|
Alles rund um Windows: API-Probleme (Api,ms-win-core-processthreads-l1-1-2.dll nicht gefunden) /häufige BluescreensWindows 7 Hilfe zu allen Windows-Betriebssystemen: Windows XP, Windows Vista, Windows 7, Windows 8(.1) und Windows 10 / Windows 11- als auch zu sämtlicher Windows-Software. Alles zu Windows 10 ist auch gerne willkommen. Bitte benenne etwaige Fehler oder Bluescreens unter Windows mit dem Wortlaut der Fehlermeldung und Fehlercode. Erste Schritte für Hilfe unter Windows. |
02.10.2015, 00:31 | #1 |
| Problem: API-Probleme (Api,ms-win-core-processthreads-l1-1-2.dll nicht gefunden) /häufige Bluescreens Hallo zusammen! Aufe meinem Rechner treten immer öfter Bluescreens auf. (Ich kann nicht mal Bluescreen Viewer installieren, da sich die Datei nicht öffnen lässt.) In fast allen Fällen geschieht dies beim hochfahren des Rechners. Vor ein paar Tagen habe ich geistesabwesend ausversehen auf einen Phishinglink geklickt, jedoch danach das Virenprogramm checken lassen und es hat keinen Alarm geschlagen. Jetzt lassen sich aber viele Systemfunktionen entweder gar nicht öffnen oder ich bekomme unter anderem diese Fehlermeldung wenn ich den Taskmanager öffnen will: Das Programm kann nicht gestartet werden, da Api,ms-win-core-processthreads-l1-1-2.dll auf dem Computer fehlt. Installieren Sie das Programm erneut, um das Problem zu beheben. PC Infos: Windows 10 Pro Intel(R) Core(TM) i5-4670K CPU @3.40GHz 8GB RAM 64-Bit Vielen Dank im Vorraus! Geändert von Whooop (02.10.2015 um 01:11 Uhr) |
02.10.2015, 12:06 | #2 |
/// Malwareteam | API-Probleme (Api,ms-win-core-processthreads-l1-1-2.dll nicht gefunden) /häufige Bluescreens Anleitung / HilfeAlso kannst du jetzt auf den Desktop starten oder nicht? Wenn schon, dann bitte folgendes ausführen: Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST 32-Bit | FRST 64-Bit (Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
Falls du Probleme beim herunterladen hast, kannst du auch FRST von einem anderen Rechner laden, auf einen USB Stick geben und dann auf den "Problem PC" kopieren |
03.10.2015, 12:18 | #3 |
| API-Probleme (Api,ms-win-core-processthreads-l1-1-2.dll nicht gefunden) /häufige Bluescreens Details Vielen Dank für deine Hilfe!
__________________Hier ist die FRST.txt Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:03-10-2015 durchgeführt von Christopher (Administrator) auf CHRISTOPHERBKH (03-10-2015 13:15:49) Gestartet von C:\Users\Christopher\Downloads Geladene Profile: Christopher (Verfügbare Profile: Christopher) Platform: Windows 10 Pro (X64) Sprache: Deutsch (Deutschland) Internet Explorer Version 11 (Standard-Browser: Chrome) Start-Modus: Normal Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Prozesse (Nicht auf der Ausnahmeliste) ================= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe (Flux Software LLC) C:\Users\Christopher\AppData\Local\FluxSoftware\Flux\flux.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe (Spotify Ltd) C:\Users\Christopher\AppData\Roaming\Spotify\SpotifyWebHelper.exe () C:\Program Files (x86)\MOUSE Editor\MouseEditor.exe (Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe (Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Farbar) C:\Users\Christopher\Downloads\FRST64 (1).exe ==================== Registry (Nicht auf der Ausnahmeliste) =========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7659736 2014-11-26] (Realtek Semiconductor) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634872 2015-08-27] (NVIDIA Corporation) HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart HKLM\...\Run: [ISCT Tray] => C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe [5860656 2014-06-18] (Intel Corporation) HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe [1172256 2014-11-10] (Intel Corporation) HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [6111824 2015-09-14] (AVAST Software) HKU\S-1-5-21-857194082-3589123694-3136816115-1001\...\Run: [f.lux] => C:\Users\Christopher\AppData\Local\FluxSoftware\Flux\flux.exe [1017224 2013-10-24] (Flux Software LLC) HKU\S-1-5-21-857194082-3589123694-3136816115-1001\...\Run: [Spotify Web Helper] => C:\Users\Christopher\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2018360 2015-09-08] (Spotify Ltd) HKU\S-1-5-21-857194082-3589123694-3136816115-1001\...\Run: [Spotify] => C:\Users\Christopher\AppData\Roaming\Spotify\Spotify.exe [7535672 2015-09-08] (Spotify Ltd) HKU\S-1-5-21-857194082-3589123694-3136816115-1001\...\Run: [OscarEditor] => C:\Program Files (x86)\MOUSE Editor\MouseEditor.exe [2603520 2010-05-06] () HKU\S-1-5-21-857194082-3589123694-3136816115-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2899136 2015-08-19] (Valve Corporation) HKU\S-1-5-21-857194082-3589123694-3136816115-1001\...\Run: [GalaxyClient] => C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe [7249976 2015-08-13] (GOG.com) HKU\S-1-5-21-857194082-3589123694-3136816115-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [53736048 2015-08-07] (Skype Technologies S.A.) HKU\S-1-5-21-857194082-3589123694-3136816115-1001\...\RunOnce: [Uninstall C:\Users\Christopher\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Christopher\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64" HKU\S-1-5-21-857194082-3589123694-3136816115-1001\...\RunOnce: [Uninstall C:\Users\Christopher\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Christopher\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64" ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-09-14] (AVAST Software) ==================== Internet (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{045a409f-9f01-4cd4-9e90-592abd1382c9}: [DhcpNameServer] 192.168.0.1 Internet Explorer: ================== HKU\S-1-5-21-857194082-3589123694-3136816115-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://google.de/ HKU\S-1-5-21-857194082-3589123694-3136816115-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.giga.de/software/ BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-09-14] (AVAST Software) BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-09-14] (AVAST Software) FireFox: ======== FF ProfilePath: C:\Users\Christopher\AppData\Roaming\Mozilla\Firefox\Profiles\guztutrg.default FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-11-10] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-11-10] (Intel Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-08-25] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-08-25] (NVIDIA Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.) FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-03-11] Chrome: ======= CHR StartupUrls: Default -> "hxxp://www.google.com/" CHR Profile: C:\Users\Christopher\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Präsentationen) - C:\Users\Christopher\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-03-11] CHR Extension: (Google Docs) - C:\Users\Christopher\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-03-11] CHR Extension: (Google Drive) - C:\Users\Christopher\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-03-11] CHR Extension: (YouTube) - C:\Users\Christopher\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-03-11] CHR Extension: (Adblock Plus) - C:\Users\Christopher\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-03-25] CHR Extension: (Google-Suche) - C:\Users\Christopher\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-03-11] CHR Extension: (Google Tabellen) - C:\Users\Christopher\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-03-11] CHR Extension: (Google Text & Tabellen Offline) - C:\Users\Christopher\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-03] CHR Extension: (Avast Online Security) - C:\Users\Christopher\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-03-11] CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Christopher\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-11] CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Christopher\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-03-11] CHR Extension: (Google Mail) - C:\Users\Christopher\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-11] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-03-11] ==================== Dienste (Nicht auf der Ausnahmeliste) ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600 2015-09-14] (AVAST Software) R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [109008 2015-09-14] (AVAST Software) S3 GalaxyClientService; C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [1720888 2015-08-13] (GOG.com) S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6920248 2015-08-25] (GOG.com) R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155192 2015-08-27] (NVIDIA Corporation) S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887256 2014-05-13] (Intel(R) Corporation) R2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [209712 2014-06-18] () R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [158496 2014-11-10] (Intel Corporation) R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1872504 2015-08-27] (NVIDIA Corporation) R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5544568 2015-08-27] (NVIDIA Corporation) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation) U4 AvastVBoxSvc; "C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe" [X] ===================== Treiber (Nicht auf der Ausnahmeliste) ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-09-14] (AVAST Software) R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [28144 2015-09-14] (AVAST Software) R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [90968 2015-09-14] (AVAST Software) R0 aswNdisFlt; C:\Windows\System32\DRIVERS\aswNdisFlt.sys [454016 2015-09-14] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-09-14] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-09-14] (AVAST Software) R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1048344 2015-09-14] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [447944 2015-09-14] (AVAST Software) R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [150672 2015-09-14] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [274808 2015-09-14] (AVAST Software) R3 ikbevent; C:\Windows\system32\DRIVERS\ikbevent.sys [22216 2014-05-27] () R3 imsevent; C:\Windows\system32\DRIVERS\imsevent.sys [22728 2014-05-27] () R3 INETMON; C:\Windows\System32\Drivers\INETMON.sys [25800 2014-05-27] () R3 ISCT; C:\Windows\System32\drivers\ISCTD.sys [44744 2014-05-27] () R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [129312 2014-11-10] (Intel Corporation) R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19576 2015-08-27] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [50472 2015-08-11] (NVIDIA Corporation) S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] () S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation) U4 VBoxAswDrv; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [X] S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X] ==================== NetSvcs (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Ein Monat: Erstellte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2015-10-03 13:14 - 2015-10-03 13:14 - 00016148 _____ C:\WINDOWS\system32\CHRISTOPHERBKH_Christopher_HistoryPrediction.bin 2015-10-03 12:50 - 2015-09-15 18:12 - 00812008 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2015-10-03 12:50 - 2015-09-15 18:12 - 00178152 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl 2015-10-03 12:44 - 2015-10-03 12:44 - 00368184 _____ C:\WINDOWS\Minidump\100315-22546-01.dmp 2015-10-03 12:43 - 2015-10-03 12:43 - 02193408 _____ (Farbar) C:\Users\Christopher\Downloads\FRST64 (1).exe 2015-10-02 01:01 - 2015-10-02 01:01 - 00067310 _____ C:\Users\Christopher\Downloads\bluescreenview_v1.55 (2).zip 2015-10-02 00:58 - 2015-10-02 00:58 - 00000000 ____D C:\Users\Christopher\AppData\LocalLow\Temp 2015-10-02 00:54 - 2015-10-02 00:54 - 00000657 _____ C:\Users\Christopher\Desktop\Neues Textdokument.txt 2015-10-02 00:53 - 2015-10-02 00:53 - 00067310 _____ C:\Users\Christopher\Downloads\bluescreenview_v1.55 (1).zip 2015-10-02 00:52 - 2015-10-02 00:52 - 00067310 _____ C:\Users\Christopher\Downloads\bluescreenview_v1.55.zip 2015-09-30 22:38 - 2015-09-25 02:35 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll 2015-09-30 22:38 - 2015-09-25 02:34 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneCallHistoryApis.dll 2015-09-30 22:38 - 2015-09-25 02:13 - 01276416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll 2015-09-30 22:38 - 2015-09-25 01:34 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccountApis.dll 2015-09-30 22:38 - 2015-09-25 01:34 - 00172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneCallHistoryApis.dll 2015-09-30 22:38 - 2015-09-25 01:24 - 00796160 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll 2015-09-30 22:38 - 2015-09-25 01:24 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll 2015-09-30 22:38 - 2015-09-25 01:23 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe 2015-09-30 22:38 - 2015-09-25 01:17 - 02178560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2015-09-30 22:38 - 2015-09-25 01:08 - 03586560 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2015-09-30 22:38 - 2015-09-25 01:07 - 01382400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2015-09-30 22:38 - 2015-09-25 01:06 - 01423872 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll 2015-09-30 22:38 - 2015-09-25 01:05 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll 2015-09-30 22:38 - 2015-09-25 01:01 - 00856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll 2015-09-30 22:38 - 2015-09-25 01:01 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll 2015-09-30 22:38 - 2015-09-25 01:00 - 01205248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll 2015-09-30 22:38 - 2015-09-25 01:00 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll 2015-09-30 22:38 - 2015-09-25 01:00 - 00720896 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll 2015-09-30 22:38 - 2015-09-25 01:00 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\CallHistoryClient.dll 2015-09-30 22:38 - 2015-09-25 00:53 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll 2015-09-30 22:38 - 2015-09-25 00:43 - 00613376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll 2015-09-30 22:38 - 2015-09-25 00:43 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll 2015-09-30 22:38 - 2015-09-25 00:42 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll 2015-09-30 22:38 - 2015-09-25 00:25 - 00928256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll 2015-09-30 22:38 - 2015-09-25 00:25 - 00625152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll 2015-09-30 22:38 - 2015-09-25 00:25 - 00579584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentApis.dll 2015-09-30 22:38 - 2015-09-25 00:25 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ChatApis.dll 2015-09-30 22:38 - 2015-09-25 00:25 - 00525312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EmailApis.dll 2015-09-30 22:38 - 2015-09-25 00:24 - 00131072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CallHistoryClient.dll 2015-09-30 22:38 - 2015-09-25 00:19 - 00466432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll 2015-09-30 22:38 - 2015-09-19 07:14 - 00102304 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmapi.dll 2015-09-30 22:38 - 2015-09-17 08:50 - 02464216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll 2015-09-30 22:38 - 2015-09-17 08:50 - 01563392 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll 2015-09-30 22:38 - 2015-09-17 08:50 - 00099664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys 2015-09-30 22:38 - 2015-09-17 08:50 - 00088384 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll 2015-09-30 22:38 - 2015-09-17 08:49 - 08020816 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2015-09-30 22:38 - 2015-09-17 08:49 - 06487248 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll 2015-09-30 22:38 - 2015-09-17 08:49 - 01563472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll 2015-09-30 22:38 - 2015-09-17 08:49 - 00894256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Wdf01000.sys 2015-09-30 22:38 - 2015-09-17 08:49 - 00553808 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe 2015-09-30 22:38 - 2015-09-17 08:49 - 00501008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll 2015-09-30 22:38 - 2015-09-17 08:48 - 02824248 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll 2015-09-30 22:38 - 2015-09-17 08:48 - 02494712 _____ C:\WINDOWS\system32\CoreUIComponents.dll 2015-09-30 22:38 - 2015-09-17 08:48 - 02432336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys 2015-09-30 22:38 - 2015-09-17 08:48 - 02156400 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll 2015-09-30 22:38 - 2015-09-17 08:48 - 01983824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys 2015-09-30 22:38 - 2015-09-17 08:48 - 00809352 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll 2015-09-30 22:38 - 2015-09-17 08:48 - 00784136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll 2015-09-30 22:38 - 2015-09-17 08:48 - 00584656 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll 2015-09-30 22:38 - 2015-09-17 08:48 - 00555768 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll 2015-09-30 22:38 - 2015-09-17 08:48 - 00537080 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll 2015-09-30 22:38 - 2015-09-17 08:48 - 00516448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS 2015-09-30 22:38 - 2015-09-17 08:48 - 00505696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys 2015-09-30 22:38 - 2015-09-17 08:48 - 00476760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll 2015-09-30 22:38 - 2015-09-17 08:48 - 00406864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS 2015-09-30 22:38 - 2015-09-17 08:48 - 00395088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys 2015-09-30 22:38 - 2015-09-17 08:48 - 00332624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys 2015-09-30 22:38 - 2015-09-17 08:48 - 00278352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys 2015-09-30 22:38 - 2015-09-17 08:48 - 00243760 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll 2015-09-30 22:38 - 2015-09-17 08:47 - 01397088 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll 2015-09-30 22:38 - 2015-09-17 08:44 - 00781976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll 2015-09-30 22:38 - 2015-09-17 08:43 - 00966416 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll 2015-09-30 22:38 - 2015-09-17 08:39 - 00081488 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll 2015-09-30 22:38 - 2015-09-17 08:37 - 01295712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll 2015-09-30 22:38 - 2015-09-17 08:37 - 01168736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys 2015-09-30 22:38 - 2015-09-17 08:28 - 05120056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll 2015-09-30 22:38 - 2015-09-17 08:28 - 02154808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll 2015-09-30 22:38 - 2015-09-17 08:28 - 01357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll 2015-09-30 22:38 - 2015-09-17 08:28 - 00441168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe 2015-09-30 22:38 - 2015-09-17 08:28 - 00407608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll 2015-09-30 22:38 - 2015-09-17 08:28 - 00074880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll 2015-09-30 22:38 - 2015-09-17 08:27 - 01766952 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll 2015-09-30 22:38 - 2015-09-17 08:27 - 00454512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directmanipulation.dll 2015-09-30 22:38 - 2015-09-17 08:26 - 02446648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll 2015-09-30 22:38 - 2015-09-17 08:26 - 01895568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hevcdecoder.dll 2015-09-30 22:38 - 2015-09-17 08:26 - 00646672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll 2015-09-30 22:38 - 2015-09-17 08:26 - 00508248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll 2015-09-30 22:38 - 2015-09-17 08:26 - 00434376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll 2015-09-30 22:38 - 2015-09-17 08:26 - 00428128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll 2015-09-30 22:38 - 2015-09-17 08:25 - 00962400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll 2015-09-30 22:38 - 2015-09-17 08:21 - 00658528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll 2015-09-30 22:38 - 2015-09-17 08:20 - 00764416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll 2015-09-30 22:38 - 2015-09-17 08:12 - 16708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll 2015-09-30 22:38 - 2015-09-17 08:11 - 00160256 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll 2015-09-30 22:38 - 2015-09-17 08:10 