2024-02-17 19:18 - 2024-02-17 19:18 - 000001892 _____ C:\Users\tobby\Desktop\Game Center.lnk
2024-02-17 19:18 - 2024-02-17 19:18 - 000000000 ____D C:\Users\tobby\AppData\Roaming\Wargaming.net
2024-02-17 19:17 - 2024-02-17 19:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2024-02-17 19:16 - 2024-02-17 19:17 - 000000000 ____D C:\Program Files\Microsoft PC Manager
2024-02-17 19:16 - 2024-02-17 19:16 - 000001223 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft PC Manager (Beta).lnk
2024-02-17 19:16 - 2024-02-17 19:16 - 000000000 ____D C:\Users\tobby\AppData\Local\Windows Master
2024-02-17 19:16 - 2024-02-17 19:16 - 000000000 ____D C:\Users\tobby\AppData\Local\PC Manager
2024-02-17 19:16 - 2024-02-17 19:16 - 000000000 ____D C:\ProgramData\Windows Master
2024-02-17 19:15 - 2024-02-17 19:15 - 000000000 ____D C:\ProgramData\Windows Master Setup
2024-02-17 19:14 - 2024-02-17 19:20 - 000000000 ____D C:\Program Files (x86)\Battle.net
2024-02-17 19:14 - 2024-02-17 19:14 - 000000000 ____D C:\Users\tobby\AppData\Local\Blizzard Entertainment
2024-02-17 19:14 - 2024-02-17 19:14 - 000000000 ____D C:\ProgramData\Wargaming.net
2024-02-17 19:14 - 2024-02-17 19:14 - 000000000 ____D C:\ProgramData\Battle.net_components
2024-02-17 19:14 - 2024-02-17 19:14 - 000000000 ____D C:\ProgramData\Battle.net
2024-02-17 19:06 - 2024-02-17 19:06 - 000000222 _____ C:\Users\tobby\Desktop\7 Days to Die.url
2024-02-17 19:05 - 2024-02-17 19:05 - 000000222 _____ C:\Users\tobby\Desktop\ArcheAge.url
2024-02-17 19:05 - 2024-02-17 19:05 - 000000222 _____ C:\Users\tobby\Desktop\APB Reloaded.url
2024-02-17 19:04 - 2024-02-17 19:04 - 000000222 _____ C:\Users\tobby\Desktop\The Elder Scrolls Online.url
2024-02-17 19:04 - 2024-02-17 19:04 - 000000222 _____ C:\Users\tobby\Desktop\DEAD OR ALIVE Xtreme Venus Vacation.url
2024-02-17 19:04 - 2024-02-17 19:04 - 000000222 _____ C:\Users\tobby\Desktop\DayZ.url
2024-02-17 19:04 - 2024-02-17 19:04 - 000000222 _____ C:\Users\tobby\Desktop\Conan Exiles.url
2024-02-17 19:03 - 2024-02-17 19:03 - 000000222 _____ C:\Users\tobby\Desktop\Grand Theft Auto V.url
2024-02-17 19:02 - 2024-02-17 19:02 - 000000223 _____ C:\Users\tobby\Desktop\MY HERO ULTRA RUMBLE.url
2024-02-17 19:02 - 2024-02-17 19:02 - 000000222 _____ C:\Users\tobby\Desktop\Infestation Survivor Stories 2020.url
2024-02-17 19:01 - 2024-02-17 19:01 - 000000222 _____ C:\Users\tobby\Desktop\SMITE.url
2024-02-17 19:01 - 2024-02-17 19:01 - 000000222 _____ C:\Users\tobby\Desktop\PUBG BATTLEGROUNDS.url
2024-02-17 19:01 - 2024-02-17 19:01 - 000000222 _____ C:\Users\tobby\Desktop\Phasmophobia.url
2024-02-17 19:00 - 2024-02-17 19:00 - 000000223 _____ C:\Users\tobby\Desktop\Tower of Fantasy.url
2024-02-17 19:00 - 2024-02-17 19:00 - 000000223 _____ C:\Users\tobby\Desktop\STAR WARS™ The Old Republic™.url
2024-02-17 19:00 - 2024-02-17 19:00 - 000000223 _____ C:\Users\tobby\Desktop\Sons Of The Forest.url
2024-02-17 19:00 - 2024-02-17 19:00 - 000000222 _____ C:\Users\tobby\Desktop\VRChat.url
2024-02-17 18:59 - 2024-02-17 18:59 - 000000223 _____ C:\Users\tobby\Desktop\Yu-Gi-Oh! Master Duel.url
2024-02-17 18:59 - 2024-02-17 18:59 - 000000222 _____ C:\Users\tobby\Desktop\Yu-Gi-Oh! Duel Links.url
2024-02-17 18:59 - 2024-02-17 18:59 - 000000222 _____ C:\Users\tobby\Desktop\Warframe.url
2024-02-17 18:59 - 2024-02-17 18:59 - 000000222 _____ C:\Users\tobby\Desktop\Soundpad.url
2024-02-17 18:35 - 2024-02-27 18:44 - 000003108 _____ C:\Windows\system32\Tasks\RTSS
2024-02-17 17:56 - 2024-02-17 17:56 - 000000223 _____ C:\Users\tobby\Desktop\Lost Ark.url
2024-02-17 17:51 - 2024-03-04 16:41 - 000000000 ____D C:\Users\tobby\AppData\Roaming\TS3Client
2024-02-17 17:51 - 2024-02-23 03:30 - 000000000 ____D C:\Users\tobby\AppData\Local\cache
2024-02-17 17:51 - 2024-02-17 17:51 - 000000000 ____D C:\Users\tobby\AppData\Local\TeamSpeak 3
2024-02-17 17:50 - 2024-02-17 17:50 - 000000000 ____D C:\Users\tobby\AppData\Local\Patch_My_PC,_LLC
2024-02-17 17:50 - 2024-02-17 17:50 - 000000000 ____D C:\Program Files\Patch My PC
2024-02-17 17:36 - 2024-02-29 01:10 - 000000000 ____D C:\Users\tobby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2024-02-17 17:24 - 2024-02-17 17:24 - 000000000 ____D C:\Users\tobby\AppData\Local\HD-Player
2024-02-17 17:23 - 2024-03-04 20:11 - 000000000 ____D C:\Users\tobby\AppData\Local\Discord
2024-02-17 17:23 - 2024-03-04 19:11 - 000000000 ____D C:\Users\tobby\AppData\Roaming\discord
2024-02-17 17:23 - 2024-02-28 19:57 - 000000000 ____D C:\Users\tobby\AppData\Local\SquirrelTemp
2024-02-17 17:23 - 2024-02-17 17:51 - 000000970 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client.lnk
2024-02-17 17:23 - 2024-02-17 17:51 - 000000000 ____D C:\Program Files\TeamSpeak 3 Client
2024-02-17 17:23 - 2024-02-17 17:23 - 000007151 _____ C:\Users\tobby\-1.14-windows.xml
2024-02-17 17:23 - 2024-02-17 17:23 - 000000000 ____D C:\Users\tobby\AppData\Roaming\NVIDIA
2024-02-17 17:23 - 2024-02-17 17:23 - 000000000 ____D C:\Users\tobby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2024-02-17 17:23 - 2024-02-17 17:23 - 000000000 ____D C:\Users\tobby\AppData\Local\bluestacks-services-updater
2024-02-17 17:22 - 2024-02-26 01:58 - 000000000 ____D C:\Users\tobby\AppData\Local\NVIDIA Corporation
2024-02-17 17:22 - 2024-02-17 17:22 - 000000000 ____D C:\Users\tobby\AppData\Roaming\TeamSpeak
2024-02-17 17:22 - 2024-02-17 17:22 - 000000000 ____D C:\Users\tobby\AppData\Local\TeamSpeak
2024-02-17 17:21 - 2024-02-17 17:22 - 000003039 _____ C:\Users\tobby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeamSpeak.lnk
2024-02-17 17:21 - 2024-02-17 17:21 - 000000000 ____D C:\Program Files (x86)\Microsoft XNA
2024-02-17 17:20 - 2024-02-29 02:12 - 000000000 ____D C:\Users\tobby\AppData\Local\UnrealEngine
2024-02-17 17:20 - 2024-02-18 17:26 - 000000000 ____D C:\Users\tobby\AppData\Local\Epic Games
2024-02-17 17:20 - 2024-02-18 01:53 - 000000000 ____D C:\Users\tobby\AppData\Local\EpicGamesLauncher
2024-02-17 17:20 - 2024-02-17 17:20 - 000466456 _____ (Creative Labs) C:\Windows\system32\wrap_oal.dll
2024-02-17 17:20 - 2024-02-17 17:20 - 000444952 _____ (Creative Labs) C:\Windows\SysWOW64\wrap_oal.dll
2024-02-17 17:20 - 2024-02-17 17:20 - 000122904 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\system32\OpenAL32.dll
2024-02-17 17:20 - 2024-02-17 17:20 - 000109080 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\SysWOW64\OpenAL32.dll
2024-02-17 17:20 - 2024-02-17 17:20 - 000000000 ____D C:\Users\tobby\AppData\Local\UnrealEngineLauncher
2024-02-17 17:20 - 2024-02-17 17:20 - 000000000 ____D C:\Program Files (x86)\OpenAL
2024-02-17 17:19 - 2024-02-28 05:32 - 000000000 ____D C:\Users\tobby\AppData\Local\Bluestacks
2024-02-17 17:19 - 2024-02-28 05:29 - 000000000 ____D C:\Users\Public\BlueStacks
2024-02-17 17:19 - 2024-02-27 23:09 - 000000000 ____D C:\Users\tobby\AppData\Local\Steam
2024-02-17 17:19 - 2024-02-17 17:19 - 000000000 ____D C:\Users\tobby\AppData\Local\CEF
2024-02-17 17:18 - 2024-03-04 16:42 - 000000000 ____D C:\Program Files (x86)\Steam
2024-02-17 17:18 - 2024-02-17 17:22 - 000000000 ____D C:\ProgramData\Epic
2024-02-17 17:18 - 2024-02-17 17:20 - 000000000 ____D C:\Program Files (x86)\Epic Games
2024-02-17 17:18 - 2024-02-17 17:18 - 000001272 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk
2024-02-17 17:18 - 2024-02-17 17:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2024-02-17 17:17 - 2024-02-17 17:17 - 001296856 _____ (Realtek ) C:\Windows\system32\Drivers\rt640x64.sys
2024-02-17 17:17 - 2024-02-17 17:17 - 000003658 _____ C:\Windows\system32\Tasks\ROCCAT DEVICE SERVICE
2024-02-17 17:15 - 2024-02-17 17:15 - 000000000 ____D C:\Users\tobby\AppData\Roaming\ROCCAT
2024-02-17 17:14 - 2024-02-17 17:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ROCCAT
2024-02-17 17:14 - 2024-02-17 17:14 - 000000000 ____D C:\Program Files (x86)\ROCCAT
2024-02-17 17:14 - 2024-02-17 17:14 - 000000000 ____D C:\Program Files (x86)\InstallShield Installation Information
2024-02-17 17:12 - 2024-03-04 18:06 - 000003124 _____ C:\Windows\system32\Tasks\MSIAfterburner
2024-02-17 17:07 - 2024-02-29 04:56 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner
2024-02-17 17:07 - 2024-02-28 14:56 - 000000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2024-02-17 17:07 - 2024-02-17 17:09 - 000000000 ____D C:\Windows\SysWOW64\directx
2024-02-17 17:07 - 2024-02-17 17:07 - 000000000 ____D C:\Users\tobby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server
2024-02-17 17:07 - 2024-02-17 17:07 - 000000000 ____D C:\Users\tobby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
2024-02-17 17:06 - 2024-02-26 01:58 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2024-02-17 17:06 - 2024-02-17 17:06 - 000000000 ____D C:\Users\tobby\AppData\LocalLow\NVIDIA
2024-02-17 17:05 - 2024-02-17 17:06 - 000000000 ____D C:\Windows\system32\Drivers\NVIDIA Corporation
2024-02-17 17:05 - 2024-02-17 17:05 - 000000000 ____D C:\Windows\system32\lxss
2024-02-17 17:05 - 2024-02-17 12:31 - 006943344 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2024-02-17 17:02 - 2024-02-17 12:31 - 006030584 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2024-02-17 17:01 - 2024-03-04 15:57 - 000000000 ____D C:\ProgramData\ProductData
2024-02-17 17:01 - 2024-02-17 17:01 - 000000000 ____D C:\Users\tobby\AppData\Roaming\Easeware
2024-02-17 17:01 - 2024-02-17 17:01 - 000000000 ____D C:\Users\tobby\AppData\Local\PeerDistRepub
2024-02-17 17:01 - 2024-02-17 17:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Easy
2024-02-17 17:01 - 2024-02-17 17:01 - 000000000 ____D C:\Program Files\Easeware
2024-02-17 17:00 - 2024-02-17 17:01 - 000000000 ____D C:\Users\tobby\AppData\LocalLow\IObit
2024-02-17 17:00 - 2024-02-17 17:00 - 000000000 ____D C:\Users\tobby\AppData\Local\setup
2024-02-17 17:00 - 2024-02-17 17:00 - 000000000 ____D C:\Program Files (x86)\IObit
2024-02-17 16:59 - 2024-03-04 18:00 - 000000000 ____D C:\Users\tobby\AppData\Roaming\IObit
2024-02-17 16:59 - 2024-02-20 17:16 - 000000000 ____D C:\ProgramData\Package Cache
2024-02-17 16:59 - 2024-02-17 17:02 - 000000000 ____D C:\ProgramData\IObit
2024-02-17 16:59 - 2024-02-17 16:59 - 000000000 ____D C:\Users\tobby\AppData\Roaming\AMD
2024-02-17 16:59 - 2024-02-17 16:59 - 000000000 ____D C:\Program Files (x86)\AMD
2024-02-17 16:59 - 2024-02-17 16:59 - 000000000 ____D C:\AMD
2024-02-17 16:33 - 2024-03-02 02:40 - 000002239 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-02-17 16:33 - 2024-02-20 20:39 - 000000000 ____D C:\Program Files (x86)\Google
2024-02-17 16:33 - 2024-02-17 16:33 - 000000000 ____D C:\Users\tobby\AppData\Local\Google
2024-02-17 16:33 - 2024-02-17 16:33 - 000000000 ____D C:\Program Files\Google
2024-02-17 16:32 - 2024-03-03 18:11 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-02-17 16:32 - 2024-02-23 04:01 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2024-02-17 16:32 - 2024-02-21 16:27 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-02-17 16:32 - 2024-02-20 21:33 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-02-17 16:32 - 2024-02-17 16:32 - 000002034 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox Privater Modus.lnk
2024-02-17 16:32 - 2024-02-17 16:32 - 000000000 ____D C:\Users\tobby\AppData\Roaming\Mozilla
2024-02-17 16:32 - 2024-02-17 16:32 - 000000000 ____D C:\Users\tobby\AppData\Local\Mozilla
2024-02-17 06:47 - 2024-02-17 06:47 - 000000000 ____D C:\Users\tobby\AppData\Roaming\Microsoft\MMC
2024-02-17 06:42 - 2024-02-17 06:42 - 000000000 ____D C:\ProgramData\PLUG
2024-02-17 06:40 - 2024-02-17 06:40 - 000000000 ____D C:\Windows\InboxApps
2024-02-17 06:25 - 2024-02-17 06:25 - 000000000 ____D C:\Users\tobby\AppData\Roaming\Microsoft\Spelling
2024-02-17 06:22 - 2024-02-17 06:23 - 000000000 ____D C:\Windows\system32\MRT
2024-02-17 06:20 - 2024-02-17 17:47 - 000000000 ____D C:\Users\tobby\AppData\Local\Comms
2024-02-17 06:20 - 2024-02-17 06:20 - 000000000 ____D C:\Program Files\RUXIM
2024-02-17 06:20 - 2024-02-17 06:20 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2024-02-17 06:19 - 2024-02-26 05:51 - 000000000 ____D C:\Users\tobby\AppData\Local\NVIDIA
2024-02-17 06:18 - 2024-02-17 21:48 - 000000000 ____D C:\Users\tobby\AppData\Local\PlaceholderTileLogoFolder
2024-02-17 06:18 - 2024-02-17 06:23 - 000000000 ___RD C:\Users\tobby\OneDrive
2024-02-17 06:18 - 2024-02-17 06:18 - 000000000 ___HD C:\OneDriveTemp
2024-02-17 06:18 - 2024-02-17 06:18 - 000000000 ____D C:\Users\tobby\AppData\Local\OneDrive
2024-02-17 06:18 - 2024-02-17 06:18 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2024-02-17 06:16 - 2024-03-04 19:17 - 001723308 _____ C:\Windows\system32\PerfStringBackup.INI
2024-02-17 06:16 - 2024-03-04 16:27 - 000000000 ____D C:\Users\tobby\AppData\Local\D3DSCache
2024-02-17 06:16 - 2024-03-03 16:54 - 000000000 ____D C:\Users\tobby\AppData\Local\Packages
2024-02-17 06:16 - 2024-03-03 16:54 - 000000000 ____D C:\ProgramData\Packages
2024-02-17 06:16 - 2024-02-28 07:15 - 000000000 __RHD C:\Users\Public\AccountPictures
2024-02-17 06:16 - 2024-02-17 17:47 - 000000000 ____D C:\Users\tobby\AppData\Local\ConnectedDevicesPlatform
2024-02-17 06:16 - 2024-02-17 06:16 - 000000000 ___SD C:\Users\tobby\AppData\Roaming\Microsoft\Crypto
2024-02-17 06:16 - 2024-02-17 06:16 - 000000000 ___RD C:\Users\tobby\3D Objects
2024-02-17 06:16 - 2024-02-17 06:16 - 000000000 ____D C:\Users\tobby\AppData\Roaming\Microsoft\Vault
2024-02-17 06:16 - 2024-02-17 06:16 - 000000000 ____D C:\Users\tobby\AppData\Roaming\Microsoft\Network
2024-02-17 06:16 - 2024-02-17 06:16 - 000000000 ____D C:\Users\tobby\AppData\Roaming\Adobe
2024-02-17 06:16 - 2024-02-17 06:16 - 000000000 ____D C:\Users\tobby\AppData\Local\VirtualStore
2024-02-17 06:16 - 2024-02-17 06:16 - 000000000 ____D C:\Users\tobby\AppData\Local\Publishers
2024-02-17 06:15 - 2024-03-04 19:11 - 000000000 ____D C:\ProgramData\NVIDIA
2024-02-17 06:15 - 2024-02-26 01:58 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2024-02-17 06:15 - 2024-02-26 01:58 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2024-02-17 06:15 - 2024-02-07 23:49 - 000121880 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2024-02-17 06:14 - 2024-03-04 16:42 - 000000000 ____D C:\Users\tobby
2024-02-17 06:14 - 2024-02-28 14:56 - 000000000 ___SD C:\Users\tobby\AppData\Roaming\Microsoft\Protect
2024-02-17 06:14 - 2024-02-17 06:16 - 000000000 ____D C:\Users\tobby\AppData\Roaming\Microsoft\Windows
2024-02-17 06:14 - 2024-02-17 06:14 - 000000020 ___SH C:\Users\tobby\ntuser.ini
2024-02-17 06:14 - 2024-02-17 06:14 - 000000000 _SHDL C:\Users\tobby\Vorlagen
2024-02-17 06:14 - 2024-02-17 06:14 - 000000000 _SHDL C:\Users\tobby\Startmenü
2024-02-17 06:14 - 2024-02-17 06:14 - 000000000 _SHDL C:\Users\tobby\Netzwerkumgebung
2024-02-17 06:14 - 2024-02-17 06:14 - 000000000 _SHDL C:\Users\tobby\Lokale Einstellungen
2024-02-17 06:14 - 2024-02-17 06:14 - 000000000 _SHDL C:\Users\tobby\Eigene Dateien
2024-02-17 06:14 - 2024-02-17 06:14 - 000000000 _SHDL C:\Users\tobby\Druckumgebung
2024-02-17 06:14 - 2024-02-17 06:14 - 000000000 _SHDL C:\Users\tobby\Documents\Eigene Videos
2024-02-17 06:14 - 2024-02-17 06:14 - 000000000 _SHDL C:\Users\tobby\Documents\Eigene Musik
2024-02-17 06:14 - 2024-02-17 06:14 - 000000000 _SHDL C:\Users\tobby\Documents\Eigene Bilder
2024-02-17 06:14 - 2024-02-17 06:14 - 000000000 _SHDL C:\Users\tobby\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2024-02-17 06:14 - 2024-02-17 06:14 - 000000000 _SHDL C:\Users\tobby\AppData\Local\Verlauf
2024-02-17 06:14 - 2024-02-17 06:14 - 000000000 _SHDL C:\Users\tobby\AppData\Local\Anwendungsdaten
2024-02-17 06:14 - 2024-02-17 06:14 - 000000000 _SHDL C:\Users\tobby\Anwendungsdaten
2024-02-17 06:14 - 2024-02-17 06:14 - 000000000 ___SD C:\Users\tobby\AppData\Roaming\Microsoft\SystemCertificates
2024-02-17 06:14 - 2024-02-17 06:14 - 000000000 ___SD C:\Users\tobby\AppData\Roaming\Microsoft\Credentials
2024-02-17 06:12 - 2024-02-17 06:12 - 000000000 ____D C:\Windows\CSC
2024-02-17 06:10 - 2024-02-17 06:10 - 000000000 _SHDL C:\Users\Public\Documents\Eigene Videos
2024-02-17 06:10 - 2024-02-17 06:10 - 000000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2024-02-17 06:10 - 2024-02-17 06:10 - 000000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2024-02-17 06:10 - 2024-02-17 06:10 - 000000000 _SHDL C:\Users\Default\Vorlagen
2024-02-17 06:10 - 2024-02-17 06:10 - 000000000 _SHDL C:\Users\Default\Startmenü
2024-02-17 06:10 - 2024-02-17 06:10 - 000000000 _SHDL C:\Users\Default\Netzwerkumgebung
2024-02-17 06:10 - 2024-02-17 06:10 - 000000000 _SHDL C:\Users\Default\Lokale Einstellungen
2024-02-17 06:10 - 2024-02-17 06:10 - 000000000 _SHDL C:\Users\Default\Eigene Dateien
2024-02-17 06:10 - 2024-02-17 06:10 - 000000000 _SHDL C:\Users\Default\Druckumgebung
2024-02-17 06:10 - 2024-02-17 06:10 - 000000000 _SHDL C:\Users\Default\Documents\Eigene Videos
2024-02-17 06:10 - 2024-02-17 06:10 - 000000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2024-02-17 06:10 - 2024-02-17 06:10 - 000000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2024-02-17 06:10 - 2024-02-17 06:10 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2024-02-17 06:10 - 2024-02-17 06:10 - 000000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2024-02-17 06:10 - 2024-02-17 06:10 - 000000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2024-02-17 06:10 - 2024-02-17 06:10 - 000000000 _SHDL C:\Users\Default\Anwendungsdaten
2024-02-17 06:10 - 2024-02-17 06:10 - 000000000 _SHDL C:\Programme
2024-02-17 06:10 - 2024-02-17 06:10 - 000000000 _SHDL C:\ProgramData\Vorlagen
2024-02-17 06:10 - 2024-02-17 06:10 - 000000000 _SHDL C:\ProgramData\Startmenü
2024-02-17 06:10 - 2024-02-17 06:10 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2024-02-17 06:10 - 2024-02-17 06:10 - 000000000 _SHDL C:\ProgramData\Dokumente
2024-02-17 06:10 - 2024-02-17 06:10 - 000000000 _SHDL C:\ProgramData\Anwendungsdaten
2024-02-17 06:10 - 2024-02-17 06:10 - 000000000 _SHDL C:\Program Files\Gemeinsame Dateien
2024-02-17 06:10 - 2024-02-17 06:10 - 000000000 _SHDL C:\Dokumente und Einstellungen
2024-02-17 06:09 - 2024-03-04 19:11 - 000008192 ___SH C:\DumpStack.log.tmp
2024-02-17 06:09 - 2024-03-04 19:11 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2024-02-17 06:09 - 2024-03-04 19:10 - 000000000 ____D C:\Windows\system32\SleepStudy
2024-02-17 06:09 - 2024-03-03 16:53 - 000269200 _____ C:\Windows\system32\FNTCACHE.DAT
2024-02-17 06:09 - 2024-03-03 16:42 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-02-17 06:09 - 2024-02-28 07:20 - 000000000 ____D C:\Windows\system32\Drivers\wd
2024-02-17 06:09 - 2024-02-25 19:37 - 000003756 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-02-17 06:09 - 2024-02-25 19:37 - 000003632 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-02-17 06:09 - 2024-02-19 07:39 - 000000000 ____D C:\Windows\Panther
2024-02-17 06:09 - 2024-02-17 06:09 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2024-02-17 06:09 - 2024-02-17 06:09 - 000000000 ____D C:\Windows\ServiceProfiles
2024-02-17 05:37 - 2024-02-28 17:58 - 000000372 _____ C:\Users\tobby\Documents\aionclassicmemo_cc41d11d.dat
2024-02-17 05:37 - 2024-02-27 22:13 - 000000034 _____ C:\Users\tobby\Documents\aionclassicmemo_2797 1fb.dat
2024-02-17 05:37 - 2024-02-17 17:01 - 000000000 ____D C:\Users\tobby\Documents\Steam
2024-02-17 05:37 - 2023-10-15 17:42 - 000000103 _____ C:\Users\tobby\Documents\aionlivememo_a8fb5c18.dat
2024-02-17 05:37 - 2023-02-21 02:03 - 000001295 _____ C:\Users\tobby\Documents\aionlivememo_b51aed17.dat
2024-02-17 05:37 - 2023-02-15 15:43 - 000000283 _____ C:\Users\tobby\Documents\aionlivememo_36101a 6.dat
2024-02-17 05:37 - 2023-02-15 15:42 - 000000278 _____ C:\Users\tobby\Documents\aionlivememo_42e288c6.dat
2024-02-17 05:37 - 2021-10-06 02:10 - 000000020 _____ C:\Users\tobby\Documents\aionmemo_f784f3ab.dat
2024-02-17 05:37 - 2021-10-05 19:54 - 000000278 _____ C:\Users\tobby\Documents\aionmemo_42e288c6.dat
2024-02-17 05:37 - 2021-10-05 16:06 - 000000283 _____ C:\Users\tobby\Documents\aionmemo_36101a 6.dat
2024-02-17 05:37 - 2021-09-10 06:32 - 000000020 _____ C:\Users\tobby\Documents\aionmemo_698d9546.dat
2024-02-17 05:36 - 2024-02-17 17:01 - 000000000 ____D C:\Users\tobby\Documents\Sonstiges
2024-02-17 05:28 - 2024-02-17 16:52 - 000000000 ____D C:\Users\tobby\Documents\Anime
2024-02-17 05:21 - 2024-03-03 16:41 - 000001846 _____ C:\Users\tobby\Desktop\To Do List.txt
2024-02-17 05:20 - 2024-02-17 17:01 - 000000000 ____D C:\Users\tobby\Documents\Serien - Filme
2024-02-17 05:19 - 2024-02-20 02:39 - 000000000 ____D C:\Users\tobby\Documents\Notizen
==================== Ein Monat (geänderte) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2024-03-04 19:26 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness
2024-03-04 19:26 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-03-04 19:17 - 2019-12-07 15:51 - 000743838 _____ C:\Windows\system32\perfh007.dat
2024-03-04 19:17 - 2019-12-07 15:51 - 000150260 _____ C:\Windows\system32\perfc007.dat
2024-03-04 19:17 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF
2024-03-04 19:10 - 2019-12-07 10:03 - 000524288 _____ C:\Windows\system32\config\BBI
2024-03-04 18:08 - 2023-05-05 13:28 - 000000000 ____D C:\Windows\SystemTemp
2024-03-04 17:55 - 2019-12-07 10:14 - 000000000 ___HD C:\Windows\ELAMBKUP
2024-03-03 16:54 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-03-03 16:52 - 2019-12-07 15:54 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2024-03-03 16:52 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2024-03-03 16:52 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources
2024-03-03 16:52 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ShellExperiences
2024-03-03 16:52 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2024-03-03 16:52 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr
2024-03-03 16:41 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp
2024-02-29 22:23 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Drivers\DriverData
2024-02-20 15:52 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\tracing
2024-02-18 04:31 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\appcompat
2024-02-17 20:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\MUI
2024-02-17 20:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\MUI
2024-02-17 17:18 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2024-02-17 16:52 - 2023-01-21 23:09 - 000000000 ____D C:\Users\tobby\Documents\PS Vita
2024-02-17 06:40 - 2019-12-07 15:54 - 000000000 ___SD C:\Windows\system32\AppV
2024-02-17 06:40 - 2019-12-07 15:54 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2024-02-17 06:40 - 2019-12-07 15:54 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2024-02-17 06:40 - 2019-12-07 15:51 - 000000000 ____D C:\Windows\SysWOW64\de
2024-02-17 06:40 - 2019-12-07 15:51 - 000000000 ____D C:\Windows\system32\de
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\SysWOW64\F12
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\SysWOW64\DiagSvcs
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\UNP
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\F12
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\DiagSvcs
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\PrintDialog
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\setup
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\PerceptionSimulation
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\oobe
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\migwiz
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\lv-LV
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\lt-LT
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\et-EE
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\es-MX
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Com
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\AdvancedInstallers
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\WinMetadata
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\SystemResetPlatform
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Sysprep
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\ShellExperiences
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\setup
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\PerceptionSimulation
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\oobe
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\migwiz
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\lv-LV
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\lt-LT
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\et-EE
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\es-MX
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Dism
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Com
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\appraiser
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\AdvancedInstallers
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ShellComponents
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Provisioning
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\IME
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2024-02-17 06:40 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\servicing
2024-02-17 06:36 - 2019-12-07 15:54 - 000023040 _____ (Microsoft Corporation) C:\Windows\system32\OEMDefaultAssociations.dll
2024-02-17 06:36 - 2019-12-07 15:54 - 000020827 _____ C:\Windows\system32\OEMDefaultAssociations.xml
2024-02-17 06:36 - 2019-12-07 10:15 - 000208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msclmd.dll
2024-02-17 06:36 - 2019-12-07 10:14 - 000232448 _____ (Microsoft Corporation) C:\Windows\system32\msclmd.dll
2024-02-17 06:32 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ServiceState
2024-02-17 06:23 - 2019-12-07 10:03 - 000032768 _____ C:\Windows\system32\config\ELAM
2024-02-17 06:14 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\WinBioDatabase
2024-02-17 06:12 - 2019-12-07 15:52 - 000000000 ____D C:\Windows\system32\FxsTmp
2024-02-17 06:12 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\spool
2024-02-17 06:12 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\USOPrivate
2024-02-17 06:10 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows NT
2024-02-17 06:09 - 2019-12-07 10:14 - 000028672 _____ C:\Windows\system32\config\BCD-Template
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========
2024-02-17 20:34 - 2024-02-17 20:34 - 000001020 _____ () C:\Users\tobby\AppData\Roaming\nikke_launcher.reg
2024-03-04 16:26 - 2024-03-04 16:26 - 000007631 _____ () C:\Users\tobby\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
==================== Ende von FRST.txt ========================
|
|
07.03.2024, 01:04
| #2 |
| | Unsicher nach Neuinstallation wegen VirusCode:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 26.02.2024 01
durchgeführt von tobby (04-03-2024 20:30:52)
Gestartet von C:\Users\tobby\Downloads
Microsoft Windows 10 Pro Version 22H2 19045.4123 (X64) (2024-02-17 05:11:00)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
Administrator (S-1-5-21-2297492589-26117319-3987669191-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2297492589-26117319-3987669191-503 - Limited - Disabled)
Gast (S-1-5-21-2297492589-26117319-3987669191-501 - Limited - Disabled)
tobby (S-1-5-21-2297492589-26117319-3987669191-1001 - Administrator - Enabled) => C:\Users\tobby
WDAGUtilityAccount (S-1-5-21-2297492589-26117319-3987669191-504 - Limited - Disabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Malwarebytes (Enabled - Up to date) {0D452135-A081-B000-D6B6-132E52638543}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
AION Classic (HKLM-x32\...\{cdc124e6-6e04-4867-a651-135e589f8fd1}) (Version: - Gameforge)
AION MMO (HKLM-x32\...\{f7ed0b7e-fab7-4875-9761-b028f5b23416}) (Version: - Gameforge)
AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 6.01.25.342 - Advanced Micro Devices, Inc.)
AMD PCI Driver (HKLM-x32\...\{80EC3CEE-2940-42A1-A776-B5D810D39F1E}) (Version: 1.0.0.90 - Advanced Micro Devices, Inc.) Hidden
AMD PSP Driver (HKLM-x32\...\{988F14B8-79A8-475D-BAC7-83F96AD3D821}) (Version: 5.26.0.0 - Advanced Micro Devices, Inc.) Hidden
AMD Ryzen Balanced Driver (HKLM-x32\...\{A171D320-C42C-4F3B-A2D8-C6A09F6788CC}) (Version: 8.0.0.13 - Advanced Micro Devices, Inc.) Hidden
AMD_Chipset_Drivers (HKLM-x32\...\{42e5a8d4-8fb0-48a1-9063-fc159c7566a0}) (Version: 6.01.25.342 - Advanced Micro Devices, Inc.) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
BlueStacks App Player (HKLM\...\BlueStacks_nxt) (Version: 5.20.105.1009 - now.gg, Inc.)
CPUID CPU-Z 2.09 (HKLM\...\CPUID CPU-Z_is1) (Version: 2.09 - CPUID, Inc.)
CrystalDiskInfo 9.2.3 (HKLM\...\CrystalDiskInfo_is1) (Version: 9.2.3 - Crystal Dew World)
CurseForge 0.244.5-16323 (HKU\S-1-5-21-2297492589-26117319-3987669191-1001\...\ca0e291c-abd4-5fc3-b6a0-3d4333eccbd7) (Version: 0.244.5-16323 - Overwolf)
Discord (HKU\S-1-5-21-2297492589-26117319-3987669191-1001\...\Discord) (Version: 1.0.9033 - Discord Inc.)
Display Driver Uninstaller 18.0.7.2 (HKLM-x32\...\Display Driver Uninstaller) (Version: 18.0.7.2 - Wagnardsoft)
Dragon Raja (HKLM\...\DragonRaja) (Version: 1.7 - Archosaur Games Inc.)
Driver Booster 11 (HKLM-x32\...\Driver Booster_is1) (Version: 11.3.0 - IObit)
Driver Easy 5.8.1 (HKLM\...\DriverEasy_is1) (Version: 5.8.1 - Easeware)
EA app (HKLM\...\{C2622085-ABD2-49E5-8AB9-D3D6A642C091}) (Version: 13.140.0.5653 - Electronic Arts) Hidden
EA app (HKLM-x32\...\{808115f5-372e-4994-b758-514aa090a54d}) (Version: 13.140.0.5653 - Electronic Arts)
Epic Games Launcher (HKLM-x32\...\{9483ABD9-C772-487B-ADF8-09347CF8F2D2}) (Version: 1.3.93.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{57A956AB-4BCC-45C6-9B40-957E4E125568}) (Version: 2.0.44.0 - Epic Games, Inc.)
Gameforge Client (HKLM-x32\...\{d3b2a0c1-f0d0-4888-ae0b-1c5e1febdafb}_is1) (Version: 2.6.3.1870 - Gameforge)
GOG GALAXY (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: 2.0.73.27 - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 122.0.6261.95 - Google LLC)
HWiNFO64 (HKLM\...\HWiNFO64_is1) (Version: 7.72 - Martin Malik, REALiX s.r.o.)
JDownloader 2 (HKLM-x32\...\jdownloader2) (Version: 2.0.1 - AppWork GmbH)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKU\S-1-5-21-2297492589-26117319-3987669191-1001\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc)
Malwarebytes version 4.6.9.314 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.6.9.314 - Malwarebytes)
MasterofGarden (HKLM-x32\...\{1BE0F2EB-7277-45AA-964E-32F08111759F}) (Version: 1.0.0 - Crunchyroll Games, LLC)
Metin2 de-DE (HKLM-x32\...\{fab180a3-cd65-4b7e-bd0e-2ef77fd0c258.de-DE}) (Version: - Gameforge)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 122.0.2365.66 - Microsoft Corporation)
Microsoft Edge WebView2-Laufzeit (HKLM-x32\...\Microsoft EdgeWebView) (Version: 122.0.2365.66 - Microsoft Corporation)
Microsoft PC Manager (Beta) (HKLM-x32\...\MSPCManager) (Version: 3.8.10.0 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40660 (HKLM\...\{5740BD44-B58D-321A-AFC0-6D3D4556DD6C}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40660 (HKLM\...\{CB0836EC-B072-368D-82B2-D3470BF95707}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40660 (HKLM-x32\...\{7DAD0258-515C-3DD4-8964-BD714199E0F7}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40660 (HKLM-x32\...\{E30D8B21-D82D-3211-82CC-0F0A5D1495E8}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.38.33135 (HKLM-x32\...\{c649ede4-f16a-4486-a117-dcc2f2a35165}) (Version: 14.38.33135.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.38.33135 (HKLM-x32\...\{46c3b171-c15c-4137-8e1d-67eeb2985b44}) (Version: 14.38.33135.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.38.33135 (HKLM\...\{19AFE054-CA83-45D5-A9DB-4108EF4BD391}) (Version: 14.38.33135 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.38.33135 (HKLM\...\{AA0C8AB5-7297-4D46-A0D9-08096FE59E46}) (Version: 14.38.33135 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.38.33135 (HKLM-x32\...\{9C19C103-7DB1-44D1-A039-2C076A633A38}) (Version: 14.38.33135 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.38.33135 (HKLM-x32\...\{286DC39B-5FB7-4AFF-9DD4-22DB47664CD7}) (Version: 14.38.33135 - Microsoft Corporation) Hidden
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Minion (HKU\S-1-5-21-2297492589-26117319-3987669191-1001\...\{Minion}}_is1) (Version: 3.0 - Good Game Mods LLC)
Mozilla Firefox (x64 de) (HKLM\...\Mozilla Firefox 123.0 (x64 de)) (Version: 123.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 122.0.1 - Mozilla)
MSI Afterburner 4.6.6 Beta 3 (HKLM-x32\...\Afterburner) (Version: 4.6.6 Beta 3 - MSI Co., LTD)
NIKKE (HKU\S-1-5-21-2297492589-26117319-3987669191-1001\...\nikke_launcher) (Version: - Level Infinite)
NVIDIA FrameView SDK 1.4.9615.33661400 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.4.9615.33661400 - NVIDIA Corporation)
NVIDIA Grafiktreiber 551.61 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 551.61 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.40.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.40.14 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
NVIDIA-App 10.0.0.499 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NvApp) (Version: 10.0.0.499 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
osu! (HKLM-x32\...\{65e4b4cf-b8f8-4ea3-a3ce-5a5f2675cdaf}) (Version: latest - ppy Pty Ltd)
PokeOne version 1.01 (HKLM-x32\...\{30B1E559-2D0C-4317-A76E-4EE36E2F8A39}_is1) (Version: 1.01 - PSXTeam)
Promontory_GPIO Driver (HKLM-x32\...\{B5512BCC-F4CD-4159-86A4-B2AD7D38FFA9}) (Version: 3.0.0.0 - Advanced Micro Devices, Inc.) Hidden
Revelation M (HKLM-x32\...\tym-pc-euro-release) (Version: 1.0.2.0 - NetEase Inc.)
Riot Client (HKU\S-1-5-21-2297492589-26117319-3987669191-1001\...\Riot Game Riot_Client.) (Version: - Riot Games, Inc)
RivaTuner Statistics Server 7.3.5 (HKLM-x32\...\RTSS) (Version: 7.3.5 - Unwinder)
ROCCAT SWARM (HKLM-x32\...\{E9CA669A-8FB1-4F3D-A771-2E0767D20F89}) (Version: 1.94.680 - ROCCAT GmbH) Hidden
ROCCAT SWARM (HKLM-x32\...\InstallShield_{E9CA669A-8FB1-4F3D-A771-2E0767D20F89}) (Version: 1.94.680 - ROCCAT GmbH)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.84.1856 - Rockstar Games)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak (HKLM\...\{EE883F28-D7AF-48E5-87B6-1F59D856362F}) (Version: 5.0.0 - TeamSpeak)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.6.2 - TeamSpeak Systems GmbH)
The Elder Scrolls Online (HKLM-x32\...\The Elder Scrolls Online) (Version: 2.6.3.2758126 - Zenimax Online Studios)
TunnelBear (HKLM-x32\...\{c99146dd-e09d-4881-b76b-2d7bc1b30806}) (Version: 4.8.0.0 - TunnelBear)
TunnelBear (HKLM-x32\...\{E7AEA528-0D3E-4A22-B516-9EC97C636E42}) (Version: 4.8.0.0 - TunnelBear) Hidden
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 150.1.11037 - Ubisoft)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{7B63012A-4AC6-40C6-B6AF-B24A84359DD5}) (Version: 8.93.0.0 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.20 - VideoLAN)
Wargaming.net Game Center (HKU\S-1-5-21-2297492589-26117319-3987669191-1001\...\Wargaming.net Game Center) (Version: 23.7.0.4683 - Wargaming.net)
WeMod (HKU\S-1-5-21-2297492589-26117319-3987669191-1001\...\WeMod) (Version: 8.13.15 - WeMod)
WinRAR 7.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 7.00.0 - win.rar GmbH)
World of Tanks EU (HKU\S-1-5-21-2297492589-26117319-3987669191-1001\...\338188369) (Version: - Wargaming.net)
Packages:
=========
Dev Home -> C:\Program Files\WindowsApps\Microsoft.Windows.DevHome_0.1100.416.0_x64__8wekyb3d8bbwe [2024-03-03] (Microsoft Corporation)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.964.0_x64__56jybvy8sckqj [2024-02-26] (NVIDIA Corp.)
TranslucentTB -> C:\Program Files\WindowsApps\28017CharlesMilette.TranslucentTB_2023.2.0.0_x64__v826wp6bftszj [2024-02-17] (Charles Milette) [Startup Task]
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-2297492589-26117319-3987669191-1001_Classes\CLSID\{5C4D8D77-5B87-40CA-884E-F56858227E5C}\localserver32 -> C:\Users\tobby\AppData\Local\Programs\TeamSpeak\notification_helper.exe => Keine Datei
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2024-02-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2024-02-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2024-03-04] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_f2364b8cd60b763b\nvshext.dll [2024-02-17] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2024-03-04] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2024-02-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2024-02-26] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\system32\rtvcvfw64.dll [1102848 2023-04-10] () [Datei ist nicht signiert]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [891904 2023-04-10] () [Datei ist nicht signiert]
==================== Verknüpfungen & WMI ========================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
ShortcutWithArgument: C:\Users\tobby\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\9501e18d7c2ab92e\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 2"
==================== Geladene Module (Nicht auf der Ausnahmeliste) =============
2023-08-30 16:19 - 2023-08-30 16:19 - 000030720 _____ () [Datei ist nicht signiert] [Datei wird verwendet] C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.Wrapper.dll
2024-02-08 15:33 - 2024-02-08 15:33 - 000261120 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\MSI Afterburner\RTCore.dll
2024-02-08 15:33 - 2024-02-08 15:33 - 000075264 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\MSI Afterburner\RTFC.dll
2024-02-08 15:33 - 2024-02-08 15:33 - 000953856 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\MSI Afterburner\RTHAL.dll
2024-02-08 15:33 - 2024-02-08 15:33 - 000112128 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\MSI Afterburner\RTMUI.dll
2024-02-08 15:33 - 2024-02-08 15:33 - 000416768 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\MSI Afterburner\RTUI.dll
2024-02-06 11:55 - 2024-02-06 11:55 - 000074240 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\RivaTuner Statistics Server\RTFC.dll
2024-02-06 11:55 - 2024-02-06 11:55 - 000112128 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\RivaTuner Statistics Server\RTMUI.dll
2024-02-06 11:55 - 2024-02-06 11:55 - 000414208 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\RivaTuner Statistics Server\RTUI.dll
2015-12-29 06:25 - 2015-12-29 06:25 - 000120334 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\libgcc_s_dw2-1.dll
2015-12-29 06:25 - 2015-12-29 06:25 - 001540622 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\libstdc++-6.dll
2022-08-30 19:45 - 2022-08-30 19:45 - 007523840 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\resource.dll
2024-02-17 17:17 - 2022-08-15 10:18 - 000286720 _____ (C-MEDIA Electronics INC.) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\data\KHAN_AIMO\osConfLib.dll
2015-12-29 06:25 - 2015-12-29 06:25 - 000079360 _____ (MingW-W64 Project. All rights reserved.) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\libwinpthread-1.dll
2024-02-26 01:58 - 2024-02-26 01:58 - 000000000 ____L (NVIDIA Corporation) [symlink -> C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\PlugIns\NVIDIA App\MessageBusRouter.dll] C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\PlugIns\NVIDIA Overlay\MessageBusRouter.dll
2024-02-26 01:58 - 2024-02-26 01:58 - 000000000 ____L (NVIDIA Corporation) [symlink -> C:\Program Files\NVIDIA Corporation\NVIDIA App\MessageBus\NvMessageBusBroadcast.dll] C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem\NvMessageBusBroadcast.dll
2015-12-29 06:52 - 2015-12-29 06:52 - 002177536 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\LIBEAY32.dll
2015-12-29 06:52 - 2015-12-29 06:52 - 000462336 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\ssleay32.dll
2016-06-11 02:15 - 2016-06-11 02:15 - 000058880 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\imageformats\qdds.dll
2016-06-10 15:32 - 2016-06-10 15:32 - 000033792 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\imageformats\qgif.dll
2016-06-11 02:15 - 2016-06-11 02:15 - 000046592 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\imageformats\qicns.dll
2016-06-10 15:33 - 2016-06-10 15:33 - 000036352 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\imageformats\qico.dll
2016-06-10 15:32 - 2016-06-10 15:32 - 000258560 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\imageformats\qjpeg.dll
2016-06-11 01:51 - 2016-06-11 01:51 - 000028672 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\imageformats\qsvg.dll
2016-06-11 02:15 - 2016-06-11 02:15 - 000028672 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\imageformats\qtga.dll
2016-06-11 02:15 - 2016-06-11 02:15 - 000495616 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\imageformats\qtiff.dll
2016-06-11 02:15 - 2016-06-11 02:15 - 000027648 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\imageformats\qwbmp.dll
2016-06-11 02:16 - 2016-06-11 02:16 - 000416768 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\imageformats\qwebp.dll
2016-06-13 03:38 - 2016-06-13 03:38 - 000317440 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\mediaservice\dsengine.dll
2016-06-10 15:34 - 2016-06-10 15:34 - 001489920 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\platforms\qwindows.dll
2020-01-13 09:29 - 2020-01-13 09:29 - 005384704 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\Qt5Core.dll
2016-06-10 15:23 - 2016-06-10 15:23 - 005283840 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\Qt5Gui.dll
2016-06-13 03:29 - 2016-06-13 03:29 - 000853504 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\Qt5Multimedia.dll
2016-06-10 15:17 - 2016-06-10 15:17 - 001610240 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\Qt5Network.dll
2016-06-11 01:51 - 2016-06-11 01:51 - 000348160 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\Qt5Svg.dll
2016-06-13 03:27 - 2016-06-13 03:27 - 000188416 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\Qt5WebSockets.dll
2016-06-10 15:29 - 2016-06-10 15:29 - 006358528 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\Qt5Widgets.dll
2022-08-15 17:23 - 2022-08-15 17:23 - 000110207 _____ (Un4seen Developments) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\BASS.dll
2022-08-15 17:23 - 2022-08-15 17:23 - 000012166 _____ (Un4seen Developments) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\BASSWASAPI.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\Windows\tracing:? [16]
AlternateDataStreams: C:\Users\tobby\Anwendungsdaten:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\tobby\Downloads\FRST64.exe:MBAM.Zone.Identifier [240]
AlternateDataStreams: C:\Users\tobby\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394]
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\73829868.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\73829868.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================
==================== Internet Explorer (Nicht auf der Ausnahmeliste) ==========
==================== Hosts Inhalt: =========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2019-12-07 10:14 - 2024-02-17 21:11 - 000000822 _____ C:\Windows\system32\drivers\etc\hosts
==================== Andere Bereiche ===========================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-2297492589-26117319-3987669191-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\tobby\Downloads\blacklivesmatter-deshalb-posten-alle-stars-ein-schwarzes-foto,id=466f533a,b=bravo,w=1200,rm=sk.jpg
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
HKLM\...\StartupApproved\Run: => "WindowsMasterUI"
HKU\S-1-5-21-2297492589-26117319-3987669191-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-2297492589-26117319-3987669191-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-2297492589-26117319-3987669191-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-2297492589-26117319-3987669191-1001\...\StartupApproved\Run: => "GogGalaxy"
HKU\S-1-5-21-2297492589-26117319-3987669191-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_4800549307E325D0534F6938D6AF857A"
HKU\S-1-5-21-2297492589-26117319-3987669191-1001\...\StartupApproved\Run: => "RiotClient"
HKU\S-1-5-21-2297492589-26117319-3987669191-1001\...\StartupApproved\Run: => "Wargaming.net Game Center"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{2D474C58-443C-46E5-939C-83B14A0AC271}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{F0D0A85A-B647-4DDE-A6F7-8A2189F0875F}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{68AA9019-22DD-4A69-9DF9-EE0A26084D54}] => (Allow) C:\Program Files\Easeware\DriverEasy\DriverEasy.exe (Easeware Technology Limited -> Easeware)
FirewallRules: [{B7BB0F87-9256-4896-95F8-140C5A73D366}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{7748FA33-DF43-4A2A-B2FC-1DB08E1869F1}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{74196415-C08B-4806-BB02-426AE1A48DAE}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{48C4CF44-89E1-40D8-A9EA-BABC35B24453}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{724CFABE-1A5E-45F5-9D13-B313B19527A6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\launcher.exe (Skutta Software GmbH -> )
FirewallRules: [{17EDB58C-98F6-4FD0-B92F-2D7D7642BE40}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\launcher.exe (Skutta Software GmbH -> )
FirewallRules: [{D51DC077-D48E-4879-98B4-7F230A10EC4A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Soundpad\Soundpad.exe (Arthur Lepp -> Leppsoft)
FirewallRules: [{D9AD4A3A-1EB7-4AD2-86EB-D2C1166DBF5E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Soundpad\Soundpad.exe (Arthur Lepp -> Leppsoft)
FirewallRules: [{BA7423CC-E604-45DD-91EB-59E4E7114066}] => (Allow) D:\SteamLibrary\steamapps\common\NeosVR\Neos.exe () [Datei ist nicht signiert]
FirewallRules: [{D8D82D2D-B626-4D29-AB4B-9E41A052701A}] => (Allow) D:\SteamLibrary\steamapps\common\NeosVR\Neos.exe () [Datei ist nicht signiert]
FirewallRules: [{958C0687-B4EF-4703-922C-3FFAB81502A2}] => (Allow) D:\SteamLibrary\steamapps\common\NeosVR\NeosLauncher.exe () [Datei ist nicht signiert]
FirewallRules: [{CE7D782D-6936-4CF7-A9D5-91E6500872A9}] => (Allow) D:\SteamLibrary\steamapps\common\NeosVR\NeosLauncher.exe () [Datei ist nicht signiert]
FirewallRules: [{12746FA2-1056-458B-9F2F-F0D8BD072CFB}] => (Allow) D:\SteamLibrary\steamapps\common\ChilloutVR\ChilloutVR.exe () [Datei ist nicht signiert]
FirewallRules: [{7B15D040-5B51-49D3-85C3-8A1C38D3774C}] => (Allow) D:\SteamLibrary\steamapps\common\ChilloutVR\ChilloutVR.exe () [Datei ist nicht signiert]
FirewallRules: [{44E24281-C7E5-4D20-A834-D7A6CE65B055}] => (Allow) D:\SteamLibrary\steamapps\common\VRChat\launch.exe () [Datei ist nicht signiert]
FirewallRules: [{4AA163AF-1E85-47AC-A78F-A5E2701A3E9C}] => (Allow) D:\SteamLibrary\steamapps\common\VRChat\launch.exe () [Datei ist nicht signiert]
FirewallRules: [{B4D72A96-BF16-4C4E-8FA0-025E3A18E164}] => (Allow) D:\SteamLibrary\steamapps\common\Yu-Gi-Oh! Master Duel\masterduel.exe () [Datei ist nicht signiert]
FirewallRules: [{15808F8B-1A78-4480-8D03-2421EE221D3B}] => (Allow) D:\SteamLibrary\steamapps\common\Yu-Gi-Oh! Master Duel\masterduel.exe () [Datei ist nicht signiert]
FirewallRules: [{3D0EB189-CF30-4FDA-B2D8-58100E4F1000}] => (Allow) D:\SteamLibrary\steamapps\common\Yu-Gi-Oh! Duel Links\dlpc.exe () [Datei ist nicht signiert]
FirewallRules: [{50683BF7-DFF9-4FA0-A2EE-9156E9FAF556}] => (Allow) D:\SteamLibrary\steamapps\common\Yu-Gi-Oh! Duel Links\dlpc.exe () [Datei ist nicht signiert]
FirewallRules: [{1B6CFA12-20EB-472A-89B2-47D887B3D6C1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Live2DViewerEX\launcher.exe (Pavo Studio) [Datei ist nicht signiert]
FirewallRules: [{30BE6418-D77F-4496-9898-BB650DBF2A94}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Live2DViewerEX\launcher.exe (Pavo Studio) [Datei ist nicht signiert]
FirewallRules: [{C518F8D1-3D3D-44EB-AFD5-2A2CC534EAFB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Live2DViewerEX\InstanceManager.exe (Pavo Studio) [Datei ist nicht signiert]
FirewallRules: [{F63F5343-964E-4460-A988-8F588217B4FE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Live2DViewerEX\InstanceManager.exe (Pavo Studio) [Datei ist nicht signiert]
FirewallRules: [{A5F525D1-6972-485D-8728-80FB71601A2D}] => (Allow) C:\Users\tobby\AppData\Local\nikkeminiloader\nikkeminiloader.exe (PROXIMA BETA PTE. LIMITED -> )
FirewallRules: [{90B8B901-39F6-4825-BDC7-FD4A1EBD24D4}] => (Allow) C:\Users\tobby\AppData\Local\nikkeminiloader\nikkeminiloader.exe (PROXIMA BETA PTE. LIMITED -> )
FirewallRules: [{951E167A-37A8-4188-AEF2-CCBC67328DA8}] => (Allow) E:\SteamLibrary\steamapps\common\Lost Ark\Binaries\Win64\Launch_Game.exe (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{2D107C6E-B209-4C41-93A5-AC0F94897066}] => (Allow) E:\SteamLibrary\steamapps\common\Lost Ark\Binaries\Win64\Launch_Game.exe (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{CDA5ADAC-5A65-4073-AEF3-FB156FD95F5F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark\bin\x64\3DMark.exe (Underwriters Laboratories Inc. -> )
FirewallRules: [{F380A61F-B466-473E-9282-A56965AA215D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark\bin\x64\3DMark.exe (Underwriters Laboratories Inc. -> )
FirewallRules: [{604E7295-6481-487C-8DE0-E60572126C9F}] => (Allow) D:\SteamLibrary\steamapps\common\7 Days To Die\7dLauncher.exe () [Datei ist nicht signiert]
FirewallRules: [{F4DBEADE-3B61-42B5-ABF0-FEF226B595C1}] => (Allow) D:\SteamLibrary\steamapps\common\7 Days To Die\7dLauncher.exe () [Datei ist nicht signiert]
FirewallRules: [{7AD93829-11B8-4C2E-A11F-5EB3B4DD46AE}] => (Allow) E:\SteamLibrary\steamapps\common\AION\NCLauncher.exe (Gameforge 4D GmbH -> )
FirewallRules: [{BAB54557-E29C-4C40-9F4D-370BF78DF06B}] => (Allow) E:\SteamLibrary\steamapps\common\AION\NCLauncher.exe (Gameforge 4D GmbH -> )
FirewallRules: [{494CF6DA-6EF1-44F8-840A-944EA8821FCB}] => (Allow) D:\SteamLibrary\steamapps\common\APB Reloaded\Launcher\APBLauncher.exe (Little Orbit Inc -> K2 Network, Inc.)
FirewallRules: [{DC3E19DE-D66D-4C52-839E-6EF2625F32CD}] => (Allow) D:\SteamLibrary\steamapps\common\APB Reloaded\Launcher\APBLauncher.exe (Little Orbit Inc -> K2 Network, Inc.)
FirewallRules: [{BB2E545E-F0EC-4045-A579-30680EE13104}] => (Allow) E:\SteamLibrary\steamapps\common\ArcheAge\ArcheAge_Launcher.exe (Kakao Games Europe B.V. -> Kakao Games Corp.)
FirewallRules: [{0E870205-A315-4F07-9B21-FE62F9ADBDC9}] => (Allow) E:\SteamLibrary\steamapps\common\ArcheAge\ArcheAge_Launcher.exe (Kakao Games Europe B.V. -> Kakao Games Corp.)
FirewallRules: [{63A36074-C18C-4ADF-9245-F131B3286DF2}] => (Allow) D:\SteamLibrary\steamapps\common\Conan Exiles\Launcher\FuncomLauncher.exe (FUNCOM OSLO AS -> Funcom)
FirewallRules: [{7D3B8AD6-0F4F-43A9-B394-4F277E175B43}] => (Allow) D:\SteamLibrary\steamapps\common\Conan Exiles\Launcher\FuncomLauncher.exe (FUNCOM OSLO AS -> Funcom)
FirewallRules: [{33A7301C-5B70-4348-8F09-BF754D11A36D}] => (Allow) E:\SteamLibrary\steamapps\common\Zenimax Online\zosSteamStarter.exe (Zenimax Media Inc. -> Zenimax Online Studios)
FirewallRules: [{177FD947-0F12-4C5E-B509-F3589D03E6F8}] => (Allow) E:\SteamLibrary\steamapps\common\Zenimax Online\zosSteamStarter.exe (Zenimax Media Inc. -> Zenimax Online Studios)
FirewallRules: [{1DCD4AAC-040C-4158-A1B4-086F911144C5}] => (Allow) D:\SteamLibrary\steamapps\common\DayZ\DayZLauncher.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive a.s.)
FirewallRules: [{E8A2D47E-DD37-4E63-95F9-6D2944300332}] => (Allow) D:\SteamLibrary\steamapps\common\DayZ\DayZLauncher.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive a.s.)
FirewallRules: [{0DC10B88-A91C-4D4A-9BF2-2684C5826B46}] => (Allow) D:\SteamLibrary\steamapps\common\DayZ\DayZ_BE.exe (BOHEMIA INTERACTIVE a.s. -> BattlEye Innovations)
FirewallRules: [{96B9EB54-2055-4408-98AA-C39ED421F66E}] => (Allow) D:\SteamLibrary\steamapps\common\DayZ\DayZ_BE.exe (BOHEMIA INTERACTIVE a.s. -> BattlEye Innovations)
FirewallRules: [{A2CF7975-F875-46F2-A822-7A2577F787F0}] => (Allow) D:\SteamLibrary\steamapps\common\Sons Of The Forest\SonsOfTheForest.exe () [Datei ist nicht signiert]
FirewallRules: [{2B05BE21-B551-4F57-A27A-BF9248A5D4D2}] => (Allow) D:\SteamLibrary\steamapps\common\Sons Of The Forest\SonsOfTheForest.exe () [Datei ist nicht signiert]
FirewallRules: [{D10492ED-2F22-4D2B-9352-CB14B386F372}] => (Allow) D:\SteamLibrary\steamapps\common\The War Z\InfestationLauncher.exe (Fredaikis AB -> )
FirewallRules: [{5FB3175B-6ADE-4301-8411-46A1D46F7A41}] => (Allow) D:\SteamLibrary\steamapps\common\The War Z\InfestationLauncher.exe (Fredaikis AB -> )
FirewallRules: [{6FFAE8A4-A10F-46D8-8233-23AA55B3FACA}] => (Allow) D:\SteamLibrary\steamapps\common\DOAX-VenusVacation\DOAX_VV_Launcher.exe (株式会社コーエーテクモゲームス -> )
FirewallRules: [{1618A4FC-FEA0-4A3C-AB4A-483689A049BE}] => (Allow) D:\SteamLibrary\steamapps\common\DOAX-VenusVacation\DOAX_VV_Launcher.exe (株式会社コーエーテクモゲームス -> )
FirewallRules: [{26CA093E-0922-4597-A749-3484D6661312}] => (Allow) D:\SteamLibrary\steamapps\common\House Party\HouseParty.exe () [Datei ist nicht signiert]
FirewallRules: [{08F8402A-358A-401A-95AF-ABD294E960EB}] => (Allow) D:\SteamLibrary\steamapps\common\House Party\HouseParty.exe () [Datei ist nicht signiert]
FirewallRules: [{9436E362-0E3A-4DB5-82E6-EBAF75117882}] => (Allow) D:\SteamLibrary\steamapps\common\Fall Guys\FallGuys_client.exe () [Datei ist nicht signiert]
FirewallRules: [{4C52E026-B361-4F70-BB3E-A8A4D9A5558F}] => (Allow) D:\SteamLibrary\steamapps\common\Fall Guys\FallGuys_client.exe () [Datei ist nicht signiert]
FirewallRules: [{E9A66F28-210D-4287-BE12-9C6E7EE4552E}] => (Allow) D:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win64\RocketLeague.exe (Psyonix, LLC) [Datei ist nicht signiert]
FirewallRules: [{F5F34B38-8325-433C-8AD7-C64E387D3ACC}] => (Allow) D:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win64\RocketLeague.exe (Psyonix, LLC) [Datei ist nicht signiert]
FirewallRules: [{1AEFD174-5D2F-408C-A0A6-D63AEBC5615C}] => (Allow) D:\SteamLibrary\steamapps\common\Rust\Rust.exe (Facepunch Studios Ltd -> Epic Games, Inc.)