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll 2015-09-30 22:38 - 2015-09-17 08:09 - 00269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll 2015-09-30 22:38 - 2015-09-17 08:09 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll 2015-09-30 22:38 - 2015-09-17 08:08 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll 2015-09-30 22:38 - 2015-09-17 08:08 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Speech.Pal.dll 2015-09-30 22:38 - 2015-09-17 08:08 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerShellext.exe 2015-09-30 22:38 - 2015-09-17 08:07 - 21875712 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2015-09-30 22:38 - 2015-09-17 08:06 - 00690688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CellularAPI.dll 2015-09-30 22:38 - 2015-09-17 08:06 - 00467968 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll 2015-09-30 22:38 - 2015-09-17 08:06 - 00149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll 2015-09-30 22:38 - 2015-09-17 08:05 - 02226688 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll 2015-09-30 22:38 - 2015-09-17 08:05 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll 2015-09-30 22:38 - 2015-09-17 08:04 - 07569408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll 2015-09-30 22:38 - 2015-09-17 08:04 - 00910848 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll 2015-09-30 22:38 - 2015-09-17 08:04 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll 2015-09-30 22:38 - 2015-09-17 08:03 - 00267776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll 2015-09-30 22:38 - 2015-09-17 08:03 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll 2015-09-30 22:38 - 2015-09-17 08:03 - 00154624 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe 2015-09-30 22:38 - 2015-09-17 08:03 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngckeyenum.dll 2015-09-30 22:38 - 2015-09-17 08:03 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe 2015-09-30 22:38 - 2015-09-17 08:02 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll 2015-09-30 22:38 - 2015-09-17 08:02 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll 2015-09-30 22:38 - 2015-09-17 08:00 - 24595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2015-09-30 22:38 - 2015-09-17 08:00 - 03248640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll 2015-09-30 22:38 - 2015-09-17 08:00 - 02417664 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll 2015-09-30 22:38 - 2015-09-17 08:00 - 00446976 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll 2015-09-30 22:38 - 2015-09-17 08:00 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\KeywordDetectorMsftSidAdapter.dll 2015-09-30 22:38 - 2015-09-17 07:58 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll 2015-09-30 22:38 - 2015-09-17 07:57 - 02228736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll 2015-09-30 22:38 - 2015-09-17 07:57 - 00403456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll 2015-09-30 22:38 - 2015-09-17 07:57 - 00281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll 2015-09-30 22:38 - 2015-09-17 07:57 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll 2015-09-30 22:38 - 2015-09-17 07:56 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll 2015-09-30 22:38 - 2015-09-17 07:56 - 00521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll 2015-09-30 22:38 - 2015-09-17 07:56 - 00317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll 2015-09-30 22:38 - 2015-09-17 07:55 - 02236416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll 2015-09-30 22:38 - 2015-09-17 07:55 - 01601536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll 2015-09-30 22:38 - 2015-09-17 07:55 - 00671232 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFx02000.dll 2015-09-30 22:38 - 2015-09-17 07:55 - 00366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll 2015-09-30 22:38 - 2015-09-17 07:55 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll 2015-09-30 22:38 - 2015-09-17 07:55 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\accountaccessor.dll 2015-09-30 22:38 - 2015-09-17 07:55 - 00121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcsps.dll 2015-09-30 22:38 - 2015-09-17 07:55 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe 2015-09-30 22:38 - 2015-09-17 07:55 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwancfg.dll 2015-09-30 22:38 - 2015-09-17 07:54 - 03781120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll 2015-09-30 22:38 - 2015-09-17 07:54 - 00780288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll 2015-09-30 22:38 - 2015-09-17 07:54 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll 2015-09-30 22:38 - 2015-09-17 07:53 - 07055872 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll 2015-09-30 22:38 - 2015-09-17 07:52 - 06572032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll 2015-09-30 22:38 - 2015-09-17 07:52 - 01216512 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcenter.dll 2015-09-30 22:38 - 2015-09-17 07:52 - 01181696 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll 2015-09-30 22:38 - 2015-09-17 07:52 - 00856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll 2015-09-30 22:38 - 2015-09-17 07:52 - 00591360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll 2015-09-30 22:38 - 2015-09-17 07:52 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll 2015-09-30 22:38 - 2015-09-17 07:52 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll 2015-09-30 22:38 - 2015-09-17 07:52 - 00371712 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll 2015-09-30 22:38 - 2015-09-17 07:52 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll 2015-09-30 22:38 - 2015-09-17 07:52 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SubscriptionMgr.dll 2015-09-30 22:38 - 2015-09-17 07:51 - 13027840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll 2015-09-30 22:38 - 2015-09-17 07:51 - 02660864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll 2015-09-30 22:38 - 2015-09-17 07:51 - 01812480 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll 2015-09-30 22:38 - 2015-09-17 07:51 - 01203712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll 2015-09-30 22:38 - 2015-09-17 07:51 - 01067520 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll 2015-09-30 22:38 - 2015-09-17 07:51 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll 2015-09-30 22:38 - 2015-09-17 07:51 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll 2015-09-30 22:38 - 2015-09-17 07:50 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll 2015-09-30 22:38 - 2015-09-17 07:50 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys 2015-09-30 22:38 - 2015-09-17 07:50 - 00312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll 2015-09-30 22:38 - 2015-09-17 07:50 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationPeWiFi.dll 2015-09-30 22:38 - 2015-09-17 07:50 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationPeCell.dll 2015-09-30 22:38 - 2015-09-17 07:50 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\buttonconverter.sys 2015-09-30 22:38 - 2015-09-17 07:49 - 02740224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2015-09-30 22:38 - 2015-09-17 07:49 - 01290240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll 2015-09-30 22:38 - 2015-09-17 07:49 - 01010176 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll 2015-09-30 22:38 - 2015-09-17 07:49 - 00771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll 2015-09-30 22:38 - 2015-09-17 07:49 - 00439296 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationWebproxy.dll 2015-09-30 22:38 - 2015-09-17 07:49 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationGeofences.dll 2015-09-30 22:38 - 2015-09-17 07:49 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll 2015-09-30 22:38 - 2015-09-17 07:49 - 00215552 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationCrowdsource.dll 2015-09-30 22:38 - 2015-09-17 07:49 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationPeIP.dll 2015-09-30 22:38 - 2015-09-17 07:49 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationWiFiAdapter.dll 2015-09-30 22:38 - 2015-09-17 07:49 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Speech.Pal.dll 2015-09-30 22:38 - 2015-09-17 07:48 - 02093056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll 2015-09-30 22:38 - 2015-09-17 07:48 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll 2015-09-30 22:38 - 2015-09-17 07:48 - 00408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll 2015-09-30 22:38 - 2015-09-17 07:48 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll 2015-09-30 22:38 - 2015-09-17 07:48 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll 2015-09-30 22:38 - 2015-09-17 07:48 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll 2015-09-30 22:38 - 2015-09-17 07:47 - 07523328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2015-09-30 22:38 - 2015-09-17 07:47 - 00513536 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll 2015-09-30 22:38 - 2015-09-17 07:47 - 00371712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll 2015-09-30 22:38 - 2015-09-17 07:47 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll 2015-09-30 22:38 - 2015-09-17 07:46 - 00928256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll 2015-09-30 22:38 - 2015-09-17 07:46 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll 2015-09-30 22:38 - 2015-09-17 07:46 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll 2015-09-30 22:38 - 2015-09-17 07:46 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll 2015-09-30 22:38 - 2015-09-17 07:46 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll 2015-09-30 22:38 - 2015-09-17 07:46 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe 2015-09-30 22:38 - 2015-09-17 07:46 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll 2015-09-30 22:38 - 2015-09-17 07:46 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncmlhook.dll 2015-09-30 22:38 - 2015-09-17 07:45 - 19325440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2015-09-30 22:38 - 2015-09-17 07:45 - 04791296 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2015-09-30 22:38 - 2015-09-17 07:45 - 01331200 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll 2015-09-30 22:38 - 2015-09-17 07:45 - 00869376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll 2015-09-30 22:38 - 2015-09-17 07:45 - 00832512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll 2015-09-30 22:38 - 2015-09-17 07:45 - 00627712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll 2015-09-30 22:38 - 2015-09-17 07:45 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll 2015-09-30 22:38 - 2015-09-17 07:44 - 01844736 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll 2015-09-30 22:38 - 2015-09-17 07:44 - 00599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll 2015-09-30 22:38 - 2015-09-17 07:44 - 00526336 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll 2015-09-30 22:38 - 2015-09-17 07:44 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncutil.dll 2015-09-30 22:38 - 2015-09-17 07:43 - 01213440 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll 2015-09-30 22:38 - 2015-09-17 07:43 - 00378368 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll 2015-09-30 22:38 - 2015-09-17 07:43 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll 2015-09-30 22:38 - 2015-09-17 07:43 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll 2015-09-30 22:38 - 2015-09-17 07:42 - 02646528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll 2015-09-30 22:38 - 2015-09-17 07:41 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll 2015-09-30 22:38 - 2015-09-17 07:40 - 06101504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll 2015-09-30 22:38 - 2015-09-17 07:40 - 01918464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll 2015-09-30 22:38 - 2015-09-17 07:40 - 01162240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll 2015-09-30 22:38 - 2015-09-17 07:39 - 00587264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll 2015-09-30 22:38 - 2015-09-17 07:39 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll 2015-09-30 22:38 - 2015-09-17 07:38 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll 2015-09-30 22:38 - 2015-09-17 07:37 - 18806272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2015-09-30 22:38 - 2015-09-17 07:37 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll 2015-09-30 22:38 - 2015-09-17 07:36 - 01171456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcenter.dll 2015-09-30 22:38 - 2015-09-17 07:35 - 05079552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll 2015-09-30 22:38 - 2015-09-17 07:35 - 02207232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2015-09-30 22:38 - 2015-09-17 07:35 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll 2015-09-30 22:38 - 2015-09-17 07:35 - 00828928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll 2015-09-30 22:38 - 2015-09-17 07:34 - 00253440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll 2015-09-30 22:38 - 2015-09-17 07:33 - 00574464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll 2015-09-30 22:38 - 2015-09-17 07:32 - 03579904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2015-09-30 22:38 - 2015-09-17 07:32 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll 2015-09-30 22:38 - 2015-09-17 07:32 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll 2015-09-30 22:38 - 2015-09-17 07:32 - 00195072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll 2015-09-30 22:38 - 2015-09-17 07:31 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll 2015-09-30 22:38 - 2015-09-17 07:31 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptprov.dll 2015-09-30 22:38 - 2015-09-17 07:30 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll 2015-09-30 22:38 - 2015-09-17 07:29 - 01104384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll 2015-09-30 22:38 - 2015-09-17 07:29 - 00701952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll 2015-09-30 22:38 - 2015-09-17 07:29 - 00677888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll 2015-09-30 22:38 - 2015-09-17 07:29 - 00464896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll 2015-09-30 22:38 - 2015-09-17 07:28 - 00473088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll 2015-09-30 22:38 - 2015-09-17 07:26 - 00899584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll 2015-09-30 22:38 - 2015-09-17 07:16 - 00512000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll 2015-09-30 22:38 - 2015-09-13 04:05 - 02987520 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll 2015-09-30 22:38 - 2015-09-13 03:41 - 02639872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll 2015-09-30 22:25 - 2015-09-30 22:25 - 00352968 _____ C:\WINDOWS\Minidump\093015-27421-01.dmp 2015-09-29 20:44 - 2015-09-29 20:45 - 00352920 _____ C:\WINDOWS\Minidump\092915-18843-01.dmp 2015-09-28 23:33 - 2015-09-28 23:33 - 00353840 _____ C:\WINDOWS\Minidump\092815-20640-01.dmp 2015-09-26 00:39 - 2015-09-26 00:39 - 00353848 _____ C:\WINDOWS\Minidump\092615-22437-01.dmp 2015-09-24 19:06 - 2015-09-24 19:06 - 00367856 _____ C:\WINDOWS\Minidump\092415-23375-01.dmp 2015-09-23 14:54 - 2015-09-23 14:54 - 00361272 _____ C:\WINDOWS\Minidump\092315-23296-01.dmp 2015-09-22 17:38 - 2015-09-22 17:38 - 00353848 _____ C:\WINDOWS\Minidump\092215-19796-01.dmp 2015-09-21 01:19 - 2015-09-21 01:19 - 00353840 _____ C:\WINDOWS\Minidump\092115-20734-01.dmp 2015-09-20 18:21 - 2015-09-20 18:21 - 00352768 _____ C:\WINDOWS\Minidump\092015-20906-01.dmp 2015-09-20 16:24 - 2015-09-20 16:24 - 00353512 _____ C:\WINDOWS\Minidump\092015-19984-01.dmp 2015-09-19 21:53 - 2015-09-19 21:53 - 00353512 _____ C:\WINDOWS\Minidump\091915-22500-01.dmp 2015-09-19 15:33 - 2015-09-19 15:33 - 00353520 _____ C:\WINDOWS\Minidump\091915-27640-01.dmp 2015-09-19 01:38 - 2015-09-19 01:38 - 00002206 _____ C:\Users\Public\Desktop\3D Vision Photo Viewer.lnk 2015-09-19 01:37 - 2015-08-25 16:18 - 00574072 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe 2015-09-19 01:36 - 2015-08-25 20:38 - 42840184 _____ C:\WINDOWS\system32\nvcompiler.dll 2015-09-19 01:36 - 2015-08-25 20:38 - 37819184 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll 2015-09-19 01:36 - 2015-08-25 20:38 - 22559352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll 2015-09-19 01:36 - 2015-08-25 20:38 - 18569336 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll 2015-09-19 01:36 - 2015-08-25 20:38 - 16646624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll 2015-09-19 01:36 - 2015-08-25 20:38 - 14945552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll 2015-09-19 01:36 - 2015-08-25 20:38 - 13667032 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll 2015-09-19 01:36 - 2015-08-25 20:38 - 12192048 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll 2015-09-19 01:36 - 2015-08-25 20:38 - 02354808 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll 2015-09-19 01:36 - 2015-08-25 20:38 - 02105976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll 2015-09-19 01:36 - 2015-08-25 20:38 - 01898104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6435582.dll 2015-09-19 01:36 - 2015-08-25 20:38 - 01558648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6435582.dll 2015-09-19 01:36 - 2015-08-25 20:38 - 01178576 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll 2015-09-19 01:36 - 2015-08-25 20:38 - 01064752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll 2015-09-19 01:36 - 2015-08-25 20:38 - 01001440 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll 2015-09-19 01:36 - 2015-08-25 20:38 - 00986232 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll 2015-09-19 01:36 - 2015-08-25 20:38 - 00945272 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll 2015-09-19 01:36 - 2015-08-25 20:38 - 00787200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll 2015-09-19 01:36 - 2015-08-25 20:38 - 00632848 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll 2015-09-19 01:36 - 2015-08-25 20:38 - 00408368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll 2015-09-19 01:36 - 2015-08-25 20:38 - 00376440 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll 2015-09-19 01:36 - 2015-08-25 20:38 - 00364152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll 2015-09-19 01:36 - 2015-08-25 20:38 - 00339576 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll 2015-09-19 01:36 - 2015-08-25 20:38 - 00316120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll 2015-09-19 01:36 - 2015-08-25 20:38 - 00176904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll 2015-09-19 01:36 - 2015-08-25 20:38 - 00155976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll 2015-09-19 01:36 - 2015-08-25 20:38 - 00150648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll 2015-09-19 01:36 - 2015-08-25 20:38 - 00128512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll 2015-09-16 21:51 - 2015-09-16 21:51 - 00000000 ___RD C:\Users\Christopher\3D Objects 2015-09-16 17:40 - 2015-09-16 17:41 - 00331336 _____ C:\WINDOWS\Minidump\091615-26484-01.dmp 2015-09-14 20:46 - 2015-09-14 20:47 - 00330024 _____ C:\WINDOWS\Minidump\091415-29328-01.dmp 2015-09-14 05:30 - 2015-09-14 05:30 - 00454016 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNdisFlt.sys 2015-09-14 05:30 - 2015-09-14 05:30 - 00378880 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe 2015-09-14 05:30 - 2015-09-14 05:30 - 00043112 _____ (AVAST Software) C:\WINDOWS\avastSS.scr 2015-09-14 05:30 - 2015-09-14 05:30 - 00028144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys 2015-09-14 05:19 - 2015-09-14 05:20 - 00047565 _____ C:\Users\Christopher\Downloads\Addition.txt 2015-09-14 05:18 - 2015-10-03 13:15 - 00015434 _____ C:\Users\Christopher\Downloads\FRST.txt 2015-09-14 05:18 - 2015-10-03 13:15 - 00000000 ____D C:\FRST 2015-09-14 05:18 - 2015-09-14 05:18 - 02190848 _____ (Farbar) C:\Users\Christopher\Downloads\FRST64.exe 2015-09-13 20:00 - 2015-09-13 20:00 - 00328264 _____ C:\WINDOWS\Minidump\091315-23718-01.dmp 2015-09-13 18:04 - 2015-09-13 18:04 - 00329784 _____ C:\WINDOWS\Minidump\091315-24984-01.dmp 2015-09-12 23:52 - 2015-09-12 23:52 - 00334736 _____ C:\WINDOWS\Minidump\091215-19984-01.dmp 2015-09-10 21:22 - 2015-09-10 21:23 - 00335896 _____ C:\WINDOWS\Minidump\091015-23890-01.dmp 2015-09-09 23:21 - 2015-08-27 08:36 - 03620736 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2015-09-09 23:21 - 2015-08-27 08:32 - 00608936 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe 2015-09-09 23:21 - 2015-08-27 07:59 - 02880032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2015-09-09 23:21 - 2015-08-27 07:54 - 00541248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe 2015-09-09 23:21 - 2015-08-27 07:54 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll 2015-09-09 23:21 - 2015-08-27 07:51 - 02350592 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll 2015-09-09 23:21 - 2015-08-27 07:51 - 01774592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll 2015-09-09 23:21 - 2015-08-27 07:49 - 01008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll 2015-09-09 23:21 - 2015-08-27 07:47 - 12503552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2015-09-09 23:21 - 2015-08-27 07:43 - 00826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll 2015-09-09 23:21 - 2015-08-27 07:43 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2015-09-09 23:21 - 2015-08-27 07:42 - 00596480 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll 2015-09-09 23:21 - 2015-08-27 07:42 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.PicturePassword.dll 2015-09-09 23:21 - 2015-08-27 07:42 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll 2015-09-09 23:21 - 2015-08-27 07:39 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll 2015-09-09 23:21 - 2015-08-27 07:23 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll 2015-09-09 23:21 - 2015-08-27 07:16 - 02153472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll 2015-09-09 23:21 - 2015-08-27 07:16 - 01612288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll 2015-09-09 23:21 - 2015-08-27 07:12 - 00650752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll 2015-09-09 23:21 - 2015-08-27 07:12 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll 2015-09-09 23:21 - 2015-08-27 07:11 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll 2015-09-09 23:21 - 2015-08-27 07:11 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll 2015-09-09 23:21 - 2015-08-27 07:09 - 11262464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2015-09-09 23:21 - 2015-08-27 07:08 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll 2015-09-06 19:32 - 2015-09-06 19:33 - 00339792 _____ C:\WINDOWS\Minidump\090615-27890-01.dmp 2015-09-05 22:57 - 2015-09-05 22:57 - 00328072 _____ C:\WINDOWS\Minidump\090515-22046-01.dmp 2015-09-05 16:19 - 2015-09-05 16:19 - 00331424 _____ C:\WINDOWS\Minidump\090515-27968-01.dmp ==================== Ein Monat: Geänderte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2015-10-03 13:14 - 2015-07-10 14:22 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log 2015-10-03 13:14 - 2015-05-15 20:07 - 00000000 ____D C:\Program Files (x86)\Steam 2015-10-03 13:14 - 2015-03-11 13:59 - 00001144 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2015-10-03 12:56 - 2015-08-06 21:55 - 01699356 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2015-10-03 12:56 - 2015-07-10 18:34 - 00733448 _____ C:\WINDOWS\system32\perfh007.dat 2015-10-03 12:56 - 2015-07-10 18:34 - 00146184 _____ C:\WINDOWS\system32\perfc007.dat 2015-10-03 12:51 - 2015-03-11 13:51 - 00064859 _____ C:\WINDOWS\SysWOW64\Gms.log 2015-10-03 12:50 - 2015-08-06 21:42 - 00000000 ____D C:\Users\Christopher 2015-10-03 12:50 - 2015-07-10 14:20 - 00024424 _____ C:\WINDOWS\setupact.log 2015-10-03 12:49 - 2015-07-10 14:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2015-10-03 12:49 - 2015-03-11 13:37 - 00000000 ____D C:\ProgramData\NVIDIA 2015-10-03 12:48 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\sru 2015-10-03 12:48 - 2015-07-10 11:05 - 00262144 ___SH C:\WINDOWS\system32\config\BBI 2015-10-03 12:47 - 2015-07-10 13:04 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12 2015-10-03 12:47 - 2015-07-10 13:04 - 00000000 ___SD C:\WINDOWS\system32\F12 2015-10-03 12:47 - 2015-07-10 13:04 - 00000000 ___RD C:\WINDOWS\PurchaseDialog 2015-10-03 12:47 - 2015-07-10 13:04 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility 2015-10-03 12:47 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2015-10-03 12:47 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2015-10-03 12:47 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\appraiser 2015-10-03 12:47 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\Provisioning 2015-10-03 12:47 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\L2Schemas 2015-10-03 12:44 - 2015-08-15 22:02 - 00000000 ____D C:\WINDOWS\Minidump 2015-10-03 12:44 - 2015-03-11 19:25 - 586416993 _____ C:\WINDOWS\MEMORY.DMP 2015-10-01 23:48 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase 2015-10-01 19:29 - 2015-03-20 21:04 - 00000000 ____D C:\Users\Christopher\AppData\Roaming\TS3Client 2015-10-01 18:33 - 2015-03-11 13:59 - 00001148 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2015-10-01 15:12 - 2015-08-29 19:22 - 00004180 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{F1B23F74-7C9D-4781-8E1A-8527D8844FBD} 2015-09-30 22:55 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\AppReadiness 2015-09-30 22:41 - 2015-07-10 12:55 - 00000000 ____D C:\WINDOWS\CbsTemp 2015-09-27 01:58 - 2015-03-20 21:04 - 00000000 ____D C:\Users\Christopher\AppData\Local\TeamSpeak 3 Client 2015-09-26 03:56 - 2015-03-18 21:09 - 00000000 ____D C:\Users\Christopher\AppData\Local\Spotify 2015-09-26 03:46 - 2015-03-18 21:09 - 00000000 ____D C:\Users\Christopher\AppData\Roaming\Spotify 2015-09-26 00:41 - 2015-03-11 14:00 - 00004280 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update 2015-09-19 01:38 - 2015-03-11 13:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2015-09-19 01:38 - 2015-03-11 13:37 - 00000000 ____D C:\ProgramData\NVIDIA Corporation 2015-09-19 01:19 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\LiveKernelReports 2015-09-18 16:43 - 2015-03-11 13:55 - 00000000 ____D C:\Users\Christopher\AppData\Local\NVIDIA Corporation 2015-09-16 23:28 - 2015-03-11 13:59 - 00004206 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA 2015-09-16 23:28 - 2015-03-11 13:59 - 00003974 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore 2015-09-16 20:12 - 2015-03-11 13:31 - 00000000 ____D C:\Users\Christopher\AppData\Local\Packages 2015-09-14 05:32 - 2015-08-06 21:37 - 00159698 _____ C:\WINDOWS\PFRO.log 2015-09-14 05:32 - 2015-03-11 14:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software 2015-09-14 05:30 - 2015-03-11 13:59 - 01048344 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsnx.sys 2015-09-14 05:30 - 2015-03-11 13:59 - 00447944 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys 2015-09-14 05:30 - 2015-03-11 13:59 - 00274808 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys 2015-09-14 05:30 - 2015-03-11 13:59 - 00150672 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys 2015-09-14 05:30 - 2015-03-11 13:59 - 00093528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys 2015-09-14 05:30 - 2015-03-11 13:59 - 00090968 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys 2015-09-14 05:30 - 2015-03-11 13:59 - 00065224 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys 2015-09-14 05:30 - 2015-03-11 13:59 - 00028656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys 2015-09-12 16:14 - 2015-09-02 03:22 - 00000529 _____ C:\Users\Christopher\Desktop\httppuu.shiHbP6.jpg.txt 2015-09-10 21:26 - 2015-07-10 14:20 - 00226184 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2015-09-10 21:25 - 2015-07-10 18:44 - 00000000 ____D C:\Program Files\Windows Journal 2015-09-09 23:42 - 2015-03-11 14:59 - 00000000 ____D C:\WINDOWS\system32\MRT 2015-09-07 23:14 - 2015-03-11 13:22 - 00092672 ____N C:\WINDOWS\Minidump\090715-18812-01.dmp 2015-09-06 20:02 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\rescache ==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ======= 2015-08-06 21:40 - 2015-08-06 21:40 - 0000000 ____H () C:\ProgramData\DP45977C.lfl Einige Dateien in TEMP: ==================== C:\Users\Christopher\AppData\Local\Temp\nvSCPAPI.dll C:\Users\Christopher\AppData\Local\Temp\nvSCPAPI64.dll C:\Users\Christopher\AppData\Local\Temp\nvStereoApiI.dll C:\Users\Christopher\AppData\Local\Temp\nvStInst.exe ==================== Bamital & volsnap ================= (Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.) C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert C:\WINDOWS\explorer.exe => Datei ist digital signiert C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert C:\WINDOWS\system32\services.exe => Datei ist digital signiert C:\WINDOWS\system32\User32.dll => Datei ist digital signiert C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert LastRegBack: 2015-09-24 20:44 ==================== Ende von FRST.txt ============================ Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:13-09-2015 02 durchgeführt von Christopher (2015-09-14 05:19:40) Gestartet von C:\Users\Christopher\Downloads Windows 10 Pro (X64) (2015-08-06 20:56:40) Start-Modus: Normal ========================================================== ==================== Konten: ============================= Administrator (S-1-5-21-857194082-3589123694-3136816115-500 - Administrator - Disabled) Christopher (S-1-5-21-857194082-3589123694-3136816115-1001 - Administrator - Enabled) => C:\Users\Christopher DefaultAccount (S-1-5-21-857194082-3589123694-3136816115-503 - Limited - Disabled) Gast (S-1-5-21-857194082-3589123694-3136816115-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-857194082-3589123694-3136816115-1003 - Limited - Enabled) ==================== Sicherheits-Center ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} ==================== Installierte Programme ====================== (Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.) Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.2.2215 - AVAST Software) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Call of Duty: Black Ops III Beta (HKLM-x32\...\Steam App 388520) (Version: - Treyarch) Call of Duty: Ghosts - Multiplayer (HKLM-x32\...\Steam App 209170) (Version: - Infinity Ward) Call of Duty: Ghosts (HKLM-x32\...\Steam App 209160) (Version: - Infinity Ward) Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve) Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment) Dota 2 (HKLM-x32\...\Steam App 570) (Version: - Valve) f.lux (HKU\S-1-5-21-857194082-3589123694-3136816115-1001\...\Flux) (Version: - ) GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 45.0.2454.85 - Google Inc.) Google Update Helper (x32 Version: 1.3.21.169 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.28.13 - Google Inc.) Hidden Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment) Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment) Intel(R) Driver Update Utility 2.0 (x32 Version: 2.0.0.29 - Intel) Hidden Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.31.1000 - Intel Corporation) Intel(R) Smart Connect Technology (HKLM\...\{3B236485-CCE7-48DE-82DC-A5EA54A6F7D6}) (Version: 5.0.10.2850 - Intel Corporation) Intel® Chipsatz-Gerätesoftware (x32 Version: 10.0.20 - Intel(R) Corporation) Hidden Intel® Driver Update Utility (HKLM-x32\...\{8409c4f7-2340-4933-a304-5d37db4fb48b}) (Version: 2.0.0.29 - Intel) League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games ) League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Mouse Editor (HKLM-x32\...\InstallShield_{8496B9A5-F260-4DF0-BCB3-4BA59FDC10BB}) (Version: 10.05.0004 - Ihr Firmenname) MOUSE Editor (x32 Version: 10.05.0004 - Ihr Firmenname) Hidden Mozilla Firefox 40.0.3 (x86 de) (HKLM-x32\...\Mozilla Firefox 40.0.3 (x86 de)) (Version: 40.0.3 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 40.0.3 - Mozilla) NVIDIA 3D Vision Controller-Treiber 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation) NVIDIA 3D Vision Treiber 355.60 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 355.60 - NVIDIA Corporation) NVIDIA GeForce Experience 2.5.13.6 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.5.13.6 - NVIDIA Corporation) NVIDIA Grafiktreiber 355.60 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 355.60 - NVIDIA Corporation) NVIDIA HD-Audiotreiber 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation) NVIDIA Miracast Virtueller Ton 353.62 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Miracast.VirtualAudio) (Version: 353.62 - NVIDIA Corporation) NVIDIA PhysX-Systemsoftware 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation) OpenOffice 4.0.1 (HKLM-x32\...\{0AEC308E-7EB3-47F7-BB59-F2C9C6166B27}) (Version: 4.01.9714 - Apache Software Foundation) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.36.826.2014 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7399 - Realtek Semiconductor Corp.) SHIELD Streaming (Version: 4.1.3000 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 2.5.13.6 - NVIDIA Corporation) Hidden Skype™ 7.8 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.8.102 - Skype Technologies S.A.) SleepTimer Ultimate 1.3 (HKLM-x32\...\{0EE56463-49B2-45E1-B74F-3E0139DBC986}_is1) (Version: - Christian Handorf) Spotify (HKU\S-1-5-21-857194082-3589123694-3136816115-1001\...\Spotify) (Version: 1.0.13.108.gcd94e7db - Spotify AB) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) TeamSpeak 3 Client (HKU\S-1-5-21-857194082-3589123694-3136816115-1001\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH) The Witcher 3 - Wild Hunt (HKLM-x32\...\1207664643_is1) (Version: 1.0.7.0 - GOG.com) The Witcher 3: Wild Hunt - Alternative Look for Triss (HKLM-x32\...\Alternative Look for Triss_is1) (Version: 1.0.0.0 - GOG.com) The Witcher 3: Wild Hunt - Alternative Look for Yennefer (HKLM-x32\...\Alternative Look for Yennefer_is1) (Version: 1.0.0.0 - GOG.com) The Witcher 3: Wild Hunt - Ballad Heroes - Neutral Gwent Card Set (HKLM-x32\...\Ballad Heroes - Neutral Gwent Card Set_is1) (Version: 1.0.0.0 - GOG.com) The Witcher 3: Wild Hunt - Beard and Hairstyle Set (HKLM-x32\...\Beard and Hairstyle Set_is1) (Version: 1.0.0.0 - GOG.com) The Witcher 3: Wild Hunt - Elite Crossbow Set (HKLM-x32\...\Elite Crossbow Set_is1) (Version: 1.0.0.0 - GOG.com) The Witcher 3: Wild Hunt - New Quest - Contract Missing Miners (HKLM-x32\...\New Quest - Contract Missing Miners_is1) (Version: 1.0.0.0 - GOG.com) The Witcher 3: Wild Hunt - New Quest - Fool's Gold (HKLM-x32\...\New Quest - Fool's Gold_is1) (Version: 1.0.0.0 - GOG.com) The Witcher 3: Wild Hunt - New Quest - Scavenger Hunt - Wolf School Gear (HKLM-x32\...\New Quest - Scavenger Hunt: Wolf School Gear_is1) (Version: 1.0.0.0 - GOG.com) The Witcher 3: Wild Hunt - Nilfgaardian Armor Set (HKLM-x32\...\Nilfgaardian Armor Set_is1) (Version: 1.0.0.0 - GOG.com) The Witcher 3: Wild Hunt - Skellige Armor Set (HKLM-x32\...\Skellige Armor Set_is1) (Version: 1.0.0.0 - GOG.com) The Witcher 3: Wild Hunt - Temerian Armor Set (HKLM-x32\...\Temerian Armor Set_is1) (Version: 1.0.0.0 - GOG.com) ==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) CustomCLSID: HKU\S-1-5-21-857194082-3589123694-3136816115-1001_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\InprocServer32 -> C:\Windows\system32\shell32.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-857194082-3589123694-3136816115-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\Christopher\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-857194082-3589123694-3136816115-1001_Classes\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282}\InprocServer32 -> C:\Users\Christopher\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-857194082-3589123694-3136816115-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\Christopher\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-857194082-3589123694-3136816115-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\Christopher\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-857194082-3589123694-3136816115-1001_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\Christopher\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-857194082-3589123694-3136816115-1001_Classes\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30}\InprocServer32 -> C:\Users\Christopher\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-857194082-3589123694-3136816115-1001_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\Christopher\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-857194082-3589123694-3136816115-1001_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\Christopher\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-857194082-3589123694-3136816115-1001_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\Christopher\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-857194082-3589123694-3136816115-1001_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Christopher\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncApi64.dll (Microsoft Corporation) ==================== Wiederherstellungspunkte ========================= 22-08-2015 13:35:32 Windows Update 29-08-2015 00:15:56 Windows Update 29-08-2015 00:16:58 Windows Update 06-09-2015 19:59:27 Geplanter Prüfpunkt 09-09-2015 23:38:29 Windows Update ==================== Hosts Inhalt: =============================== (Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.) 2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts ==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) Task: {00EEBA9C-F9EF-4272-B793-C830FBADD359} - System32\Tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup => C:\Windows\system32\dstokenclean.exe [2015-07-10] (Microsoft Corporation) Task: {0CCA7916-2916-4F12-BD32-1E3BE31E1269} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join => C:\Windows\System32\dsregcmd.exe [2015-07-10] (Microsoft Corporation) Task: {0D1CC317-1DB9-4BFB-931C-CE3F0285837F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.) Task: {0EE19361-BF74-40C7-86C5-23FA9D260CF3} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG Task: {122D9D16-D50E-4656-AFF7-9CDF93A6F3F2} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG Task: {19865544-CE08-40BE-8B8C-87C47681433D} - System32\Tasks\Microsoft\Windows\WindowsUpdate\sihboot => C:\Windows\System32\sihclient.exe [2015-07-10] (Microsoft Corporation) Task: {1BDC4631-D294-4CE0-8BB8-58B6BC656C36} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG Task: {38DD8389-D15E-4226-A950-8C2687CAE15C} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-06-18] (Avast Software s.r.o.) Task: {3B9C2A63-26CD-48F6-84AC-B8C6F0F9A77D} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG Task: {3F6E048D-6404-433B-8F5F-CFF4D89BF89E} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => Rundll32.exe generaltel.dll,RunTelemetryW Task: {41160EA0-208B-4C3E-B4DB-805BBABC6B93} - System32\Tasks\Microsoft\Windows\Feedback\Siuf\DmClient => C:\Windows\system32\dmclient.exe [2015-07-10] (Microsoft Corporation) Task: {5D174EA9-A25D-4CC7-B252-D6F709C14814} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG Task: {73551810-E5F4-433E-9494-0D00B55C855E} - System32\Tasks\Microsoft\Windows\Maps\MapsToastTask Task: {78B77FA3-9D97-441D-97B6-68CEA40B4F74} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Rundll32.exe generaltel.dll,RunTelemetry -maintenance Task: {803C36BE-FB26-4CB9-996B-A236CDFE6626} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG Task: {82FE2E61-31E7-4A74-A41B-AA0EB96C63CF} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG Task: {8DF84CB3-D8E0-4307-A35B-CA74E21786DB} - System32\Tasks\Microsoft\Windows\Clip\License Validation => C:\Windows\system32\ClipUp.exe [2015-08-06] (Microsoft Corporation) Task: {A5B6CD85-1B57-49B9-BA80-5D5D65F02826} - System32\Tasks\Microsoft\Windows\AppID\EDP Policy Manager Task: {AF193DA3-A957-46E3-8478-214EF9E69CC8} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG Task: {C56AFFD3-06B8-4A16-AF7E-F7A6EB3FAE9E} - System32\Tasks\Microsoft\Windows\TPM\Tpm-HASCertRetr Task: {C5EE2EA2-5312-4D1F-B9D0-41B18DF31B78} - System32\Tasks\Microsoft\Windows\WindowsUpdate\sih => C:\Windows\System32\sihclient.exe [2015-07-10] (Microsoft Corporation) Task: {C7A236B2-12E1-46DC-9501-3B1B0209CC09} - System32\Tasks\Microsoft\Windows\Location\WindowsActionDialog => C:\Windows\System32\WindowsActionDialog.exe [2015-07-10] (Microsoft Corporation) Task: {CA458FBF-62D0-4F41-8F4B-08556BCEAE3D} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG Task: {D1354270-A8B0-4B89-B1CD-5B9BFB596994} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-08-26] (Microsoft Corporation) Task: {D6E21658-0057-4A8E-8516-31C8C597A3EA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.) Task: {EC23B9BC-50C9-4138-9501-62E0BD8589CE} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG Task: {EE63A0DA-C0E5-4E23-B753-B5344C07766D} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.) Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Geladene Module (Nicht auf der Ausnahmeliste) ============== 2015-08-06 22:33 - 2015-08-06 22:33 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll 2015-03-11 13:37 - 2015-08-07 06:27 - 00116528 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2015-08-22 13:18 - 2015-08-11 11:14 - 00404480 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll 2014-06-18 18:18 - 2014-06-18 18:18 - 00209712 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe 2014-06-18 18:18 - 2014-06-18 18:18 - 00057648 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\NetworkHeuristic.dll 2014-06-18 18:18 - 2014-06-18 18:18 - 00057648 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\ISCTEncryptionCheck.dll 2014-06-18 18:18 - 2014-06-18 18:18 - 00037168 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\ISCTNetMon.dll 2015-08-29 21:14 - 2015-08-18 09:56 - 02498808 _____ () C:\WINDOWS\system32\CoreUIComponents.dll 2015-08-29 21:14 - 2015-08-18 09:56 - 02498808 _____ () C:\WINDOWS\System32\CoreUIComponents.dll 2015-07-10 12:59 - 2015-07-10 12:59 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll 2015-08-13 00:25 - 2015-08-03 03:30 - 00642048 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\MtcUvc.dll 2015-07-10 12:59 - 2015-07-10 12:59 - 00143360 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\XamlTileRendering.dll 2015-08-13 00:25 - 2015-08-03 03:11 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2015-07-10 13:00 - 2015-07-10 18:43 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2015-08-22 13:18 - 2015-08-11 10:58 - 01808384 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2015-08-13 00:25 - 2015-08-03 03:09 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2015-07-10 13:00 - 2015-07-10 18:43 - 00210432 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dll 2010-05-06 15:09 - 2010-05-06 15:09 - 02603520 _____ () C:\Program Files (x86)\MOUSE Editor\MouseEditor.exe 2015-09-11 17:20 - 2015-09-11 17:20 - 00103424 _____ () C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe 2015-03-31 18:48 - 2015-03-31 18:48 - 00104400 _____ () C:\Program Files\AVAST Software\Avast\log.dll 2015-03-31 18:48 - 2015-03-31 18:48 - 00081728 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll 2015-09-13 18:05 - 2015-09-13 18:05 - 02962944 _____ () C:\Program Files\AVAST Software\Avast\defs\15091300\algo.dll 2015-09-14 01:56 - 2015-09-14 01:56 - 02962944 _____ () C:\Program Files\AVAST Software\Avast\defs\15091301\algo.dll 2015-05-24 00:28 - 2015-08-18 01:31 - 00011896 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll 2010-05-06 14:27 - 2010-05-06 14:27 - 00111616 _____ () C:\Program Files (x86)\MOUSE Editor\DLL\DLL_MouseDeviceManager.dll 2010-04-03 12:37 - 2010-04-03 12:37 - 00094208 _____ () C:\Program Files (x86)\MOUSE Editor\DLL\DLL_ZoomControl.dll 2010-04-03 12:37 - 2010-04-03 12:37 - 00062976 _____ () C:\Program Files (x86)\MOUSE Editor\DLL\DLL_ScrollbarControl.dll 2010-04-03 12:37 - 2010-04-03 12:37 - 00069632 _____ () C:\Program Files (x86)\MOUSE Editor\DLL\DLL_AnalyzeGesturesInRight.dll 2010-04-03 12:36 - 2010-04-03 12:36 - 00069632 _____ () C:\Program Files (x86)\MOUSE Editor\DLL\DLL_AnalyzeGesturesInOne.dll 2010-04-03 12:37 - 2010-04-03 12:37 - 00127488 _____ () C:\Program Files (x86)\MOUSE Editor\DLL\DLL_Wheel4D.dll 2009-12-23 11:23 - 2009-12-23 11:23 - 00043008 _____ () C:\Program Files (x86)\MOUSE Editor\Data\MouseEditor\Forms\OSD_Text\OSD_Text.dll 2015-03-11 13:59 - 2015-03-11 13:59 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2014-11-10 13:12 - 2014-11-10 13:12 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll 2015-05-17 13:40 - 2015-07-03 18:12 - 00778240 _____ () C:\Program Files (x86)\Steam\SDL2.dll 2015-05-17 13:40 - 2015-07-03 18:12 - 04962816 _____ () C:\Program Files (x86)\Steam\v8.dll 2015-05-17 13:40 - 2015-08-19 22:39 - 02413248 _____ () C:\Program Files (x86)\Steam\video.dll 2015-05-15 20:08 - 2014-12-01 23:31 - 02396672 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll 2015-05-15 20:08 - 2014-12-01 23:31 - 00479744 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll 2015-05-15 20:08 - 2014-12-01 23:31 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll 2015-05-15 20:08 - 2014-12-01 23:31 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll 2015-05-15 20:08 - 2014-12-01 23:31 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll 2015-05-17 13:40 - 2015-07-03 18:12 - 01556992 _____ () C:\Program Files (x86)\Steam\icui18n.dll 2015-05-17 13:40 - 2015-07-03 18:12 - 01187840 _____ () C:\Program Files (x86)\Steam\icuuc.dll 2015-05-17 13:40 - 2015-08-19 22:39 - 00704192 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL 2015-07-22 21:33 - 2015-07-27 03:13 - 00171008 _____ () C:\Program Files (x86)\Steam\bin\openvr_api.dll 2015-09-13 22:32 - 2015-09-13 22:32 - 00155232 ___HT () C:\Users\Christopher\AppData\Local\Temp\~D6E8.tmp 2015-05-15 20:08 - 2015-07-03 18:12 - 39553928 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll 2015-05-15 20:10 - 2015-07-24 12:20 - 00198144 _____ () C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\bin\launcher.dll 2015-05-15 20:10 - 2015-07-24 12:20 - 00317440 _____ () C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\bin\tier0.dll 2015-05-15 20:10 - 2015-07-24 12:20 - 00203776 _____ () C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\bin\vstdlib.dll 2015-05-15 20:10 - 2015-07-24 12:20 - 00389120 _____ () C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\bin\filesystem_stdio.dll 2015-05-15 20:10 - 2015-09-04 01:33 - 06683136 _____ () c:\program files (x86)\steam\steamapps\common\counter-strike global offensive\bin\engine.dll 2015-05-15 20:10 - 2015-07-24 12:20 - 00156160 _____ () c:\program files (x86)\steam\steamapps\common\counter-strike global offensive\bin\inputsystem.dll 2015-05-15 20:10 - 2015-07-24 12:20 - 01174016 _____ () c:\program files (x86)\steam\steamapps\common\counter-strike global offensive\bin\vphysics.dll 2015-05-15 20:10 - 2015-07-24 12:20 - 01240064 _____ () c:\program files (x86)\steam\steamapps\common\counter-strike global offensive\bin\materialsystem.dll 2015-05-15 20:10 - 2015-07-24 12:20 - 00351744 _____ () c:\program files (x86)\steam\steamapps\common\counter-strike global offensive\bin\datacache.dll 2015-05-15 20:10 - 2015-07-24 12:20 - 00607744 _____ () c:\program files (x86)\steam\steamapps\common\counter-strike global offensive\bin\studiorender.dll 2015-05-15 20:10 - 2015-07-24 12:20 - 00164864 _____ () c:\program files (x86)\steam\steamapps\common\counter-strike global offensive\bin\soundemittersystem.dll 2015-05-15 20:10 - 2015-07-24 12:20 - 00708096 _____ () c:\program files (x86)\steam\steamapps\common\counter-strike global offensive\bin\vscript.dll 2015-05-15 20:10 - 2015-07-24 12:20 - 00134656 _____ () c:\program files (x86)\steam\steamapps\common\counter-strike global offensive\bin\valve_avi.dll 2015-05-15 20:10 - 2015-07-24 12:20 - 01336320 _____ () c:\program files (x86)\steam\steamapps\common\counter-strike global offensive\bin\vguimatsurface.dll 2015-05-15 20:10 - 2015-07-24 12:20 - 00394752 _____ () c:\program files (x86)\steam\steamapps\common\counter-strike global offensive\bin\vgui2.dll 2015-05-15 20:10 - 2015-07-24 12:21 - 03192320 _____ () c:\program files (x86)\steam\steamapps\common\counter-strike global offensive\bin\scaleformui.dll 2015-05-15 20:10 - 2015-07-24 12:20 - 01762816 _____ () C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\bin\shaderapidx9.dll 2015-05-15 20:10 - 2015-07-24 12:20 - 00143360 _____ () c:\program files (x86)\steam\steamapps\common\counter-strike global offensive\bin\localize.dll 2015-05-15 20:10 - 2015-07-24 12:20 - 00230912 _____ () c:\program files (x86)\steam\steamapps\common\counter-strike global offensive\bin\stdshader_dbg.dll 2015-05-15 20:10 - 2015-08-15 12:19 - 00995840 _____ () c:\program files (x86)\steam\steamapps\common\counter-strike global offensive\bin\stdshader_dx9.dll 2015-05-15 20:10 - 2015-07-30 15:33 - 00582144 _____ () c:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo\bin\matchmaking.dll 2015-05-15 20:10 - 2015-09-04 01:33 - 12377600 _____ () c:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo\bin\client.dll 2015-05-15 20:10 - 2015-09-04 01:33 - 09932800 _____ () c:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo\bin\server.dll 2015-05-15 20:10 - 2015-07-24 12:20 - 00094208 _____ () C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\bin\scenefilecache.dll 2015-05-15 20:10 - 2015-07-24 12:20 - 00084992 _____ () c:\program files (x86)\steam\steamapps\common\counter-strike global offensive\bin\vaudio_miles.dll 2015-05-15 20:10 - 2015-05-15 20:10 - 00071680 _____ () c:\program files (x86)\steam\steamapps\common\counter-strike global offensive\bin\mssmp3.asi 2015-05-15 20:10 - 2015-05-15 20:10 - 00012800 _____ () c:\program files (x86)\steam\steamapps\common\counter-strike global offensive\bin\mssds3d.flt 2015-05-15 20:10 - 2015-05-15 20:10 - 00055808 _____ () c:\program files (x86)\steam\steamapps\common\counter-strike global offensive\bin\msseax.flt 2015-05-15 20:10 - 2015-07-30 15:33 - 00972800 _____ () c:\program files (x86)\steam\steamapps\common\counter-strike global offensive\bin\serverbrowser.dll 2015-05-15 20:10 - 2015-07-24 12:20 - 00173568 _____ () c:\program files (x86)\steam\steamapps\common\counter-strike global offensive\bin\vaudio_celt.dll 2015-09-03 22:27 - 2015-08-28 02:17 - 01501512 _____ () C:\Program Files (x86)\Google\Chrome\Application\45.0.2454.85\libglesv2.dll 2015-09-03 22:27 - 2015-08-28 02:17 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\45.0.2454.85\libegl.dll ==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.) AlternateDataStreams: C:\Users\Christopher\OneDrive:ms-properties ==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Ahcache.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CoreMessagingRegistrar => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\StateRepository => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TileDataModelSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\UserManager => ""="Service" ==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.) ==================== Internet Explorer Vertrauenswürdig/Eingeschränkt =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.) ==================== Andere Bereiche ============================ (Aktuell gibt es keinen automatisierten Fix für diesen Bereich.) HKU\S-1-5-21-857194082-3589123694-3136816115-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img13.jpg DNS Servers: 192.168.0.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall ist aktiviert. ==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge == (Aktuell gibt es keinen automatisierten Fix für diesen Bereich.) HKU\S-1-5-21-857194082-3589123694-3136816115-1001\...\StartupApproved\Run: => "GalaxyClient" HKU\S-1-5-21-857194082-3589123694-3136816115-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-857194082-3589123694-3136816115-1001\...\StartupApproved\Run: => "Skype" HKU\S-1-5-21-857194082-3589123694-3136816115-1001\...\StartupApproved\Run: => "Spotify" ==================== Firewall Regeln (Nicht auf der Ausnahmeliste) =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppextcomobj.exe FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppextcomobj.exe FirewallRules: [{82F80756-1284-4ABE-BECF-CF8B73F61038}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe FirewallRules: [{6D20666F-482F-4671-A79C-6E224EB23C43}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe FirewallRules: [{2FC15071-73C8-4F7E-A430-E8CA558673A5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{C8C2BA7D-7F6B-46B2-AA66-12F570EF4EFD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{6EB56912-D31C-43D3-8416-5395D471ECD4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{D54D4162-EB88-4440-BA7D-19F986F02F6F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{2128C7F3-27EF-4F59-B429-E89C0605EF9F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [UDP Query User{BA534E24-83A8-426B-93C5-90D492CFE934}C:\program files (x86)\heroes of the storm\versions\base35360\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base35360\heroesofthestorm_x64.exe FirewallRules: [TCP Query User{FF531901-F3ED-482F-8715-A477A7B9025C}C:\program files (x86)\heroes of the storm\versions\base35360\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base35360\heroesofthestorm_x64.exe FirewallRules: [{6566373D-7B30-4B82-A480-22B519A869D1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{B047EB4A-E60E-4D1F-BB1B-BA54236DD52A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [UDP Query User{C033BD7E-B70E-49C4-BCC7-F1AC872D3580}C:\program files (x86)\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe FirewallRules: [TCP Query User{50694F0A-32F3-4E8A-8F47-E7C742345073}C:\program files (x86)\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe FirewallRules: [UDP Query User{CC1F5CC1-6552-4765-AF46-984E0122A2AE}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [TCP Query User{C527907A-067F-4FB2-B4A0-260E428A0164}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [UDP Query User{7821D6FA-A4B2-4A9A-9510-5B0EDFD69425}C:\program files (x86)\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe FirewallRules: [TCP Query User{D782E2AB-54F7-4FC6-8D89-4914A1F85207}C:\program files (x86)\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe FirewallRules: [UDP Query User{DD2FC850-7104-4F1F-AF1D-B9A66C2CADA1}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [TCP Query User{56921879-B887-434D-AD36-E7106EB89F76}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [UDP Query User{9998BC1E-2838-41C6-B247-1015FEA24C1A}C:\users\christopher\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\christopher\appdata\roaming\spotify\spotify.exe FirewallRules: [TCP Query User{55157BB2-2762-4F25-A5B1-831C74B3830A}C:\users\christopher\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\christopher\appdata\roaming\spotify\spotify.exe FirewallRules: [{FABFFF0F-1795-4A76-AD26-32848137DFB8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Ghosts\iw6mp64_ship.exe FirewallRules: [{95207788-62C4-43C2-8B60-DD299835BEBF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Ghosts\iw6mp64_ship.exe FirewallRules: [{60E3599D-49C8-4A01-8BF5-D893C2ED204F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Ghosts\iw6sp64_ship.exe FirewallRules: [{824D3B0B-21A6-4C5F-950F-F512CC361297}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Ghosts\iw6sp64_ship.exe FirewallRules: [{0CC003D6-050E-4BD7-8871-FAB0E21C4247}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\dota.exe FirewallRules: [{72A13C86-7FA7-4A41-B997-FB7BDCEE7FE7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\dota.exe FirewallRules: [{2B254FEC-D733-4B0F-A5CF-B808BE32F23E}] => (Allow) C:\Program Files (x86)\Diablo III\Diablo III.exe FirewallRules: [{F0D932A9-27D8-4BD1-8E35-9BA7A6D2B126}] => (Allow) C:\Program Files (x86)\Diablo III\Diablo III.exe FirewallRules: [{60F63B86-3C4A-4E92-A831-B10E71F16554}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe FirewallRules: [{D609C3D3-022A-469B-BEBF-11203DEA3BE8}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe FirewallRules: [{59854E37-5747-405B-AA5E-F66F72064834}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{9C70181C-2AEB-47C4-956D-4260766F85CC}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{E1B5F432-CC1E-4F93-9C1B-A0506FE1BDDF}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe FirewallRules: [{8970EEC5-84CF-44EC-8982-3149B3C90557}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe FirewallRules: [{99F437CC-ADCC-4D8E-BEBD-9BF90B497701}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{37C455F5-3855-491E-A0A9-2EDD74D10B34}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{58CC7540-8DB3-4EEC-BB31-F1B74D18D2CA}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{66163827-23CB-4447-A719-FF7E7F3DB4E7}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [TCP Query User{4E6C220D-5807-4CDC-83E9-7AEB3E636006}C:\program files (x86)\heroes of the storm\versions\base37117\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base37117\heroesofthestorm_x64.exe FirewallRules: [UDP Query User{8CC0CE05-864D-46EF-8E17-88609281CC44}C:\program files (x86)\heroes of the storm\versions\base37117\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base37117\heroesofthestorm_x64.exe FirewallRules: [{FD47CC52-17DB-45E9-8D3A-0C764FCBD9C9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Black Ops III Beta\BlackOps3.exe FirewallRules: [{C0459566-414A-4292-AB67-387B70EFA3BD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Black Ops III Beta\BlackOps3.exe FirewallRules: [TCP Query User{E169ABA1-8C37-424C-90A7-C0F84071BC6F}C:\users\christopher\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\christopher\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{5F5AACBE-D4D3-4438-A15A-B27A9D5A9ABB}C:\users\christopher\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\christopher\appdata\roaming\spotify\spotify.exe FirewallRules: [{0B7B104D-F958-410D-87B9-19162DD7FBE4}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{E0CB8369-ED83-43C2-A988-CD6FE2189179}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{B760ACEB-4D95-4314-B8BA-4ACCE3AAF0AA}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Fehlerhafte Geräte im Gerätemanager ============= ==================== Fehlereinträge in der Ereignisanzeige: ========================= Applikationsfehler: ================== Error: (09/13/2015 08:46:31 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: CHRISTOPHERBKH) Description: Bei der Aktivierung der App „Microsoft.Windows.Photos_8wekyb3d8bbwe!App“ ist folgender Fehler aufgetreten: -2144927142. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“. Error: (09/13/2015 08:46:31 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Programm Microsoft.Photos.exe, Version 15.827.16340.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen. Prozess-ID: cf8 Startzeit: 01d0ee525a4ecf43 Beendigungszeit: 4294967295 Anwendungspfad: C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.827.16340.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe Berichts-ID: be1b0211-5a47-11e5-82d9-448a5b212ebc Vollständiger Name des fehlerhaften Pakets: Microsoft.Windows.Photos_15.827.16340.0_x64__8wekyb3d8bbwe Auf das fehlerhafte Paket bezogene Anwendungs-ID: App Error: (09/13/2015 08:46:27 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2486) (User: CHRISTOPHERBKH) Description: Die App „Microsoft.Windows.Photos_15.827.16340.0_x64__8wekyb3d8bbwe+App“ wurde nicht innerhalb der vorgesehenen Zeit gestartet. Error: (09/10/2015 04:39:36 PM) (Source: ESENT) (EventID: 413) (User: ) Description: SettingSyncHost (7540) Es konnte keine neue Protokolldatei erstellt werden, weil die Datenbank nicht auf das Protokolllaufwerk schreiben kann. Das Laufwerk ist möglicherweise schreibgeschützt, falsch konfiguriert, beschädigt oder hat zu wenig freien Speicherplatz. Fehler -1032. Error: (09/10/2015 04:39:36 PM) (Source: ESENT) (EventID: 488) (User: ) Description: SettingSyncHost (7540) Der Versuch, die Datei "C:\WINDOWS\system32\edbtmp.log" zu erstellen, ist mit Systemfehler 5 (0x00000005): "Zugriff verweigert " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Erstellen von Dateien. Error: (09/10/2015 04:39:26 PM) (Source: ESENT) (EventID: 413) (User: ) Description: SettingSyncHost (7540) Es konnte keine neue Protokolldatei erstellt werden, weil die Datenbank nicht auf das Protokolllaufwerk schreiben kann. Das Laufwerk ist möglicherweise schreibgeschützt, falsch konfiguriert, beschädigt oder hat zu wenig freien Speicherplatz. Fehler -1032. Error: (09/10/2015 04:39:26 PM) (Source: ESENT) (EventID: 488) (User: ) Description: SettingSyncHost (7540) Der Versuch, die Datei "C:\WINDOWS\system32\edbtmp.log" zu erstellen, ist mit Systemfehler 5 (0x00000005): "Zugriff verweigert " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Erstellen von Dateien. Error: (09/10/2015 04:39:15 PM) (Source: ESENT) (EventID: 413) (User: ) Description: SettingSyncHost (7540) Es konnte keine neue Protokolldatei erstellt werden, weil die Datenbank nicht auf das Protokolllaufwerk schreiben kann. Das Laufwerk ist möglicherweise schreibgeschützt, falsch konfiguriert, beschädigt oder hat zu wenig freien Speicherplatz. Fehler -1032. Error: (09/10/2015 04:39:15 PM) (Source: ESENT) (EventID: 488) (User: ) Description: SettingSyncHost (7540) Der Versuch, die Datei "C:\WINDOWS\system32\edbtmp.log" zu erstellen, ist mit Systemfehler 5 (0x00000005): "Zugriff verweigert " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Erstellen von Dateien. Error: (09/10/2015 04:39:05 PM) (Source: ESENT) (EventID: 413) (User: ) Description: SettingSyncHost (7540) Es konnte keine neue Protokolldatei erstellt werden, weil die Datenbank nicht auf das Protokolllaufwerk schreiben kann. Das Laufwerk ist möglicherweise schreibgeschützt, falsch konfiguriert, beschädigt oder hat zu wenig freien Speicherplatz. Fehler -1032. Systemfehler: ============= Error: (09/13/2015 08:46:31 PM) (Source: DCOM) (EventID: 10010) (User: CHRISTOPHERBKH) Description: App Error: (09/13/2015 08:00:22 PM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: NT-AUTORITÄT) Description: 32212254735646988642357032 Error: (09/13/2015 08:00:50 PM) (Source: BugCheck) (EventID: 1001) (User: ) Description: 0x0000007e (0xffffffffc0000005, 0xfffff800a3cefec8, 0xffffd000214ec698, 0xffffd000214ebeb0)C:\WINDOWS\MEMORY.DMP091315-23718-01 Error: (09/13/2015 08:00:46 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: Das System wurde zuvor am 13.09.2015 um 18:04:35 unerwartet heruntergefahren. Error: (09/13/2015 06:04:38 PM) (Source: BugCheck) (EventID: 1001) (User: ) Description: 0x0000007e (0xffffffffc0000005, 0xfffff8016ea0c4be, 0xffffd00025d694b8, 0xffffd00025d68cd0)C:\WINDOWS\MEMORY.DMP091315-24984-01 Error: (09/13/2015 06:04:35 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: Das System wurde zuvor am 13.09.2015 um 06:32:28 unerwartet heruntergefahren. Error: (09/12/2015 11:57:00 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT) Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar Error: (09/12/2015 11:57:00 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT) Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar Error: (09/12/2015 11:56:59 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT) Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar Error: (09/12/2015 11:56:59 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT) Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar Microsoft Office: ========================= Error: (09/13/2015 08:46:31 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: CHRISTOPHERBKH) Description: Microsoft.Windows.Photos_8wekyb3d8bbwe!App-2144927142 Error: (09/13/2015 08:46:31 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Microsoft.Photos.exe15.827.16340.0cf801d0ee525a4ecf434294967295C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.827.16340.