FirewallRules: [{0F276409-804D-40C9-B9BF-177634269D2B}] => (Allow) D:\SteamLibrary\steamapps\common\Rust\Rust.exe (Facepunch Studios Ltd -> Epic Games, Inc.)
FirewallRules: [{927B80E1-2D2E-4D82-9346-4B7D5ED81302}] => (Allow) D:\SteamLibrary\steamapps\common\Game of Thrones Winter is Coming\GotPC.exe (YOUZU (SINGAPORE) PTE. LTD. -> )
FirewallRules: [{0592B830-B368-4728-9749-41D6ADE39B1D}] => (Allow) D:\SteamLibrary\steamapps\common\Game of Thrones Winter is Coming\GotPC.exe (YOUZU (SINGAPORE) PTE. LTD. -> )
FirewallRules: [{EEE399D7-D42D-4DFE-8815-BCD35F4DF321}] => (Allow) D:\SteamLibrary\steamapps\common\Dead by Daylight\DeadByDaylight.exe (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{EBC58257-EC11-46FA-B40D-FD1DA6849904}] => (Allow) D:\SteamLibrary\steamapps\common\Dead by Daylight\DeadByDaylight.exe (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{951E45E9-1771-482D-90DD-7CF2F0288F11}] => (Allow) D:\SteamLibrary\steamapps\common\SMITE\Binaries\Win64\SmiteEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{74521331-8C0D-4B54-A8E1-7B82D48A5BC7}] => (Allow) D:\SteamLibrary\steamapps\common\SMITE\Binaries\Win64\SmiteEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{8232E0AB-28BE-48C2-AAD6-816288E40143}] => (Allow) D:\SteamLibrary\steamapps\common\SMITE\Binaries\Win32\SmiteEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{3D591A7A-1544-4B5A-B96A-C41511F2575C}] => (Allow) D:\SteamLibrary\steamapps\common\SMITE\Binaries\Win32\SmiteEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{792028CC-36EB-4E64-BFDB-8AFA7B0BF345}] => (Allow) D:\SteamLibrary\steamapps\common\Phasmophobia\Phasmophobia.exe () [Datei ist nicht signiert]
FirewallRules: [{5B8CD125-10BC-47BD-A80C-70E76539B8D5}] => (Allow) D:\SteamLibrary\steamapps\common\Phasmophobia\Phasmophobia.exe () [Datei ist nicht signiert]
FirewallRules: [{A03EF01F-36E9-496B-A72B-426D82641B9E}] => (Allow) D:\SteamLibrary\steamapps\common\Realm Royale\RealmBootstrapper.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [{41D65928-98A7-444F-B8B9-BC02E3BA00A5}] => (Allow) D:\SteamLibrary\steamapps\common\Realm Royale\RealmBootstrapper.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [{90D28939-090D-4209-962B-09AE43F50107}] => (Allow) D:\SteamLibrary\steamapps\common\My Hero Ultra Rumble\start_protected_game.exe (EasyAntiCheat Oy -> Epic Games, Inc.)
FirewallRules: [{D944CB75-859E-4BAC-AF53-24C3ADECFD2C}] => (Allow) D:\SteamLibrary\steamapps\common\My Hero Ultra Rumble\start_protected_game.exe (EasyAntiCheat Oy -> Epic Games, Inc.)
FirewallRules: [{D08F0785-919E-4BF7-A9EE-C7BE64754796}] => (Allow) E:\SteamLibrary\steamapps\common\Star Wars - The Old Republic\launcher.exe (Electronic Arts, Inc. -> Solid State Networks)
FirewallRules: [{9CCE17FD-D6D1-4824-AC0D-4CECEA5A79EC}] => (Allow) E:\SteamLibrary\steamapps\common\Star Wars - The Old Republic\launcher.exe (Electronic Arts, Inc. -> Solid State Networks)
FirewallRules: [{DC866CB7-943F-4FA5-92AD-A5CC607403FA}] => (Allow) D:\SteamLibrary\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (KRAFTON, Inc. -> KRAFTON, Inc.)
FirewallRules: [{FABAF712-EA4B-44CB-A937-1DE1B515BEA1}] => (Allow) D:\SteamLibrary\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (KRAFTON, Inc. -> KRAFTON, Inc.)
FirewallRules: [{7F9F57C7-26C4-4374-8328-797110C46EB7}] => (Allow) D:\SteamLibrary\steamapps\common\Overwatch\Overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{D40E906B-8527-42C7-8866-58EDED317432}] => (Allow) D:\SteamLibrary\steamapps\common\Overwatch\Overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{4A320874-7E4B-4D47-9839-51DB8EDAF8F4}] => (Allow) D:\SteamLibrary\steamapps\common\Tower of Fantasy\Tower of Fantasy\Launcher\tof_launcher.exe (PROXIMA BETA PTE. LIMITED -> PROXIMA BETA PTE. LIMITED)
FirewallRules: [{29F5C0F4-B770-4EB4-9A95-5AB6F99EE647}] => (Allow) D:\SteamLibrary\steamapps\common\Tower of Fantasy\Tower of Fantasy\Launcher\tof_launcher.exe (PROXIMA BETA PTE. LIMITED -> PROXIMA BETA PTE. LIMITED)
FirewallRules: [{F6943D6B-2811-486F-9A33-42AD817F1D49}] => (Allow) E:\SteamLibrary\steamapps\common\Guild Wars 2\Gw2-64.exe (ArenaNet, LLc -> ArenaNet)
FirewallRules: [{DAF7C858-5978-4BF3-A826-84C3F8DB46DE}] => (Allow) E:\SteamLibrary\steamapps\common\Guild Wars 2\Gw2-64.exe (ArenaNet, LLc -> ArenaNet)
FirewallRules: [{D8D012CC-7E1E-47C2-AA8B-463A335E17DB}] => (Allow) D:\SteamLibrary\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{7077C14D-E62A-4F89-B8BE-308DEA003FE7}] => (Allow) D:\SteamLibrary\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{8BC612B5-BB56-4662-952B-0BA97E30D55C}] => (Allow) D:\Games\NIKKE\Launcher\intl_service\intl_service.exe (PROXIMA BETA PTE. LIMITED -> PROXIMA BETA PTE. LIMITED)
FirewallRules: [{64CFEF14-C73D-4A03-8F66-7685A203CBEA}] => (Allow) D:\SteamLibrary\steamapps\common\APB Reloaded\Binaries\APB_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{AC6F07E7-0EEE-4EF5-AAF3-2EBAE76809F1}] => (Allow) D:\SteamLibrary\steamapps\common\APB Reloaded\Binaries\APB_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{89FEEE3E-F3E4-46DF-849A-A9D4CFDA195C}] => (Allow) D:\SteamLibrary\steamapps\common\APB Reloaded\Binaries\APB.exe (Little Orbit Inc -> Little Orbit LLC)
FirewallRules: [{83510F57-21D8-43A9-89AE-2A325C6F1E23}] => (Allow) D:\SteamLibrary\steamapps\common\APB Reloaded\Binaries\APB.exe (Little Orbit Inc -> Little Orbit LLC)
FirewallRules: [{11DA08E5-07DF-475E-9B4B-D7EFE0A336BB}] => (Allow) D:\SteamLibrary\steamapps\common\APB Reloaded\Binaries\VivoxVoiceService.exe (Little Orbit LLC -> Vivox Inc.)
FirewallRules: [{F5185F05-87BA-49B3-93E2-4EFDE62D4605}] => (Allow) D:\SteamLibrary\steamapps\common\APB Reloaded\Binaries\VivoxVoiceService.exe (Little Orbit LLC -> Vivox Inc.)
FirewallRules: [TCP Query User{03D19565-AA71-4073-8A49-480622AC155F}C:\riot games\riot client\riotclientelectron\riot client.exe] => (Allow) C:\riot games\riot client\riotclientelectron\riot client.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [UDP Query User{1D4A56C6-6DA2-4928-9517-7C97963F428D}C:\riot games\riot client\riotclientelectron\riot client.exe] => (Allow) C:\riot games\riot client\riotclientelectron\riot client.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [TCP Query User{6FD0D6A1-C80A-4CBE-B66B-24592A64B4E5}D:\steamlibrary\steamapps\common\the war z\infestation.exe] => (Allow) D:\steamlibrary\steamapps\common\the war z\infestation.exe (Fredaikis AB -> )
FirewallRules: [UDP Query User{7335B78F-B8AA-4C94-A848-AA387A06894E}D:\steamlibrary\steamapps\common\the war z\infestation.exe] => (Allow) D:\steamlibrary\steamapps\common\the war z\infestation.exe (Fredaikis AB -> )
FirewallRules: [TCP Query User{346520D2-2823-4BB6-89B6-F95CAD664B31}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming Group Limited -> Wargaming.net)
FirewallRules: [UDP Query User{61EC72C9-E492-4510-9D3C-A43EB40370FB}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming Group Limited -> Wargaming.net)
FirewallRules: [{0640B9AA-31A4-4B25-9B09-3D56B48612FE}] => (Allow) D:\SteamLibrary\steamapps\common\Warframe\Tools\Launcher.exe (Digital Extremes Ltd. -> Digital Extremes)
FirewallRules: [{8707A8D3-10E6-4E29-AFF7-B9FB38A6BB62}] => (Allow) D:\SteamLibrary\steamapps\common\Warframe\Warframe.x64.exe (Digital Extremes Ltd. -> Digital Extremes)
FirewallRules: [{CA41476F-858D-4414-B1F9-3EFAFA7A69C5}] => (Allow) D:\SteamLibrary\steamapps\common\Warframe\Warframe.x64.exe (Digital Extremes Ltd. -> Digital Extremes)
FirewallRules: [{22C77689-F446-4087-A307-DBD0C9C17A2A}] => (Allow) D:\SteamLibrary\steamapps\common\Warframe\Tools\RemoteCrashSender.exe (Digital Extremes Ltd. -> )
FirewallRules: [{A04F6296-FD59-449E-BD87-242862DA8172}] => (Allow) D:\SteamLibrary\steamapps\common\Warframe\Tools\Launcher.exe (Digital Extremes Ltd. -> Digital Extremes)
FirewallRules: [{2133FA65-3373-4602-96A7-39C075EB1421}] => (Allow) D:\SteamLibrary\steamapps\common\Warframe\Warframe.x64.exe (Digital Extremes Ltd. -> Digital Extremes)
FirewallRules: [{4C221720-1562-41DF-9357-68330449013C}] => (Allow) D:\SteamLibrary\steamapps\common\Warframe\Warframe.x64.exe (Digital Extremes Ltd. -> Digital Extremes)
FirewallRules: [{38F1ED9A-019B-4436-8F94-3AC7C0DD448B}] => (Allow) D:\SteamLibrary\steamapps\common\Warframe\Tools\RemoteCrashSender.exe (Digital Extremes Ltd. -> )
FirewallRules: [TCP Query User{34854C33-2D5C-4284-B828-DF9401362328}D:\games\rvllauncher\rvlmlauncher\rvl\tym.exe] => (Allow) D:\games\rvllauncher\rvlmlauncher\rvl\tym.exe (NetEase (Hangzhou) Network Co., Ltd -> )
FirewallRules: [UDP Query User{08D8D7DC-FA16-4217-BD18-022DF19C0148}D:\games\rvllauncher\rvlmlauncher\rvl\tym.exe] => (Allow) D:\games\rvllauncher\rvlmlauncher\rvl\tym.exe (NetEase (Hangzhou) Network Co., Ltd -> )
FirewallRules: [{F9E52E2A-FDC0-4B56-B0C6-326924188AE8}] => (Allow) D:\SteamLibrary\steamapps\common\Tower of Fantasy\Tower of Fantasy\Hotta\Binaries\Win64\INTLWebViewHelper.exe () [Datei ist nicht signiert]
FirewallRules: [{6616DC11-B532-4268-973C-E617DD4B16DA}] => (Allow) D:\SteamLibrary\steamapps\common\My Hero Ultra Rumble\HerovsGame\Binaries\Win64\MHUR.exe (BNEI) [Datei ist nicht signiert]
FirewallRules: [{D7FD56C0-8E0F-483D-9C67-F8FFE8CFBA62}] => (Allow) D:\SteamLibrary\steamapps\common\My Hero Ultra Rumble\HerovsGame\Binaries\Win64\MHUR.exe (BNEI) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{0A0A6110-9131-4AAC-BBC7-39AF6EE9CFF5}D:\steamlibrary\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steamlibrary\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (KRAFTON, Inc. -> KRAFTON, Inc.)
FirewallRules: [UDP Query User{101B74D7-9983-49C8-AE37-F582D948BEBC}D:\steamlibrary\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steamlibrary\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (KRAFTON, Inc. -> KRAFTON, Inc.)
FirewallRules: [{7A8FF334-49FA-43F3-B552-1DCFE44CB28C}] => (Allow) D:\SteamLibrary\steamapps\common\DOAX-VenusVacation\DOAX_VV.exe (株式会社コーエーテクモゲームス -> )
FirewallRules: [{AF67BC45-186D-47AC-9415-4449D8E18A14}] => (Allow) D:\SteamLibrary\steamapps\common\DOAX-VenusVacation\DOAX_VV.exe (株式会社コーエーテクモゲームス -> )
FirewallRules: [{D5564399-3A24-4819-AB27-DC28939B4232}] => (Allow) D:\SteamLibrary\steamapps\common\Perfect World Mobile\PerfectWorldLaunch\PerfectWorldGame.exe (Fedeen Games Limited -> )
FirewallRules: [{DB717E93-3051-4A3C-BCC2-4C7A2D230AD8}] => (Allow) D:\SteamLibrary\steamapps\common\Perfect World Mobile\PerfectWorldLaunch\PerfectWorldGame.exe (Fedeen Games Limited -> )
FirewallRules: [{4B0B3FF7-45BA-488C-82A2-4EED8BB2D5EC}] => (Allow) D:\SteamLibrary\steamapps\common\Perfect World Mobile\PerfectWorldLaunch\PerfectWorldUpdate.exe (Fedeen Games Limited -> )
FirewallRules: [{3656749A-4451-49DE-A423-7FACFC7EC8C5}] => (Allow) D:\SteamLibrary\steamapps\common\Perfect World Mobile\PerfectWorldLaunch\PerfectWorldUpdate.exe (Fedeen Games Limited -> )
FirewallRules: [{A23E345F-7333-4036-8092-5286573E068C}] => (Allow) D:\SteamLibrary\steamapps\common\Perfect World Mobile\PerfectWorldLaunch\PerfectWorldBrowser.exe (Fedeen Games Limited -> )
FirewallRules: [{C11BA94A-D457-4473-BED0-577A47EF23C5}] => (Allow) D:\SteamLibrary\steamapps\common\Perfect World Mobile\PerfectWorldLaunch\PerfectWorldBrowser.exe (Fedeen Games Limited -> )
FirewallRules: [{1614E9A3-4E92-413A-8AE4-57DDF8F879E7}] => (Allow) D:\SteamLibrary\steamapps\common\Perfect World Mobile\PerfectWorldLaunch\PerfectWorldWebBooster.exe (Fedeen Games Limited -> )
FirewallRules: [{7A17BB85-7B42-4D8F-A138-7A19F2EA47B8}] => (Allow) D:\SteamLibrary\steamapps\common\Perfect World Mobile\PerfectWorldLaunch\PerfectWorldWebBooster.exe (Fedeen Games Limited -> )
FirewallRules: [{522B916C-FC90-40B6-B9A5-7BCD2DF389F7}] => (Allow) D:\SteamLibrary\steamapps\common\Perfect World Mobile\Build\PerfectWorld.exe (Fedeen Games Limited -> )
FirewallRules: [{099173A2-6955-4A1C-A5A5-7935270C672B}] => (Allow) D:\SteamLibrary\steamapps\common\Perfect World Mobile\Build\PerfectWorld.exe (Fedeen Games Limited -> )
FirewallRules: [{967CC76D-E68E-4715-9C91-D85518611245}] => (Allow) D:\Games\BlueStacks X\BlueStacksWeb.exe => Keine Datei
FirewallRules: [{44D78897-406D-49B2-B6EC-53F4BFB79A6B}] => (Allow) D:\Games\BlueStacks X\Cloud Game.exe => Keine Datei
FirewallRules: [{2E198067-4D2C-45AD-B2B3-9D8F78FEAAD8}] => (Allow) C:\Program Files\BlueStacks_nxt\HD-Player.exe (Now.gg, INC -> BlueStack Systems)
FirewallRules: [{5F4B098A-FB1B-4D69-BF63-54F6EF66E7A3}] => (Allow) C:\Program Files\BlueStacks_nxt\BlueStacksAppplayerWeb.exe (Now.gg, INC -> The Qt Company Ltd.)
FirewallRules: [TCP Query User{2EE27981-1E72-46C5-A7AF-05241B178A75}D:\steamlibrary\steamapps\common\conan exiles\conansandbox\binaries\win64\conansandbox.exe] => (Allow) D:\steamlibrary\steamapps\common\conan exiles\conansandbox\binaries\win64\conansandbox.exe (FUNCOM OSLO AS -> Funcom Oslo AS)
FirewallRules: [UDP Query User{B311979E-C0D3-44C0-AC76-E38D29271C33}D:\steamlibrary\steamapps\common\conan exiles\conansandbox\binaries\win64\conansandbox.exe] => (Allow) D:\steamlibrary\steamapps\common\conan exiles\conansandbox\binaries\win64\conansandbox.exe (FUNCOM OSLO AS -> Funcom Oslo AS)
FirewallRules: [{ADA037CF-524D-4F65-9A39-15822C9AAE9D}] => (Allow) D:\SteamLibrary\steamapps\common\XERA\XERA_Launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{B0B2922A-CFD3-4992-A63E-B1399C3C2D07}] => (Allow) D:\SteamLibrary\steamapps\common\XERA\XERA_Launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [TCP Query User{FF4F446A-D7B6-4223-B328-201502D744E6}D:\steamlibrary\steamapps\common\xera\xera\binaries\win64\xera-win64-shipping.exe] => (Allow) D:\steamlibrary\steamapps\common\xera\xera\binaries\win64\xera-win64-shipping.exe (Spotted Kiwi Interactive) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{42E087EC-ECA1-4AC2-A007-3FD3C262E590}D:\steamlibrary\steamapps\common\xera\xera\binaries\win64\xera-win64-shipping.exe] => (Allow) D:\steamlibrary\steamapps\common\xera\xera\binaries\win64\xera-win64-shipping.exe (Spotted Kiwi Interactive) [Datei ist nicht signiert]
FirewallRules: [{516F3814-601C-4297-881F-8E6A80FAC258}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{618C1CB7-CC25-44BE-ADDE-83164073A1DC}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\122.0.2365.66\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{407FA355-1741-4B6B-8C0B-035361AFA10D}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{F7E1F3C1-F29C-487E-BC2A-FE042168E663}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{6E3D7A52-D587-4E20-907B-1EC7A45A0649}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{4435D208-9D16-4333-9E86-BC4A078D737F}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{B8F076E8-697D-4459-AD00-F97248DD006E}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{B692D757-249E-4895-9473-28866EE9B23F}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{447EDB33-9D4B-4772-ACAE-86B436ABD181}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{7446CB38-7E5C-4DC5-9D1D-FDD114006F5A}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{0C0AF567-F000-4C2D-ABA0-1A81C073BAB4}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{4856A79B-59E6-4975-8380-A45A586FB8C9}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{66460BA9-3298-4C03-B94B-B7B5BD9E8F2A}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALaunchHelper.exe (Electronic Arts, Inc. -> Electronic Arts)
==================== Wiederherstellungspunkte =========================
29-02-2024 19:42:42 Geplanter Prüfpunkt
03-03-2024 01:54:48 DirectX wurde installiert
04-03-2024 15:58:24 Driver Booster : High Definition Audio-Gerät
==================== Fehlerhafte Geräte im Gerätemanager ============
==================== Fehlereinträge in der Ereignisanzeige: ========================
Applikationsfehler:
==================
Error: (03/04/2024 07:10:11 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: NT-AUTORITÄT)
Description: Das Serverdienst-Leistungsobjekt kann nicht geöffnet werden. Die ersten vier Bytes (DWORD) des Datenabschnitts enthalten den Statuscode.
Error: (03/04/2024 06:19:23 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: NT-AUTORITÄT)
Description: Das Serverdienst-Leistungsobjekt kann nicht geöffnet werden. Die ersten vier Bytes (DWORD) des Datenabschnitts enthalten den Statuscode.
Error: (03/04/2024 06:13:23 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: NT-AUTORITÄT)
Description: Das Serverdienst-Leistungsobjekt kann nicht geöffnet werden. Die ersten vier Bytes (DWORD) des Datenabschnitts enthalten den Statuscode.
Error: (03/04/2024 06:13:23 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: NT-AUTORITÄT)
Description: Das Serverdienst-Leistungsobjekt kann nicht geöffnet werden. Die ersten vier Bytes (DWORD) des Datenabschnitts enthalten den Statuscode.
Error: (03/04/2024 06:11:22 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: NT-AUTORITÄT)
Description: Das Serverdienst-Leistungsobjekt kann nicht geöffnet werden. Die ersten vier Bytes (DWORD) des Datenabschnitts enthalten den Statuscode.
Error: (03/04/2024 05:52:14 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2002) (User: NT-AUTORITÄT)
Description: Das Redirectordienst-Leistungsobjekt kann nicht geöffnet werden. Die ersten vier Bytes (DWORD) des Datenabschnitts enthalten den Statuscode.
Error: (03/04/2024 05:52:14 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: NT-AUTORITÄT)
Description: Das Serverdienst-Leistungsobjekt kann nicht geöffnet werden. Die ersten vier Bytes (DWORD) des Datenabschnitts enthalten den Statuscode.
Error: (03/04/2024 05:52:14 PM) (Source: MSDTC Client 2) (EventID: 4104) (User: )
Description: Fehler beim Abrufen des Status des Clusterknotens: .Zurückgegebener Fehlercode: 0x8007085A
Systemfehler:
=============
Error: (03/04/2024 07:13:10 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Google Update-Dienst (gupdate)" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Dienst antwortete nicht rechtzeitig auf die Start- oder Steuerungsanforderung.
Error: (03/04/2024 07:13:10 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Google Update-Dienst (gupdate) erreicht.
Error: (03/04/2024 07:10:38 PM) (Source: DCOM) (EventID: 10005) (User: SENPAI)
Description: Fehler "1084" in DCOM, als der Dienst "ShellHWDetection" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden:
{DD522ACC-F821-461A-A407-50B198B896DC}
Error: (03/04/2024 07:10:35 PM) (Source: DCOM) (EventID: 10005) (User: SENPAI)
Description: Fehler "1084" in DCOM, als der Dienst "camsvc" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden:
Windows.Internal.CapabilityAccess.CapabilityAccess
Error: (03/04/2024 07:10:11 PM) (Source: DCOM) (EventID: 10005) (User: NT-AUTORITÄT)
Description: Fehler "1084" in DCOM, als der Dienst "BITS" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden:
{4991D34B-80A1-4291-83B6-3328366B9097}
Error: (03/04/2024 07:08:00 PM) (Source: DCOM) (EventID: 10005) (User: NT-AUTORITÄT)
Description: Fehler "1084" in DCOM, als der Dienst "UsoSvc" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden:
{B91D5831-B1BD-4608-8198-D72E155020F7}
Error: (03/04/2024 07:08:00 PM) (Source: DCOM) (EventID: 10005) (User: NT-AUTORITÄT)
Description: Fehler "1084" in DCOM, als der Dienst "UsoSvc" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden:
{B91D5831-B1BD-4608-8198-D72E155020F7}
Error: (03/04/2024 07:07:58 PM) (Source: DCOM) (EventID: 10005) (User: SENPAI)
Description: Fehler "1084" in DCOM, als der Dienst "TokenBroker" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden:
Windows.Internal.Security.Authentication.Web.WamProviderRegistration
Windows Defender:
================
Date: 2024-03-04 14:06:35
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {56004B41-224D-4D99-8661-FA06EB52F27A}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Benutzerdefinierte Überprüfung
Benutzer: SENPAI\tobby
Date: 2024-03-03 20:59:50
Description:
Microsoft Defender Antivirus hat Schadsoftware oder andere potenziell unerwünschte Software erkannt.
Weitere Informationen:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Casdet!rfn&threatid=2147727512&enterprise=0
Name: Trojan:Win32/Casdet!rfn
Schweregrad: Schwerwiegend
Kategorie: Trojaner
Pfad: containerfile:_F:\Games\Extra's\Emulatoren + Roms + Iso\PC\ISO\TNK ANIME\Animes\Overflow\old\Overflow\School Days HQ\School Days HQ\Main Game\Disc 1\(18禁ゲーム) [101008] [Overflow] SCHOOL DAYS HQ Disc 1 (mdf+mds+rr5%)\SDHQ_DISC1.mdf; file:_F:\Games\Extra's\Emulatoren + Roms + Iso\PC\ISO\TNK ANIME\Animes\Overflow\old\Overflow\School Days HQ\School Days HQ\Main Game\Disc 1\(18禁ゲーム) [101008] [Overflow] SCHOOL DAYS HQ Disc 1 (mdf+mds+rr5%)\SDHQ_DISC1.mdf->\Overflow\SCHOOLDAYS HQ\Packs\Event02.GPK
Erkennungsursprung: Lokaler Computer
Erkennungstype: Konkret
Erkennungsquelle: Benutzer
Benutzer: SENPAI\tobby
Prozessname: Unknown
Sicherheitsversion: AV: 1.405.976.0, AS: 1.405.976.0, NIS: 1.405.976.0
Modulversion: AM: 1.1.24010.10, NIS: 1.1.24010.10
Date: 2024-03-03 20:59:50
Description:
Microsoft Defender Antivirus hat Schadsoftware oder andere potenziell unerwünschte Software erkannt.
Weitere Informationen:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Phonzy.A!ml&threatid=2147772962&enterprise=0
Name: Trojan:Win32/Phonzy.A!ml
Schweregrad: Schwerwiegend
Kategorie: Trojaner
Pfad: containerfile:_F:\Games\Extra's\Emulatoren + Roms + Iso\PC\ISO\IGG-PeteJacksosKingKon.rar; file:_F:\Games\Extra's\Emulatoren + Roms + Iso\PC\ISO\IGG-PeteJacksosKingKon.rar->IGG-PeteJacksosKingKon\CRACK\CRACK\kingkong.dll
Erkennungsursprung: Lokaler Computer
Erkennungstype: FastPath
Erkennungsquelle: Benutzer
Benutzer: SENPAI\tobby
Prozessname: Unknown
Sicherheitsversion: AV: 1.405.976.0, AS: 1.405.976.0, NIS: 1.405.976.0
Modulversion: AM: 1.1.24010.10, NIS: 1.1.24010.10
Date: 2024-03-03 17:06:05
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {458B969E-FFB2-4BAA-8F1C-B0CF340D4C23}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Benutzerdefinierte Überprüfung
Benutzer: SENPAI\tobby
Date: 2024-02-17 19:16:43
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {DF5D0DEB-A0A5-40A6-AB88-4351C02B6FA2}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Benutzerdefinierte Überprüfung
Benutzer: SENPAI\tobby
Event[0]:
Date: 2024-03-04 18:17:53
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.
Neue Version der Sicherheitsinformationen:
%Vorherige Version der Sicherheitsinformationen: 1.405.1029.0
Update Source: Microsoft Update-Server
Sicherheitstyp: AntiVirus
Updatetyp: Voll
Benutzer: NT-AUTORITÄT\SYSTEM
Aktuelle Modulversion:
%Vorherige Modulversion: 1.1.24010.10
Fehlercode: 0x8007043c
Fehlerbeschreibung: Der Dienst kann nicht im abgesicherten Modus gestartet werden.
Date: 2024-03-04 18:07:51
Description:
Fehler des Microsoft Defender Antivirus-Echtzeitschutz-Features.
Feature: Bei Zugriff
Fehlercode: 0x8007043c
Fehlerbeschreibung: Der Dienst kann nicht im abgesicherten Modus gestartet werden.
Ursache: Die Antischadsoft-Sicherheitsfunktion wurde aus unbekanntem Grund beendet. Möglicherweise kann das Problem durch einen Neustart des Diensts behoben werden.
Date: 2024-03-04 16:55:37
Description:
Fehler des Microsoft Defender Antivirus-Echtzeitschutz-Features.
Feature: Bei Zugriff
Fehlercode: 0x8007043c
Fehlerbeschreibung: Der Dienst kann nicht im abgesicherten Modus gestartet werden.
Ursache: Die Antischadsoft-Sicherheitsfunktion wurde aus unbekanntem Grund beendet. Möglicherweise kann das Problem durch einen Neustart des Diensts behoben werden.
Date: 2024-03-04 16:49:12
Description:
Fehler des Microsoft Defender Antivirus-Echtzeitschutz-Features.
Feature: Bei Zugriff
Fehlercode: 0x8007043c
Fehlerbeschreibung: Der Dienst kann nicht im abgesicherten Modus gestartet werden.
Ursache: Die Antischadsoft-Sicherheitsfunktion wurde aus unbekanntem Grund beendet. Möglicherweise kann das Problem durch einen Neustart des Diensts behoben werden.
CodeIntegrity:
===============
Date: 2024-03-04 20:31:24
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.
==================== Speicherinformationen ===========================
BIOS: American Megatrends International, LLC. A.50 01/15/2021
Hauptplatine: Micro-Star International Co., Ltd. MAG B550 TOMAHAWK (MS-7C91)
Prozessor: AMD Ryzen 9 3900X 12-Core Processor
Prozentuale Nutzung des RAM: 34%
Installierter physikalischer RAM: 32693.4 MB
Verfügbarer physikalischer RAM: 21458.77 MB
Summe virtueller Speicher: 39349.4 MB
Verfügbarer virtueller Speicher: 23634.78 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:953.23 GB) (Free:569.53 GB) (Model: XPG SPECTRIX S40G) NTFS
Drive d: (SSD) (Fixed) (Total:1863 GB) (Free:699.6 GB) (Model: CT2000MX500SSD1) NTFS
Drive e: (NVMe) (Fixed) (Total:931.5 GB) (Free:362.6 GB) (Model: XPG SPECTRIX S20G) NTFS
Drive g: (Externe) (Fixed) (Total:1863.01 GB) (Free:321.37 GB) (Model: ST2000DM 001-9YN164 USB Device) NTFS
Drive h: (Backup) (Fixed) (Total:9313.97 GB) (Free:5095.37 GB) (Model: WD Elements 25A3 USB Device) NTFS
Drive i: (Anime & Co.) (Fixed) (Total:4657.4 GB) (Free:2081.49 GB) (Model: TOSHIBA HDWE150 SCSI Disk Device) NTFS
\\?\Volume{70df9151-4d80-4630-a739-a849cfb206b0}\ () (Fixed) (Total:0.53 GB) (Free:0.08 GB) NTFS
\\?\Volume{efba1a0e-9033-4c6d-b954-1198373aa941}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partitionstabelle ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 1 (Protective MBR) (Size: 953.9 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 2 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 3 (Size: 1863 GB) (Disk ID: 0747580B)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)
==========================================================
Disk: 4 (Size: 9314 GB) (Disk ID: 16F2A91F)
Partition: GPT.