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exebe1b0211-5a47-11e5-82d9-448a5b212ebcMicrosoft.Windows.Photos_15.827.16340.0_x64__8wekyb3d8bbweApp Error: (09/13/2015 08:46:27 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2486) (User: CHRISTOPHERBKH) Description: Microsoft.Windows.Photos_15.827.16340.0_x64__8wekyb3d8bbwe+App Error: (09/10/2015 04:39:36 PM) (Source: ESENT) (EventID: 413) (User: ) Description: SettingSyncHost7540-1032 Error: (09/10/2015 04:39:36 PM) (Source: ESENT) (EventID: 488) (User: ) Description: SettingSyncHost7540C:\WINDOWS\system32\edbtmp.log-1032 (0xfffffbf8)5 (0x00000005)Zugriff verweigert Error: (09/10/2015 04:39:26 PM) (Source: ESENT) (EventID: 413) (User: ) Description: SettingSyncHost7540-1032 Error: (09/10/2015 04:39:26 PM) (Source: ESENT) (EventID: 488) (User: ) Description: SettingSyncHost7540C:\WINDOWS\system32\edbtmp.log-1032 (0xfffffbf8)5 (0x00000005)Zugriff verweigert Error: (09/10/2015 04:39:15 PM) (Source: ESENT) (EventID: 413) (User: ) Description: SettingSyncHost7540-1032 Error: (09/10/2015 04:39:15 PM) (Source: ESENT) (EventID: 488) (User: ) Description: SettingSyncHost7540C:\WINDOWS\system32\edbtmp.log-1032 (0xfffffbf8)5 (0x00000005)Zugriff verweigert Error: (09/10/2015 04:39:05 PM) (Source: ESENT) (EventID: 413) (User: ) Description: SettingSyncHost7540-1032 ==================== Speicherinformationen =========================== Prozessor: Intel(R) Core(TM) i5-4670K CPU @ 3.40GHz Prozentuale Nutzung des RAM: 39% Installierter physikalischer RAM: 8120.06 MB Verfügbarer physikalischer RAM: 4914.2 MB Summe virtueller Speicher: 9400.06 MB Verfügbarer virtueller Speicher: 5453.3 MB ==================== Laufwerke ================================ Drive c: () (Fixed) (Total:930.73 GB) (Free:612.11 GB) NTFS ==================== MBR & Partitionstabelle ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 1F9E0075) Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=930.7 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=450 MB) - (Type=27) ==================== Ende von Addition.txt ============================ |
03.10.2015, 12:29 | #4 |
/// Malwareteam | Lösung: API-Probleme (Api,ms-win-core-processthreads-l1-1-2.dll nicht gefunden) /häufige Bluescreens Bitte starte wieder FRST, setze den Haken bei Addition und drücke auf Untersuchen Jetzt sollte es zwei Dateien geben, die bitte beide posten |
03.10.2015, 12:54 | #5 |
| Wie API-Probleme (Api,ms-win-core-processthreads-l1-1-2.dll nicht gefunden) /häufige Bluescreens Danke dir, soweit getan. Kann komischer Weise bluescreenview installieren, hilft dir der Bericht ? Wenn ja mach ich das auch noch grad. Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:03-10-2015 durchgeführt von Christopher (Administrator) auf CHRISTOPHERBKH (03-10-2015 13:50:36) Gestartet von C:\Users\Christopher\Downloads Geladene Profile: Christopher (Verfügbare Profile: Christopher) Platform: Windows 10 Pro (X64) Sprache: Deutsch (Deutschland) Internet Explorer Version 11 (Standard-Browser: Chrome) Start-Modus: Normal Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Prozesse (Nicht auf der Ausnahmeliste) ================= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe (Flux Software LLC) C:\Users\Christopher\AppData\Local\FluxSoftware\Flux\flux.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe (Spotify Ltd) C:\Users\Christopher\AppData\Roaming\Spotify\SpotifyWebHelper.exe () C:\Program Files (x86)\MOUSE Editor\MouseEditor.exe (Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe (Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1001.16470.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_3.6.13251.0_x64__8wekyb3d8bbwe\Video.UI.exe () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1509.14010.0_x64__8wekyb3d8bbwe\Calculator.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Registry (Nicht auf der Ausnahmeliste) =========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7659736 2014-11-26] (Realtek Semiconductor) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634872 2015-08-27] (NVIDIA Corporation) HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart HKLM\...\Run: [ISCT Tray] => C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe [5860656 2014-06-18] (Intel Corporation) HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe [1172256 2014-11-10] (Intel Corporation) HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [6111824 2015-09-14] (AVAST Software) HKU\S-1-5-21-857194082-3589123694-3136816115-1001\...\Run: [f.lux] => C:\Users\Christopher\AppData\Local\FluxSoftware\Flux\flux.exe [1017224 2013-10-24] (Flux Software LLC) HKU\S-1-5-21-857194082-3589123694-3136816115-1001\...\Run: [Spotify Web Helper] => C:\Users\Christopher\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2018360 2015-09-08] (Spotify Ltd) HKU\S-1-5-21-857194082-3589123694-3136816115-1001\...\Run: [Spotify] => C:\Users\Christopher\AppData\Roaming\Spotify\Spotify.exe [7535672 2015-09-08] (Spotify Ltd) HKU\S-1-5-21-857194082-3589123694-3136816115-1001\...\Run: [OscarEditor] => C:\Program Files (x86)\MOUSE Editor\MouseEditor.exe [2603520 2010-05-06] () HKU\S-1-5-21-857194082-3589123694-3136816115-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2899136 2015-08-19] (Valve Corporation) HKU\S-1-5-21-857194082-3589123694-3136816115-1001\...\Run: [GalaxyClient] => C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe [7249976 2015-08-13] (GOG.com) HKU\S-1-5-21-857194082-3589123694-3136816115-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [53736048 2015-08-07] (Skype Technologies S.A.) HKU\S-1-5-21-857194082-3589123694-3136816115-1001\...\RunOnce: [Uninstall C:\Users\Christopher\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Christopher\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64" HKU\S-1-5-21-857194082-3589123694-3136816115-1001\...\RunOnce: [Uninstall C:\Users\Christopher\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Christopher\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64" ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-09-14] (AVAST Software) ==================== Internet (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{045a409f-9f01-4cd4-9e90-592abd1382c9}: [DhcpNameServer] 192.168.0.1 Internet Explorer: ================== HKU\S-1-5-21-857194082-3589123694-3136816115-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://google.de/ HKU\S-1-5-21-857194082-3589123694-3136816115-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.giga.de/software/ BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-09-14] (AVAST Software) BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-09-14] (AVAST Software) FireFox: ======== FF ProfilePath: C:\Users\Christopher\AppData\Roaming\Mozilla\Firefox\Profiles\guztutrg.default FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-11-10] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-11-10] (Intel Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-08-25] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-08-25] (NVIDIA Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.) FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-03-11] Chrome: ======= CHR StartupUrls: Default -> "hxxp://www.google.com/" CHR Profile: C:\Users\Christopher\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Präsentationen) - C:\Users\Christopher\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-03-11] CHR Extension: (Google Docs) - C:\Users\Christopher\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-03-11] CHR Extension: (Google Drive) - C:\Users\Christopher\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-03-11] CHR Extension: (YouTube) - C:\Users\Christopher\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-03-11] CHR Extension: (Adblock Plus) - C:\Users\Christopher\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-03-25] CHR Extension: (Google-Suche) - C:\Users\Christopher\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-03-11] CHR Extension: (Google Tabellen) - C:\Users\Christopher\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-03-11] CHR Extension: (Google Text & Tabellen Offline) - C:\Users\Christopher\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-03] CHR Extension: (Avast Online Security) - C:\Users\Christopher\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-03-11] CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Christopher\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-11] CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Christopher\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-03-11] CHR Extension: (Google Mail) - C:\Users\Christopher\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-11] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-03-11] ==================== Dienste (Nicht auf der Ausnahmeliste) ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600 2015-09-14] (AVAST Software) R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [109008 2015-09-14] (AVAST Software) S3 GalaxyClientService; C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [1720888 2015-08-13] (GOG.com) S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6920248 2015-08-25] (GOG.com) R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155192 2015-08-27] (NVIDIA Corporation) S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887256 2014-05-13] (Intel(R) Corporation) R2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [209712 2014-06-18] () R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [158496 2014-11-10] (Intel Corporation) R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1872504 2015-08-27] (NVIDIA Corporation) R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5544568 2015-08-27] (NVIDIA Corporation) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation) U4 AvastVBoxSvc; "C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe" [X] ===================== Treiber (Nicht auf der Ausnahmeliste) ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-09-14] (AVAST Software) R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [28144 2015-09-14] (AVAST Software) R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [90968 2015-09-14] (AVAST Software) R0 aswNdisFlt; C:\Windows\System32\DRIVERS\aswNdisFlt.sys [454016 2015-09-14] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-09-14] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-09-14] (AVAST Software) R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1048344 2015-09-14] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [447944 2015-09-14] (AVAST Software) R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [150672 2015-09-14] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [274808 2015-09-14] (AVAST Software) R3 ikbevent; C:\Windows\system32\DRIVERS\ikbevent.sys [22216 2014-05-27] () R3 imsevent; C:\Windows\system32\DRIVERS\imsevent.sys [22728 2014-05-27] () R3 INETMON; C:\Windows\System32\Drivers\INETMON.sys [25800 2014-05-27] () R3 ISCT; C:\Windows\System32\drivers\ISCTD.sys [44744 2014-05-27] () R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [129312 2014-11-10] (Intel Corporation) R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19576 2015-08-27] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [50472 2015-08-11] (NVIDIA Corporation) S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] () S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation) U4 VBoxAswDrv; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [X] S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X] ==================== NetSvcs (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Ein Monat: Erstellte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2015-10-03 13:50 - 2015-10-03 13:50 - 00000000 ____D C:\Users\Christopher\Downloads\FRST-OlderVersion 2015-10-03 13:48 - 2015-10-03 13:48 - 00016148 _____ C:\WINDOWS\system32\CHRISTOPHERBKH_Christopher_HistoryPrediction.bin 2015-10-03 13:16 - 2015-10-03 13:16 - 00067310 _____ C:\Users\Christopher\Downloads\bluescreenview_v1.55 (3).zip 2015-10-03 12:50 - 2015-09-15 18:12 - 00812008 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2015-10-03 12:50 - 2015-09-15 18:12 - 00178152 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl 2015-10-03 12:44 - 2015-10-03 12:44 - 00368184 _____ C:\WINDOWS\Minidump\100315-22546-01.dmp 2015-10-02 01:01 - 2015-10-02 01:01 - 00067310 _____ C:\Users\Christopher\Downloads\bluescreenview_v1.55 (2).zip 2015-10-02 00:58 - 2015-10-02 00:58 - 00000000 ____D C:\Users\Christopher\AppData\LocalLow\Temp 2015-10-02 00:54 - 2015-10-02 00:54 - 00000657 _____ C:\Users\Christopher\Desktop\Neues Textdokument.txt 2015-10-02 00:53 - 2015-10-02 00:53 - 00067310 _____ C:\Users\Christopher\Downloads\bluescreenview_v1.55 (1).zip 2015-10-02 00:52 - 2015-10-02 00:52 - 00067310 _____ C:\Users\Christopher\Downloads\bluescreenview_v1.55.zip 2015-09-30 22:38 - 2015-09-25 02:35 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll 2015-09-30 22:38 - 2015-09-25 02:34 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneCallHistoryApis.dll 2015-09-30 22:38 - 2015-09-25 02:13 - 01276416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll 2015-09-30 22:38 - 2015-09-25 01:34 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccountApis.dll 2015-09-30 22:38 - 2015-09-25 01:34 - 00172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneCallHistoryApis.dll 2015-09-30 22:38 - 2015-09-25 01:24 - 00796160 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll 2015-09-30 22:38 - 2015-09-25 01:24 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll 2015-09-30 22:38 - 2015-09-25 01:23 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe 2015-09-30 22:38 - 2015-09-25 01:17 - 02178560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2015-09-30 22:38 - 2015-09-25 01:08 - 03586560 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2015-09-30 22:38 - 2015-09-25 01:07 - 01382400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2015-09-30 22:38 - 2015-09-25 01:06 - 01423872 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll 2015-09-30 22:38 - 2015-09-25 01:05 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll 2015-09-30 22:38 - 2015-09-25 01:01 - 00856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll 2015-09-30 22:38 - 2015-09-25 01:01 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll 2015-09-30 22:38 - 2015-09-25 01:00 - 01205248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll 2015-09-30 22:38 - 2015-09-25 01:00 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll 2015-09-30 22:38 - 2015-09-25 01:00 - 00720896 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll 2015-09-30 22:38 - 2015-09-25 01:00 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\CallHistoryClient.dll 2015-09-30 22:38 - 2015-09-25 00:53 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll 2015-09-30 22:38 - 2015-09-25 00:43 - 00613376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll 2015-09-30 22:38 - 2015-09-25 00:43 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll 2015-09-30 22:38 - 2015-09-25 00:42 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll 2015-09-30 22:38 - 2015-09-25 00:25 - 00928256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll 2015-09-30 22:38 - 2015-09-25 00:25 - 00625152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll 2015-09-30 22:38 - 2015-09-25 00:25 - 00579584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentApis.dll 2015-09-30 22:38 - 2015-09-25 00:25 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ChatApis.dll 2015-09-30 22:38 - 2015-09-25 00:25 - 00525312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EmailApis.dll 2015-09-30 22:38 - 2015-09-25 00:24 - 00131072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CallHistoryClient.dll 2015-09-30 22:38 - 2015-09-25 00:19 - 00466432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll 2015-09-30 22:38 - 2015-09-19 07:14 - 00102304 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmapi.dll 2015-09-30 22:38 - 2015-09-17 08:50 - 02464216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll 2015-09-30 22:38 - 2015-09-17 08:50 - 01563392 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll 2015-09-30 22:38 - 2015-09-17 08:50 - 00099664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys 2015-09-30 22:38 - 2015-09-17 08:50 - 00088384 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll 2015-09-30 22:38 - 2015-09-17 08:49 - 08020816 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2015-09-30 22:38 - 2015-09-17 08:49 - 06487248 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll 2015-09-30 22:38 - 2015-09-17 08:49 - 01563472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll 2015-09-30 22:38 - 2015-09-17 08:49 - 00894256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Wdf01000.sys 2015-09-30 22:38 - 2015-09-17 08:49 - 00553808 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe 2015-09-30 22:38 - 2015-09-17 08:49 - 00501008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll 2015-09-30 22:38 - 2015-09-17 08:48 - 02824248 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll 2015-09-30 22:38 - 2015-09-17 08:48 - 02494712 _____ C:\WINDOWS\system32\CoreUIComponents.dll 2015-09-30 22:38 - 2015-09-17 08:48 - 02432336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys 2015-09-30 22:38 - 2015-09-17 08:48 - 02156400 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll 2015-09-30 22:38 - 2015-09-17 08:48 - 01983824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys 2015-09-30 22:38 - 2015-09-17 08:48 - 00809352 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll 2015-09-30 22:38 - 2015-09-17 08:48 - 00784136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll 2015-09-30 22:38 - 2015-09-17 08:48 - 00584656 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll 2015-09-30 22:38 - 2015-09-17 08:48 - 00555768 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll 2015-09-30 22:38 - 2015-09-17 08:48 - 00537080 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll 2015-09-30 22:38 - 2015-09-17 08:48 - 00516448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS 2015-09-30 22:38 - 2015-09-17 08:48 - 00505696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys 2015-09-30 22:38 - 2015-09-17 08:48 - 00476760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll 2015-09-30 22:38 - 2015-09-17 08:48 - 00406864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS 2015-09-30 22:38 - 2015-09-17 08:48 - 00395088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys 2015-09-30 22:38 - 2015-09-17 08:48 - 00332624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys 2015-09-30 22:38 - 2015-09-17 08:48 - 00278352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys 2015-09-30 22:38 - 2015-09-17 08:48 - 00243760 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll 2015-09-30 22:38 - 2015-09-17 08:47 - 01397088 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll 2015-09-30 22:38 - 2015-09-17 08:44 - 00781976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll 2015-09-30 22:38 - 2015-09-17 08:43 - 00966416 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll 2015-09-30 22:38 - 2015-09-17 08:39 - 00081488 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll 2015-09-30 22:38 - 2015-09-17 08:37 - 01295712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll 2015-09-30 22:38 - 2015-09-17 08:37 - 01168736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys 2015-09-30 22:38 - 2015-09-17 08:28 - 05120056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll 2015-09-30 22:38 - 2015-09-17 08:28 - 02154808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll 2015-09-30 22:38 - 2015-09-17 08:28 - 01357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll 2015-09-30 22:38 - 2015-09-17 08:28 - 00441168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe 2015-09-30 22:38 - 2015-09-17 08:28 - 00407608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll 2015-09-30 22:38 - 2015-09-17 08:28 - 00074880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll 2015-09-30 22:38 - 2015-09-17 08:27 - 01766952 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll 2015-09-30 22:38 - 2015-09-17 08:27 - 00454512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directmanipulation.dll 2015-09-30 22:38 - 2015-09-17 08:26 - 02446648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll 2015-09-30 22:38 - 2015-09-17 08:26 - 01895568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hevcdecoder.dll 2015-09-30 22:38 - 2015-09-17 08:26 - 00646672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll 2015-09-30 22:38 - 2015-09-17 08:26 - 00508248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll 2015-09-30 22:38 - 2015-09-17 08:26 - 00434376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll 2015-09-30 22:38 - 2015-09-17 08:26 - 00428128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll 2015-09-30 22:38 - 2015-09-17 08:25 - 00962400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll 2015-09-30 22:38 - 2015-09-17 08:21 - 00658528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll 2015-09-30 22:38 - 2015-09-17 08:20 - 00764416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll 2015-09-30 22:38 - 2015-09-17 08:12 - 16708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll 2015-09-30 22:38 - 2015-09-17 08:11 - 00160256 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll 2015-09-30 22:38 - 2015-09-17 08:10 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll 2015-09-30 22:38 - 2015-09-17 08:09 - 00269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll 2015-09-30 22:38 - 2015-09-17 08:09 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll 2015-09-30 22:38 - 2015-09-17 08:08 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll 2015-09-30 22:38 - 2015-09-17 08:08 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Speech.Pal.dll 2015-09-30 22:38 - 2015-09-17 08:08 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerShellext.exe 2015-09-30 22:38 - 2015-09-17 08:07 - 21875712 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2015-09-30 22:38 - 2015-09-17 08:06 - 00690688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CellularAPI.dll 2015-09-30 22:38 - 2015-09-17 08:06 - 00467968 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll 2015-09-30 22:38 - 2015-09-17 08:06 - 00149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll 2015-09-30 22:38 - 2015-09-17 08:05 - 02226688 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll 2015-09-30 22:38 - 2015-09-17 08:05 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll 2015-09-30 22:38 - 2015-09-17 08:04 - 07569408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll 2015-09-30 22:38 - 2015-09-17 08:04 - 00910848 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll 2015-09-30 22:38 - 2015-09-17 08:04 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll 2015-09-30 22:38 - 2015-09-17 08:03 - 00267776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll 2015-09-30 22:38 - 2015-09-17 08:03 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll 2015-09-30 22:38 - 2015-09-17 08:03 - 00154624 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe 2015-09-30 22:38 - 2015-09-17 08:03 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngckeyenum.dll 2015-09-30 22:38 - 2015-09-17 08:03 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe 2015-09-30 22:38 - 2015-09-17 08:02 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll 2015-09-30 22:38 - 2015-09-17 08:02 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll 2015-09-30 22:38 - 2015-09-17 08:00 - 24595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2015-09-30 22:38 - 2015-09-17 08:00 - 03248640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll 2015-09-30 22:38 - 2015-09-17 08:00 - 02417664 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll 2015-09-30 22:38 - 2015-09-17 08:00 - 00446976 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll 2015-09-30 22:38 - 2015-09-17 08:00 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\KeywordDetectorMsftSidAdapter.dll 2015-09-30 22:38 - 2015-09-17 07:58 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll 2015-09-30 22:38 - 2015-09-17 07:57 - 02228736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll 2015-09-30 22:38 - 2015-09-17 07:57 - 00403456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll 2015-09-30 22:38 - 2015-09-17 07:57 - 00281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll 2015-09-30 22:38 - 2015-09-17 07:57 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll 2015-09-30 22:38 - 2015-09-17 07:56 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll 2015-09-30 22:38 - 2015-09-17 07:56 - 00521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll 2015-09-30 22:38 - 2015-09-17 07:56 - 00317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll 2015-09-30 22:38 - 2015-09-17 07:55 - 02236416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll 2015-09-30 22:38 - 2015-09-17 07:55 - 01601536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll 2015-09-30 22:38 - 2015-09-17 07:55 - 00671232 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFx02000.dll 2015-09-30 22:38 - 2015-09-17 07:55 - 00366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll 2015-09-30 22:38 - 2015-09-17 07:55 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll 2015-09-30 22:38 - 2015-09-17 07:55 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\accountaccessor.dll 2015-09-30 22:38 - 2015-09-17 07:55 - 00121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcsps.dll 2015-09-30 22:38 - 2015-09-17 07:55 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe 2015-09-30 22:38 - 2015-09-17 07:55 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwancfg.dll 2015-09-30 22:38 - 2015-09-17 07:54 - 03781120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll 2015-09-30 22:38 - 2015-09-17 07:54 - 00780288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll 2015-09-30 22:38 - 2015-09-17 07:54 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll 2015-09-30 22:38 - 2015-09-17 07:53 - 07055872 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll 2015-09-30 22:38 - 2015-09-17 07:52 - 06572032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll 2015-09-30 22:38 - 2015-09-17 07:52 - 01216512 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcenter.dll 2015-09-30 22:38 - 2015-09-17 07:52 - 01181696 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll 2015-09-30 22:38 - 2015-09-17 07:52 - 00856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll 2015-09-30 22:38 - 2015-09-17 07:52 - 00591360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll 2015-09-30 22:38 - 2015-09-17 07:52 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll 2015-09-30 22:38 - 2015-09-17 07:52 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll 2015-09-30 22:38 - 2015-09-17 07:52 - 00371712 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll 2015-09-30 22:38 - 2015-09-17 07:52 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll 2015-09-30 22:38 - 2015-09-17 07:52 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SubscriptionMgr.dll 2015-09-30 22:38 - 2015-09-17 07:51 - 13027840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll 2015-09-30 22:38 - 2015-09-17 07:51 - 02660864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll 2015-09-30 22:38 - 2015-09-17 07:51 - 01812480 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll 2015-09-30 22:38 - 2015-09-17 07:51 - 01203712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll 2015-09-30 22:38 - 2015-09-17 07:51 - 01067520 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll 2015-09-30 22:38 - 2015-09-17 07:51 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll 2015-09-30 22:38 - 2015-09-17 07:51 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll 2015-09-30 22:38 - 2015-09-17 07:50 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll 2015-09-30 22:38 - 2015-09-17 07:50 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys 2015-09-30 22:38 - 2015-09-17 07:50 - 00312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll 2015-09-30 22:38 - 2015-09-17 07:50 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationPeWiFi.dll 2015-09-30 22:38 - 2015-09-17 07:50 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationPeCell.dll 2015-09-30 22:38 - 2015-09-17 07:50 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\buttonconverter.sys 2015-09-30 22:38 - 2015-09-17 07:49 - 02740224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2015-09-30 22:38 - 2015-09-17 07:49 - 01290240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll 2015-09-30 22:38 - 2015-09-17 07:49 - 01010176 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll 2015-09-30 22:38 - 2015-09-17 07:49 - 00771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll 2015-09-30 22:38 - 2015-09-17 07:49 - 00439296 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationWebproxy.dll 2015-09-30 22:38 - 2015-09-17 07:49 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationGeofences.dll 2015-09-30 22:38 - 2015-09-17 07:49 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll 2015-09-30 22:38 - 2015-09-17 07:49 - 00215552 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationCrowdsource.dll 2015-09-30 22:38 - 2015-09-17 07:49 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationPeIP.dll 2015-09-30 22:38 - 2015-09-17 07:49 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationWiFiAdapter.dll 2015-09-30 22:38 - 2015-09-17 07:49 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Speech.Pal.dll 2015-09-30 22:38 - 2015-09-17 07:48 - 02093056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll 2015-09-30 22:38 - 2015-09-17 07:48 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll 2015-09-30 22:38 - 2015-09-17 07:48 - 00408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll 2015-09-30 22:38 - 2015-09-17 07:48 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll 2015-09-30 22:38 - 2015-09-17 07:48 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll 2015-09-30 22:38 - 2015-09-17 07:48 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll 2015-09-30 22:38 - 2015-09-17 07:47 - 07523328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2015-09-30 22:38 - 2015-09-17 07:47 - 00513536 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll 2015-09-30 22:38 - 2015-09-17 07:47 - 00371712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll 2015-09-30 22:38 - 2015-09-17 07:47 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll 2015-09-30 22:38 - 2015-09-17 07:46 - 00928256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll 2015-09-30 22:38 - 2015-09-17 07:46 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll 2015-09-30 22:38 - 2015-09-17 07:46 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll 2015-09-30 22:38 - 2015-09-17 07:46 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll 2015-09-30 22:38 - 2015-09-17 07:46 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll 2015-09-30 22:38 - 2015-09-17 07:46 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe 2015-09-30 22:38 - 2015-09-17 07:46 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll 2015-09-30 22:38 - 2015-09-17 07:46 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncmlhook.dll 2015-09-30 22:38 - 2015-09-17 07:45 - 19325440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2015-09-30 22:38 - 2015-09-17 07:45 - 04791296 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2015-09-30 22:38 - 2015-09-17 07:45 - 01331200 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll 2015-09-30 22:38 - 2015-09-17 07:45 - 00869376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll 2015-09-30 22:38 - 2015-09-17 07:45 - 00832512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll 2015-09-30 22:38 - 2015-09-17 07:45 - 00627712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll 2015-09-30 22:38 - 2015-09-17 07:45 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll 2015-09-30 22:38 - 2015-09-17 07:44 - 01844736 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll 2015-09-30 22:38 - 2015-09-17 07:44 - 00599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll 2015-09-30 22:38 - 2015-09-17 07:44 - 00526336 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll 2015-09-30 22:38 - 2015-09-17 07:44 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncutil.dll 2015-09-30 22:38 - 2015-09-17 07:43 - 01213440 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll 2015-09-30 22:38 - 2015-09-17 07:43 - 00378368 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll 2015-09-30 22:38 - 2015-09-17 07:43 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll 2015-09-30 22:38 - 2015-09-17 07:43 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll 2015-09-30 22:38 - 2015-09-17 07:42 - 02646528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll 2015-09-30 22:38 - 2015-09-17 07:41 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll 2015-09-30 22:38 - 2015-09-17 07:40 - 06101504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll 2015-09-30 22:38 - 2015-09-17 07:40 - 01918464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll 2015-09-30 22:38 - 2015-09-17 07:40 - 01162240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll 2015-09-30 22:38 - 2015-09-17 07:39 - 00587264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll 2015-09-30 22:38 - 2015-09-17 07:39 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll 2015-09-30 22:38 - 2015-09-17 07:38 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll 2015-09-30 22:38 - 2015-09-17 07:37 - 18806272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2015-09-30 22:38 - 2015-09-17 07:37 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll 2015-09-30 22:38 - 2015-09-17 07:36 - 01171456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcenter.dll 2015-09-30 22:38 - 2015-09-17 07:35 - 05079552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll 2015-09-30 22:38 - 2015-09-17 07:35 - 02207232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2015-09-30 22:38 - 2015-09-17 07:35 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll 2015-09-30 22:38 - 2015-09-17 07:35 - 00828928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll 2015-09-30 22:38 - 2015-09-17 07:34 - 00253440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll 2015-09-30 22:38 - 2015-09-17 07:33 - 00574464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll 2015-09-30 22:38 - 2015-09-17 07:32 - 03579904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2015-09-30 22:38 - 2015-09-17 07:32 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll 2015-09-30 22:38 - 2015-09-17 07:32 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll 2015-09-30 22:38 - 2015-09-17 07:32 - 00195072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll 2015-09-30 22:38 - 2015-09-17 07:31 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll 2015-09-30 22:38 - 2015-09-17 07:31 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptprov.dll 2015-09-30 22:38 - 2015-09-17 07:30 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll 2015-09-30 22:38 - 2015-09-17 07:29 - 01104384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll 2015-09-30 22:38 - 2015-09-17 07:29 - 00701952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll 2015-09-30 22:38 - 2015-09-17 07:29 - 00677888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll 2015-09-30 22:38 - 2015-09-17 07:29 - 00464896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll 2015-09-30 22:38 - 2015-09-17 07:28 - 00473088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll 2015-09-30 22:38 - 2015-09-17 07:26 - 00899584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll 2015-09-30 22:38 - 2015-09-17 07:16 - 00512000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll 2015-09-30 22:38 - 2015-09-13 04:05 - 02987520 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll 2015-09-30 22:38 - 2015-09-13 03:41 - 02639872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll 2015-09-30 22:25 - 2015-09-30 22:25 - 00352968 _____ C:\WINDOWS\Minidump\093015-27421-01.dmp 2015-09-29 20:44 - 2015-09-29 20:45 - 00352920 _____ C:\WINDOWS\Minidump\092915-18843-01.dmp 2015-09-28 23:33 - 2015-09-28 23:33 - 00353840 _____ C:\WINDOWS\Minidump\092815-20640-01.dmp 2015-09-26 00:39 - 2015-09-26 00:39 - 00353848 _____ C:\WINDOWS\Minidump\092615-22437-01.dmp 2015-09-24 19:06 - 2015-09-24 19:06 - 00367856 _____ C:\WINDOWS\Minidump\092415-23375-01.dmp 2015-09-23 14:54 - 2015-09-23 14:54 - 00361272 _____ C:\WINDOWS\Minidump\092315-23296-01.dmp 2015-09-22 17:38 - 2015-09-22 17:38 - 00353848 _____ C:\WINDOWS\Minidump\092215-19796-01.dmp 2015-09-21 01:19 - 2015-09-21 01:19 - 00353840 _____ C:\WINDOWS\Minidump\092115-20734-01.dmp 2015-09-20 18:21 - 2015-09-20 18:21 - 00352768 _____ C:\WINDOWS\Minidump\092015-20906-01.dmp 2015-09-20 16:24 - 2015-09-20 16:24 - 00353512 _____ C:\WINDOWS\Minidump\092015-19984-01.dmp 2015-09-19 21:53 - 2015-09-19 21:53 - 00353512 _____ C:\WINDOWS\Minidump\091915-22500-01.dmp 2015-09-19 15:33 - 2015-09-19 15:33 - 00353520 _____ C:\WINDOWS\Minidump\091915-27640-01.dmp 2015-09-19 01:38 - 2015-09-19 01:38 - 00002206 _____ C:\Users\Public\Desktop\3D Vision Photo Viewer.lnk 2015-09-19 01:37 - 2015-08-25 16:18 - 00574072 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe 2015-09-19 01:36 - 2015-08-25 20:38 - 42840184 _____ C:\WINDOWS\system32\nvcompiler.dll 2015-09-19 01:36 - 2015-08-25 20:38 - 37819184 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll 2015-09-19 01:36 - 2015-08-25 20:38 - 22559352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll 2015-09-19 01:36 - 2015-08-25 20:38 - 18569336 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll 2015-09-19 01:36 - 2015-08-25 20:38 - 16646624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll 2015-09-19 01:36 - 2015-08-25 20:38 - 14945552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll 2015-09-19 01:36 - 2015-08-25 20:38 - 13667032 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll 2015-09-19 01:36 - 2015-08-25 20:38 - 12192048 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll 2015-09-19 01:36 - 2015-08-25 20:38 - 02354808 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll 2015-09-19 01:36 - 2015-08-25 20:38 - 02105976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll 2015-09-19 01:36 - 2015-08-25 20:38 - 01898104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6435582.dll 2015-09-19 01:36 - 2015-08-25 20:38 - 01558648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6435582.dll 2015-09-19 01:36 - 2015-08-25 20:38 - 01178576 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll 2015-09-19 01:36 - 2015-08-25 20:38 - 01064752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll 2015-09-19 01:36 - 2015-08-25 20:38 - 01001440 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll 2015-09-19 01:36 - 2015-08-25 20:38 - 00986232 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll 2015-09-19 01:36 - 2015-08-25 20:38 - 00945272 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll 2015-09-19 01:36 - 2015-08-25 20:38 - 00787200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll 2015-09-19 01:36 - 2015-08-25 20:38 - 00632848 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll 2015-09-19 01:36 - 2015-08-25 20:38 - 00408368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll 2015-09-19 01:36 - 2015-08-25 20:38 - 00376440 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll 2015-09-19 01:36 - 2015-08-25 20:38 - 00364152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll 2015-09-19 01:36 - 2015-08-25 20:38 - 00339576 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll 2015-09-19 01:36 - 2015-08-25 20:38 - 00316120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll 2015-09-19 01:36 - 2015-08-25 20:38 - 00176904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll 2015-09-19 01:36 - 2015-08-25 20:38 - 00155976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll 2015-09-19 01:36 - 2015-08-25 20:38 - 00150648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll 2015-09-19 01:36 - 2015-08-25 20:38 - 00128512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll 2015-09-16 21:51 - 2015-09-16 21:51 - 00000000 ___RD C:\Users\Christopher\3D Objects 2015-09-16 17:40 - 2015-09-16 17:41 - 00331336 _____ C:\WINDOWS\Minidump\091615-26484-01.dmp 2015-09-14 20:46 - 2015-09-14 20:47 - 00330024 _____ C:\WINDOWS\Minidump\091415-29328-01.dmp 2015-09-14 05:30 - 2015-09-14 05:30 - 00454016 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNdisFlt.sys 2015-09-14 05:30 - 2015-09-14 05:30 - 00378880 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe 2015-09-14 05:30 - 2015-09-14 05:30 - 00043112 _____ (AVAST Software) C:\WINDOWS\avastSS.scr 2015-09-14 05:30 - 2015-09-14 05:30 - 00028144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys 2015-09-14 05:19 - 2015-09-14 05:20 - 00047565 _____ C:\Users\Christopher\Downloads\Addition.txt 2015-09-14 05:18 - 2015-10-03 13:50 - 02193408 _____ (Farbar) C:\Users\Christopher\Downloads\FRST64.exe 2015-09-14 05:18 - 2015-10-03 13:50 - 00015828 _____ C:\Users\Christopher\Downloads\FRST.txt 2015-09-14 05:18 - 2015-10-03 13:50 - 00000000 ____D C:\FRST 2015-09-13 20:00 - 2015-09-13 20:00 - 00328264 _____ C:\WINDOWS\Minidump\091315-23718-01.dmp 2015-09-13 18:04 - 2015-09-13 18:04 - 00329784 _____ C:\WINDOWS\Minidump\091315-24984-01.dmp 2015-09-12 23:52 - 2015-09-12 23:52 - 00334736 _____ C:\WINDOWS\Minidump\091215-19984-01.dmp 2015-09-10 21:22 - 2015-09-10 21:23 - 00335896 _____ C:\WINDOWS\Minidump\091015-23890-01.dmp 2015-09-09 23:21 - 2015-08-27 08:36 - 03620736 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2015-09-09 23:21 - 2015-08-27 08:32 - 00608936 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe 2015-09-09 23:21 - 2015-08-27 07:59 - 02880032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2015-09-09 23:21 - 2015-08-27 07:54 - 00541248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe 2015-09-09 23:21 - 2015-08-27 07:54 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll 2015-09-09 23:21 - 2015-08-27 07:51 - 02350592 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll 2015-09-09 23:21 - 2015-08-27 07:51 - 01774592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll 2015-09-09 23:21 - 2015-08-27 07:49 - 01008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll 2015-09-09 23:21 - 2015-08-27 07:47 - 12503552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2015-09-09 23:21 - 2015-08-27 07:43 - 00826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll 2015-09-09 23:21 - 2015-08-27 07:43 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2015-09-09 23:21 - 2015-08-27 07:42 - 00596480 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll 2015-09-09 23:21 - 2015-08-27 07:42 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.PicturePassword.dll 2015-09-09 23:21 - 2015-08-27 07:42 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll 2015-09-09 23:21 - 2015-08-27 07:39 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll 2015-09-09 23:21 - 2015-08-27 07:23 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll 2015-09-09 23:21 - 2015-08-27 07:16 - 02153472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll 2015-09-09 23:21 - 2015-08-27 07:16 - 01612288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll 2015-09-09 23:21 - 2015-08-27 07:12 - 00650752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll 2015-09-09 23:21 - 2015-08-27 07:12 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll 2015-09-09 23:21 - 2015-08-27 07:11 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll 2015-09-09 23:21 - 2015-08-27 07:11 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll 2015-09-09 23:21 - 2015-08-27 07:09 - 11262464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2015-09-09 23:21 - 2015-08-27 07:08 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll 2015-09-06 19:32 - 2015-09-06 19:33 - 00339792 _____ C:\WINDOWS\Minidump\090615-27890-01.dmp 2015-09-05 22:57 - 2015-09-05 22:57 - 00328072 _____ C:\WINDOWS\Minidump\090515-22046-01.dmp 2015-09-05 16:19 - 2015-09-05 16:19 - 00331424 _____ C:\WINDOWS\Minidump\090515-27968-01.dmp ==================== Ein Monat: Geänderte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2015-10-03 13:50 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\sru 2015-10-03 13:48 - 2015-07-10 14:22 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log 2015-10-03 13:33 - 2015-03-11 13:59 - 00001148 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2015-10-03 13:20 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\AppReadiness 2015-10-03 13:14 - 2015-05-15 20:07 - 00000000 ____D C:\Program Files (x86)\Steam 2015-10-03 13:14 - 2015-03-11 13:59 - 00001144 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2015-10-03 12:56 - 2015-08-06 21:55 - 01699356 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2015-10-03 12:56 - 2015-07-10 18:34 - 00733448 _____ C:\WINDOWS\system32\perfh007.dat 2015-10-03 12:56 - 2015-07-10 18:34 - 00146184 _____ C:\WINDOWS\system32\perfc007.dat 2015-10-03 12:51 - 2015-03-11 13:51 - 00064859 _____ C:\WINDOWS\SysWOW64\Gms.log 2015-10-03 12:50 - 2015-08-06 21:42 - 00000000 ____D C:\Users\Christopher 2015-10-03 12:50 - 2015-07-10 14:20 - 00024424 _____ C:\WINDOWS\setupact.log 2015-10-03 12:49 - 2015-07-10 14:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2015-10-03 12:49 - 2015-03-11 13:37 - 00000000 ____D C:\ProgramData\NVIDIA 2015-10-03 12:48 - 2015-07-10 11:05 - 00262144 ___SH C:\WINDOWS\system32\config\BBI 2015-10-03 12:47 - 2015-07-10 13:04 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12 2015-10-03 12:47 - 2015-07-10 13:04 - 00000000 ___SD C:\WINDOWS\system32\F12 2015-10-03 12:47 - 2015-07-10 13:04 - 00000000 ___RD C:\WINDOWS\PurchaseDialog 2015-10-03 12:47 - 2015-07-10 13:04 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility 2015-10-03 12:47 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2015-10-03 12:47 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2015-10-03 12:47 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\appraiser 2015-10-03 12:47 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\Provisioning 2015-10-03 12:47 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\L2Schemas 2015-10-03 12:44 - 2015-08-15 22:02 - 00000000 ____D C:\WINDOWS\Minidump 2015-10-03 12:44 - 2015-03-11 19:25 - 586416993 _____ C:\WINDOWS\MEMORY.DMP 2015-10-01 23:48 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase 2015-10-01 19:29 - 2015-03-20 21:04 - 00000000 ____D C:\Users\Christopher\AppData\Roaming\TS3Client 2015-10-01 15:12 - 2015-08-29 19:22 - 00004180 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{F1B23F74-7C9D-4781-8E1A-8527D8844FBD} 2015-09-30 22:41 - 2015-07-10 12:55 - 00000000 ____D C:\WINDOWS\CbsTemp 2015-09-27 01:58 - 2015-03-20 21:04 - 00000000 ____D C:\Users\Christopher\AppData\Local\TeamSpeak 3 Client 2015-09-26 03:56 - 2015-03-18 21:09 - 00000000 ____D C:\Users\Christopher\AppData\Local\Spotify 2015-09-26 03:46 - 2015-03-18 21:09 - 00000000 ____D C:\Users\Christopher\AppData\Roaming\Spotify 2015-09-26 00:41 - 2015-03-11 14:00 - 00004280 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update 2015-09-19 01:38 - 2015-03-11 13:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2015-09-19 01:38 - 2015-03-11 13:37 - 00000000 ____D C:\ProgramData\NVIDIA Corporation 2015-09-19 01:19 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\LiveKernelReports 2015-09-18 16:43 - 2015-03-11 13:55 - 00000000 ____D C:\Users\Christopher\AppData\Local\NVIDIA Corporation 2015-09-16 23:28 - 2015-03-11 13:59 - 00004206 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA 2015-09-16 23:28 - 2015-03-11 13:59 - 00003974 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore 2015-09-16 20:12 - 2015-03-11 13:31 - 00000000 ____D C:\Users\Christopher\AppData\Local\Packages 2015-09-14 05:32 - 2015-08-06 21:37 - 00159698 _____ C:\WINDOWS\PFRO.log 2015-09-14 05:32 - 2015-03-11 14:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software 2015-09-14 05:30 - 2015-03-11 13:59 - 01048344 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsnx.sys 2015-09-14 05:30 - 2015-03-11 13:59 - 00447944 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys 2015-09-14 05:30 - 2015-03-11 13:59 - 00274808 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys 2015-09-14 05:30 - 2015-03-11 13:59 - 00150672 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys 2015-09-14 05:30 - 2015-03-11 13:59 - 00093528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys 2015-09-14 05:30 - 2015-03-11 13:59 - 00090968 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys 2015-09-14 05:30 - 2015-03-11 13:59 - 00065224 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys 2015-09-14 05:30 - 2015-03-11 13:59 - 00028656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys 2015-09-12 16:14 - 2015-09-02 03:22 - 00000529 _____ C:\Users\Christopher\Desktop\httppuu.shiHbP6.jpg.txt 2015-09-10 21:26 - 2015-07-10 14:20 - 00226184 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2015-09-10 21:25 - 2015-07-10 18:44 - 00000000 ____D C:\Program Files\Windows Journal 2015-09-09 23:42 - 2015-03-11 14:59 - 00000000 ____D C:\WINDOWS\system32\MRT 2015-09-07 23:14 - 2015-03-11 13:22 - 00092672 ____N C:\WINDOWS\Minidump\090715-18812-01.dmp 2015-09-06 20:02 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\rescache ==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ======= 2015-08-06 21:40 - 2015-08-06 21:40 - 0000000 ____H () C:\ProgramData\DP45977C.lfl Einige Dateien in TEMP: ==================== C:\Users\Christopher\AppData\Local\Temp\nvSCPAPI.dll C:\Users\Christopher\AppData\Local\Temp\nvSCPAPI64.dll C:\Users\Christopher\AppData\Local\Temp\nvStereoApiI.dll C:\Users\Christopher\AppData\Local\Temp\nvStInst.exe ==================== Bamital & volsnap ================= (Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.) C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert C:\WINDOWS\explorer.exe => Datei ist digital signiert C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert C:\WINDOWS\system32\services.exe => Datei ist digital signiert C:\WINDOWS\system32\User32.dll => Datei ist digital signiert C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert LastRegBack: 2015-09-24 20:44 ==================== Ende von FRST.txt ============================ Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:03-10-2015 durchgeführt von Christopher (2015-10-03 13:50:54) Gestartet von C:\Users\Christopher\Downloads Windows 10 Pro (X64) (2015-08-06 20:56:40) Start-Modus: Normal ========================================================== ==================== Konten: ============================= Administrator (S-1-5-21-857194082-3589123694-3136816115-500 - Administrator - Disabled) Christopher (S-1-5-21-857194082-3589123694-3136816115-1001 - Administrator - Enabled) => C:\Users\Christopher DefaultAccount (S-1-5-21-857194082-3589123694-3136816115-503 - Limited - Disabled) Gast (S-1-5-21-857194082-3589123694-3136816115-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-857194082-3589123694-3136816115-1003 - Limited - Enabled) ==================== Sicherheits-Center ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} FW: avast! Antivirus (Enabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0} ==================== Installierte Programme ====================== (Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.) Avast Internet Security (HKLM-x32\...\Avast) (Version: 10.3.2225 - AVAST Software) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Call of Duty: Black Ops III Beta (HKLM-x32\...\Steam App 388520) (Version: - Treyarch) Call of Duty: Ghosts - Multiplayer (HKLM-x32\...\Steam App 209170) (Version: - Infinity Ward) Call of Duty: Ghosts (HKLM-x32\...\Steam App 209160) (Version: - Infinity Ward) Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve) Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment) Dota 2 (HKLM-x32\...\Steam App 570) (Version: - Valve) f.lux (HKU\S-1-5-21-857194082-3589123694-3136816115-1001\...\Flux) (Version: - ) GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 45.0.2454.101 - Google Inc.) Google Update Helper (x32 Version: 1.3.21.169 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment) Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment) Intel(R) Driver Update Utility 2.0 (x32 Version: 2.0.0.29 - Intel) Hidden Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.31.1000 - Intel Corporation) Intel(R) Smart Connect Technology (HKLM\...\{3B236485-CCE7-48DE-82DC-A5EA54A6F7D6}) (Version: 5.0.10.2850 - Intel Corporation) Intel® Chipsatz-Gerätesoftware (x32 Version: 10.0.20 - Intel(R) Corporation) Hidden Intel® Driver Update Utility (HKLM-x32\...\{8409c4f7-2340-4933-a304-5d37db4fb48b}) (Version: 2.0.0.29 - Intel) League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games ) League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Mouse Editor (HKLM-x32\...\InstallShield_{8496B9A5-F260-4DF0-BCB3-4BA59FDC10BB}) (Version: 10.05.0004 - Ihr Firmenname) MOUSE Editor (x32 Version: 10.05.0004 - Ihr Firmenname) Hidden Mozilla Firefox 40.0.3 (x86 de) (HKLM-x32\...\Mozilla Firefox 40.0.3 (x86 de)) (Version: 40.0.3 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 40.0.3 - Mozilla) NVIDIA 3D Vision Controller-Treiber 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation) NVIDIA 3D Vision Treiber 355.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 355.82 - NVIDIA Corporation) NVIDIA GeForce Experience 2.5.14.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.5.14.5 - NVIDIA Corporation) NVIDIA Grafiktreiber 355.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 355.82 - NVIDIA Corporation) NVIDIA HD-Audiotreiber 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation) NVIDIA Miracast Virtueller Ton 353.62 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Miracast.VirtualAudio) (Version: 353.62 - NVIDIA Corporation) NVIDIA PhysX-Systemsoftware 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation) OpenOffice 4.0.1 (HKLM-x32\...\{0AEC308E-7EB3-47F7-BB59-F2C9C6166B27}) (Version: 4.01.9714 - Apache Software Foundation) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.36.826.2014 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7399 - Realtek Semiconductor Corp.) SHIELD Streaming (Version: 4.1.3000 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 2.5.14.5 - NVIDIA Corporation) Hidden Skype™ 7.8 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.8.102 - Skype Technologies S.A.) SleepTimer Ultimate 1.3 (HKLM-x32\...\{0EE56463-49B2-45E1-B74F-3E0139DBC986}_is1) (Version: - Christian Handorf) Spotify (HKU\S-1-5-21-857194082-3589123694-3136816115-1001\...\Spotify) (Version: 1.0.13.108.gcd94e7db - Spotify AB) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) TeamSpeak 3 Client (HKU\S-1-5-21-857194082-3589123694-3136816115-1001\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH) The Witcher 3 - Wild Hunt (HKLM-x32\...\1207664643_is1) (Version: 1.0.7.0 - GOG.com) The Witcher 3: Wild Hunt - Alternative Look for Triss (HKLM-x32\...\Alternative Look for Triss_is1) (Version: 1.0.0.0 - GOG.com) The Witcher 3: Wild Hunt - Alternative Look for Yennefer (HKLM-x32\...\Alternative Look for Yennefer_is1) (Version: 1.0.0.0 - GOG.com) The Witcher 3: Wild Hunt - Ballad Heroes - Neutral Gwent Card Set (HKLM-x32\...\Ballad Heroes - Neutral Gwent Card Set_is1) (Version: 1.0.0.0 - GOG.com) The Witcher 3: Wild Hunt - Beard and Hairstyle Set (HKLM-x32\...\Beard and Hairstyle Set_is1) (Version: 1.0.0.0 - GOG.com) The Witcher 3: Wild Hunt - Elite Crossbow Set (HKLM-x32\...\Elite Crossbow Set_is1) (Version: 1.0.0.0 - GOG.com) The Witcher 3: Wild Hunt - New Quest - Contract Missing Miners (HKLM-x32\...\New Quest - Contract Missing Miners_is1) (Version: 1.0.0.0 - GOG.com) The Witcher 3: Wild Hunt - New Quest - Fool's Gold (HKLM-x32\...\New Quest - Fool's Gold_is1) (Version: 1.0.0.0 - GOG.com) The Witcher 3: Wild Hunt - New Quest - Scavenger Hunt - Wolf School Gear (HKLM-x32\...\New Quest - Scavenger Hunt: Wolf School Gear_is1) (Version: 1.0.0.0 - GOG.com) The Witcher 3: Wild Hunt - Nilfgaardian Armor Set (HKLM-x32\...\Nilfgaardian Armor Set_is1) (Version: 1.0.0.0 - GOG.com) The Witcher 3: Wild Hunt - Skellige Armor Set (HKLM-x32\...\Skellige Armor Set_is1) (Version: 1.0.0.0 - GOG.com) The Witcher 3: Wild Hunt - Temerian Armor Set (HKLM-x32\...\Temerian Armor Set_is1) (Version: 1.0.0.0 - GOG.com) ==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Wiederherstellungspunkte ========================= 14-09-2015 05:29:33 avast! antivirus system restore point 22-09-2015 21:40:17 Geplanter Prüfpunkt 30-09-2015 22:40:40 Windows Update ==================== Hosts Inhalt: =============================== (Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.) 2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts ==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) Task: {0D1CC317-1DB9-4BFB-931C-CE3F0285837F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.) Task: {0EE19361-BF74-40C7-86C5-23FA9D260CF3} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG Task: {122D9D16-D50E-4656-AFF7-9CDF93A6F3F2} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG Task: {1BDC4631-D294-4CE0-8BB8-58B6BC656C36} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG Task: {2C69AAB7-8CDE-45DB-AC9A-5722FDCC7A30} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-09-14] (AVAST Software) Task: {3B9C2A63-26CD-48F6-84AC-B8C6F0F9A77D} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG Task: {5D174EA9-A25D-4CC7-B252-D6F709C14814} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG Task: {627FEDD2-6AE9-451E-A29B-E89DB997BB9F} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-08-26] (Microsoft Corporation) Task: {803C36BE-FB26-4CB9-996B-A236CDFE6626} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG Task: {82FE2E61-31E7-4A74-A41B-AA0EB96C63CF} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG Task: {AF193DA3-A957-46E3-8478-214EF9E69CC8} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG Task: {CA458FBF-62D0-4F41-8F4B-08556BCEAE3D} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG Task: {D6E21658-0057-4A8E-8516-31C8C597A3EA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.) Task: {EC23B9BC-50C9-4138-9501-62E0BD8589CE} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG Task: {EE63A0DA-C0E5-4E23-B753-B5344C07766D} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.) Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Geladene Module (Nicht auf der Ausnahmeliste) ============== 2015-08-06 22:33 - 2015-08-06 22:33 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll 2015-03-11 13:37 - 2015-08-25 17:57 - 00116344 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2014-06-18 18:18 - 2014-06-18 18:18 - 00209712 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe 2014-06-18 18:18 - 2014-06-18 18:18 - 00057648 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\NetworkHeuristic.dll 2014-06-18 18:18 - 2014-06-18 18:18 - 00057648 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\ISCTEncryptionCheck.dll 2014-06-18 18:18 - 2014-06-18 18:18 - 00037168 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\ISCTNetMon.dll 2015-08-22 13:18 - 2015-08-11 11:14 - 00404480 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll 2015-09-30 22:38 - 2015-09-17 08:48 - 02494712 _____ () C:\WINDOWS\system32\CoreUIComponents.dll 2015-09-30 22:38 - 2015-09-17 08:48 - 02494712 _____ () C:\WINDOWS\System32\CoreUIComponents.dll 2015-09-30 22:38 - 2015-09-17 07:48 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll 2015-03-11 13:54 - 2015-08-27 02:37 - 00708216 _____ () C:\Program Files\NVIDIA Corporation\ShadowPlay\gamecaster64.dll 2015-03-11 13:54 - 2015-08-27 02:37 - 00854136 _____ () C:\Program Files\NVIDIA Corporation\ShadowPlay\twitchsdk64.dll 2010-05-06 15:09 - 2010-05-06 15:09 - 02603520 _____ () C:\Program Files (x86)\MOUSE Editor\MouseEditor.exe 2015-09-30 22:38 - 2015-09-17 07:44 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2015-09-30 22:38 - 2015-09-17 07:42 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2015-09-30 22:38 - 2015-09-17 07:42 - 01808384 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2015-09-30 22:38 - 2015-09-17 07:43 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2015-07-10 13:00 - 2015-07-10 18:43 - 00210432 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dll 2015-10-03 13:19 - 2015-10-03 13:19 - 00012288 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1001.16470.