==========================================================
Disk: 5 (Protective MBR) (Size: 4657.5 GB) (Disk ID: 00000000)
Partition: GPT.
==================== Ende von Addition.txt =======================
|
|
07.03.2024, 12:40
| #3 | |
| /// TB-Ausbilder   | Unsicher nach Neuinstallation wegen Virus Mein Name ist Matthias und ich werde dir bei der Analyse und Bereinigung deines Systems helfen. Wie im letzten Post schon erwähnt, sollte man die Finger von illegaler Software lassen. Und das sieht nicht legal aus: Zitat:
Was macht es für einen Sinn, eine Neuinstallation auszuführen, wenn du danach wieder mit dubioser Software weitermachst? Richtig, gar keinen. Daher auch meine Hinweise im letzten Thema. Vielleicht verstehst du es ja jetzt.  |
|
07.03.2024, 13:29
| #4 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Unsicher nach Neuinstallation wegen Virus Angeblich hat er den gecrackten Müll entfernt: Zitat:
__________________ Logfiles bitte immer in CODE-Tags posten |
|
07.03.2024, 14:00
| #5 |
| | Unsicher nach Neuinstallation wegen Virus Ja wie bereits von Cosinus erwähnt ist der ISO Ordner gelöscht worden. Habe nun den kompletten Ordner gelöscht. Somit sind nun alle ISO, Emulatoren oder Roms weg. Ebenso entfernt habe ich wie im Beitrag Tipps nach Neuinstallation. Programme wie Jdownloader, weMod und Powerplay3Ds Damit sind nun alle Programme und Software die weg die unerwünscht sind. Ich bitte wirklich um Hilfe, ich will nicht den gleichen müll wieder auf dem PC haben. Daher der PC wurde ja sauber neu installiert, und die ZIP Dateien die Defender gefunden hat endltfernt, diese stehen aber zum Glück nicht mit dem aktuellen Problem zusammen. Weshalb ich ja wissen möchte ob nun die FRST Files gut sind oder dort noch irgendwo was eingenistet ist trotz Neuinstallation. Freue mich nun auf jeden Hilfe die ich bekommen kann. |
|
07.03.2024, 15:13
| #6 |
| /// TB-Ausbilder | Unsicher nach Neuinstallation wegen Virus Wir führen zuerst MBAM und ADW aus zur Kontrolle aus. Du solltest Version 4 von Malwarebytes Anti-Malware zuerst über Start > Einstellungen > Apps deinstallieren und den Rechner neu starten. Anschließend bitte die beiden Schritte ausführen und die dazugehörigen Logdateien posten. Danke. Schritt 1 Führe Malwarebytes' AntiMalware (MBAM) gemäß der bebilderten Anleitung aus und poste abschließend die Logdatei. Schritt 2 Führe AdwCleaner gemäß der bebilderten Anleitung aus und poste abschließend die Logdatei. |
|
07.03.2024, 15:45
| #7 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Unsicher nach Neuinstallation wegen VirusZitat:
So und nun lass ich euc zwei allein 
__________________ Logfiles bitte immer in CODE-Tags posten |
|
07.03.2024, 17:33
| #8 |
| | Unsicher nach Neuinstallation wegen Virus MBAM: Code:
ATTFilter Malwarebytes
www.malwarebytes.com
-Protokolldetails-
Scan-Datum: 07.03.2024
Scan-Zeit: 17:27
Protokolldatei: a73d4212-dc9f-11ee-a8a1-d8bbc13f693c.json
-Softwaredaten-
Version: 5.1.0.102
Komponentenversion: 1.0.1179
Version des Aktualisierungspakets: 1.0.81884
Lizenz: Kostenlos
-Systemdaten-
Betriebssystem: Windows 10 (Build 19045.4123)
CPU: x64
Dateisystem: NTFS
Benutzer: Senpai\tobby
-Scan-Übersicht-
Scan-Typ: Bedrohungs-Scan
Scan gestartet von: Manuell
Ergebnis: Abgeschlossen
Gescannte Objekte: 246324
Erkannte Bedrohungen: 0
In die Quarantäne verschobene Bedrohungen: 0
Abgelaufene Zeit: 1 Min., 13 Sek.
-Scan-Optionen-
Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Aktiviert
Heuristik: Aktiviert
PUP: Erkennung
PUM: Erkennung
-Scan-Details-
Prozess: 0
(keine bösartigen Elemente erkannt)
Modul: 0
(keine bösartigen Elemente erkannt)
Registrierungsschlüssel: 0
(keine bösartigen Elemente erkannt)
Registrierungswert: 0
(keine bösartigen Elemente erkannt)
Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)
Daten-Stream: 0
(keine bösartigen Elemente erkannt)
Ordner: 0
(keine bösartigen Elemente erkannt)
Datei: 0
(keine bösartigen Elemente erkannt)
Physischer Sektor: 0
(keine bösartigen Elemente erkannt)
WMI: 0
(keine bösartigen Elemente erkannt)
(end)
Code:
ATTFilter # -------------------------------
# Malwarebytes AdwCleaner 8.4.2.0
# -------------------------------
# Build: 03-04-2024
# Database: 2024-03-04.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 03-07-2024
# Duration: 00:00:04
# OS: Windows 10 (Build 19045.4123)
# Scanned: 32104
# Detected: 0
***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
No malicious folders found.
***** [ Files ] *****
No malicious files found.
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
No malicious registry entries found.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries found.
***** [ Chromium URLs ] *****
No malicious Chromium URLs found.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries found.
***** [ Firefox URLs ] *****
No malicious Firefox URLs found.
***** [ Hosts File Entries ] *****
No malicious hosts file entries found.
***** [ Preinstalled Software ] *****
No Preinstalled Software found.
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########
|
|
07.03.2024, 21:19
| #9 |
| /// TB-Ausbilder | Unsicher nach Neuinstallation wegen Virus Sehr gut. Als Nächstes bitten wir ESET um eine Zweitmeinung. Schritt 1 Führe ESET Online Scanner (EOS) gemäß der bebilderten Anleitung aus und poste abschließend die Logdatei. |
|
07.03.2024, 21:38
| #10 |
| | Unsicher nach Neuinstallation wegen Virus Okay, solange der durchläuft, hab ich noch eine frage bezüglich meines erstes Post, dort hatte ich ja den MSERT Scan von Microsoft laufen lassen und dieser findet immer mal wieder infected dateien was laut microsoft normal ist, stimmt das wirklich? Weil 9 oder 19 files infected und am ende sagt der scanner alles ist ok? Poste dann später den ESET Log wird bestimmt was dauern. |
|
07.03.2024, 21:49
| #11 |
| /// TB-Ausbilder | Unsicher nach Neuinstallation wegen Virus Die Logdatei von MSERT müsste ich sehen, sonst kann ich dazu nichts sagen. Jetzt lassen wir erst mal ESET laufen. |
|
08.03.2024, 03:17
| #12 |
| | Unsicher nach Neuinstallation wegen Virus ESET: Code:
ATTFilter 08.03.2024 03:09:45
Geprüfte Dateien: 1331749
Erkannte Dateien: 0
Gesäuberte Dateien: 0
Prüfdauer gesamt: 03:39:13
Prüfstatus: Abgeschlossen
Code:
ATTFilter ---------------------------------------------------------------------------------------
Microsoft Safety Scanner v1.405, (build 1.405.1029.0)
Started On Mon Mar 4 17:53:56 2024
Engine: 1.1.24010.10
Signatures: 1.405.1029.0
MpGear: 1.1.16330.1
Run Mode: Interactive Graphical Mode
Quick Scan Results:
-------------------
Threat Detected: VirTool:Win32/DefenderTamperingRestore and Removed!
Action: Remove, Result: 0x00000000
regkeyvalue://hklm\software\microsoft\windows defender\\DisableAntiSpyware
SigSeq: 0x0000055555C57273
Results Summary:
----------------
Found VirTool:Win32/DefenderTamperingRestore and Removed!
Successfully Submitted MAPS Report
Successfully Submitted Heartbeat Report
Microsoft Safety Scanner Finished On Mon Mar 4 17:59:31 2024
Return code: 6 (0x6)
---------------------------------------------------------------------------------------
Microsoft Safety Scanner v1.405, (build 1.405.1029.0)
Started On Thu Mar 7 18:24:23 2024
Engine: 1.1.24010.10
Signatures: 1.405.1029.0
MpGear: 1.1.16330.1
Run Mode: Interactive Graphical Mode
Results Summary:
----------------
No infection found.
Successfully Submitted MAPS Report
Successfully Submitted Heartbeat Report
Microsoft Safety Scanner Finished On Fri Mar 8 01:12:09 2024
Return code: 0 (0x0)
sammui netsetup & eine Leere Datei mit dem Namen: PASSWD.LOG füge diese auch einfach mal sicherheitshalber mit hinzu, da mir das alles nix sagt und warum im NetSetup Log was von Enterprise und WIN-I1UDGBOQ1MG steht. Habe Win 10 Pro und PC heißt SENPAI. sammui.log Code:
ATTFilter 2024\2\17 6:11:0 - Sid refresh operation started: Process 1576, Thread 1784
Original Language list: 0407;
Resolved Language: 0407
SAM refresh successful
Code:
ATTFilter 02/17/2024 06:09:48:422 -----------------------------------------------------------------
02/17/2024 06:09:48:422 NetpDoDomainJoin
02/17/2024 06:09:48:422 NetpDoDomainJoin: using new computer names
02/17/2024 06:09:48:422 NetpDoDomainJoin: NetpGetNewMachineName returned 0x0
02/17/2024 06:09:48:422 NetpMachineValidToJoin: 'WIN-I1UDGBOQ1MG'
02/17/2024 06:09:48:422 OS Version: 10.0
02/17/2024 06:09:48:422 Build number: 19045 (19041.vb_release.191206-1406)
02/17/2024 06:09:48:422 SKU: Windows 10 Enterprise
02/17/2024 06:09:48:422 Architecture: 64-bit (AMD64)
02/17/2024 06:09:48:422 NetpMachineValidToJoin: status: 0x0
02/17/2024 06:09:48:422 NetpJoinWorkgroup: joining computer 'WIN-I1UDGBOQ1MG' to workgroup 'WORKGROUP'
02/17/2024 06:09:48:422 NetpValidateName: checking to see if 'WORKGROUP' is valid as type 2 name
02/17/2024 06:09:48:422 NetpCheckNetBiosNameNotInUse for 'WORKGROUP' [ Workgroup as MACHINE] returned 0x0
02/17/2024 06:09:48:422 NetpValidateName: name 'WORKGROUP' is valid for type 2
02/17/2024 06:09:48:422 NetpJoinWorkgroup: status: 0x0
02/17/2024 06:09:48:422 NetpDoDomainJoin: status: 0x0
02/17/2024 07:00:47:003 -----------------------------------------------------------------
02/17/2024 07:00:47:003 NetpValidateName: checking to see if 'SENPAI' is valid as type 1 name
02/17/2024 07:00:50:078 NetpCheckNetBiosNameNotInUse for 'SENPAI' [MACHINE] returned 0x0
02/17/2024 07:00:50:078 NetpValidateName: name 'SENPAI' is valid for type 1
|
|
08.03.2024, 19:22
| #13 |
| /// TB-Ausbilder | Unsicher nach Neuinstallation wegen Virus Vielen Dank für die Logdateien und Infos. Da ist nichts, schon mal gut. Bitte nun eine Kontrolle mit FRST ausführen. Schritt 1
|
|
08.03.2024, 22:50
| #14 |
| | Unsicher nach Neuinstallation wegen Virus Logs Anbei, Frage, wo finde ich eig. die Logs vom Defender? habe da auch mal einen Fullscan laufen lassen aber am ende keine Log bekommen. FRST: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 08.03.2024
durchgeführt von tobby (Administrator) auf SENPAI (Micro-Star International Co., Ltd. MS-7C91) (08-03-2024 22:44:24)
Gestartet von C:\Users\tobby\Downloads\FRST64.exe
Geladene Profile: tobby
Plattform: Microsoft Windows 10 Pro Version 22H2 19045.4123 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: Chrome
Start-Modus: Normal
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe ->) (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\EpicWebHelper.exe <3>
(C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe ->) (Alexey Nicolaychuk -> ) C:\Program Files (x86)\RivaTuner Statistics Server\EncoderServer.exe
(C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe ->) (Alexey Nicolaychuk -> ) C:\Program Files (x86)\RivaTuner Statistics Server\RTSSHooksLoader64.exe
(C:\Program Files (x86)\Steam\steam.exe ->) (PROXIMA BETA PTE. LIMITED -> PROXIMA BETA PTE. LIMITED) D:\SteamLibrary\steamapps\common\Tower of Fantasy\Tower of Fantasy\Launcher\tof_launcher.exe
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <9>
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\GameOverlayUI.exe <2>
(C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe ->) (Skutta Software GmbH -> ) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\webwallpaper32.exe <5>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\NVIDIA Overlay.exe <5>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA App\ShadowPlay\nvsphelper64.exe
(cmd.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MbamBgNativeMsg.exe <4>
(D:\SteamLibrary\steamapps\common\Tower of Fantasy\Tower of Fantasy\Launcher\tof_launcher.exe ->) (PROXIMA BETA PTE. LIMITED -> ) D:\SteamLibrary\steamapps\common\Tower of Fantasy\Tower of Fantasy\Launcher\intl_service\tbs_browser.exe <7>
(D:\SteamLibrary\steamapps\common\Tower of Fantasy\Tower of Fantasy\Launcher\tof_launcher.exe ->) (PROXIMA BETA PTE. LIMITED -> PROXIMA BETA PTE. LIMITED) D:\SteamLibrary\steamapps\common\Tower of Fantasy\Tower of Fantasy\Launcher\intl_service\intl_service.exe
(Discord Inc. -> Discord Inc.) C:\Users\tobby\AppData\Local\Discord\app-1.0.9035\Discord.exe <6>
(Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(explorer.exe ->) (04797BBC-C7BB-462F-9B66-331C81E27C0E -> TranslucentTB Open-Source-Entwickler) C:\Program Files\WindowsApps\28017CharlesMilette.TranslucentTB_2023.2.0.0_x64__v826wp6bftszj\TranslucentTB.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <13>
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(explorer.exe ->) (Skutta Software GmbH -> ) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe
(explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(explorer.exe ->) (Voyetra Turtle Beach, Inc. -> ROCCAT) C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\ROCCAT_Swarm_Monitor.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe <4>
(services.exe ->) (Microsoft Corporation -> MSPCManagerService) C:\Program Files\Microsoft PC Manager\MSPCManagerService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24010.12-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24010.12-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_92b25561841a09dd\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (TunnelBear (McAfee Canada ULC) -> TunnelBear) C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.exe
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(svchost.exe ->) (Alexey Nicolaychuk -> ) C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> ) C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
(svchost.exe ->) (Voyetra Turtle Beach, Inc. -> ROCCAT) C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\ROCCAT_Dev_Service.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [WindowsMasterUI] => C:\Program Files\Microsoft PC Manager\MSPCManager.exe [952352 2023-11-27] (Microsoft Corporation -> MSPCManager)
HKLM-x32\...\Run: [Genshin Impact_launcher_pcseaepic_1_3] => [X]
HKU\S-1-5-21-2297492589-26117319-3987669191-1001\...\Run: [MicrosoftEdgeAutoLaunch_4800549307E325D0534F6938D6AF857A] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4060728 2024-03-01] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2297492589-26117319-3987669191-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4384104 2024-03-06] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-2297492589-26117319-3987669191-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37397480 2024-03-05] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-2297492589-26117319-3987669191-1001\...\Run: [Discord] => C:\Users\tobby\AppData\Local\Discord\Update.exe [1525024 2024-02-12] (Discord Inc. -> GitHub)
HKU\S-1-5-21-2297492589-26117319-3987669191-1001\...\Run: [WallpaperEngine] => C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe [3311032 2024-02-26] (Skutta Software GmbH -> )
HKU\S-1-5-21-2297492589-26117319-3987669191-1001\...\Run: [Wargaming.net Game Center] => C:\ProgramData\Wargaming.net\GameCenter\wgc.exe [2189080 2024-01-17] (Wargaming Group Limited -> Wargaming.net)
HKU\S-1-5-21-2297492589-26117319-3987669191-1001\...\Run: [RiotClient] => C:\Riot Games\Riot Client\RiotClientServices.exe [70920704 2024-02-17] (Riot Games, Inc. -> Riot Games, Inc.)
HKU\S-1-5-21-2297492589-26117319-3987669191-1001\...\Run: [GalaxyClient] => [X]
HKU\S-1-5-21-2297492589-26117319-3987669191-1001\...\Run: [GogGalaxy] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [13993440 2023-10-25] (GOG sp. z o.o -> GOG.com)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\122.0.6261.112\Installer\chrmstp.exe [2024-03-07] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ROCCAT Swarm Monitor.lnk [2024-02-17]
ShortcutTarget: ROCCAT Swarm Monitor.lnk -> C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\ROCCAT_Swarm_Monitor.exe (Voyetra Turtle Beach, Inc. -> ROCCAT)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {26C51504-9D3B-4A3E-876C-124974BC4045} - System32\Tasks\BlueStacksHelper_nxt => C:\Program Files\BlueStacks_nxt\BlueStacksHelper.exe [302968 2024-02-19] (Now.gg, INC -> BlueStack Systems, Inc.)
Task: {C21EDD17-0AF0-4BA1-A7CC-0EB4D5776B7C} - System32\Tasks\Driver Booster SkipUAC (tobby) => C:\Program Files (x86)\IObit\Driver Booster\11.3.0\DriverBooster.exe [9045480 2024-02-27] (IObit CO., LTD -> IObit)
Task: {2CE2EAA6-C2B8-443B-9BF3-B197A259BB2D} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\IObit\Driver Booster\11.3.0\AutoUpdate.exe [2525160 2024-02-27] (IObit CO., LTD -> IObit)
Task: {511A9B16-558F-4CBE-A13B-9C2AFC6F14D6} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem124.0.6342.2{D5B141E8-0A58-467E-8F50-1186D3AC8A54} => C:\Program Files (x86)\Google\GoogleUpdater\124.0.6342.2\updater.exe [4721952 2024-03-06] (Google LLC -> Google LLC)
Task: {4B5AA256-6BF3-42A8-B6EC-5B36AFD93983} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24010.12-0\MpCmdRun.exe [1646000 2024-02-28] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E53839BC-E1C6-42CD-91D6-2FA1197381ED} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24010.12-0\MpCmdRun.exe [1646000 2024-02-28] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A1CE93F4-1E7A-47FF-9004-8B6D7CB479BA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24010.12-0\MpCmdRun.exe [1646000 2024-02-28] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {74EAFB71-0A82-438D-BCF8-77A016849F95} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24010.12-0\MpCmdRun.exe [1646000 2024-02-28] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {9DA449B1-129F-400B-8833-F3F68877D1EF} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [671648 2024-03-07] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {F22BECE1-3EA9-4C25-A6FB-2B7EC07C46B8} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-2297492589-26117319-3987669191-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [671648 2024-03-07] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {6CE8953D-6D8C-46CA-890A-153CE2C0AED6} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34720 2024-03-07] (Mozilla Corporation -> Mozilla Foundation)
Task: {8695E287-5983-4345-89B4-4B281A05F24C} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [817536 2024-02-08] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
Task: {1E22D411-E850-4617-9095-D676BA814B1F} - System32\Tasks\NVIDIA App SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\NVIDIA App.exe [3867176 2024-02-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {61A25582-EDFC-4539-AAA1-66CCD6607629} - System32\Tasks\ROCCAT DEVICE SERVICE => C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\ROCCAT_dev_service.exe [459160 2023-12-27] (Voyetra Turtle Beach, Inc. -> ROCCAT)
Task: {829C6ADC-B5C6-44BE-AE31-7CD71318E5F8} - System32\Tasks\RTSS => C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe [524096 2024-02-06] (Alexey Nicolaychuk -> )
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{08f4d989-e3eb-4cb9-8e04-a254a6baef2b}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{08f4d989-e3eb-4cb9-8e04-a254a6baef2b}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{08f4d989-e3eb-4cb9-8e04-a254a6baef2b}: [DhcpDomain] speedport.ip
Tcpip\..\Interfaces\{aca7924c-bda1-447f-b5f8-f15265a2e736}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{aca7924c-bda1-447f-b5f8-f15265a2e736}: [DhcpDomain] speedport.ip
Edge:
=======
Edge DefaultProfile: Profile 1
Edge Profile: C:\Users\tobby\AppData\Local\Microsoft\Edge\User Data\Profile 1 [2024-03-08]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\tobby\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\bojobppfploabceghnmlahpoonbcbacn [2024-03-07]
Edge Extension: (Google Docs Offline) - C:\Users\tobby\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-02-26]
Edge Extension: (SteamDB) - C:\Users\tobby\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\hjknpdomhlodgaebegjopkmfafjpbblg [2024-03-07]
Edge Extension: (Edge relevant text changes) - C:\Users\tobby\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-02-26]
Edge Extension: (uBlock Origin) - C:\Users\tobby\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\odfafepnkmbhccpbejgmiehpchacaeak [2024-03-07]
Edge HKLM\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn]
Edge HKLM-x32\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn]
FireFox:
========
FF DefaultProfile: tuzq9mq0.default
FF ProfilePath: C:\Users\tobby\AppData\Roaming\Mozilla\Firefox\Profiles\tuzq9mq0.default [2024-02-17]
FF ProfilePath: C:\Users\tobby\AppData\Roaming\Mozilla\Firefox\Profiles\o2rzjxbc.default-release [2024-03-07]
FF Extension: (SteamDB) - C:\Users\tobby\AppData\Roaming\Mozilla\Firefox\Profiles\o2rzjxbc.default-release\Extensions\firefox-extension@steamdb.info.xpi [2024-03-03]
FF Extension: (uBlock Origin) - C:\Users\tobby\AppData\Roaming\Mozilla\Firefox\Profiles\o2rzjxbc.default-release\Extensions\uBlock0@raymondhill.net.xpi [2024-02-23]
FF Extension: (Malwarebytes Browser Guard) - C:\Users\tobby\AppData\Roaming\Mozilla\Firefox\Profiles\o2rzjxbc.default-release\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2024-03-07]
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @wanmei.com/npArcPlayNowPlugin -> [Keine Datei]
Chrome:
=======
CHR DefaultProfile: Profile 2
CHR Profile: C:\Users\tobby\AppData\Local\Google\Chrome\User Data\Profile 2 [2024-03-08]
CHR Extension: (uBlock Origin development build) - C:\Users\tobby\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\cgbcahbpdhpcegmbfconppldiemgcoii [2024-03-07]
CHR Extension: (Google Docs Offline) - C:\Users\tobby\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-02-17]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\tobby\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2024-02-28]
CHR Extension: (SteamDB) - C:\Users\tobby\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\kdbmhfkmnlmbkgbabkdealhhbfhlmmon [2024-02-17]
CHR Extension: (Video DownloadHelper) - C:\Users\tobby\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\lmjnegcaeklhafolokijcfjliaokphfk [2024-02-19]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\tobby\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-02-17]
CHR Profile: C:\Users\tobby\AppData\Local\Google\Chrome\User Data\System Profile [2024-02-17]
CHR HKLM\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
==================== Dienste (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 AntiCheatExpert Service; C:\Program Files\AntiCheatExpert\SGuard\x64\SGuardSvc64.exe [2699120 2024-02-17] (HIGH MORALE DEVELOPMENTS LIMITED -> )
S3 battlenet_helpersvc; C:\ProgramData\Battle.net_components\battlenet_helpersvc\AgentHelper.exe [2530440 2024-02-17] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [9880840 2024-02-17] (BattlEye Innovations e.K. -> )
S3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [12096104 2024-03-04] (Electronic Arts, Inc. -> Electronic Arts)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1135648 2024-02-29] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [943528 2024-02-19] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2023-08-02] (Epic Games Inc. -> Epic Games, Inc.)
S3 FacSvc_Infestation; C:\Users\tobby\AppData\Roaming\FAC\Infestation\FacSvc.exe [506968 2024-02-20] (Fredaikis AB -> )
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [2350048 2023-10-25] (GOG sp. z o.o -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7173088 2023-10-25] (GOG sp. z o.o -> GOG.com)
S3 GameforgeClientService; C:\Program Files (x86)\GameforgeClient\gfservice.exe [635968 2024-02-15] (Gameforge 4D GmbH -> )
S2 GoogleUpdaterInternalService124.0.6342.2; C:\Program Files (x86)\Google\GoogleUpdater\124.0.6342.2\updater.exe [4721952 2024-03-06] (Google LLC -> Google LLC)
S2 GoogleUpdaterService124.0.6342.2; C:\Program Files (x86)\Google\GoogleUpdater\124.0.6342.2\updater.exe [4721952 2024-03-06] (Google LLC -> Google LLC)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9423680 2024-03-07] (Malwarebytes Inc. -> Malwarebytes)
S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [3073888 2024-03-07] (Malwarebytes Inc. -> Malwarebytes)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_92b25561841a09dd\Display.NvContainer\NVDisplay.Container.exe [1275000 2024-03-02] (NVIDIA Corporation -> NVIDIA Corporation)
R2 PCManager Service; C:\Program Files\Microsoft PC Manager\MSPCManagerService.exe [188336 2023-11-27] (Microsoft Corporation -> MSPCManagerService)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [5209072 2024-02-17] (Rockstar Games, Inc. -> Rockstar Games)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [522184 2024-03-03] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 TunnelBearMaintenance; C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.exe [142864 2023-08-30] (TunnelBear (McAfee Canada ULC) -> TunnelBear)
S3 ucldr_battlegrounds_gl; C:\Program Files\Common Files\Wellbia.com\ucldr_battlegrounds_gl.exe [5084200 2024-02-21] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24010.12-0\NisSrv.exe [3191256 2024-02-28] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24010.12-0\MsMpEng.exe [133576 2024-02-28] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 zksvc; C:\Program Files\Common Files\PUBG\zksvc.exe [12363104 2024-03-06] (KRAFTON, Inc. -> KRAFTON, Inc)
===================== Treiber (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 ACE-BASE; C:\Windows\system32\drivers\ACE-BASE.sys [1874008 2024-03-08] (HIGH MORALE DEVELOPMENTS LIMITED -> ANTICHEATEXPERT.COM)
R1 Ahflt; C:\Windows\System32\drivers\ahflt.sys [49704 2023-11-27] (Microsoft Corporation -> Microsoft Corporation)
R3 amdgpio3; C:\Windows\System32\drivers\amdgpio3.sys [36928 2022-09-16] (ASMedia Technology Inc. -> Advanced Micro Devices, Inc)
R2 BlueStacksDrv_nxt; C:\Program Files\BlueStacks_nxt\BstkDrv_nxt.sys [394176 2024-02-19] (Microsoft Windows Hardware Compatibility Publisher -> Bluestack System Inc.)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Datei ist nicht signiert]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Datei ist nicht signiert]
S3 HoYoProtect; C:\Windows\system32\HoYoKProtect.sys [3768896 2023-11-09] (Microsoft Windows Hardware Compatibility Publisher -> miHoYo)
U3 HtAntiCheatDriver; D:\SteamLibrary\steamapps\common\Perfect World Mobile\PerfectWorldLaunch\driver\gamedriverX64.sys [57552 2024-02-23] (Fedeen Games Limited -> GameDriver)
R3 KOBRAKAHN; C:\Windows\System32\drivers\KOBRAKAHN.sys [3859376 2020-07-22] (Microsoft Windows Hardware Compatibility Publisher -> C-MEDIA Inc.)
R3 ksophon_x64; D:\SteamLibrary\steamapps\common\Tower of Fantasy\Tower of Fantasy\Hotta\Binaries\Win64\ksophon_x64.sys [9986168 2024-03-08] (PROXIMA BETA PTE. LIMITED -> PROXIMA BETE)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [21480 2024-03-07] (Microsoft Windows Early Launch Anti-Malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [239576 2024-03-07] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 polarbear-split-tunneling; C:\Program Files (x86)\TunnelBear\Drivers\x64\SplitTunnelingDriver.sys [29176 2023-07-10] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [36824 2020-07-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
R3 tap-tb-0901; C:\Windows\System32\drivers\tap-tb-0901.sys [38656 2023-07-10] (TunnelBear, Inc. -> The OpenVPN Project)
R0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [21040 2024-02-28] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [608648 2024-02-28] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105752 2024-02-28] (Microsoft Windows -> Microsoft Corporation)
S3 xhunter1; C:\Windows\xhunter1.sys [215864 2024-03-07] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat (erstellte) (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2024-03-08 21:44 - 2024-03-08 22:45 - 000024275 _____ C:\Users\tobby\Downloads\FRST.txt
2024-03-08 14:49 - 2024-03-08 14:49 - 083099648 _____ C:\Windows\system32\config\SOFTWARE
2024-03-08 03:31 - 2024-03-08 03:31 - 000003057 _____ C:\Users\tobby\Desktop\MasterofGarden.lnk
2024-03-08 03:31 - 2024-03-08 03:31 - 000003017 _____ C:\Users\tobby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MasterofGarden.lnk
2024-03-08 03:31 - 2024-03-08 03:31 - 000003011 _____ C:\Users\tobby\AppData\Roaming\Microsoft\Windows\Start Menu\MasterofGarden.lnk
2024-03-08 03:09 - 2024-03-08 03:09 - 000000294 _____ C:\Users\tobby\Downloads\ESET.txt
2024-03-07 21:28 - 2024-03-07 21:28 - 000001272 _____ C:\Users\tobby\Desktop\ESET Online Scanner.lnk
2024-03-07 19:00 - 2024-03-07 19:00 - 000000222 _____ C:\Users\tobby\Desktop\Neos VR.url
2024-03-07 18:10 - 2024-03-07 18:11 - 000000000 ___HD C:\$WinREAgent
2024-03-07 17:30 - 2024-03-07 17:31 - 000000000 ____D C:\AdwCleaner
2024-03-07 17:29 - 2024-03-07 17:29 - 000001414 _____ C:\Users\tobby\Downloads\MBAM.txt
2024-03-07 17:24 - 2024-03-07 17:30 - 000000000 ____D C:\Users\tobby\AppData\Local\Malwarebytes
2024-03-07 17:24 - 2024-03-07 17:24 - 000002093 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2024-03-07 17:24 - 2024-03-07 17:24 - 000000000 ____D C:\ProgramData\Malwarebytes
2024-03-07 17:24 - 2024-03-07 17:24 - 000000000 ____D C:\Program Files\Malwarebytes
2024-03-06 20:44 - 2024-03-06 20:44 - 000000000 ____D C:\Windows\LastGood.Tmp
2024-03-06 20:44 - 2024-03-06 20:44 - 000000000 ____D C:\Users\tobby\AppData\Local\DBG
2024-03-06 20:44 - 2024-03-06 20:44 - 000000000 ____D C:\Users\tobby\AppData\Local\CrashReportClient
2024-03-06 18:33 - 2024-03-02 17:03 - 002031360 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2024-03-06 18:33 - 2024-03-02 17:03 - 002031360 _____ C:\Windows\system32\vulkaninfo.exe
2024-03-06 18:33 - 2024-03-02 17:03 - 001578752 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2024-03-06 18:33 - 2024-03-02 17:03 - 001578752 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2024-03-06 18:33 - 2024-03-02 17:03 - 001445120 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2024-03-06 18:33 - 2024-03-02 17:03 - 001445120 _____ C:\Windows\system32\vulkan-1.dll
2024-03-06 18:33 - 2024-03-02 17:03 - 001295104 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2024-03-06 18:33 - 2024-03-02 17:03 - 001295104 _____ C:\Windows\SysWOW64\vulkan-1.dll
2024-03-06 18:33 - 2024-03-02 17:03 - 001226760 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2024-03-06 18:33 - 2024-03-02 17:00 - 001045520 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll
2024-03-06 18:33 - 2024-03-02 17:00 - 000669704 _____ (NVIDIA Corporation) C:\Windows\system32\nvofapi64.dll
2024-03-06 18:33 - 2024-03-02 17:00 - 000505360 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvofapi.dll
2024-03-06 18:33 - 2024-03-02 16:59 - 002173560 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2024-03-06 18:33 - 2024-03-02 16:59 - 001625736 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2024-03-06 18:33 - 2024-03-02 16:59 - 001541648 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2024-03-06 18:33 - 2024-03-02 16:59 - 001199752 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2024-03-06 18:33 - 2024-03-02 16:59 - 001024032 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2024-03-06 18:33 - 2024-03-02 16:59 - 000841840 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe
2024-03-06 18:33 - 2024-03-02 16:59 - 000786952 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2024-03-06 18:33 - 2024-03-02 16:58 - 016033824 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2024-03-06 18:33 - 2024-03-02 16:58 - 012928032 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2024-03-06 18:33 - 2024-03-02 16:58 - 006780960 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2024-03-06 18:33 - 2024-03-02 16:58 - 005772808 _____ (NVIDIA Corporation) C:\Windows\system32\nvcudadebugger.dll
2024-03-06 18:33 - 2024-03-02 16:58 - 003721752 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2024-03-06 18:33 - 2024-03-02 16:58 - 000459808 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe
2024-03-06 18:33 - 2024-03-02 16:57 - 005913096 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2024-03-06 18:33 - 2024-03-02 16:57 - 000853640 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe
2024-03-06 18:33 - 2024-03-02 00:04 - 000119419 _____ C:\Windows\system32\nvinfo.pb
2024-03-06 18:31 - 2024-03-06 18:31 - 000000000 ____D C:\Windows\SysWOW64\NV
2024-03-06 18:31 - 2024-03-06 18:31 - 000000000 ____D C:\Windows\system32\NV
2024-03-05 23:09 - 2024-03-07 21:29 - 000001378 _____ C:\Users\tobby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2024-03-05 23:09 - 2024-03-05 23:09 - 000000000 ____D C:\Users\tobby\AppData\Local\ESET
2024-03-04 20:13 - 2024-03-08 22:44 - 000000000 ____D C:\FRST
2024-03-04 20:12 - 2024-03-08 21:43 - 002390016 _____ (Farbar) C:\Users\tobby\Downloads\FRST64.exe
2024-03-04 16:49 - 2024-03-07 18:02 - 002103780 _____ C:\Windows\ntbtlog.txt
2024-03-04 16:49 - 2024-03-07 17:52 - 000000214 _____ C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job
2024-03-04 16:26 - 2024-03-04 16:26 - 000007631 _____ C:\Users\tobby\AppData\Local\Resmon.ResmonCfg
2024-03-04 15:58 - 2024-03-04 15:58 - 006107096 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2024-03-04 15:57 - 2024-03-04 15:57 - 000003288 _____ C:\Windows\system32\Tasks\Driver Booster SkipUAC (tobby)
2024-03-04 15:57 - 2024-03-04 15:57 - 000003162 _____ C:\Windows\system32\Tasks\Driver Booster Update
2024-03-04 15:57 - 2024-03-04 15:57 - 000000000 ____D C:\Users\tobby\AppData\Local\EALaunchHelper
2024-03-04 15:57 - 2024-03-04 15:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 11
2024-03-03 16:39 - 2024-03-03 16:39 - 000019530 _____ C:\Windows\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-03-03 16:38 - 2024-03-03 16:38 - 000019530 _____ C:\Windows\system32\IntegratedServicesRegionPolicySet.json
2024-03-03 16:36 - 2024-03-03 16:36 - 000000000 ____D C:\Users\tobby\AppData\Local\mbam
2024-02-29 02:12 - 2024-02-29 02:12 - 000000000 ____D C:\Users\tobby\AppData\Local\XERA
2024-02-28 23:09 - 2024-02-28 23:11 - 000000000 ____D C:\Users\tobby\AppData\Roaming\FuncomLauncher
2024-02-28 05:33 - 2024-03-08 03:26 - 000000000 ____D C:\ProgramData\bst_boost_interprocess
2024-02-28 05:33 - 2024-02-28 05:33 - 000003920 _____ C:\Windows\system32\Tasks\BlueStacksHelper_nxt
2024-02-28 05:33 - 2024-02-28 05:33 - 000002087 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks 5.lnk
2024-02-28 05:33 - 2024-02-28 05:33 - 000001969 _____ C:\Users\Public\Desktop\BlueStacks 5.lnk
2024-02-28 05:33 - 2024-02-28 05:33 - 000001287 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks Multi-Instance Manager.lnk
2024-02-28 05:32 - 2024-02-28 05:32 - 000000000 ____D C:\Program Files\BlueStacks_nxt
2024-02-27 04:28 - 2024-02-27 04:28 - 000000000 ____D C:\Users\tobby\AppData\Local\NCSOFT
2024-02-26 15:38 - 2024-02-26 15:38 - 000000000 ____D C:\Users\tobby\Documents\Black Desert
2024-02-26 02:07 - 2024-03-02 17:03 - 001487904 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2024-02-26 01:58 - 2024-02-26 01:58 - 000003834 _____ C:\Windows\system32\Tasks\NVIDIA App SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-02-26 01:58 - 2024-02-26 01:58 - 000000000 ____D C:\Users\tobby\ansel
2024-02-26 01:58 - 2024-02-26 01:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2024-02-26 01:58 - 2024-02-19 10:22 - 003132456 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2024-02-26 01:58 - 2024-02-19 10:22 - 002418216 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2024-02-26 01:58 - 2024-02-19 10:22 - 000306728 _____ C:\Windows\system32\FvSDK_x64.dll
2024-02-26 01:58 - 2024-02-19 10:22 - 000268840 _____ C:\Windows\SysWOW64\FvSDK_x86.dll
2024-02-26 01:58 - 2024-02-19 10:22 - 000171048 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2024-02-26 01:58 - 2024-02-19 10:22 - 000150056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2024-02-26 01:58 - 2024-02-19 10:22 - 000050216 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2024-02-23 03:31 - 2024-02-23 03:31 - 000000000 ____D C:\Users\tobby\AppData\LocalLow\PWRD
2024-02-23 03:30 - 2024-02-23 03:30 - 000000000 ____D C:\Users\tobby\AppData\Local\PerfectWorldGame
2024-02-22 22:05 - 2024-02-22 22:05 - 000000000 ____D C:\Users\tobby\AppData\LocalLow\Temp
2024-02-22 18:19 - 2024-02-22 18:19 - 000000000 ____D C:\Users\tobby\AppData\LocalLow\P1Team
2024-02-22 00:24 - 2024-02-22 00:24 - 000000000 ____D C:\Users\tobby\AppData\Roaming\WinRAR
2024-02-21 19:01 - 2024-02-21 19:01 - 000000000 ____D C:\Users\tobby\AppData\Local\TslGame
2024-02-21 18:59 - 2024-03-07 18:17 - 000000000 ____D C:\Program Files\Common Files\PUBG
2024-02-21 18:59 - 2024-03-07 18:13 - 000215864 _____ (Wellbia.com Co., Ltd.) C:\Windows\xhunter1.sys
2024-02-21 18:59 - 2024-02-28 23:10 - 000000000 ____D C:\Users\tobby\AppData\Local\BattlEye
2024-02-21 18:59 - 2024-02-21 18:59 - 000000000 ____D C:\Users\tobby\AppData\Local\WELLBIA
2024-02-21 18:59 - 2024-02-21 18:59 - 000000000 ____D C:\Program Files\Common Files\Wellbia.com
2024-02-21 18:51 - 2024-02-21 18:51 - 000000000 ____D C:\Users\tobby\AppData\Local\HerovsGame
2024-02-21 17:34 - 2024-02-21 17:34 - 000000000 ____D C:\Users\tobby\AppData\LocalLow\Cognosphere
2024-02-21 16:55 - 2024-02-21 16:55 - 000000000 ____D C:\Users\tobby\AppData\Roaming\GMEGLOBAL
2024-02-21 16:54 - 2024-02-21 16:54 - 000000000 ____D C:\Users\tobby\AppData\Roaming\DSS
2024-02-21 04:58 - 2024-02-21 04:58 - 000000000 ____D C:\Users\tobby\AppData\LocalLow\Alpha Blend Interactive
2024-02-21 04:56 - 2024-02-21 04:56 - 000000000 ____D C:\Users\tobby\AppData\LocalLow\Solirax
2024-02-21 02:49 - 2024-03-02 21:45 - 000000000 ____D C:\Users\tobby\.junique
2024-02-21 02:49 - 2024-02-21 02:50 - 000000000 ____D C:\Users\tobby\.minion
2024-02-21 02:49 - 2024-02-21 02:49 - 000000620 _____ C:\Users\tobby\Documents\Minion.lnk
2024-02-21 02:49 - 2024-02-21 02:49 - 000000000 ____D C:\Users\tobby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Good Game Mods LLC
2024-02-21 02:49 - 2024-02-21 02:49 - 000000000 ____D C:\Users\tobby\AppData\Roaming\gg.minion.Minion
2024-02-21 02:49 - 2024-02-21 02:49 - 000000000 ____D C:\Users\tobby\.oracle_jre_usage
2024-02-21 02:48 - 2024-02-21 02:48 - 000000000 ____D C:\Users\tobby\AppData\Local\Minion
2024-02-21 02:00 - 2024-02-21 04:18 - 000000000 ____D C:\Users\tobby\AppData\Local\Archeage
2024-02-21 01:45 - 2024-02-21 01:45 - 000000000 ____D C:\Users\tobby\AppData\Roaming\CC
2024-02-21 01:18 - 2024-02-21 01:18 - 000000000 ____D C:\Users\tobby\AppData\Roaming\rvlm_launcher
2024-02-21 01:18 - 2024-02-21 01:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revelation M
2024-02-21 00:45 - 2024-03-08 03:32 - 000000000 ____D C:\Users\tobby\AppData\LocalLow\Crunchyroll Games LLC
2024-02-21 00:45 - 2024-02-21 01:43 - 000000000 ____D C:\Users\tobby\AppData\LocalLow\pangu
2024-02-21 00:45 - 2024-02-21 01:16 - 000000000 ____D C:\Users\tobby\AppData\Local\vng_sea
2024-02-21 00:45 - 2024-02-21 00:45 - 000000000 ____D C:\Users\tobby\AppData\Roaming\Netease
2024-02-21 00:45 - 2024-02-21 00:45 - 000000000 ____D C:\Users\tobby\AppData\Local\UniSDK
2024-02-21 00:45 - 2024-02-21 00:45 - 000000000 ____D C:\Users\tobby\AppData\Local\Netease
2024-02-21 00:45 - 2024-02-21 00:45 - 000000000 ____D C:\ProgramData\NeteaseWinDev
2024-02-21 00:17 - 2024-02-21 00:33 - 000000000 ____D C:\Users\tobby\AppData\Local\Warframe
2024-02-20 22:05 - 2024-02-20 22:05 - 000000000 ____D C:\Users\tobby\AppData\Local\Azure
2024-02-20 20:39 - 2024-02-20 20:39 - 000000000 ____D C:\Windows\system32\Tasks\GoogleSystem
2024-02-20 17:18 - 2024-02-20 18:06 - 000000000 ____D C:\Users\tobby\AppData\LocalLow\Konami Digital Entertainment Co., Ltd_
2024-02-20 17:15 - 2024-02-20 17:15 - 000000000 ____D C:\Users\tobby\Documents\FredaikisAB
2024-02-20 17:15 - 2024-02-20 17:15 - 000000000 ____D C:\Users\tobby\AppData\Local\FredaikisAB
2024-02-20 17:15 - 2024-02-20 17:15 - 000000000 ____D C:\Users\tobby\AppData\Local\CrashRpt
2024-02-20 17:14 - 2024-02-20 17:14 - 000000000 ____D C:\Users\tobby\AppData\Roaming\FAC
2024-02-20 17:13 - 2024-02-20 17:13 - 000000000 ____D C:\Users\tobby\AppData\Roaming\riot-client-ux
2024-02-20 17:08 - 2024-03-08 14:49 - 000000000 ____D C:\Windows\Microsoft Antimalware
2024-02-20 16:50 - 2024-02-21 18:51 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat_EOS
2024-02-20 16:20 - 2024-02-21 16:53 - 000000000 ____D C:\Users\tobby\AppData\Local\Hotta
2024-02-20 15:47 - 2024-03-07 14:13 - 000000000 ____D C:\Program Files\Mozilla Firefox
2024-02-20 15:28 - 2024-03-08 04:48 - 000000000 ____D C:\ProgramData\AntiCheatExpert
2024-02-20 15:28 - 2024-03-08 04:00 - 001874008 _____ (ANTICHEATEXPERT.COM) C:\Windows\system32\Drivers\ACE-BASE.sys
2024-02-20 15:28 - 2024-03-08 03:33 - 000000000 ____D C:\Users\tobby\AppData\LocalLow\Unity
2024-02-20 15:28 - 2024-02-20 15:30 - 000000000 ____D C:\Program Files\AntiCheatExpert
2024-02-20 15:28 - 2024-02-20 15:28 - 000000000 ____D C:\Windows\Minidump
2024-02-20 15:28 - 2024-02-20 15:28 - 000000000 ____D C:\Users\tobby\AppData\LocalLow\com_proximabeta
2024-02-20 15:28 - 2024-02-20 15:28 - 000000000 ____D C:\Users\tobby\AppData\LocalLow\com.proximabeta
2024-02-20 15:28 - 2024-02-20 15:28 - 000000000 ____D C:\Users\tobby\AppData\Local\Sentry
2024-02-20 15:27 - 2024-02-20 15:27 - 000000000 ____D C:\ProgramData\INTL
2024-02-20 00:12 - 2024-03-08 15:40 - 000000000 ____D C:\Users\tobby\AppData\Roaming\tof_launcher_Steam
2024-02-20 00:12 - 2024-02-20 16:20 - 000000000 ____D C:\Users\tobby\AppData\Roaming\tof_launcher
2024-02-19 20:46 - 2024-02-19 20:46 - 004134705 _____ C:\Users\tobby\Downloads\LVR_KD_2018_04_Flyer_Spezialambulanz_logo-neu~1.pdf
2024-02-19 03:09 - 2024-02-19 03:09 - 000000000 ____D C:\Users\tobby\Documents\Elder Scrolls Online
2024-02-19 03:09 - 2024-02-19 03:09 - 000000000 ____D C:\Users\tobby\AppData\Local\Elder Scrolls Online
2024-02-19 03:09 - 2024-02-19 03:09 - 000000000 ____D C:\ProgramData\Elder Scrolls Online
2024-02-18 23:15 - 2024-02-18 23:15 - 000000000 ____D C:\Users\tobby\AppData\Local\miHoYo
2024-02-18 23:05 - 2024-02-18 23:05 - 000000000 ____D C:\Windows\jre
2024-02-18 23:05 - 2024-02-18 23:05 - 000000000 ____D C:\Users\tobby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The Elder Scrolls Online
2024-02-18 23:04 - 2024-02-18 23:05 - 000000000 ___HD C:\Program Files (x86)\Zero G Registry
2024-02-18 23:04 - 2024-02-18 23:04 - 000000000 ____D C:\Users\tobby\.InstallAnywhere
2024-02-18 23:04 - 2024-02-18 23:04 - 000000000 ____D C:\ProgramData\Oracle
2024-02-18 17:26 - 2024-02-21 17:05 - 000000000 ____D C:\Users\tobby\AppData\LocalLow\miHoYo
2024-02-18 15:47 - 2024-02-18 15:47 - 000000016 _____ C:\ProgramData\mntemp
2024-02-18 15:46 - 2024-02-29 02:12 - 000000000 ____D C:\Users\tobby\AppData\Roaming\EasyAntiCheat
2024-02-18 15:46 - 2024-02-18 15:46 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat
2024-02-18 06:15 - 2024-02-18 06:15 - 000000340 _____ C:\Users\tobby\Desktop\Fortnite.url
2024-02-18 01:53 - 2024-02-18 23:15 - 000000000 ____D C:\Users\tobby\AppData\Local\HoYoverse
2024-02-18 01:45 - 2024-02-18 01:45 - 000000141 _____ C:\Users\tobby\Desktop\AION MMO.url
2024-02-17 23:03 - 2024-02-17 23:03 - 000000148 _____ C:\Users\tobby\Desktop\AION Classic.url
2024-02-17 23:02 - 2024-02-17 23:02 - 000000000 ____D C:\ProgramData\Gameforge4d
2024-02-17 22:12 - 2024-03-08 06:36 - 000000000 ____D C:\Users\tobby\AppData\Roaming\vlc
2024-02-17 22:12 - 2024-02-17 22:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2024-02-17 22:12 - 2024-02-17 22:12 - 000000000 ____D C:\Program Files\VideoLAN
2024-02-17 22:11 - 2024-03-04 15:59 - 000000000 ____D C:\Users\tobby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2024-02-17 22:11 - 2024-03-04 15:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2024-02-17 22:11 - 2024-03-04 15:59 - 000000000 ____D C:\Program Files\WinRAR
2024-02-17 21:17 - 2024-02-17 21:17 - 000000000 ____D C:\Users\tobby\AppData\Local\Adaware
2024-02-17 21:15 - 2024-02-17 21:15 - 000000624 _____ C:\Users\tobby\Desktop\osu!.lnk
2024-02-17 21:15 - 2024-02-17 21:15 - 000000624 _____ C:\Users\tobby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\osu!.lnk
2024-02-17 21:12 - 2024-02-17 21:12 - 000000000 ____D C:\Users\tobby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rockstar Games
2024-02-17 21:12 - 2024-02-17 21:12 - 000000000 ____D C:\ProgramData\Rockstar Games
2024-02-17 21:12 - 2024-02-17 21:12 - 000000000 ____D C:\Program Files\Rockstar Games
2024-02-17 21:11 - 2024-03-07 17:34 - 000000000 ____D C:\Program Files\ADWCleaner
2024-02-17 21:11 - 2024-02-17 21:11 - 000000000 ____D C:\Users\tobby\AppData\Roaming\TunnelBear
2024-02-17 21:11 - 2024-02-17 21:11 - 000000000 ____D C:\Users\tobby\AppData\Local\TunnelBear
2024-02-17 21:11 - 2024-02-17 21:11 - 000000000 ____D C:\Users\tobby\AppData\Local\IsolatedStorage
2024-02-17 21:11 - 2024-02-17 21:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TunnelBear
2024-02-17 21:10 - 2024-02-17 21:11 - 000000000 ____D C:\Program Files (x86)\TunnelBear
2024-02-17 21:10 - 2024-02-17 21:10 - 000000000 ____D C:\Users\tobby\AppData\Local\GOG.com
2024-02-17 21:10 - 2024-02-17 21:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
2024-02-17 21:10 - 2024-02-17 21:10 - 000000000 ____D C:\Program Files (x86)\GOG Galaxy
2024-02-17 21:09 - 2024-02-17 21:09 - 000000000 ____D C:\ProgramData\GOG.com
2024-02-17 21:08 - 2024-02-17 21:08 - 000000000 ____D C:\Users\tobby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Display Driver Uninstaller
2024-02-17 21:08 - 2024-02-17 21:08 - 000000000 ____D C:\Program Files\GPUZ
2024-02-17 21:08 - 2024-02-17 21:08 - 000000000 ____D C:\Program Files (x86)\Display Driver Uninstaller
2024-02-17 21:07 - 2024-02-17 21:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HWiNFO64
2024-02-17 21:07 - 2024-02-17 21:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2024-02-17 21:07 - 2024-02-17 21:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2024-02-17 21:07 - 2024-02-17 21:07 - 000000000 ____D C:\Program Files\HWiNFO64
2024-02-17 21:07 - 2024-02-17 21:07 - 000000000 ____D C:\Program Files\CrystalDiskInfo
2024-02-17 21:07 - 2024-02-17 21:07 - 000000000 ____D C:\Program Files\CPUID
2024-02-17 20:34 - 2024-03-08 04:48 - 000000000 ____D C:\Users\tobby\AppData\Roaming\nikke_launcher
2024-02-17 20:34 - 2024-02-17 20:35 - 000000000 ____D C:\Users\tobby\AppData\Roaming\CurseForge
2024-02-17 20:34 - 2024-02-17 20:34 - 000002429 _____ C:\Users\tobby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CurseForge.lnk
2024-02-17 20:34 - 2024-02-17 20:34 - 000002421 _____ C:\Users\tobby\Desktop\CurseForge.lnk
2024-02-17 20:34 - 2024-02-17 20:34 - 000001020 _____ C:\Users\tobby\AppData\Roaming\nikke_launcher.reg
2024-02-17 20:34 - 2024-02-17 20:34 - 000000890 _____ C:\Users\Public\Desktop\NIKKE.lnk
2024-02-17 20:34 - 2024-02-17 20:34 - 000000000 ____D C:\Users\tobby\AppData\Roaming\ow-electron
2024-02-17 20:34 - 2024-02-17 20:34 - 000000000 ____D C:\Users\tobby\AppData\Local\curseforge-updater
2024-02-17 20:34 - 2024-02-17 20:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NIKKE
2024-02-17 20:32 - 2024-02-17 20:34 - 000000000 ____D C:\Users\tobby\AppData\Local\Overwolf
2024-02-17 20:29 - 2024-02-17 20:29 - 000000000 ____D C:\Users\tobby\AppData\Local\nikkeminiloader
2024-02-17 20:29 - 2024-02-17 20:29 - 000000000 ____D C:\ProgramData\intl_ua
2024-02-17 20:28 - 2024-02-17 20:28 - 000000000 ____D C:\Users\tobby\AppData\Roaming\tym_launcher
2024-02-17 20:27 - 2024-02-17 20:27 - 000000675 _____ C:\Users\Public\Desktop\PokeOne.lnk
2024-02-17 20:27 - 2024-02-17 20:27 - 000000675 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PokeOne.lnk
2024-02-17 20:26 - 2024-02-20 21:36 - 000000037 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Gameforge Client.url
2024-02-17 20:26 - 2024-02-20 21:36 - 000000000 ____D C:\Program Files (x86)\GameforgeClient
2024-02-17 20:26 - 2024-02-17 20:26 - 000001286 _____ C:\Users\tobby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Gameforge Client.lnk
2024-02-17 20:26 - 2024-02-17 20:26 - 000000000 ____D C:\Users\tobby\AppData\Local\Gameforge4d
2024-02-17 20:24 - 2024-02-22 22:41 - 000000000 ____D C:\Users\tobby\AppData\Local\DragonRajaLauncher
2024-02-17 20:24 - 2024-02-17 20:24 - 000000000 ____D C:\Users\tobby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DragonRaja
2024-02-17 20:14 - 2024-02-17 20:14 - 000000000 ____D C:\Users\tobby\Documents\League of Legends
2024-02-17 20:05 - 2024-02-17 20:05 - 000000000 ____D C:\Windows\SysWOW64\XPSViewer
2024-02-17 20:05 - 2024-02-17 20:05 - 000000000 ____D C:\Program Files\Reference Assemblies
2024-02-17 20:05 - 2024-02-17 20:05 - 000000000 ____D C:\Program Files\MSBuild
2024-02-17 20:05 - 2024-02-17 20:05 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2024-02-17 20:05 - 2024-02-17 20:05 - 000000000 ____D C:\Program Files (x86)\MSBuild
2024-02-17 20:03 - 2024-02-17 20:03 - 000001681 _____ C:\Users\Public\Desktop\League of Legends.lnk
2024-02-17 20:00 - 2024-03-08 06:36 - 000000000 ____D C:\Users\tobby\AppData\Local\CrashDumps
2024-02-17 20:00 - 2024-02-20 17:14 - 000000000 ____D C:\ProgramData\Riot Games
2024-02-17 20:00 - 2024-02-17 20:14 - 000000000 ____D C:\Users\tobby\AppData\Local\Riot Games
2024-02-17 20:00 - 2024-02-17 20:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riot Games
2024-02-17 20:00 - 2024-02-17 20:00 - 000000000 ____D C:\Users\tobby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Riot Games
2024-02-17 20:00 - 2024-02-17 20:00 - 000000000 ____D C:\Riot Games
2024-02-17 19:59 - 2024-02-17 19:59 - 000000369 _____ C:\Users\tobby\Desktop\Honkai Star Rail.url
2024-02-17 19:57 - 2024-02-17 19:57 - 000000370 _____ C:\Users\tobby\Desktop\Honkai Impact 3rd.url
2024-02-17 19:54 - 2024-02-17 19:54 - 000000368 _____ C:\Users\tobby\Desktop\Genshin Impact.url
2024-02-17 19:22 - 2024-02-17 19:22 - 000000000 ____D C:\Users\tobby\Documents\My Games
2024-02-17 19:22 - 2024-02-17 19:22 - 000000000 ____D C:\Users\tobby\AppData\LocalLow\Kinetic Games
2024-02-17 19:22 - 2024-02-17 19:22 - 000000000 ____D C:\Users\tobby\AppData\LocalLow\Endnight
2024-02-17 19:22 - 2024-02-17 19:22 - 000000000 ____D C:\Users\tobby\AppData\LocalLow\Eek
2024-02-17 19:21 - 2024-03-04 15:59 - 000000000 ____D C:\Users\tobby\AppData\Local\Ubisoft Game Launcher
2024-02-17 19:21 - 2024-03-04 15:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA
2024-02-17 19:21 - 2024-03-04 15:59 - 000000000 ____D C:\ProgramData\EA Desktop
2024-02-17 19:21 - 2024-02-17 19:21 - 000000000 ____D C:\Users\tobby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2024-02-17 19:21 - 2024-02-17 19:21 - 000000000 ____D C:\Users\tobby\AppData\Local\Origin
2024-02-17 19:21 - 2024-02-17 19:21 - 000000000 ____D C:\Users\tobby\AppData\Local\Electronic Arts
2024-02-17 19:21 - 2024-02-17 19:21 - 000000000 ____D C:\Users\tobby\AppData\Local\EADesktop
2024-02-17 19:21 - 2024-02-17 19:21 - 000000000 ____D C:\ProgramData\Ubisoft
2024-02-17 19:21 - 2024-02-17 19:21 - 000000000 ____D C:\Program Files\EA Games
2024-02-17 19:21 - 2024-02-17 19:21 - 000000000 ____D C:\Program Files (x86)\Ubisoft
2024-02-17 19:20 - 2024-02-17 19:20 - 000000000 ____D C:\Users\tobby\AppData\Roaming\Battle.net
2024-02-17 19:20 - 2024-02-17 19:20 - 000000000 ____D C:\Users\tobby\AppData\Local\Battle.net
2024-02-17 19:20 - 2024-02-17 19:20 - 000000000 ____D C:\Program Files\Electronic Arts
2024-02-17 19:18 - 2024-02-20 18:35 - 000000000 ____D C:\Users\tobby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wargaming.net
2024-02-17 19:18 - 2024-02-17 19:18 - 000001892 _____ C:\Users\tobby\Desktop\Game Center.lnk
2024-02-17 19:18 - 2024-02-17 19:18 - 000000000 ____D C:\Users\tobby\AppData\Roaming\Wargaming.net
2024-02-17 19:17 - 2024-02-17 19:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2024-02-17 19:16 - 2024-02-17 19:17 - 000000000 ____D C:\Program Files\Microsoft PC Manager
2024-02-17 19:16 - 2024-02-17 19:16 - 000001223 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft PC Manager (Beta).lnk
2024-02-17 19:16 - 2024-02-17 19:16 - 000000000 ____D C:\Users\tobby\AppData\Local\Windows Master
2024-02-17 19:16 - 2024-02-17 19:16 - 000000000 ____D C:\Users\tobby\AppData\Local\PC Manager
2024-02-17 19:16 - 2024-02-17 19:16 - 000000000 ____D C:\ProgramData\Windows Master
2024-02-17 19:15 - 2024-02-17 19:15 - 000000000 ____D C:\ProgramData\Windows Master Setup
2024-02-17 19:14 - 2024-02-17 19:20 - 000000000 ____D C:\Program Files (x86)\Battle.net
2024-02-17 19:14 - 2024-02-17 19:14 - 000000000 ____D C:\Users\tobby\AppData\Local\Blizzard Entertainment
2024-02-17 19:14 - 2024-02-17 19:14 - 000000000 ____D C:\ProgramData\Wargaming.net
2024-02-17 19:14 - 2024-02-17 19:14 - 000000000 ____D C:\ProgramData\Battle.net_components
2024-02-17 19:14 - 2024-02-17 19:14 - 000000000 ____D C:\ProgramData\Battle.net
2024-02-17 19:06 - 2024-02-17 19:06 - 000000222 _____ C:\Users\tobby\Desktop\7 Days to Die.url
2024-02-17 19:05 - 2024-02-17 19:05 - 000000222 _____ C:\Users\tobby\Desktop\ArcheAge.url
2024-02-17 19:05 - 2024-02-17 19:05 - 000000222 _____ C:\Users\tobby\Desktop\APB Reloaded.url
2024-02-17 19:04 - 2024-02-17 19:04 - 000000222 _____ C:\Users\tobby\Desktop\The Elder Scrolls Online.url
2024-02-17 19:04 - 2024-02-17 19:04 - 000000222 _____ C:\Users\tobby\Desktop\DEAD OR ALIVE Xtreme Venus Vacation.url
2024-02-17 19:04 - 2024-02-17 19:04 - 000000222 _____ C:\Users\tobby\Desktop\DayZ.url
2024-02-17 19:04 - 2024-02-17 19:04 - 000000222 _____ C:\Users\tobby\Desktop\Conan Exiles.url
2024-02-17 19:03 - 2024-02-17 19:03 - 000000222 _____ C:\Users\tobby\Desktop\Grand Theft Auto V.url
2024-02-17 19:02 - 2024-02-17 19:02 - 000000223 _____ C:\Users\tobby\Desktop\MY HERO ULTRA RUMBLE.url
2024-02-17 19:02 - 2024-02-17 19:02 - 000000222 _____ C:\Users\tobby\Desktop\Infestation Survivor Stories 2020.url
2024-02-17 19:01 - 2024-02-17 19:01 - 000000222 _____ C:\Users\tobby\Desktop\SMITE.url
2024-02-17 19:01 - 2024-02-17 19:01 - 000000222 _____ C:\Users\tobby\Desktop\PUBG BATTLEGROUNDS.url
2024-02-17 19:01 - 2024-02-17 19:01 - 000000222 _____ C:\Users\tobby\Desktop\Phasmophobia.url
2024-02-17 19:00 - 2024-02-17 19:00 - 000000223 _____ C:\Users\tobby\Desktop\Tower of Fantasy.url
2024-02-17 19:00 - 2024-02-17 19:00 - 000000223 _____ C:\Users\tobby\Desktop\STAR WARS™ The Old Republic™.url
2024-02-17 19:00 - 2024-02-17 19:00 - 000000223 _____ C:\Users\tobby\Desktop\Sons Of The Forest.url
2024-02-17 19:00 - 2024-02-17 19:00 - 000000222 _____ C:\Users\tobby\Desktop\VRChat.url
2024-02-17 18:59 - 2024-02-17 18:59 - 000000223 _____ C:\Users\tobby\Desktop\Yu-Gi-Oh! Master Duel.url
2024-02-17 18:59 - 2024-02-17 18:59 - 000000222 _____ C:\Users\tobby\Desktop\Yu-Gi-Oh! Duel Links.url
2024-02-17 18:59 - 2024-02-17 18:59 - 000000222 _____ C:\Users\tobby\Desktop\Warframe.url
2024-02-17 18:59 - 2024-02-17 18:59 - 000000222 _____ C:\Users\tobby\Desktop\Soundpad.url
2024-02-17 18:35 - 2024-02-27 18:44 - 000003108 _____ C:\Windows\system32\Tasks\RTSS
2024-02-17 17:56 - 2024-02-17 17:56 - 000000223 _____ C:\Users\tobby\Desktop\Lost Ark.url
2024-02-17 17:51 - 2024-03-08 00:31 - 000000000 ____D C:\Users\tobby\AppData\Roaming\TS3Client
2024-02-17 17:51 - 2024-02-23 03:30 - 000000000 ____D C:\Users\tobby\AppData\Local\cache
2024-02-17 17:51 - 2024-02-17 17:51 - 000000000 ____D C:\Users\tobby\AppData\Local\TeamSpeak 3
2024-02-17 17:50 - 2024-02-17 17:50 - 000000000 ____D C:\Users\tobby\AppData\Local\Patch_My_PC,_LLC
2024-02-17 17:50 - 2024-02-17 17:50 - 000000000 ____D C:\Program Files\Patch My PC
2024-02-17 17:36 - 2024-03-07 19:00 - 000000000 ____D C:\Users\tobby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2024-02-17 17:24 - 2024-02-17 17:24 - 000000000 ____D C:\Users\tobby\AppData\Local\HD-Player
2024-02-17 17:23 - 2024-03-08 22:42 - 000000000 ____D C:\Users\tobby\AppData\Local\Discord
2024-02-17 17:23 - 2024-03-08 21:42 - 000000000 ____D C:\Users\tobby\AppData\Roaming\discord
2024-02-17 17:23 - 2024-02-28 19:57 - 000000000 ____D C:\Users\tobby\AppData\Local\SquirrelTemp
2024-02-17 17:23 - 2024-02-17 17:51 - 000000970 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client.lnk
2024-02-17 17:23 - 2024-02-17 17:51 - 000000000 ____D C:\Program Files\TeamSpeak 3 Client
2024-02-17 17:23 - 2024-02-17 17:23 - 000007151 _____ C:\Users\tobby\-1.14-windows.xml
2024-02-17 17:23 - 2024-02-17 17:23 - 000000000 ____D C:\Users\tobby\AppData\Roaming\NVIDIA
2024-02-17 17:23 - 2024-02-17 17:23 - 000000000 ____D C:\Users\tobby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2024-02-17 17:23 - 2024-02-17 17:23 - 000000000 ____D C:\Users\tobby\AppData\Local\bluestacks-services-updater
2024-02-17 17:22 - 2024-02-26 01:58 - 000000000 ____D C:\Users\tobby\AppData\Local\NVIDIA Corporation
2024-02-17 17:22 - 2024-02-17 17:22 - 000000000 ____D C:\Users\tobby\AppData\Roaming\TeamSpeak
2024-02-17 17:22 - 2024-02-17 17:22 - 000000000 ____D C:\Users\tobby\AppData\Local\TeamSpeak
2024-02-17 17:21 - 2024-02-17 17:22 - 000003039 _____ C:\Users\tobby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeamSpeak.lnk
2024-02-17 17:21 - 2024-02-17 17:21 - 000000000 ____D C:\Program Files (x86)\Microsoft XNA
2024-02-17 17:20 - 2024-02-29 02:12 - 000000000 ____D C:\Users\tobby\AppData\Local\UnrealEngine
2024-02-17 17:20 - 2024-02-18 17:26 - 000000000 ____D C:\Users\tobby\AppData\Local\Epic Games
2024-02-17 17:20 - 2024-02-18 01:53 - 000000000 ____D C:\Users\tobby\AppData\Local\EpicGamesLauncher
2024-02-17 17:20 - 2024-02-17 17:20 - 000466456 _____ (Creative Labs) C:\Windows\system32\wrap_oal.dll
2024-02-17 17:20 - 2024-02-17 17:20 - 000444952 _____ (Creative Labs) C:\Windows\SysWOW64\wrap_oal.dll
2024-02-17 17:20 - 2024-02-17 17:20 - 000122904 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\system32\OpenAL32.dll
2024-02-17 17:20 - 2024-02-17 17:20 - 000109080 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\SysWOW64\OpenAL32.dll
2024-02-17 17:20 - 2024-02-17 17:20 - 000000000 ____D C:\Users\tobby\AppData\Local\UnrealEngineLauncher
2024-02-17 17:20 - 2024-02-17 17:20 - 000000000 ____D C:\Program Files (x86)\OpenAL
2024-02-17 17:19 - 2024-02-28 05:32 - 000000000 ____D C:\Users\tobby\AppData\Local\Bluestacks
2024-02-17 17:19 - 2024-02-28 05:29 - 000000000 ____D C:\Users\Public\BlueStacks
2024-02-17 17:19 - 2024-02-27 23:09 - 000000000 ____D C:\Users\tobby\AppData\Local\Steam
2024-02-17 17:19 - 2024-02-17 17:19 - 000000000 ____D C:\Users\tobby\AppData\Local\CEF
2024-02-17 17:18 - 2024-03-08 22:44 - 000000000 ____D C:\Program Files (x86)\Steam
2024-02-17 17:18 - 2024-02-17 17:22 - 000000000 ____D C:\ProgramData\Epic
2024-02-17 17:18 - 2024-02-17 17:20 - 000000000 ____D C:\Program Files (x86)\Epic Games
2024-02-17 17:18 - 2024-02-17 17:18 - 000001272 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk
2024-02-17 17:18 - 2024-02-17 17:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2024-02-17 17:17 - 2024-02-17 17:17 - 001296856 _____ (Realtek ) C:\Windows\system32\Drivers\rt640x64.sys
2024-02-17 17:17 - 2024-02-17 17:17 - 000003658 _____ C:\Windows\system32\Tasks\ROCCAT DEVICE SERVICE
2024-02-17 17:15 - 2024-02-17 17:15 - 000000000 ____D C:\Users\tobby\AppData\Roaming\ROCCAT
2024-02-17 17:14 - 2024-02-17 17:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ROCCAT
2024-02-17 17:14 - 2024-02-17 17:14 - 000000000 ____D C:\Program Files (x86)\ROCCAT
2024-02-17 17:14 - 2024-02-17 17:14 - 000000000 ____D C:\Program Files (x86)\InstallShield Installation Information
2024-02-17 17:12 - 2024-03-08 14:45 - 000003124 _____ C:\Windows\system32\Tasks\MSIAfterburner
2024-02-17 17:07 - 2024-02-29 04:56 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner
2024-02-17 17:07 - 2024-02-28 14:56 - 000000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2024-02-17 17:07 - 2024-02-17 17:09 - 000000000 ____D C:\Windows\SysWOW64\directx
2024-02-17 17:07 - 2024-02-17 17:07 - 000000000 ____D C:\Users\tobby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server
2024-02-17 17:07 - 2024-02-17 17:07 - 000000000 ____D C:\Users\tobby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
2024-02-17 17:06 - 2024-02-26 01:58 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2024-02-17 17:06 - 2024-02-17 17:06 - 000000000 ____D C:\Users\tobby\AppData\LocalLow\NVIDIA
2024-02-17 17:05 - 2024-03-02 16:56 - 006943440 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2024-02-17 17:05 - 2024-02-17 17:06 - 000000000 ____D C:\Windows\system32\Drivers\NVIDIA Corporation
2024-02-17 17:05 - 2024-02-17 17:05 - 000000000 ____D C:\Windows\system32\lxss
2024-02-17 17:02 - 2024-03-02 16:56 - 006031080 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2024-02-17 17:01 - 2024-03-04 15:57 - 000000000 ____D C:\ProgramData\ProductData
2024-02-17 17:01 - 2024-02-17 17:01 - 000000000 ____D C:\Users\tobby\AppData\Local\PeerDistRepub
2024-02-17 17:00 - 2024-02-17 17:01 - 000000000 ____D C:\Users\tobby\AppData\LocalLow\IObit
2024-02-17 17:00 - 2024-02-17 17:00 - 000000000 ____D C:\Users\tobby\AppData\Local\setup
2024-02-17 17:00 - 2024-02-17 17:00 - 000000000 ____D C:\Program Files (x86)\IObit
2024-02-17 16:59 - 2024-03-04 18:00 - 000000000 ____D C:\Users\tobby\AppData\Roaming\IObit
2024-02-17 16:59 - 2024-02-20 17:16 - 000000000 ____D C:\ProgramData\Package Cache
2024-02-17 16:59 - 2024-02-17 17:02 - 000000000 ____D C:\ProgramData\IObit
2024-02-17 16:59 - 2024-02-17 16:59 - 000000000 ____D C:\Users\tobby\AppData\Roaming\AMD
2024-02-17 16:59 - 2024-02-17 16:59 - 000000000 ____D C:\Program Files (x86)\AMD
2024-02-17 16:59 - 2024-02-17 16:59 - 000000000 ____D C:\AMD
2024-02-17 16:33 - 2024-03-07 23:45 - 000002239 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-02-17 16:33 - 2024-02-20 20:39 - 000000000 ____D C:\Program Files (x86)\Google
2024-02-17 16:33 - 2024-02-17 16:33 - 000000000 ____D C:\Users\tobby\AppData\Local\Google
2024-02-17 16:33 - 2024-02-17 16:33 - 000000000 ____D C:\Program Files\Google
2024-02-17 16:32 - 2024-03-07 20:40 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-02-17 16:32 - 2024-03-07 14:13 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-02-17 16:32 - 2024-03-07 01:36 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-02-17 16:32 - 2024-02-23 04:01 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2024-02-17 16:32 - 2024-02-17 16:32 - 000002034 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox Privater Modus.lnk
2024-02-17 16:32 - 2024-02-17 16:32 - 000000000 ____D C:\Users\tobby\AppData\Roaming\Mozilla
2024-02-17 16:32 - 2024-02-17 16:32 - 000000000 ____D C:\Users\tobby\AppData\Local\Mozilla
2024-02-17 06:47 - 2024-02-17 06:47 - 000000000 ____D C:\Users\tobby\AppData\Roaming\Microsoft\MMC
2024-02-17 06:42 - 2024-02-17 06:42 - 000000000 ____D C:\ProgramData\PLUG
2024-02-17 06:40 - 2024-02-17 06:40 - 000000000 ____D C:\Windows\InboxApps
2024-02-17 06:25 - 2024-02-17 06:25 - 000000000 ____D C:\Users\tobby\AppData\Roaming\Microsoft\Spelling
2024-02-17 06:22 - 2024-02-17 06:23 - 000000000 ____D C:\Windows\system32\MRT
2024-02-17 06:20 - 2024-03-07 18:04 - 000000000 ____D C:\Program Files\RUXIM
2024-02-17 06:20 - 2024-02-17 17:47 - 000000000 ____D C:\Users\tobby\AppData\Local\Comms
2024-02-17 06:20 - 2024-02-17 06:20 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2024-02-17 06:19 - 2024-03-07 02:13 - 000000000 ____D C:\Users\tobby\AppData\Local\NVIDIA
2024-02-17 06:18 - 2024-03-06 22:06 - 000000000 ____D C:\Users\tobby\AppData\Local\PlaceholderTileLogoFolder
2024-02-17 06:18 - 2024-02-17 06:23 - 000000000 ___RD C:\Users\tobby\OneDrive
2024-02-17 06:18 - 2024-02-17 06:18 - 000000000 ___HD C:\OneDriveTemp
2024-02-17 06:18 - 2024-02-17 06:18 - 000000000 ____D C:\Users\tobby\AppData\Local\OneDrive
2024-02-17 06:18 - 2024-02-17 06:18 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2024-02-17 06:16 - 2024-03-08 15:42 - 000000000 ____D C:\Users\tobby\AppData\Local\D3DSCache
2024-02-17 06:16 - 2024-03-08 14:56 - 001723308 _____ C:\Windows\system32\PerfStringBackup.INI
2024-02-17 06:16 - 2024-03-06 22:21 - 000000000 ____D C:\Users\tobby\AppData\Local\Packages
2024-02-17 06:16 - 2024-03-03 16:54 - 000000000 ____D C:\ProgramData\Packages
2024-02-17 06:16 - 2024-02-28 07:15 - 000000000 __RHD C:\Users\Public\AccountPictures
2024-02-17 06:16 - 2024-02-17 17:47 - 000000000 ____D C:\Users\tobby\AppData\Local\ConnectedDevicesPlatform
2024-02-17 06:16 - 2024-02-17 06:16 - 000000000 ___SD C:\Users\tobby\AppData\Roaming\Microsoft\Crypto
2024-02-17 06:16 - 2024-02-17 06:16 - 000000000 ___RD C:\Users\tobby\3D Objects
2024-02-17 06:16 - 2024-02-17 06:16 - 000000000 ____D C:\Users\tobby\AppData\Roaming\Microsoft\Vault
2024-02-17 06:16 - 2024-02-17 06:16 - 000000000 ____D C:\Users\tobby\AppData\Roaming\Microsoft\Network
2024-02-17 06:16 - 2024-02-17 06:16 - 000000000 ____D C:\Users\tobby\AppData\Roaming\Adobe
2024-02-17 06:16 - 2024-02-17 06:16 - 000000000 ____D C:\Users\tobby\AppData\Local\VirtualStore
2024-02-17 06:16 - 2024-02-17 06:16 - 000000000 ____D C:\Users\tobby\AppData\Local\Publishers
2024-02-17 06:15 - 2024-03-08 14:50 - 000000000 ____D C:\ProgramData\NVIDIA
2024-02-17 06:15 - 2024-02-26 01:58 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2024-02-17 06:15 - 2024-02-26 01:58 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2024-02-17 06:15 - 2024-02-07 23:49 - 000121880 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2024-02-17 06:14 - 2024-03-08 06:36 - 000000000 ____D C:\Users\tobby
2024-02-17 06:14 - 2024-03-07 17:47 - 000000000 ____D C:\Users\tobby\AppData\Roaming\Microsoft\Windows
2024-02-17 06:14 - 2024-02-28 14:56 - 000000000 ___SD C:\Users\tobby\AppData\Roaming\Microsoft\Protect
2024-02-17 06:14 - 2024-02-17 06:14 - 000000020 ___SH C:\Users\tobby\ntuser.ini
2024-02-17 06:14 - 2024-02-17 06:14 - 000000000 _SHDL C:\Users\tobby\Vorlagen
2024-02-17 06:14 - 2024-02-17 06:14 - 000000000 _SHDL C:\Users\tobby\Startmenü
2024-02-17 06:14 - 2024-02-17 06:14 - 000000000 _SHDL C:\Users\tobby\Netzwerkumgebung
2024-02-17 06:14 - 2024-02-17 06:14 - 000000000 _SHDL C:\Users\tobby\Lokale Einstellungen
2024-02-17 06:14 - 2024-02-17 06:14 - 000000000 _SHDL C:\Users\tobby\Eigene Dateien
2024-02-17 06:14 - 2024-02-17 06:14 - 000000000 _SHDL C:\Users\tobby\Druckumgebung
2024-02-17 06:14 - 2024-02-17 06:14 - 000000000 _SHDL C:\Users\tobby\Documents\Eigene Videos
2024-02-17 06:14 - 2024-02-17 06:14 - 000000000 _SHDL C:\Users\tobby\Documents\Eigene Musik
2024-02-17 06:14 - 2024-02-17 06:14 - 000000000 _SHDL C:\Users\tobby\Documents\Eigene Bilder
2024-02-17 06:14 - 2024-02-17 06:14 - 000000000 _SHDL C:\Users\tobby\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2024-02-17 06:14 - 2024-02-17 06:14 - 000000000 _SHDL C:\Users\tobby\AppData\Local\Verlauf
2024-02-17 06:14 - 2024-02-17 06:14 - 000000000 _SHDL C:\Users\tobby\AppData\Local\Anwendungsdaten
2024-02-17 06:14 - 2024-02-17 06:14 - 000000000 _SHDL C:\Users\tobby\Anwendungsdaten
2024-02-17 06:14 - 2024-02-17 06:14 - 000000000 ___SD C:\Users\tobby\AppData\Roaming\Microsoft\SystemCertificates
2024-02-17 06:14 - 2024-02-17 06:14 - 000000000 ___SD C:\Users\tobby\AppData\Roaming\Microsoft\Credentials
2024-02-17 06:12 - 2024-02-17 06:12 - 000000000 ____D C:\Windows\CSC
2024-02-17 06:10 - 2024-02-17 06:10 - 000000000 _SHDL C:\Users\Public\Documents\Eigene Videos
2024-02-17 06:10 - 2024-02-17 06:10 - 000000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2024-02-17 06:10 - 2024-02-17 06:10 - 000000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2024-02-17 06:10 - 2024-02-17 06:10 - 000000000 _SHDL C:\Users\Default\Vorlagen
2024-02-17 06:10 - 2024-02-17 06:10 - 000000000 _SHDL C:\Users\Default\Startmenü
2024-02-17 06:10 - 2024-02-17 06:10 - 000000000 _SHDL C:\Users\Default\Netzwerkumgebung
2024-02-17 06:10 - 2024-02-17 06:10 - 000000000 _SHDL C:\Users\Default\Lokale Einstellungen
2024-02-17 06:10 - 2024-02-17 06:10 - 000000000 _SHDL C:\Users\Default\Eigene Dateien
2024-02-17 06:10 - 2024-02-17 06:10 - 000000000 _SHDL C:\Users\Default\Druckumgebung
2024-02-17 06:10 - 2024-02-17 06:10 - 000000000 _SHDL C:\Users\Default\Documents\Eigene Videos
2024-02-17 06:10 - 2024-02-17 06:10 - 000000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2024-02-17 06:10 - 2024-02-17 06:10 - 000000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2024-02-17 06:10 - 2024-02-17 06:10 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2024-02-17 06:10 - 2024-02-17 06:10 - 000000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2024-02-17 06:10 - 2024-02-17 06:10 - 000000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2024-02-17 06:10 - 2024-02-17 06:10 - 000000000 _SHDL C:\Users\Default\Anwendungsdaten
2024-02-17 06:10 - 2024-02-17 06:10 - 000000000 _SHDL C:\Programme
2024-02-17 06:10 - 2024-02-17 06:10 - 000000000 _SHDL C:\ProgramData\Vorlagen
2024-02-17 06:10 - 2024-02-17 06:10 - 000000000 _SHDL C:\ProgramData\Startmenü
2024-02-17 06:10 - 2024-02-17 06:10 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2024-02-17 06:10 - 2024-02-17 06:10 - 000000000 _SHDL C:\ProgramData\Dokumente
2024-02-17 06:10 - 2024-02-17 06:10 - 000000000 _SHDL C:\ProgramData\Anwendungsdaten
2024-02-17 06:10 - 2024-02-17 06:10 - 000000000 _SHDL C:\Program Files\Gemeinsame Dateien
2024-02-17 06:10 - 2024-02-17 06:10 - 000000000 _SHDL C:\Dokumente und Einstellungen
2024-02-17 06:09 - 2024-03-08 22:35 - 000000000 ____D C:\Windows\system32\SleepStudy
2024-02-17 06:09 - 2024-03-08 14:50 - 000008192 ___SH C:\DumpStack.log.tmp
2024-02-17 06:09 - 2024-03-08 14:50 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2024-02-17 06:09 - 2024-03-06 18:42 - 000003756 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-02-17 06:09 - 2024-03-06 18:42 - 000003632 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-02-17 06:09 - 2024-03-03 16:53 - 000269200 _____ C:\Windows\system32\FNTCACHE.DAT
2024-02-17 06:09 - 2024-03-03 16:42 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-02-17 06:09 - 2024-02-28 07:20 - 000000000 ____D C:\Windows\system32\Drivers\wd
2024-02-17 06:09 - 2024-02-19 07:39 - 000000000 ____D C:\Windows\Panther
2024-02-17 06:09 - 2024-02-17 06:09 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2024-02-17 06:09 - 2024-02-17 06:09 - 000000000 ____D C:\Windows\ServiceProfiles
2024-02-17 05:37 - 2024-03-05 15:50 - 000000034 _____ C:\Users\tobby\Documents\aionclassicmemo_2797 1fb.dat
2024-02-17 05:37 - 2024-02-28 17:58 - 000000372 _____ C:\Users\tobby\Documents\aionclassicmemo_cc41d11d.dat
2024-02-17 05:37 - 2024-02-17 17:01 - 000000000 ____D C:\Users\tobby\Documents\Steam
2024-02-17 05:37 - 2023-10-15 17:42 - 000000103 _____ C:\Users\tobby\Documents\aionlivememo_a8fb5c18.dat
2024-02-17 05:37 - 2023-02-21 02:03 - 000001295 _____ C:\Users\tobby\Documents\aionlivememo_b51aed17.dat
2024-02-17 05:37 - 2023-02-15 15:43 - 000000283 _____ C:\Users\tobby\Documents\aionlivememo_36101a 6.dat
2024-02-17 05:37 - 2023-02-15 15:42 - 000000278 _____ C:\Users\tobby\Documents\aionlivememo_42e288c6.dat
2024-02-17 05:37 - 2021-10-06 02:10 - 000000020 _____ C:\Users\tobby\Documents\aionmemo_f784f3ab.dat
2024-02-17 05:37 - 2021-10-05 19:54 - 000000278 _____ C:\Users\tobby\Documents\aionmemo_42e288c6.dat
2024-02-17 05:37 - 2021-10-05 16:06 - 000000283 _____ C:\Users\tobby\Documents\aionmemo_36101a 6.dat
2024-02-17 05:37 - 2021-09-10 06:32 - 000000020 _____ C:\Users\tobby\Documents\aionmemo_698d9546.dat
2024-02-17 05:36 - 2024-02-17 17:01 - 000000000 ____D C:\Users\tobby\Documents\Sonstiges
2024-02-17 05:28 - 2024-02-17 16:52 - 000000000 ____D C:\Users\tobby\Documents\Anime
2024-02-17 05:21 - 2024-03-03 16:41 - 000001846 _____ C:\Users\tobby\Desktop\To Do List.txt
2024-02-17 05:20 - 2024-02-17 17:01 - 000000000 ____D C:\Users\tobby\Documents\Serien - Filme
2024-02-17 05:19 - 2024-02-20 02:39 - 000000000 ____D C:\Users\tobby\Documents\Notizen
==================== Ein Monat (geänderte) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2024-03-08 22:44 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-03-08 14:56 - 2019-12-07 15:51 - 000743838 _____ C:\Windows\system32\perfh007.dat
2024-03-08 14:56 - 2019-12-07 15:51 - 000150260 _____ C:\Windows\system32\perfc007.dat
2024-03-08 14:56 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF
2024-03-08 14:45 - 2019-12-07 10:03 - 000524288 _____ C:\Windows\system32\config\BBI
2024-03-08 14:42 - 2023-05-05 13:28 - 000000000 ____D C:\Windows\SystemTemp
2024-03-08 04:56 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness
2024-03-07 20:51 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-03-07 17:24 - 2019-12-07 10:14 - 000000000 ___HD C:\Windows\ELAMBKUP
2024-03-03 16:52 - 2019-12-07 15:54 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2024-03-03 16:52 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2024-03-03 16:52 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources
2024-03-03 16:52 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ShellExperiences
2024-03-03 16:52 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2024-03-03 16:52 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr
2024-03-03 16:41 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp
2024-02-29 22:23 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Drivers\DriverData
2024-02-20 15:52 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\tracing
2024-02-18 04:31 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\appcompat
2024-02-17 20:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\MUI
2024-02-17 20:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\MUI
2024-02-17 17:18 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2024-02-17 16:52 - 2023-01-21 23:09 - 000000000 ____D C:\Users\tobby\Documents\PS Vita
2024-02-17 06:40 - 2019-12-07 15:54 - 000000000 ___SD C:\Windows\system32\AppV
2024-02-17 06:40 - 2019-12-07 15:54 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2024-02-17 06:40 - 2019-12-07 15:54 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2024-02-17 06:40 - 2019-12-07 15:51 - 000000000 ____D C:\Windows\SysWOW64\de
2024-02-17 06:40 - 2019-12-07 15:51 - 000000000 ____D C:\Windows\system32\de
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\SysWOW64\F12
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\SysWOW64\DiagSvcs
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\UNP
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\F12
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\DiagSvcs
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\PrintDialog
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\setup
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\PerceptionSimulation
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\oobe
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\migwiz
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\lv-LV
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\lt-LT
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\et-EE
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\es-MX
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Com
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\AdvancedInstallers
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\WinMetadata
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\SystemResetPlatform
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Sysprep
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\ShellExperiences
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\setup
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\PerceptionSimulation
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\oobe
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\migwiz
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\lv-LV
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\lt-LT
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\et-EE
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\es-MX
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Dism
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Com
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\appraiser
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\AdvancedInstallers
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ShellComponents
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Provisioning
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\IME
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System
2024-02-17 06:40 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2024-02-17 06:40 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\servicing
2024-02-17 06:36 - 2019-12-07 15:54 - 000023040 _____ (Microsoft Corporation) C:\Windows\system32\OEMDefaultAssociations.dll
2024-02-17 06:36 - 2019-12-07 15:54 - 000020827 _____ C:\Windows\system32\OEMDefaultAssociations.xml
2024-02-17 06:36 - 2019-12-07 10:15 - 000208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msclmd.dll
2024-02-17 06:36 - 2019-12-07 10:14 - 000232448 _____ (Microsoft Corporation) C:\Windows\system32\msclmd.dll
2024-02-17 06:32 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ServiceState
2024-02-17 06:23 - 2019-12-07 10:03 - 000032768 _____ C:\Windows\system32\config\ELAM
2024-02-17 06:14 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\WinBioDatabase
2024-02-17 06:12 - 2019-12-07 15:52 - 000000000 ____D C:\Windows\system32\FxsTmp
2024-02-17 06:12 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\spool
2024-02-17 06:12 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\USOPrivate
2024-02-17 06:10 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows NT
2024-02-17 06:09 - 2019-12-07 10:14 - 000028672 _____ C:\Windows\system32\config\BCD-Template
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========
2024-02-17 20:34 - 2024-02-17 20:34 - 000001020 _____ () C:\Users\tobby\AppData\Roaming\nikke_launcher.reg
2024-03-04 16:26 - 2024-03-04 16:26 - 000007631 _____ () C:\Users\tobby\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
==================== Ende von FRST.txt ========================
|
|
08.03.2024, 22:51
| #15 |
| | Unsicher nach Neuinstallation wegen Virus Addition: Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 08.03.2024
durchgeführt von tobby (08-03-2024 22:45:39)
Gestartet von C:\Users\tobby\Downloads
Microsoft Windows 10 Pro Version 22H2 19045.4123 (X64) (2024-02-17 05:11:00)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
Administrator (S-1-5-21-2297492589-26117319-3987669191-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2297492589-26117319-3987669191-503 - Limited - Disabled)
Gast (S-1-5-21-2297492589-26117319-3987669191-501 - Limited - Disabled)
tobby (S-1-5-21-2297492589-26117319-3987669191-1001 - Administrator - Enabled) => C:\Users\tobby
WDAGUtilityAccount (S-1-5-21-2297492589-26117319-3987669191-504 - Limited - Disabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
AION Classic (HKLM-x32\...\{cdc124e6-6e04-4867-a651-135e589f8fd1}) (Version: - Gameforge)
AION MMO (HKLM-x32\...\{f7ed0b7e-fab7-4875-9761-b028f5b23416}) (Version: - Gameforge)
AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 6.01.25.342 - Advanced Micro Devices, Inc.)
AMD PCI Driver (HKLM-x32\...\{80EC3CEE-2940-42A1-A776-B5D810D39F1E}) (Version: 1.0.0.90 - Advanced Micro Devices, Inc.) Hidden
AMD PSP Driver (HKLM-x32\...\{988F14B8-79A8-475D-BAC7-83F96AD3D821}) (Version: 5.26.0.0 - Advanced Micro Devices, Inc.) Hidden
AMD Ryzen Balanced Driver (HKLM-x32\...\{A171D320-C42C-4F3B-A2D8-C6A09F6788CC}) (Version: 8.0.0.13 - Advanced Micro Devices, Inc.) Hidden
AMD_Chipset_Drivers (HKLM-x32\...\{42e5a8d4-8fb0-48a1-9063-fc159c7566a0}) (Version: 6.01.25.342 - Advanced Micro Devices, Inc.) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
BlueStacks App Player (HKLM\...\BlueStacks_nxt) (Version: 5.20.105.1009 - now.gg, Inc.)
CPUID CPU-Z 2.09 (HKLM\...\CPUID CPU-Z_is1) (Version: 2.09 - CPUID, Inc.)
CrystalDiskInfo 9.2.3 (HKLM\...\CrystalDiskInfo_is1) (Version: 9.2.3 - Crystal Dew World)
CurseForge 0.244.5-16323 (HKU\S-1-5-21-2297492589-26117319-3987669191-1001\...\ca0e291c-abd4-5fc3-b6a0-3d4333eccbd7) (Version: 0.244.5-16323 - Overwolf)
Discord (HKU\S-1-5-21-2297492589-26117319-3987669191-1001\...\Discord) (Version: 1.0.9033 - Discord Inc.)
Display Driver Uninstaller 18.0.7.2 (HKLM-x32\...\Display Driver Uninstaller) (Version: 18.0.7.2 - Wagnardsoft)
Dragon Raja (HKLM\...\DragonRaja) (Version: 1.7 - Archosaur Games Inc.)
Driver Booster 11 (HKLM-x32\...\Driver Booster_is1) (Version: 11.3.0 - IObit)
EA app (HKLM\...\{C2622085-ABD2-49E5-8AB9-D3D6A642C091}) (Version: 13.140.0.5653 - Electronic Arts) Hidden
EA app (HKLM-x32\...\{808115f5-372e-4994-b758-514aa090a54d}) (Version: 13.140.0.5653 - Electronic Arts)
Epic Games Launcher (HKLM-x32\...\{9483ABD9-C772-487B-ADF8-09347CF8F2D2}) (Version: 1.3.93.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{57A956AB-4BCC-45C6-9B40-957E4E125568}) (Version: 2.0.44.0 - Epic Games, Inc.)
Gameforge Client (HKLM-x32\...\{d3b2a0c1-f0d0-4888-ae0b-1c5e1febdafb}_is1) (Version: 2.6.3.1870 - Gameforge)
GOG GALAXY (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: 2.0.73.27 - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 122.0.6261.112 - Google LLC)
HWiNFO64 (HKLM\...\HWiNFO64_is1) (Version: 7.72 - Martin Malik, REALiX s.r.o.)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKU\S-1-5-21-2297492589-26117319-3987669191-1001\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc)
Malwarebytes version 5.1.0.102 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 5.1.0.102 - Malwarebytes)
MasterofGarden (HKLM-x32\...\{1BE0F2EB-7277-45AA-964E-32F08111759F}) (Version: 1.0.0 - Crunchyroll Games, LLC)
Metin2 de-DE (HKLM-x32\...\{fab180a3-cd65-4b7e-bd0e-2ef77fd0c258.de-DE}) (Version: - Gameforge)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 122.0.2365.66 - Microsoft Corporation)
Microsoft Edge WebView2-Laufzeit (HKLM-x32\...\Microsoft EdgeWebView) (Version: 122.0.2365.66 - Microsoft Corporation)
Microsoft PC Manager (Beta) (HKLM-x32\...\MSPCManager) (Version: 3.8.10.0 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40660 (HKLM\...\{5740BD44-B58D-321A-AFC0-6D3D4556DD6C}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40660 (HKLM\...\{CB0836EC-B072-368D-82B2-D3470BF95707}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40660 (HKLM-x32\...\{7DAD0258-515C-3DD4-8964-BD714199E0F7}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40660 (HKLM-x32\...\{E30D8B21-D82D-3211-82CC-0F0A5D1495E8}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.38.33135 (HKLM-x32\...\{c649ede4-f16a-4486-a117-dcc2f2a35165}) (Version: 14.38.33135.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.38.33135 (HKLM-x32\...\{46c3b171-c15c-4137-8e1d-67eeb2985b44}) (Version: 14.38.33135.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.38.33135 (HKLM\...\{19AFE054-CA83-45D5-A9DB-4108EF4BD391}) (Version: 14.38.33135 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.38.33135 (HKLM\...\{AA0C8AB5-7297-4D46-A0D9-08096FE59E46}) (Version: 14.38.33135 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.38.33135 (HKLM-x32\...\{9C19C103-7DB1-44D1-A039-2C076A633A38}) (Version: 14.38.33135 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.38.33135 (HKLM-x32\...\{286DC39B-5FB7-4AFF-9DD4-22DB47664CD7}) (Version: 14.38.33135 - Microsoft Corporation) Hidden
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Minion (HKU\S-1-5-21-2297492589-26117319-3987669191-1001\...\{Minion}}_is1) (Version: 3.0 - Good Game Mods LLC)
Mozilla Firefox (x64 de) (HKLM\...\Mozilla Firefox 123.0.1 (x64 de)) (Version: 123.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 122.0.1 - Mozilla)
MSI Afterburner 4.6.6 Beta 3 (HKLM-x32\...\Afterburner) (Version: 4.6.6 Beta 3 - MSI Co., LTD)
NIKKE (HKU\S-1-5-21-2297492589-26117319-3987669191-1001\...\nikke_launcher) (Version: - Level Infinite)
NVIDIA FrameView SDK 1.4.9615.33661400 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.4.9615.33661400 - NVIDIA Corporation)
NVIDIA Grafiktreiber 551.76 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 551.76 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.40.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.40.14 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
NVIDIA-App 10.0.0.499 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NvApp) (Version: 10.0.0.499 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
osu! (HKLM-x32\...\{65e4b4cf-b8f8-4ea3-a3ce-5a5f2675cdaf}) (Version: latest - ppy Pty Ltd)
PokeOne version 1.01 (HKLM-x32\...\{30B1E559-2D0C-4317-A76E-4EE36E2F8A39}_is1) (Version: 1.01 - PSXTeam)
Promontory_GPIO Driver (HKLM-x32\...\{B5512BCC-F4CD-4159-86A4-B2AD7D38FFA9}) (Version: 3.0.0.0 - Advanced Micro Devices, Inc.) Hidden
Revelation M (HKLM-x32\...\tym-pc-euro-release) (Version: 1.0.2.0 - NetEase Inc.)
Riot Client (HKU\S-1-5-21-2297492589-26117319-3987669191-1001\...\Riot Game Riot_Client.) (Version: - Riot Games, Inc)
RivaTuner Statistics Server 7.3.5 (HKLM-x32\...\RTSS) (Version: 7.3.5 - Unwinder)
ROCCAT SWARM (HKLM-x32\...\{E9CA669A-8FB1-4F3D-A771-2E0767D20F89}) (Version: 1.94.680 - ROCCAT GmbH) Hidden
ROCCAT SWARM (HKLM-x32\...\InstallShield_{E9CA669A-8FB1-4F3D-A771-2E0767D20F89}) (Version: 1.94.680 - ROCCAT GmbH)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.84.1856 - Rockstar Games)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak (HKLM\...\{EE883F28-D7AF-48E5-87B6-1F59D856362F}) (Version: 5.0.0 - TeamSpeak)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.6.2 - TeamSpeak Systems GmbH)
The Elder Scrolls Online (HKLM-x32\...\The Elder Scrolls Online) (Version: 2.6.3.2758126 - Zenimax Online Studios)
TunnelBear (HKLM-x32\...\{c99146dd-e09d-4881-b76b-2d7bc1b30806}) (Version: 4.8.0.0 - TunnelBear)
TunnelBear (HKLM-x32\...\{E7AEA528-0D3E-4A22-B516-9EC97C636E42}) (Version: 4.8.0.0 - TunnelBear) Hidden
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 150.1.11037 - Ubisoft)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{B9A7A138-BFD5-4C73-A269-F78CCA28150E}) (Version: 8.94.0.0 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.20 - VideoLAN)
Wargaming.net Game Center (HKU\S-1-5-21-2297492589-26117319-3987669191-1001\...\Wargaming.net Game Center) (Version: 23.7.0.4683 - Wargaming.net)
WinRAR 7.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 7.00.0 - win.rar GmbH)
World of Tanks EU (HKU\S-1-5-21-2297492589-26117319-3987669191-1001\...\338188369) (Version: - Wargaming.net)
Packages:
=========
Dev Home -> C:\Program Files\WindowsApps\Microsoft.Windows.DevHome_0.1100.416.0_x64__8wekyb3d8bbwe [2024-03-03] (Microsoft Corporation)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.964.0_x64__56jybvy8sckqj [2024-03-06] (NVIDIA Corp.)
TranslucentTB -> C:\Program Files\WindowsApps\28017CharlesMilette.TranslucentTB_2023.2.0.0_x64__v826wp6bftszj [2024-02-17] (Charles Milette) [Startup Task]
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-2297492589-26117319-3987669191-1001_Classes\CLSID\{5C4D8D77-5B87-40CA-884E-F56858227E5C}\localserver32 -> C:\Users\tobby\AppData\Local\Programs\TeamSpeak\notification_helper.exe => Keine Datei
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2024-02-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2024-02-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2024-03-07] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_92b25561841a09dd\nvshext.dll [2024-03-02] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2024-03-07] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2024-02-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2024-02-26] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\system32\rtvcvfw64.dll [1102848 2023-04-10] () [Datei ist nicht signiert]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [891904 2023-04-10] () [Datei ist nicht signiert]
==================== Verknüpfungen & WMI ========================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
ShortcutWithArgument: C:\Users\tobby\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\9501e18d7c2ab92e\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 2"
==================== Geladene Module (Nicht auf der Ausnahmeliste) =============
2023-08-30 16:19 - 2023-08-30 16:19 - 000030720 _____ () [Datei ist nicht signiert] [Datei wird verwendet] C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.Wrapper.dll
2024-02-08 15:33 - 2024-02-08 15:33 - 000261120 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\MSI Afterburner\RTCore.dll
2024-02-08 15:33 - 2024-02-08 15:33 - 000075264 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\MSI Afterburner\RTFC.dll
2024-02-08 15:33 - 2024-02-08 15:33 - 000953856 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\MSI Afterburner\RTHAL.dll
2024-02-08 15:33 - 2024-02-08 15:33 - 000112128 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\MSI Afterburner\RTMUI.dll
2024-02-08 15:33 - 2024-02-08 15:33 - 000416768 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\MSI Afterburner\RTUI.dll
2024-02-06 11:55 - 2024-02-06 11:55 - 000074240 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\RivaTuner Statistics Server\RTFC.dll
2024-02-06 11:55 - 2024-02-06 11:55 - 000112128 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\RivaTuner Statistics Server\RTMUI.dll
2024-02-06 11:55 - 2024-02-06 11:55 - 000414208 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\RivaTuner Statistics Server\RTUI.dll
2015-12-29 06:25 - 2015-12-29 06:25 - 000120334 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\libgcc_s_dw2-1.dll
2015-12-29 06:25 - 2015-12-29 06:25 - 001540622 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\libstdc++-6.dll
2022-08-30 19:45 - 2022-08-30 19:45 - 007523840 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\resource.dll
2024-02-17 17:43 - 2024-01-26 22:04 - 007470592 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Steam\aom.dll
2024-02-17 17:43 - 2024-01-26 22:04 - 000231424 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Steam\avif-16.dll
2024-02-17 17:43 - 2024-01-26 22:04 - 001066496 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Steam\dav1d.dll
2024-02-17 17:17 - 2022-08-15 10:18 - 000286720 _____ (C-MEDIA Electronics INC.) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\data\KHAN_AIMO\osConfLib.dll
2024-02-17 19:00 - 2024-02-17 19:00 - 004098560 _____ (Digia Plc and/or its subsidiary(-ies)) [Datei ist nicht signiert] D:\SteamLibrary\steamapps\common\Tower of Fantasy\Tower of Fantasy\Hotta\Plugins\OneSDKCore\Binaries\Win64\WmSdkAgent\Qt5Core.dll
2024-02-17 19:00 - 2024-02-17 19:00 - 000841216 _____ (Digia Plc and/or its subsidiary(-ies)) [Datei ist nicht signiert] D:\SteamLibrary\steamapps\common\Tower of Fantasy\Tower of Fantasy\Hotta\Plugins\OneSDKCore\Binaries\Win64\WmSdkAgent\Qt5Network.dll
2015-12-29 06:25 - 2015-12-29 06:25 - 000079360 _____ (MingW-W64 Project. All rights reserved.) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\libwinpthread-1.dll
2024-02-26 01:58 - 2024-02-26 01:58 - 000000000 ____L (NVIDIA Corporation) [symlink -> C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\PlugIns\NVIDIA App\MessageBusRouter.dll] C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\PlugIns\NVIDIA Overlay\MessageBusRouter.dll
2024-02-26 01:58 - 2024-02-26 01:58 - 000000000 ____L (NVIDIA Corporation) [symlink -> C:\Program Files\NVIDIA Corporation\NVIDIA App\MessageBus\NvMessageBusBroadcast.dll] C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem\NvMessageBusBroadcast.dll
2024-02-17 19:00 - 2024-02-17 19:00 - 021529088 _____ (The ICU Project) [Datei ist nicht signiert] D:\SteamLibrary\steamapps\common\Tower of Fantasy\Tower of Fantasy\Hotta\Plugins\OneSDKCore\Binaries\Win64\WmSdkAgent\icudt53.dll
2024-02-17 19:00 - 2024-02-17 19:00 - 001961472 _____ (The ICU Project) [Datei ist nicht signiert] D:\SteamLibrary\steamapps\common\Tower of Fantasy\Tower of Fantasy\Hotta\Plugins\OneSDKCore\Binaries\Win64\WmSdkAgent\icuin53.dll
2024-02-17 19:00 - 2024-02-17 19:00 - 001316352 _____ (The ICU Project) [Datei ist nicht signiert] D:\SteamLibrary\steamapps\common\Tower of Fantasy\Tower of Fantasy\Hotta\Plugins\OneSDKCore\Binaries\Win64\WmSdkAgent\icuuc53.dll
2015-12-29 06:52 - 2015-12-29 06:52 - 002177536 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\LIBEAY32.dll
2015-12-29 06:52 - 2015-12-29 06:52 - 000462336 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\ssleay32.dll
2016-06-11 02:15 - 2016-06-11 02:15 - 000058880 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\imageformats\qdds.dll
2016-06-10 15:32 - 2016-06-10 15:32 - 000033792 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\imageformats\qgif.dll
2016-06-11 02:15 - 2016-06-11 02:15 - 000046592 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\imageformats\qicns.dll
2016-06-10 15:33 - 2016-06-10 15:33 - 000036352 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\imageformats\qico.dll
2016-06-10 15:32 - 2016-06-10 15:32 - 000258560 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\imageformats\qjpeg.dll
2016-06-11 01:51 - 2016-06-11 01:51 - 000028672 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\imageformats\qsvg.dll
2016-06-11 02:15 - 2016-06-11 02:15 - 000028672 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\imageformats\qtga.dll
2016-06-11 02:15 - 2016-06-11 02:15 - 000495616 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\imageformats\qtiff.dll
2016-06-11 02:15 - 2016-06-11 02:15 - 000027648 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\imageformats\qwbmp.dll
2016-06-11 02:16 - 2016-06-11 02:16 - 000416768 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\imageformats\qwebp.dll
2016-06-13 03:38 - 2016-06-13 03:38 - 000317440 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\mediaservice\dsengine.dll
2016-06-10 15:34 - 2016-06-10 15:34 - 001489920 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\platforms\qwindows.dll
2020-01-13 09:29 - 2020-01-13 09:29 - 005384704 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\Qt5Core.dll
2016-06-10 15:23 - 2016-06-10 15:23 - 005283840 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\Qt5Gui.dll
2016-06-13 03:29 - 2016-06-13 03:29 - 000853504 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\Qt5Multimedia.dll
2016-06-10 15:17 - 2016-06-10 15:17 - 001610240 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\Qt5Network.dll
2016-06-11 01:51 - 2016-06-11 01:51 - 000348160 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\Qt5Svg.dll
2016-06-13 03:27 - 2016-06-13 03:27 - 000188416 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\Qt5WebSockets.dll
2016-06-10 15:29 - 2016-06-10 15:29 - 006358528 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\Qt5Widgets.dll
2022-08-15 17:23 - 2022-08-15 17:23 - 000110207 _____ (Un4seen Developments) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\BASS.dll
2022-08-15 17:23 - 2022-08-15 17:23 - 000012166 _____ (Un4seen Developments) [Datei ist nicht signiert] C:\Program Files (x86)\ROCCAT\ROCCAT SWARM\BASSWASAPI.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\Windows\tracing:? [16]
AlternateDataStreams: C:\Users\tobby\Anwendungsdaten:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\tobby\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394]
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\73829868.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\73829868.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================
==================== Internet Explorer (Nicht auf der Ausnahmeliste) ==========
==================== Hosts Inhalt: =========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2019-12-07 10:14 - 2024-02-17 21:11 - 000000822 _____ C:\Windows\system32\drivers\etc\hosts
==================== Andere Bereiche ===========================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-2297492589-26117319-3987669191-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\tobby\Downloads\blacklivesmatter-deshalb-posten-alle-stars-ein-schwarzes-foto,id=466f533a,b=bravo,w=1200,rm=sk.jpg
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
HKLM\...\StartupApproved\Run: => "WindowsMasterUI"
HKU\S-1-5-21-2297492589-26117319-3987669191-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-2297492589-26117319-3987669191-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-2297492589-26117319-3987669191-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-2297492589-26117319-3987669191-1001\...\StartupApproved\Run: => "GogGalaxy"
HKU\S-1-5-21-2297492589-26117319-3987669191-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_4800549307E325D0534F6938D6AF857A"
HKU\S-1-5-21-2297492589-26117319-3987669191-1001\...\StartupApproved\Run: => "RiotClient"
HKU\S-1-5-21-2297492589-26117319-3987669191-1001\...\StartupApproved\Run: => "Wargaming.net Game Center"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{2D474C58-443C-46E5-939C-83B14A0AC271}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{F0D0A85A-B647-4DDE-A6F7-8A2189F0875F}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{B7BB0F87-9256-4896-95F8-140C5A73D366}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{7748FA33-DF43-4A2A-B2FC-1DB08E1869F1}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{74196415-C08B-4806-BB02-426AE1A48DAE}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{48C4CF44-89E1-40D8-A9EA-BABC35B24453}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{724CFABE-1A5E-45F5-9D13-B313B19527A6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\launcher.exe (Skutta Software GmbH -> )
FirewallRules: [{17EDB58C-98F6-4FD0-B92F-2D7D7642BE40}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\launcher.exe (Skutta Software GmbH -> )
FirewallRules: [{D51DC077-D48E-4879-98B4-7F230A10EC4A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Soundpad\Soundpad.exe (Arthur Lepp -> Leppsoft)
FirewallRules: [{D9AD4A3A-1EB7-4AD2-86EB-D2C1166DBF5E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Soundpad\Soundpad.exe (Arthur Lepp -> Leppsoft)
FirewallRules: [{12746FA2-1056-458B-9F2F-F0D8BD072CFB}] => (Allow) D:\SteamLibrary\steamapps\common\ChilloutVR\ChilloutVR.exe () [Datei ist nicht signiert]
FirewallRules: [{7B15D040-5B51-49D3-85C3-8A1C38D3774C}] => (Allow) D:\SteamLibrary\steamapps\common\ChilloutVR\ChilloutVR.exe () [Datei ist nicht signiert]
FirewallRules: [{44E24281-C7E5-4D20-A834-D7A6CE65B055}] => (Allow) D:\SteamLibrary\steamapps\common\VRChat\launch.exe () [Datei ist nicht signiert]
FirewallRules: [{4AA163AF-1E85-47AC-A78F-A5E2701A3E9C}] => (Allow) D:\SteamLibrary\steamapps\common\VRChat\launch.exe () [Datei ist nicht signiert]
FirewallRules: [{B4D72A96-BF16-4C4E-8FA0-025E3A18E164}] => (Allow) D:\SteamLibrary\steamapps\common\Yu-Gi-Oh! Master Duel\masterduel.exe () [Datei ist nicht signiert]
FirewallRules: [{15808F8B-1A78-4480-8D03-2421EE221D3B}] => (Allow) D:\SteamLibrary\steamapps\common\Yu-Gi-Oh! Master Duel\masterduel.exe () [Datei ist nicht signiert]
FirewallRules: [{3D0EB189-CF30-4FDA-B2D8-58100E4F1000}] => (Allow) D:\SteamLibrary\steamapps\common\Yu-Gi-Oh! Duel Links\dlpc.exe () [Datei ist nicht signiert]
FirewallRules: [{50683BF7-DFF9-4FA0-A2EE-9156E9FAF556}] => (Allow) D:\SteamLibrary\steamapps\common\Yu-Gi-Oh! Duel Links\dlpc.exe () [Datei ist nicht signiert]
FirewallRules: [{1B6CFA12-20EB-472A-89B2-47D887B3D6C1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Live2DViewerEX\launcher.exe (Pavo Studio) [Datei ist nicht signiert]
FirewallRules: [{30BE6418-D77F-4496-9898-BB650DBF2A94}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Live2DViewerEX\launcher.exe (Pavo Studio) [Datei ist nicht signiert]
FirewallRules: [{C518F8D1-3D3D-44EB-AFD5-2A2CC534EAFB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Live2DViewerEX\InstanceManager.exe (Pavo Studio) [Datei ist nicht signiert]
FirewallRules: [{F63F5343-964E-4460-A988-8F588217B4FE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Live2DViewerEX\InstanceManager.exe (Pavo Studio) [Datei ist nicht signiert]
FirewallRules: [{A5F525D1-6972-485D-8728-80FB71601A2D}] => (Allow) C:\Users\tobby\AppData\Local\nikkeminiloader\nikkeminiloader.exe (PROXIMA BETA PTE. LIMITED -> )
FirewallRules: [{90B8B901-39F6-4825-BDC7-FD4A1EBD24D4}] => (Allow) C:\Users\tobby\AppData\Local\nikkeminiloader\nikkeminiloader.exe (PROXIMA BETA PTE. LIMITED -> )
FirewallRules: [{951E167A-37A8-4188-AEF2-CCBC67328DA8}] => (Allow) E:\SteamLibrary\steamapps\common\Lost Ark\Binaries\Win64\Launch_Game.exe (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{2D107C6E-B209-4C41-93A5-AC0F94897066}] => (Allow) E:\SteamLibrary\steamapps\common\Lost Ark\Binaries\Win64\Launch_Game.exe (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{CDA5ADAC-5A65-4073-AEF3-FB156FD95F5F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark\bin\x64\3DMark.exe (Underwriters Laboratories Inc. -> )
FirewallRules: [{F380A61F-B466-473E-9282-A56965AA215D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark\bin\x64\3DMark.exe (Underwriters Laboratories Inc. -> )
FirewallRules: [{604E7295-6481-487C-8DE0-E60572126C9F}] => (Allow) D:\SteamLibrary\steamapps\common\7 Days To Die\7dLauncher.exe () [Datei ist nicht signiert]
FirewallRules: [{F4DBEADE-3B61-42B5-ABF0-FEF226B595C1}] => (Allow) D:\SteamLibrary\steamapps\common\7 Days To Die\7dLauncher.exe () [Datei ist nicht signiert]
FirewallRules: [{7AD93829-11B8-4C2E-A11F-5EB3B4DD46AE}] => (Allow) E:\SteamLibrary\steamapps\common\AION\NCLauncher.exe (Gameforge 4D GmbH -> )
FirewallRules: [{BAB54557-E29C-4C40-9F4D-370BF78DF06B}] => (Allow) E:\SteamLibrary\steamapps\common\AION\NCLauncher.exe (Gameforge 4D GmbH -> )
FirewallRules: [{494CF6DA-6EF1-44F8-840A-944EA8821FCB}] => (Allow) D:\SteamLibrary\steamapps\common\APB Reloaded\Launcher\APBLauncher.exe (Little Orbit Inc -> K2 Network, Inc.)
FirewallRules: [{DC3E19DE-D66D-4C52-839E-6EF2625F32CD}] => (Allow) D:\SteamLibrary\steamapps\common\APB Reloaded\Launcher\APBLauncher.exe (Little Orbit Inc -> K2 Network, Inc.)
FirewallRules: [{BB2E545E-F0EC-4045-A579-30680EE13104}] => (Allow) E:\SteamLibrary\steamapps\common\ArcheAge\ArcheAge_Launcher.exe (Kakao Games Europe B.V. -> Kakao Games Corp.)
FirewallRules: [{0E870205-A315-4F07-9B21-FE62F9ADBDC9}] => (Allow) E:\SteamLibrary\steamapps\common\ArcheAge\ArcheAge_Launcher.exe (Kakao Games Europe B.V. -> Kakao Games Corp.)
FirewallRules: [{63A36074-C18C-4ADF-9245-F131B3286DF2}] => (Allow) D:\SteamLibrary\steamapps\common\Conan Exiles\Launcher\FuncomLauncher.exe (FUNCOM OSLO AS -> Funcom)
FirewallRules: [{7D3B8AD6-0F4F-43A9-B394-4F277E175B43}] => (Allow) D:\SteamLibrary\steamapps\common\Conan Exiles\Launcher\FuncomLauncher.exe (FUNCOM OSLO AS -> Funcom)
FirewallRules: [{33A7301C-5B70-4348-8F09-BF754D11A36D}] => (Allow) E:\SteamLibrary\steamapps\common\Zenimax Online\zosSteamStarter.exe (Zenimax Media Inc. -> Zenimax Online Studios)
FirewallRules: [{177FD947-0F12-4C5E-B509-F3589D03E6F8}] => (Allow) E:\SteamLibrary\steamapps\common\Zenimax Online\zosSteamStarter.exe (Zenimax Media Inc. -> Zenimax Online Studios)
FirewallRules: [{1DCD4AAC-040C-4158-A1B4-086F911144C5}] => (Allow) D:\SteamLibrary\steamapps\common\DayZ\DayZLauncher.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive a.s.)
FirewallRules: [{E8A2D47E-DD37-4E63-95F9-6D2944300332}] => (Allow) D:\SteamLibrary\steamapps\common\DayZ\DayZLauncher.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive a.s.)
FirewallRules: [{0DC10B88-A91C-4D4A-9BF2-2684C5826B46}] => (Allow) D:\SteamLibrary\steamapps\common\DayZ\DayZ_BE.exe (BOHEMIA INTERACTIVE a.s. -> BattlEye Innovations)
FirewallRules: [{96B9EB54-2055-4408-98AA-C39ED421F66E}] => (Allow) D:\SteamLibrary\steamapps\common\DayZ\DayZ_BE.exe (BOHEMIA INTERACTIVE a.s. -> BattlEye Innovations)
FirewallRules: [{A2CF7975-F875-46F2-A822-7A2577F787F0}] => (Allow) D:\SteamLibrary\steamapps\common\Sons Of The Forest\SonsOfTheForest.exe () [Datei ist nicht signiert]
FirewallRules: [{2B05BE21-B551-4F57-A27A-BF9248A5D4D2}] => (Allow) D:\SteamLibrary\steamapps\common\Sons Of The Forest\SonsOfTheForest.exe () [Datei ist nicht signiert]
FirewallRules: [{D10492ED-2F22-4D2B-9352-CB14B386F372}] => (Allow) D:\SteamLibrary\steamapps\common\The War Z\InfestationLauncher.exe (Fredaikis AB -> )
FirewallRules: [{5FB3175B-6ADE-4301-8411-46A1D46F7A41}] => (Allow) D:\SteamLibrary\steamapps\common\The War Z\InfestationLauncher.exe (Fredaikis AB -> )
FirewallRules: [{6FFAE8A4-A10F-46D8-8233-23AA55B3FACA}] => (Allow) D:\SteamLibrary\steamapps\common\DOAX-VenusVacation\DOAX_VV_Launcher.exe (株式会社コーエーテクモゲームス -> )
FirewallRules: [{1618A4FC-FEA0-4A3C-AB4A-483689A049BE}] => (Allow) D:\SteamLibrary\steamapps\common\DOAX-VenusVacation\DOAX_VV_Launcher.exe (株式会社コーエーテクモゲームス -> )
FirewallRules: [{26CA093E-0922-4597-A749-3484D6661312}] => (Allow) D:\SteamLibrary\steamapps\common\House Party\HouseParty.exe () [Datei ist nicht signiert]
FirewallRules: [{08F8402A-358A-401A-95AF-ABD294E960EB}] => (Allow) D:\SteamLibrary\steamapps\common\House Party\HouseParty.exe () [Datei ist nicht signiert]
FirewallRules: [{9436E362-0E3A-4DB5-82E6-EBAF75117882}] => (Allow) D:\SteamLibrary\steamapps\common\Fall Guys\FallGuys_client.exe () [Datei ist nicht signiert]
FirewallRules: [{4C52E026-B361-4F70-BB3E-A8A4D9A5558F}] => (Allow) D:\SteamLibrary\steamapps\common\Fall Guys\FallGuys_client.exe () [Datei ist nicht signiert]
FirewallRules: [{E9A66F28-210D-4287-BE12-9C6E7EE4552E}] => (Allow) D:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win64\RocketLeague.exe (Psyonix, LLC) [Datei ist nicht signiert]
FirewallRules: [{F5F34B38-8325-433C-8AD7-C64E387D3ACC}] => (Allow) D:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win64\RocketLeague.exe (Psyonix, LLC) [Datei ist nicht signiert]
FirewallRules: [{1AEFD174-5D2F-408C-A0A6-D63AEBC5615C}] => (Allow) D:\SteamLibrary\steamapps\common\Rust\Rust.exe (Facepunch Studios Ltd -> Epic Games, Inc.)
FirewallRules: [{0F276409-804D-40C9-B9BF-177634269D2B}] => (Allow) D:\SteamLibrary\steamapps\common\Rust\Rust.exe (Facepunch Studios Ltd -> Epic Games, Inc.)
FirewallRules: [{927B80E1-2D2E-4D82-9346-4B7D5ED81302}] => (Allow) D:\SteamLibrary\steamapps\common\Game of Thrones Winter is Coming\GotPC.exe (YOUZU (SINGAPORE) PTE. LTD. -> )
FirewallRules: [{0592B830-B368-4728-9749-41D6ADE39B1D}] => (Allow) D:\SteamLibrary\steamapps\common\Game of Thrones Winter is Coming\GotPC.exe (YOUZU (SINGAPORE) PTE. LTD. -> )
FirewallRules: [{EEE399D7-D42D-4DFE-8815-BCD35F4DF321}] => (Allow) D:\SteamLibrary\steamapps\common\Dead by Daylight\DeadByDaylight.exe (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{EBC58257-EC11-46FA-B40D-FD1DA6849904}] => (Allow) D:\SteamLibrary\steamapps\common\Dead by Daylight\DeadByDaylight.exe (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{951E45E9-1771-482D-90DD-7CF2F0288F11}] => (Allow) D:\SteamLibrary\steamapps\common\SMITE\Binaries\Win64\SmiteEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{74521331-8C0D-4B54-A8E1-7B82D48A5BC7}] => (Allow) D:\SteamLibrary\steamapps\common\SMITE\Binaries\Win64\SmiteEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{8232E0AB-28BE-48C2-AAD6-816288E40143}] => (Allow) D:\SteamLibrary\steamapps\common\SMITE\Binaries\Win32\SmiteEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{3D591A7A-1544-4B5A-B96A-C41511F2575C}] => (Allow) D:\SteamLibrary\steamapps\common\SMITE\Binaries\Win32\SmiteEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{792028CC-36EB-4E64-BFDB-8AFA7B0BF345}] => (Allow) D:\SteamLibrary\steamapps\common\Phasmophobia\Phasmophobia.exe () [Datei ist nicht signiert]
FirewallRules: [{5B8CD125-10BC-47BD-A80C-70E76539B8D5}] => (Allow) D:\SteamLibrary\steamapps\common\Phasmophobia\Phasmophobia.exe () [Datei ist nicht signiert]
FirewallRules: [{A03EF01F-36E9-496B-A72B-426D82641B9E}] => (Allow) D:\SteamLibrary\steamapps\common\Realm Royale\RealmBootstrapper.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [{41D65928-98A7-444F-B8B9-BC02E3BA00A5}] => (Allow) D:\SteamLibrary\steamapps\common\Realm Royale\RealmBootstrapper.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [{90D28939-090D-4209-962B-09AE43F50107}] => (Allow) D:\SteamLibrary\steamapps\common\My Hero Ultra Rumble\start_protected_game.exe (EasyAntiCheat Oy -> Epic Games, Inc.)
FirewallRules: [{D944CB75-859E-4BAC-AF53-24C3ADECFD2C}] => (Allow) D:\SteamLibrary\steamapps\common\My Hero Ultra Rumble\start_protected_game.exe (EasyAntiCheat Oy -> Epic Games, Inc.)
FirewallRules: [{D08F0785-919E-4BF7-A9EE-C7BE64754796}] => (Allow) E:\SteamLibrary\steamapps\common\Star Wars - The Old Republic\launcher.exe (Electronic Arts, Inc. -> Solid State Networks)
FirewallRules: [{9CCE17FD-D6D1-4824-AC0D-4CECEA5A79EC}] => (Allow) E:\SteamLibrary\steamapps\common\Star Wars - The Old Republic\launcher.exe (Electronic Arts, Inc. -> Solid State Networks)
FirewallRules: [{DC866CB7-943F-4FA5-92AD-A5CC607403FA}] => (Allow) D:\SteamLibrary\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (KRAFTON, Inc. -> KRAFTON, Inc.)
FirewallRules: [{FABAF712-EA4B-44CB-A937-1DE1B515BEA1}] => (Allow) D:\SteamLibrary\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (KRAFTON, Inc. -> KRAFTON, Inc.)
FirewallRules: [{7F9F57C7-26C4-4374-8328-797110C46EB7}] => (Allow) D:\SteamLibrary\steamapps\common\Overwatch\Overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{D40E906B-8527-42C7-8866-58EDED317432}] => (Allow) D:\SteamLibrary\steamapps\common\Overwatch\Overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{4A320874-7E4B-4D47-9839-51DB8EDAF8F4}] => (Allow) D:\SteamLibrary\steamapps\common\Tower of Fantasy\Tower of Fantasy\Launcher\tof_launcher.exe (PROXIMA BETA PTE. LIMITED -> PROXIMA BETA PTE. LIMITED)
FirewallRules: [{29F5C0F4-B770-4EB4-9A95-5AB6F99EE647}] => (Allow) D:\SteamLibrary\steamapps\common\Tower of Fantasy\Tower of Fantasy\Launcher\tof_launcher.exe (PROXIMA BETA PTE. LIMITED -> PROXIMA BETA PTE. LIMITED)
FirewallRules: [{F6943D6B-2811-486F-9A33-42AD817F1D49}] => (Allow) E:\SteamLibrary\steamapps\common\Guild Wars 2\Gw2-64.exe (ArenaNet, LLc -> ArenaNet)
FirewallRules: [{DAF7C858-5978-4BF3-A826-84C3F8DB46DE}] => (Allow) E:\SteamLibrary\steamapps\common\Guild Wars 2\Gw2-64.exe (ArenaNet, LLc -> ArenaNet)
FirewallRules: [{D8D012CC-7E1E-47C2-AA8B-463A335E17DB}] => (Allow) D:\SteamLibrary\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{7077C14D-E62A-4F89-B8BE-308DEA003FE7}] => (Allow) D:\SteamLibrary\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{8BC612B5-BB56-4662-952B-0BA97E30D55C}] => (Allow) D:\Games\NIKKE\Launcher\intl_service\intl_service.exe (PROXIMA BETA PTE. LIMITED -> PROXIMA BETA PTE. LIMITED)
FirewallRules: [{64CFEF14-C73D-4A03-8F66-7685A203CBEA}] => (Allow) D:\SteamLibrary\steamapps\common\APB Reloaded\Binaries\APB_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{AC6F07E7-0EEE-4EF5-AAF3-2EBAE76809F1}] => (Allow) D:\SteamLibrary\steamapps\common\APB Reloaded\Binaries\APB_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{89FEEE3E-F3E4-46DF-849A-A9D4CFDA195C}] => (Allow) D:\SteamLibrary\steamapps\common\APB Reloaded\Binaries\APB.exe (Little Orbit Inc -> Little Orbit LLC)
FirewallRules: [{83510F57-21D8-43A9-89AE-2A325C6F1E23}] => (Allow) D:\SteamLibrary\steamapps\common\APB Reloaded\Binaries\APB.exe (Little Orbit Inc -> Little Orbit LLC)
FirewallRules: [{11DA08E5-07DF-475E-9B4B-D7EFE0A336BB}] => (Allow) D:\SteamLibrary\steamapps\common\APB Reloaded\Binaries\VivoxVoiceService.exe (Little Orbit LLC -> Vivox Inc.)
FirewallRules: [{F5185F05-87BA-49B3-93E2-4EFDE62D4605}] => (Allow) D:\SteamLibrary\steamapps\common\APB Reloaded\Binaries\VivoxVoiceService.exe (Little Orbit LLC -> Vivox Inc.)
FirewallRules: [TCP Query User{03D19565-AA71-4073-8A49-480622AC155F}C:\riot games\riot client\riotclientelectron\riot client.exe] => (Allow) C:\riot games\riot client\riotclientelectron\riot client.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [UDP Query User{1D4A56C6-6DA2-4928-9517-7C97963F428D}C:\riot games\riot client\riotclientelectron\riot client.exe] => (Allow) C:\riot games\riot client\riotclientelectron\riot client.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [TCP Query User{6FD0D6A1-C80A-4CBE-B66B-24592A64B4E5}D:\steamlibrary\steamapps\common\the war z\infestation.exe] => (Allow) D:\steamlibrary\steamapps\common\the war z\infestation.exe (Fredaikis AB -> )
FirewallRules: [UDP Query User{7335B78F-B8AA-4C94-A848-AA387A06894E}D:\steamlibrary\steamapps\common\the war z\infestation.exe] => (Allow) D:\steamlibrary\steamapps\common\the war z\infestation.exe (Fredaikis AB -> )
FirewallRules: [TCP Query User{346520D2-2823-4BB6-89B6-F95CAD664B31}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming Group Limited -> Wargaming.net)
FirewallRules: [UDP Query User{61EC72C9-E492-4510-9D3C-A43EB40370FB}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming Group Limited -> Wargaming.net)
FirewallRules: [{0640B9AA-31A4-4B25-9B09-3D56B48612FE}] => (Allow) D:\SteamLibrary\steamapps\common\Warframe\Tools\Launcher.exe (Digital Extremes Ltd. -> Digital Extremes)
FirewallRules: [{8707A8D3-10E6-4E29-AFF7-B9FB38A6BB62}] => (Allow) D:\SteamLibrary\steamapps\common\Warframe\Warframe.x64.exe (Digital Extremes Ltd. -> Digital Extremes)
FirewallRules: [{CA41476F-858D-4414-B1F9-3EFAFA7A69C5}] => (Allow) D:\SteamLibrary\steamapps\common\Warframe\Warframe.x64.exe (Digital Extremes Ltd. -> Digital Extremes)
FirewallRules: [{22C77689-F446-4087-A307-DBD0C9C17A2A}] => (Allow) D:\SteamLibrary\steamapps\common\Warframe\Tools\RemoteCrashSender.exe (Digital Extremes Ltd. -> )
FirewallRules: [{A04F6296-FD59-449E-BD87-242862DA8172}] => (Allow) D:\SteamLibrary\steamapps\common\Warframe\Tools\Launcher.exe (Digital Extremes Ltd. -> Digital Extremes)
FirewallRules: [{2133FA65-3373-4602-96A7-39C075EB1421}] => (Allow) D:\SteamLibrary\steamapps\common\Warframe\Warframe.x64.exe (Digital Extremes Ltd. -> Digital Extremes)
FirewallRules: [{4C221720-1562-41DF-9357-68330449013C}] => (Allow) D:\SteamLibrary\steamapps\common\Warframe\Warframe.x64.exe (Digital Extremes Ltd. -> Digital Extremes)
FirewallRules: [{38F1ED9A-019B-4436-8F94-3AC7C0DD448B}] => (Allow) D:\SteamLibrary\steamapps\common\Warframe\Tools\RemoteCrashSender.exe (Digital Extremes Ltd. -> )
FirewallRules: [TCP Query User{34854C33-2D5C-4284-B828-DF9401362328}D:\games\rvllauncher\rvlmlauncher\rvl\tym.exe] => (Allow) D:\games\rvllauncher\rvlmlauncher\rvl\tym.exe (NetEase (Hangzhou) Network Co., Ltd -> )
FirewallRules: [UDP Query User{08D8D7DC-FA16-4217-BD18-022DF19C0148}D:\games\rvllauncher\rvlmlauncher\rvl\tym.exe] => (Allow) D:\games\rvllauncher\rvlmlauncher\rvl\tym.exe (NetEase (Hangzhou) Network Co., Ltd -> )
FirewallRules: [{F9E52E2A-FDC0-4B56-B0C6-326924188AE8}] => (Allow) D:\SteamLibrary\steamapps\common\Tower of Fantasy\Tower of Fantasy\Hotta\Binaries\Win64\INTLWebViewHelper.exe () [Datei ist nicht signiert]
FirewallRules: [{6616DC11-B532-4268-973C-E617DD4B16DA}] => (Allow) D:\SteamLibrary\steamapps\common\My Hero Ultra Rumble\HerovsGame\Binaries\Win64\MHUR.exe (BNEI) [Datei ist nicht signiert]
FirewallRules: [{D7FD56C0-8E0F-483D-9C67-F8FFE8CFBA62}] => (Allow) D:\SteamLibrary\steamapps\common\My Hero Ultra Rumble\HerovsGame\Binaries\Win64\MHUR.exe (BNEI) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{0A0A6110-9131-4AAC-BBC7-39AF6EE9CFF5}D:\steamlibrary\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steamlibrary\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (KRAFTON, Inc. -> KRAFTON, Inc.)
FirewallRules: [UDP Query User{101B74D7-9983-49C8-AE37-F582D948BEBC}D:\steamlibrary\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steamlibrary\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (KRAFTON, Inc. -> KRAFTON, Inc.)
FirewallRules: [{7A8FF334-49FA-43F3-B552-1DCFE44CB28C}] => (Allow) D:\SteamLibrary\steamapps\common\DOAX-VenusVacation\DOAX_VV.exe (株式会社コーエーテクモゲームス -> )
FirewallRules: [{AF67BC45-186D-47AC-9415-4449D8E18A14}] => (Allow) D:\SteamLibrary\steamapps\common\DOAX-VenusVacation\DOAX_VV.exe (株式会社コーエーテクモゲームス -> )
FirewallRules: [{D5564399-3A24-4819-AB27-DC28939B4232}] => (Allow) D:\SteamLibrary\steamapps\common\Perfect World Mobile\PerfectWorldLaunch\PerfectWorldGame.exe (Fedeen Games Limited -> )
FirewallRules: [{DB717E93-3051-4A3C-BCC2-4C7A2D230AD8}] => (Allow) D:\SteamLibrary\steamapps\common\Perfect World Mobile\PerfectWorldLaunch\PerfectWorldGame.exe (Fedeen Games Limited -> )
FirewallRules: [{4B0B3FF7-45BA-488C-82A2-4EED8BB2D5EC}] => (Allow) D:\SteamLibrary\steamapps\common\Perfect World Mobile\PerfectWorldLaunch\PerfectWorldUpdate.exe (Fedeen Games Limited -> )
FirewallRules: [{3656749A-4451-49DE-A423-7FACFC7EC8C5}] => (Allow) D:\SteamLibrary\steamapps\common\Perfect World Mobile\PerfectWorldLaunch\PerfectWorldUpdate.exe (Fedeen Games Limited -> )
FirewallRules: [{A23E345F-7333-4036-8092-5286573E068C}] => (Allow) D:\SteamLibrary\steamapps\common\Perfect World Mobile\PerfectWorldLaunch\PerfectWorldBrowser.exe (Fedeen Games Limited -> )
FirewallRules: [{C11BA94A-D457-4473-BED0-577A47EF23C5}] => (Allow) D:\SteamLibrary\steamapps\common\Perfect World Mobile\PerfectWorldLaunch\PerfectWorldBrowser.exe (Fedeen Games Limited -> )
FirewallRules: [{1614E9A3-4E92-413A-8AE4-57DDF8F879E7}] => (Allow) D:\SteamLibrary\steamapps\common\Perfect World Mobile\PerfectWorldLaunch\PerfectWorldWebBooster.exe (Fedeen Games Limited -> )
FirewallRules: [{7A17BB85-7B42-4D8F-A138-7A19F2EA47B8}] => (Allow) D:\SteamLibrary\steamapps\common\Perfect World Mobile\PerfectWorldLaunch\PerfectWorldWebBooster.exe (Fedeen Games Limited -> )
FirewallRules: [{522B916C-FC90-40B6-B9A5-7BCD2DF389F7}] => (Allow) D:\SteamLibrary\steamapps\common\Perfect World Mobile\Build\PerfectWorld.exe (Fedeen Games Limited -> )
FirewallRules: [{099173A2-6955-4A1C-A5A5-7935270C672B}] => (Allow) D:\SteamLibrary\steamapps\common\Perfect World Mobile\Build\PerfectWorld.exe (Fedeen Games Limited -> )
FirewallRules: [{967CC76D-E68E-4715-9C91-D85518611245}] => (Allow) D:\Games\BlueStacks X\BlueStacksWeb.exe => Keine Datei
FirewallRules: [{44D78897-406D-49B2-B6EC-53F4BFB79A6B}] => (Allow) D:\Games\BlueStacks X\Cloud Game.exe => Keine Datei
FirewallRules: [{2E198067-4D2C-45AD-B2B3-9D8F78FEAAD8}] => (Allow) C:\Program Files\BlueStacks_nxt\HD-Player.exe (Now.gg, INC -> BlueStack Systems)
FirewallRules: [{5F4B098A-FB1B-4D69-BF63-54F6EF66E7A3}] => (Allow) C:\Program Files\BlueStacks_nxt\BlueStacksAppplayerWeb.exe (Now.gg, INC -> The Qt Company Ltd.)
FirewallRules: [TCP Query User{2EE27981-1E72-46C5-A7AF-05241B178A75}D:\steamlibrary\steamapps\common\conan exiles\conansandbox\binaries\win64\conansandbox.exe] => (Allow) D:\steamlibrary\steamapps\common\conan exiles\conansandbox\binaries\win64\conansandbox.exe (FUNCOM OSLO AS -> Funcom Oslo AS)
FirewallRules: [UDP Query User{B311979E-C0D3-44C0-AC76-E38D29271C33}D:\steamlibrary\steamapps\common\conan exiles\conansandbox\binaries\win64\conansandbox.exe] => (Allow) D:\steamlibrary\steamapps\common\conan exiles\conansandbox\binaries\win64\conansandbox.exe (FUNCOM OSLO AS -> Funcom Oslo AS)
FirewallRules: [{ADA037CF-524D-4F65-9A39-15822C9AAE9D}] => (Allow) D:\SteamLibrary\steamapps\common\XERA\XERA_Launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{B0B2922A-CFD3-4992-A63E-B1399C3C2D07}] => (Allow) D:\SteamLibrary\steamapps\common\XERA\XERA_Launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [TCP Query User{FF4F446A-D7B6-4223-B328-201502D744E6}D:\steamlibrary\steamapps\common\xera\xera\binaries\win64\xera-win64-shipping.exe] => (Allow) D:\steamlibrary\steamapps\common\xera\xera\binaries\win64\xera-win64-shipping.exe (Spotted Kiwi Interactive) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{42E087EC-ECA1-4AC2-A007-3FD3C262E590}D:\steamlibrary\steamapps\common\xera\xera\binaries\win64\xera-win64-shipping.exe] => (Allow) D:\steamlibrary\steamapps\common\xera\xera\binaries\win64\xera-win64-shipping.exe (Spotted Kiwi Interactive) [Datei ist nicht signiert]
FirewallRules: [{618C1CB7-CC25-44BE-ADDE-83164073A1DC}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\122.0.2365.66\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{407FA355-1741-4B6B-8C0B-035361AFA10D}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{F7E1F3C1-F29C-487E-BC2A-FE042168E663}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{6E3D7A52-D587-4E20-907B-1EC7A45A0649}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{4435D208-9D16-4333-9E86-BC4A078D737F}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{B8F076E8-697D-4459-AD00-F97248DD006E}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{B692D757-249E-4895-9473-28866EE9B23F}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{447EDB33-9D4B-4772-ACAE-86B436ABD181}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{7446CB38-7E5C-4DC5-9D1D-FDD114006F5A}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{0C0AF567-F000-4C2D-ABA0-1A81C073BAB4}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{4856A79B-59E6-4975-8380-A45A586FB8C9}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{66460BA9-3298-4C03-B94B-B7B5BD9E8F2A}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALaunchHelper.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [TCP Query User{2E713B0C-601E-4B07-ABC8-7152F250FB79}D:\games\neos\app\neos.exe] => (Block) D:\games\neos\app\neos.exe => Keine Datei
FirewallRules: [UDP Query User{BEA93872-F5B6-4FD6-B1B4-A341FA0735D0}D:\games\neos\app\neos.exe] => (Block) D:\games\neos\app\neos.exe => Keine Datei
FirewallRules: [{AB3C6444-AA5D-4668-AB25-98441A2D59EA}] => (Allow) D:\SteamLibrary\steamapps\common\NeosVR\Neos.exe () [Datei ist nicht signiert]
FirewallRules: [{1AC627D9-5083-4D37-BC86-7FF35449102C}] => (Allow) D:\SteamLibrary\steamapps\common\NeosVR\Neos.exe () [Datei ist nicht signiert]
FirewallRules: [{71563F7D-DDDE-4682-9826-3F32A175D569}] => (Allow) D:\SteamLibrary\steamapps\common\NeosVR\NeosLauncher.exe () [Datei ist nicht signiert]
FirewallRules: [{4A6AE286-ACEE-4DBA-B00A-5CB558762655}] => (Allow) D:\SteamLibrary\steamapps\common\NeosVR\NeosLauncher.exe () [Datei ist nicht signiert]
FirewallRules: [{B45061B7-4BDF-4B05-B4D7-0637C58321E9}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Wiederherstellungspunkte =========================
29-02-2024 19:42:42 Geplanter Prüfpunkt
03-03-2024 01:54:48 DirectX wurde installiert
04-03-2024 15:58:24 Driver Booster : High Definition Audio-Gerät
08-03-2024 03:28:13 Removed MasterofGarden
==================== Fehlerhafte Geräte im Gerätemanager ============
==================== Fehlereinträge in der Ereignisanzeige: ========================
Applikationsfehler:
==================
Error: (03/08/2024 02:41:55 PM) (Source: MsiInstaller) (EventID: 10005) (User: NT-AUTORITÄT)
Description: Produkt: Update for Windows 10 for x64-based Systems (KB5001716) -- A later version of Update for Windows 10 for x64-based Systems (KB5001716) is already installed. Setup will now exit.
Error: (03/08/2024 06:36:39 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: tbs_browser.exe, Version: 0.0.0.0, Zeitstempel: 0x6361d2ab
Name des fehlerhaften Moduls: qbcore.dll, Version: 94.0.80.81, Zeitstempel: 0x615e3a26
Ausnahmecode: 0x80000003
Fehleroffset: 0x0000000002f702f4
ID des fehlerhaften Prozesses: 0x2e0c
Startzeit der fehlerhaften Anwendung: 0x01da711a9721ed13
Pfad der fehlerhaften Anwendung: D:\SteamLibrary\steamapps\common\Tower of Fantasy\Tower of Fantasy\Launcher\intl_service\tbs_browser.exe
Pfad des fehlerhaften Moduls: D:\SteamLibrary\steamapps\common\Tower of Fantasy\Tower of Fantasy\Launcher\intl_service\qbcore.dll
Berichtskennung: c70a453e-a018-4ee3-b7b6-f5dabac28e5f
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (03/08/2024 03:30:37 AM) (Source: MsiInstaller) (EventID: 11001) (User: SENPAI)
Description: Product: MasterofGarden -- Error 1001. Error 1001. Beim Initialisieren der Installation ist eine Ausnahme aufgetreten:
System.IO.FileNotFoundException: Die Datei oder Assembly "file:///D:\Games\InstallerCustomAction.dll" oder eine Abhängigkeit davon wurde nicht gefunden. Das System kann die angegebene Datei nicht finden.(NULL)(NULL)(NULL)(NULL)(NULL)
Error: (03/08/2024 03:28:25 AM) (Source: MsiInstaller) (EventID: 11001) (User: SENPAI)
Description: Product: MasterofGarden -- Error 1001. Error 1001. Beim Initialisieren der Installation ist eine Ausnahme aufgetreten:
System.IO.FileNotFoundException: Die Datei oder Assembly "file:///D:\Games\InstallerCustomAction.dll" oder eine Abhängigkeit davon wurde nicht gefunden. Das System kann die angegebene Datei nicht finden.(NULL)(NULL)(NULL)(NULL)(NULL)
Error: (03/08/2024 03:28:00 AM) (Source: MsiInstaller) (EventID: 11706) (User: SENPAI)
Description: Product: MasterofGarden -- Error 1706. An installation package for the product MasterofGarden cannot be found. Try the installation again using a valid copy of the installation package 'mogInstaller.msi'.
Error: (03/07/2024 06:16:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: EpicGamesLauncher.exe, Version: 16.1.1.0, Zeitstempel: 0x65e5e2d4
Name des fehlerhaften Moduls: ntdll.dll, Version: 10.0.19041.3996, Zeitstempel: 0x39215800
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000634f6
ID des fehlerhaften Prozesses: 0x4844
Startzeit der fehlerhaften Anwendung: 0x01da70b33e918507
Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
Pfad des fehlerhaften Moduls: C:\Windows\SYSTEM32\ntdll.dll
Berichtskennung: 575f65e5-0e1e-4176-a804-5843fe59f1eb
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (03/07/2024 06:16:39 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: EpicGamesLauncher.exe, Version: 16.1.1.0, Zeitstempel: 0x65e5e2d4
Name des fehlerhaften Moduls: ntdll.dll, Version: 10.0.19041.3996, Zeitstempel: 0x39215800
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000634f6
ID des fehlerhaften Prozesses: 0x1c08
Startzeit der fehlerhaften Anwendung: 0x01da70b3374b1572
Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
Pfad des fehlerhaften Moduls: C:\Windows\SYSTEM32\ntdll.dll
Berichtskennung: fa4a1ff8-10c0-4268-8da0-745a2e9dc00e
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (03/07/2024 06:11:25 PM) (Source: MsiInstaller) (EventID: 10005) (User: NT-AUTORITÄT)
Description: Produkt: Update for Windows 10 for x64-based Systems (KB5001716) -- A later version of Update for Windows 10 for x64-based Systems (KB5001716) is already installed. Setup will now exit.
Systemfehler:
=============
Error: (03/08/2024 10:44:53 PM) (Source: DCOM) (EventID: 10010) (User: SENPAI)
Description: Der Server "Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (03/08/2024 02:52:41 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Google Update-Dienst (gupdate)" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Dienst antwortete nicht rechtzeitig auf die Start- oder Steuerungsanforderung.
Error: (03/08/2024 02:52:41 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Google Update-Dienst (gupdate) erreicht.
Error: (03/08/2024 02:41:55 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x8024200b fehlgeschlagen: 2023-10 Update für Windows 10 Version 22H2 für x64-basierte Systeme (KB5001716)
Error: (03/08/2024 02:37:58 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Google Update-Dienst (gupdate)" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Dienst antwortete nicht rechtzeitig auf die Start- oder Steuerungsanforderung.
Error: (03/08/2024 02:37:58 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Google Update-Dienst (gupdate) erreicht.
Error: (03/08/2024 02:28:48 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Google Update-Dienst (gupdate)" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Dienst antwortete nicht rechtzeitig auf die Start- oder Steuerungsanforderung.
Error: (03/08/2024 02:28:48 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Google Update-Dienst (gupdate) erreicht.
Windows Defender:
================
Date: 2024-03-05 15:55:35
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {775A9223-204D-4000-ADF5-CE2C88BCAAF9}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Date: 2024-03-04 14:06:35
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {56004B41-224D-4D99-8661-FA06EB52F27A}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Benutzerdefinierte Überprüfung
Benutzer: SENPAI\tobby
Date: 2024-03-03 20:59:50
Description:
Microsoft Defender Antivirus hat Schadsoftware oder andere potenziell unerwünschte Software erkannt.
Weitere Informationen:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Casdet!rfn&threatid=2147727512&enterprise=0
Name: Trojan:Win32/Casdet!rfn
Schweregrad: Schwerwiegend
Kategorie: Trojaner
Pfad: containerfile:_F:\Games\Extra's\Emulatoren + Roms + Iso\PC\ISO\TNK ANIME\Animes\Overflow\old\Overflow\School Days HQ\School Days HQ\Main Game\Disc 1\(18禁ゲーム) [101008] [Overflow] SCHOOL DAYS HQ Disc 1 (mdf+mds+rr5%)\SDHQ_DISC1.mdf; file:_F:\Games\Extra's\Emulatoren + Roms + Iso\PC\ISO\TNK ANIME\Animes\Overflow\old\Overflow\School Days HQ\School Days HQ\Main Game\Disc 1\(18禁ゲーム) [101008] [Overflow] SCHOOL DAYS HQ Disc 1 (mdf+mds+rr5%)\SDHQ_DISC1.mdf->\Overflow\SCHOOLDAYS HQ\Packs\Event02.GPK
Erkennungsursprung: Lokaler Computer
Erkennungstype: Konkret
Erkennungsquelle: Benutzer
Benutzer: SENPAI\tobby
Prozessname: Unknown
Sicherheitsversion: AV: 1.405.976.0, AS: 1.405.976.0, NIS: 1.405.976.0
Modulversion: AM: 1.1.24010.10, NIS: 1.1.24010.10
Date: 2024-03-03 20:59:50
Description:
Microsoft Defender Antivirus hat Schadsoftware oder andere potenziell unerwünschte Software erkannt.
Weitere Informationen:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Phonzy.A!ml&threatid=2147772962&enterprise=0
Name: Trojan:Win32/Phonzy.A!ml
Schweregrad: Schwerwiegend
Kategorie: Trojaner
Pfad: containerfile:_F:\Games\Extra's\Emulatoren + Roms + Iso\PC\ISO\IGG-PeteJacksosKingKon.rar; file:_F:\Games\Extra's\Emulatoren + Roms + Iso\PC\ISO\IGG-PeteJacksosKingKon.rar->IGG-PeteJacksosKingKon\CRACK\CRACK\kingkong.dll
Erkennungsursprung: Lokaler Computer
Erkennungstype: FastPath
Erkennungsquelle: Benutzer
Benutzer: SENPAI\tobby
Prozessname: Unknown
Sicherheitsversion: AV: 1.405.976.0, AS: 1.405.976.0, NIS: 1.405.976.0
Modulversion: AM: 1.1.24010.10, NIS: 1.1.24010.10
Date: 2024-03-03 17:06:05
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {458B969E-FFB2-4BAA-8F1C-B0CF340D4C23}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Benutzerdefinierte Überprüfung
Benutzer: SENPAI\tobby
Event[0]:
Date: 2024-03-07 21:55:46
Description:
Fehler des Microsoft Defender Antivirus-Echtzeitschutz-Features.
Feature: Bei Zugriff
Fehlercode: 0x80004005
Fehlerbeschreibung: Unbekannter Fehler
Ursache: Die Elementenüberprüfung des Filtertreibers wurde übersprungen, und er befindet sich nun im Durchleitungsmodus. Dies ist möglicherweise auf Ressourcenmangel zurückzuführen.
Date: 2024-03-07 21:32:52
Description:
Fehler des Microsoft Defender Antivirus-Echtzeitschutz-Features.
Feature: Bei Zugriff
Fehlercode: 0x80004005
Fehlerbeschreibung: Unbekannter Fehler
Ursache: Die Elementenüberprüfung des Filtertreibers wurde übersprungen, und er befindet sich nun im Durchleitungsmodus. Dies ist möglicherweise auf Ressourcenmangel zurückzuführen.
Date: 2024-03-07 21:25:43
Description:
Fehler des Microsoft Defender Antivirus-Echtzeitschutz-Features.
Feature: Bei Zugriff
Fehlercode: 0x80004005
Fehlerbeschreibung: Unbekannter Fehler
Ursache: Die Elementenüberprüfung des Filtertreibers wurde übersprungen, und er befindet sich nun im Durchleitungsmodus. Dies ist möglicherweise auf Ressourcenmangel zurückzuführen.
Date: 2024-03-07 17:52:17
Description:
Fehler des Microsoft Defender Antivirus-Echtzeitschutz-Features.
Feature: Bei Zugriff
Fehlercode: 0x8007043c
Fehlerbeschreibung: Der Dienst kann nicht im abgesicherten Modus gestartet werden.
Ursache: Die Antischadsoft-Sicherheitsfunktion wurde aus unbekanntem Grund beendet. Möglicherweise kann das Problem durch einen Neustart des Diensts behoben werden.
Date: 2024-03-04 18:17:53
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.
Neue Version der Sicherheitsinformationen:
%Vorherige Version der Sicherheitsinformationen: 1.405.1029.0
Update Source: Microsoft Update-Server
Sicherheitstyp: AntiVirus
Updatetyp: Voll
Benutzer: NT-AUTORITÄT\SYSTEM
Aktuelle Modulversion:
%Vorherige Modulversion: 1.1.24010.10
Fehlercode: 0x8007043c
Fehlerbeschreibung: Der Dienst kann nicht im abgesicherten Modus gestartet werden.
CodeIntegrity:
===============
Date: 2024-03-07 17:30:25
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\aepic.dll because the set of per-page image hashes could not be found on the system.
Date: 2024-03-07 17:25:52
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.
==================== Speicherinformationen ===========================
BIOS: American Megatrends International, LLC. A.50 01/15/2021
Hauptplatine: Micro-Star International Co., Ltd. MAG B550 TOMAHAWK (MS-7C91)
Prozessor: AMD Ryzen 9 3900X 12-Core Processor
Prozentuale Nutzung des RAM: 40%
Installierter physikalischer RAM: 32693.4 MB
Verfügbarer physikalischer RAM: 19475.38 MB
Summe virtueller Speicher: 40629.4 MB
Verfügbarer virtueller Speicher: 20639.99 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:953.23 GB) (Free:548.34 GB) (Model: XPG SPECTRIX S40G) NTFS
Drive d: (SSD) (Fixed) (Total:1863 GB) (Free:696.84 GB) (Model: CT2000MX500SSD1) NTFS
Drive e: (NVMe) (Fixed) (Total:931.5 GB) (Free:360.39 GB) (Model: XPG SPECTRIX S20G) NTFS
Drive f: (Backup) (Fixed) (Total:9313.97 GB) (Free:5128.93 GB) (Model: WD Elements 25A3 USB Device) NTFS
Drive g: (Externe) (Fixed) (Total:1863.01 GB) (Free:321.37 GB) (Model: ST2000DM 001-9YN164 USB Device) NTFS
Drive i: (Anime & Co.) (Fixed) (Total:4657.4 GB) (Free:2081.49 GB) (Model: TOSHIBA HDWE150 SCSI Disk Device) NTFS
\\?\Volume{70df9151-4d80-4630-a739-a849cfb206b0}\ () (Fixed) (Total:0.53 GB) (Free:0.08 GB) NTFS
\\?\Volume{efba1a0e-9033-4c6d-b954-1198373aa941}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partitionstabelle ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 1 (Protective MBR) (Size: 953.9 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 2 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 3 (Size: 9314 GB) (Disk ID: 16F2A91F)
Partition: GPT.
==========================================================
Disk: 4 (Protective MBR) (Size: 4657.5 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 5 (Size: 1863 GB) (Disk ID: 0747580B)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)
==================== Ende von Addition.txt =======================
|
|
| Themen zu Unsicher nach Neuinstallation wegen Virus |
| bereits, beschreibung, bessere, clean, daten, exe, fehler, frage, geklickt, geschlossen, hacks, https, irgendetwas, komisch, log's, neuinstalation, neuinstallation, passwörter, phishing, poste, system, thread, tipps, tool, unsicher, virus, windows, worte, überall |
Linear-Darstellung