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe 2015-10-03 13:19 - 2015-10-03 13:19 - 10814464 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1001.16470.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll 2015-09-17 20:55 - 2015-09-17 20:55 - 03495936 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1509.14010.0_x64__8wekyb3d8bbwe\Calculator.exe 2015-09-14 05:30 - 2015-09-14 05:30 - 00102864 _____ () C:\Program Files\AVAST Software\Avast\log.dll 2015-09-14 05:30 - 2015-09-14 05:30 - 00123976 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll 2015-10-03 12:45 - 2015-10-03 12:45 - 02966528 _____ () C:\Program Files\AVAST Software\Avast\defs\15100202\algo.dll 2014-11-10 13:12 - 2014-11-10 13:12 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll 2015-05-24 00:28 - 2015-08-27 02:37 - 00011896 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll 2010-05-06 14:27 - 2010-05-06 14:27 - 00111616 _____ () C:\Program Files (x86)\MOUSE Editor\DLL\DLL_MouseDeviceManager.dll 2010-04-03 12:37 - 2010-04-03 12:37 - 00094208 _____ () C:\Program Files (x86)\MOUSE Editor\DLL\DLL_ZoomControl.dll 2010-04-03 12:37 - 2010-04-03 12:37 - 00062976 _____ () C:\Program Files (x86)\MOUSE Editor\DLL\DLL_ScrollbarControl.dll 2010-04-03 12:37 - 2010-04-03 12:37 - 00069632 _____ () C:\Program Files (x86)\MOUSE Editor\DLL\DLL_AnalyzeGesturesInRight.dll 2010-04-03 12:36 - 2010-04-03 12:36 - 00069632 _____ () C:\Program Files (x86)\MOUSE Editor\DLL\DLL_AnalyzeGesturesInOne.dll 2010-04-03 12:37 - 2010-04-03 12:37 - 00127488 _____ () C:\Program Files (x86)\MOUSE Editor\DLL\DLL_Wheel4D.dll 2009-12-23 11:23 - 2009-12-23 11:23 - 00043008 _____ () C:\Program Files (x86)\MOUSE Editor\Data\MouseEditor\Forms\OSD_Text\OSD_Text.dll 2015-05-17 13:40 - 2015-07-03 18:12 - 00778240 _____ () C:\Program Files (x86)\Steam\SDL2.dll 2015-05-17 13:40 - 2015-07-03 18:12 - 04962816 _____ () C:\Program Files (x86)\Steam\v8.dll 2015-05-17 13:40 - 2015-08-19 22:39 - 02413248 _____ () C:\Program Files (x86)\Steam\video.dll 2015-05-15 20:08 - 2014-12-01 23:31 - 02396672 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll 2015-05-15 20:08 - 2014-12-01 23:31 - 00479744 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll 2015-05-15 20:08 - 2014-12-01 23:31 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll 2015-05-15 20:08 - 2014-12-01 23:31 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll 2015-05-15 20:08 - 2014-12-01 23:31 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll 2015-05-17 13:40 - 2015-07-03 18:12 - 01556992 _____ () C:\Program Files (x86)\Steam\icui18n.dll 2015-05-17 13:40 - 2015-07-03 18:12 - 01187840 _____ () C:\Program Files (x86)\Steam\icuuc.dll 2015-05-17 13:40 - 2015-08-19 22:39 - 00704192 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL 2015-07-22 21:33 - 2015-07-27 03:13 - 00171008 _____ () C:\Program Files (x86)\Steam\bin\openvr_api.dll 2015-03-11 13:59 - 2015-03-11 13:59 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2015-05-15 20:08 - 2015-07-03 18:12 - 39553928 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll 2015-09-26 01:34 - 2015-09-24 04:34 - 01501512 _____ () C:\Program Files (x86)\Google\Chrome\Application\45.0.2454.101\libglesv2.dll 2015-09-26 01:34 - 2015-09-24 04:34 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\45.0.2454.101\libegl.dll ==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.) AlternateDataStreams: C:\Users\Christopher\OneDrive:ms-properties ==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.) ==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.) ==================== Internet Explorer Vertrauenswürdig/Eingeschränkt =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.) ==================== Andere Bereiche ============================ (Aktuell gibt es keinen automatisierten Fix für diesen Bereich.) HKU\S-1-5-21-857194082-3589123694-3136816115-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img13.jpg DNS Servers: 192.168.0.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall ist aktiviert. ==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge == (Aktuell gibt es keinen automatisierten Fix für diesen Bereich.) HKU\S-1-5-21-857194082-3589123694-3136816115-1001\...\StartupApproved\Run: => "GalaxyClient" HKU\S-1-5-21-857194082-3589123694-3136816115-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-857194082-3589123694-3136816115-1001\...\StartupApproved\Run: => "Skype" HKU\S-1-5-21-857194082-3589123694-3136816115-1001\...\StartupApproved\Run: => "Spotify" ==================== Firewall Regeln (Nicht auf der Ausnahmeliste) =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [{2FC15071-73C8-4F7E-A430-E8CA558673A5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{C8C2BA7D-7F6B-46B2-AA66-12F570EF4EFD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{6EB56912-D31C-43D3-8416-5395D471ECD4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{D54D4162-EB88-4440-BA7D-19F986F02F6F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{2128C7F3-27EF-4F59-B429-E89C0605EF9F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [UDP Query User{BA534E24-83A8-426B-93C5-90D492CFE934}C:\program files (x86)\heroes of the storm\versions\base35360\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base35360\heroesofthestorm_x64.exe FirewallRules: [TCP Query User{FF531901-F3ED-482F-8715-A477A7B9025C}C:\program files (x86)\heroes of the storm\versions\base35360\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base35360\heroesofthestorm_x64.exe FirewallRules: [{6566373D-7B30-4B82-A480-22B519A869D1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{B047EB4A-E60E-4D1F-BB1B-BA54236DD52A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [UDP Query User{C033BD7E-B70E-49C4-BCC7-F1AC872D3580}C:\program files (x86)\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe FirewallRules: [TCP Query User{50694F0A-32F3-4E8A-8F47-E7C742345073}C:\program files (x86)\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe FirewallRules: [UDP Query User{CC1F5CC1-6552-4765-AF46-984E0122A2AE}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [TCP Query User{C527907A-067F-4FB2-B4A0-260E428A0164}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [UDP Query User{7821D6FA-A4B2-4A9A-9510-5B0EDFD69425}C:\program files (x86)\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe FirewallRules: [TCP Query User{D782E2AB-54F7-4FC6-8D89-4914A1F85207}C:\program files (x86)\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe FirewallRules: [UDP Query User{DD2FC850-7104-4F1F-AF1D-B9A66C2CADA1}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [TCP Query User{56921879-B887-434D-AD36-E7106EB89F76}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [UDP Query User{9998BC1E-2838-41C6-B247-1015FEA24C1A}C:\users\christopher\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\christopher\appdata\roaming\spotify\spotify.exe FirewallRules: [TCP Query User{55157BB2-2762-4F25-A5B1-831C74B3830A}C:\users\christopher\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\christopher\appdata\roaming\spotify\spotify.exe FirewallRules: [{FABFFF0F-1795-4A76-AD26-32848137DFB8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Ghosts\iw6mp64_ship.exe FirewallRules: [{95207788-62C4-43C2-8B60-DD299835BEBF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Ghosts\iw6mp64_ship.exe FirewallRules: [{60E3599D-49C8-4A01-8BF5-D893C2ED204F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Ghosts\iw6sp64_ship.exe FirewallRules: [{824D3B0B-21A6-4C5F-950F-F512CC361297}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Ghosts\iw6sp64_ship.exe FirewallRules: [{0CC003D6-050E-4BD7-8871-FAB0E21C4247}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\dota.exe FirewallRules: [{72A13C86-7FA7-4A41-B997-FB7BDCEE7FE7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\dota.exe FirewallRules: [{2B254FEC-D733-4B0F-A5CF-B808BE32F23E}] => (Allow) C:\Program Files (x86)\Diablo III\Diablo III.exe FirewallRules: [{F0D932A9-27D8-4BD1-8E35-9BA7A6D2B126}] => (Allow) C:\Program Files (x86)\Diablo III\Diablo III.exe FirewallRules: [{60F63B86-3C4A-4E92-A831-B10E71F16554}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe FirewallRules: [{D609C3D3-022A-469B-BEBF-11203DEA3BE8}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe FirewallRules: [{59854E37-5747-405B-AA5E-F66F72064834}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{9C70181C-2AEB-47C4-956D-4260766F85CC}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{E1B5F432-CC1E-4F93-9C1B-A0506FE1BDDF}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe FirewallRules: [{8970EEC5-84CF-44EC-8982-3149B3C90557}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe FirewallRules: [{99F437CC-ADCC-4D8E-BEBD-9BF90B497701}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{37C455F5-3855-491E-A0A9-2EDD74D10B34}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{58CC7540-8DB3-4EEC-BB31-F1B74D18D2CA}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{66163827-23CB-4447-A719-FF7E7F3DB4E7}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [TCP Query User{4E6C220D-5807-4CDC-83E9-7AEB3E636006}C:\program files (x86)\heroes of the storm\versions\base37117\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base37117\heroesofthestorm_x64.exe FirewallRules: [UDP Query User{8CC0CE05-864D-46EF-8E17-88609281CC44}C:\program files (x86)\heroes of the storm\versions\base37117\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base37117\heroesofthestorm_x64.exe FirewallRules: [{FD47CC52-17DB-45E9-8D3A-0C764FCBD9C9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Black Ops III Beta\BlackOps3.exe FirewallRules: [{C0459566-414A-4292-AB67-387B70EFA3BD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Black Ops III Beta\BlackOps3.exe FirewallRules: [TCP Query User{E169ABA1-8C37-424C-90A7-C0F84071BC6F}C:\users\christopher\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\christopher\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{5F5AACBE-D4D3-4438-A15A-B27A9D5A9ABB}C:\users\christopher\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\christopher\appdata\roaming\spotify\spotify.exe FirewallRules: [{0B7B104D-F958-410D-87B9-19162DD7FBE4}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{E0CB8369-ED83-43C2-A988-CD6FE2189179}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{00DA6281-4A4E-42E3-9CBC-76CAD5727ACB}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Fehlerhafte Geräte im Gerätemanager ============= ==================== Fehlereinträge in der Ereignisanzeige: ========================= Applikationsfehler: ================== Error: (10/03/2015 12:29:29 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Name der fehlerhaften Anwendung: backgroundTaskHost.exe, Version: 10.0.10240.16384, Zeitstempel: 0x559f38c5 Name des fehlerhaften Moduls: Windows.Security.Authentication.Web.Core.dll, Version: 10.0.10240.16384, Zeitstempel: 0x559f39bf Ausnahmecode: 0xc0000409 Fehleroffset: 0x000000000006fc4c ID des fehlerhaften Prozesses: 0x154c Startzeit der fehlerhaften Anwendung: 0xbackgroundTaskHost.exe0 Pfad der fehlerhaften Anwendung: backgroundTaskHost.exe1 Pfad des fehlerhaften Moduls: backgroundTaskHost.exe2 Berichtskennung: backgroundTaskHost.exe3 Vollständiger Name des fehlerhaften Pakets: backgroundTaskHost.exe4 Anwendungs-ID, die relativ zum fehlerhaften Paket ist: backgroundTaskHost.exe5 Error: (10/03/2015 12:16:24 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Name der fehlerhaften Anwendung: svchost.exe_SysMain, Version: 10.0.10240.16384, Zeitstempel: 0x559f38cb Name des fehlerhaften Moduls: sysmain.dll, Version: 10.0.10240.16431, Zeitstempel: 0x55c9b971 Ausnahmecode: 0xc000003f Fehleroffset: 0x00000000000b4216 ID des fehlerhaften Prozesses: 0x102c Startzeit der fehlerhaften Anwendung: 0xsvchost.exe_SysMain0 Pfad der fehlerhaften Anwendung: svchost.exe_SysMain1 Pfad des fehlerhaften Moduls: svchost.exe_SysMain2 Berichtskennung: svchost.exe_SysMain3 Vollständiger Name des fehlerhaften Pakets: svchost.exe_SysMain4 Anwendungs-ID, die relativ zum fehlerhaften Paket ist: svchost.exe_SysMain5 Error: (10/02/2015 03:52:23 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: CHRISTOPHERBKH) Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2147023584. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“. Error: (10/02/2015 03:52:24 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Name der fehlerhaften Anwendung: backgroundTaskHost.exe, Version: 10.0.10240.16384, Zeitstempel: 0x559f38c5 Name des fehlerhaften Moduls: Windows.Security.Authentication.Web.Core.dll, Version: 10.0.10240.16384, Zeitstempel: 0x559f39bf Ausnahmecode: 0xc0000409 Fehleroffset: 0x000000000006fc4c ID des fehlerhaften Prozesses: 0x70 Startzeit der fehlerhaften Anwendung: 0xbackgroundTaskHost.exe0 Pfad der fehlerhaften Anwendung: backgroundTaskHost.exe1 Pfad des fehlerhaften Moduls: backgroundTaskHost.exe2 Berichtskennung: backgroundTaskHost.exe3 Vollständiger Name des fehlerhaften Pakets: backgroundTaskHost.exe4 Anwendungs-ID, die relativ zum fehlerhaften Paket ist: backgroundTaskHost.exe5 Error: (10/02/2015 03:52:24 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Name der fehlerhaften Anwendung: svchost.exe_wuauserv, Version: 10.0.10240.16384, Zeitstempel: 0x559f38cb Name des fehlerhaften Moduls: Windows.Security.Authentication.Web.Core.dll, Version: 10.0.10240.16384, Zeitstempel: 0x559f39bf Ausnahmecode: 0xc0000409 Fehleroffset: 0x000000000006fc4c ID des fehlerhaften Prozesses: 0x1600 Startzeit der fehlerhaften Anwendung: 0xsvchost.exe_wuauserv0 Pfad der fehlerhaften Anwendung: svchost.exe_wuauserv1 Pfad des fehlerhaften Moduls: svchost.exe_wuauserv2 Berichtskennung: svchost.exe_wuauserv3 Vollständiger Name des fehlerhaften Pakets: svchost.exe_wuauserv4 Anwendungs-ID, die relativ zum fehlerhaften Paket ist: svchost.exe_wuauserv5 Error: (10/02/2015 03:52:21 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Name der fehlerhaften Anwendung: svchost.exe_wuauserv, Version: 10.0.10240.16384, Zeitstempel: 0x559f38cb Name des fehlerhaften Moduls: Windows.Security.Authentication.Web.Core.dll, Version: 10.0.10240.16384, Zeitstempel: 0x559f39bf Ausnahmecode: 0xc0000409 Fehleroffset: 0x000000000006fc4c ID des fehlerhaften Prozesses: 0x14e4 Startzeit der fehlerhaften Anwendung: 0xsvchost.exe_wuauserv0 Pfad der fehlerhaften Anwendung: svchost.exe_wuauserv1 Pfad des fehlerhaften Moduls: svchost.exe_wuauserv2 Berichtskennung: svchost.exe_wuauserv3 Vollständiger Name des fehlerhaften Pakets: svchost.exe_wuauserv4 Anwendungs-ID, die relativ zum fehlerhaften Paket ist: svchost.exe_wuauserv5 Error: (10/02/2015 03:52:21 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Name der fehlerhaften Anwendung: svchost.exe_LicenseManager, Version: 10.0.10240.16384, Zeitstempel: 0x559f38cb Name des fehlerhaften Moduls: Windows.Security.Authentication.Web.Core.dll, Version: 10.0.10240.16384, Zeitstempel: 0x559f39bf Ausnahmecode: 0xc0000409 Fehleroffset: 0x000000000006fc4c ID des fehlerhaften Prozesses: 0x1454 Startzeit der fehlerhaften Anwendung: 0xsvchost.exe_LicenseManager0 Pfad der fehlerhaften Anwendung: svchost.exe_LicenseManager1 Pfad des fehlerhaften Moduls: svchost.exe_LicenseManager2 Berichtskennung: svchost.exe_LicenseManager3 Vollständiger Name des fehlerhaften Pakets: svchost.exe_LicenseManager4 Anwendungs-ID, die relativ zum fehlerhaften Paket ist: svchost.exe_LicenseManager5 Error: (10/02/2015 03:37:23 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: CHRISTOPHERBKH) Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2147023584. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“. Error: (10/02/2015 03:37:21 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Name der fehlerhaften Anwendung: svchost.exe_wuauserv, Version: 10.0.10240.16384, Zeitstempel: 0x559f38cb Name des fehlerhaften Moduls: Windows.Security.Authentication.Web.Core.dll, Version: 10.0.10240.16384, Zeitstempel: 0x559f39bf Ausnahmecode: 0xc0000409 Fehleroffset: 0x000000000006fc4c ID des fehlerhaften Prozesses: 0x16a8 Startzeit der fehlerhaften Anwendung: 0xsvchost.exe_wuauserv0 Pfad der fehlerhaften Anwendung: svchost.exe_wuauserv1 Pfad des fehlerhaften Moduls: svchost.exe_wuauserv2 Berichtskennung: svchost.exe_wuauserv3 Vollständiger Name des fehlerhaften Pakets: svchost.exe_wuauserv4 Anwendungs-ID, die relativ zum fehlerhaften Paket ist: svchost.exe_wuauserv5 Error: (10/02/2015 03:37:21 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Name der fehlerhaften Anwendung: svchost.exe_LicenseManager, Version: 10.0.10240.16384, Zeitstempel: 0x559f38cb Name des fehlerhaften Moduls: Windows.Security.Authentication.Web.Core.dll, Version: 10.0.10240.16384, Zeitstempel: 0x559f39bf Ausnahmecode: 0xc0000409 Fehleroffset: 0x000000000006fc4c ID des fehlerhaften Prozesses: 0x1fb8 Startzeit der fehlerhaften Anwendung: 0xsvchost.exe_LicenseManager0 Pfad der fehlerhaften Anwendung: svchost.exe_LicenseManager1 Pfad des fehlerhaften Moduls: svchost.exe_LicenseManager2 Berichtskennung: svchost.exe_LicenseManager3 Vollständiger Name des fehlerhaften Pakets: svchost.exe_LicenseManager4 Anwendungs-ID, die relativ zum fehlerhaften Paket ist: svchost.exe_LicenseManager5 Systemfehler: ============= Error: (10/03/2015 12:48:07 PM) (Source: Service Control Manager) (EventID: 7024) (User: ) Description: Der Dienst "Windows Search" wurde mit dem folgenden dienstspezifischen Fehler beendet: %%2147500053 Error: (10/03/2015 12:44:21 PM) (Source: BugCheck) (EventID: 1001) (User: ) Description: 0x00000019 (0x0000000000000003, 0xffffc000ce3a3710, 0xffffc000ce3a3610, 0xffffc000ce3a3710)C:\WINDOWS\MEMORY.DMP100315-22546-01 Error: (10/03/2015 12:44:19 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: Das System wurde zuvor am 02.10.2015 um 03:42:29 unerwartet heruntergefahren. Error: (10/03/2015 12:19:18 PM) (Source: Service Control Manager) (EventID: 7032) (User: ) Description: Der Versuch des Dienststeuerungs-Managers, nach dem unerwarteten Beenden des Dienstes "Computerbrowser" Korrekturmaßnahmen (Neustart des Diensts) durchzuführen, ist fehlgeschlagen. Fehler: %%1056 Error: (10/03/2015 12:19:13 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Der Dienst "Synchronisierungshost_Session3" wurde mit folgendem Fehler beendet: %%1753 Error: (10/03/2015 12:16:25 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Der Dienst "Superfetch" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts. Error: (10/02/2015 03:54:21 AM) (Source: Service Control Manager) (EventID: 7032) (User: ) Description: Der Versuch des Dienststeuerungs-Managers, nach dem unerwarteten Beenden des Dienstes "Windows-Dienst für Schriftartencache" Korrekturmaßnahmen (Neustart des Diensts) durchzuführen, ist fehlgeschlagen. Fehler: %%1056 Error: (10/02/2015 03:54:11 AM) (Source: DCOM) (EventID: 10010) (User: CHRISTOPHERBKH) Description: Windows.Media.Capture.Internal.AppCaptureShell Error: (10/02/2015 03:52:24 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Dienst "Windows Update" wurde unerwartet beendet. Dies ist bereits 19 Mal passiert. Error: (10/02/2015 03:52:24 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Dienst "Benutzer-Manager" wurde unerwartet beendet. Dies ist bereits 19 Mal passiert. ==================== Speicherinformationen =========================== Prozessor: Intel(R) Core(TM) i5-4670K CPU @ 3.40GHz Prozentuale Nutzung des RAM: 30% Installierter physikalischer RAM: 8120.06 MB Verfügbarer physikalischer RAM: 5624.8 MB Summe virtueller Speicher: 9400.06 MB Verfügbarer virtueller Speicher: 6209.15 MB ==================== Laufwerke ================================ Drive c: () (Fixed) (Total:930.73 GB) (Free:586.18 GB) NTFS ==================== MBR & Partitionstabelle ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 1F9E0075) Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=930.7 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=450 MB) - (Type=27) ==================== Ende von Addition.txt ============================ |
03.10.2015, 13:15 | #6 |
| Wo API-Probleme (Api,ms-win-core-processthreads-l1-1-2.dll nicht gefunden) /häufige Bluescreens Lösung! Falls es dir hilft, hab ich hier noch den Bluescreenview-Log für dich. Danke dir burningice! Code:
ATTFilter ================================================== Dump File : 100315-22546-01.dmp Crash Time : 03.10.2015 12:43:24 Bug Check String : BAD_POOL_HEADER Bug Check Code : 0x00000019 Parameter 1 : 00000000`00000003 Parameter 2 : ffffc000`ce3a3710 Parameter 3 : ffffc000`ce3a3610 Parameter 4 : ffffc000`ce3a3710 Caused By Driver : ntoskrnl.exe Caused By Address : ntoskrnl.exe+14e240 File Description : Product Name : Company : File Version : Processor : x64 Crash Address : ntoskrnl.exe+14e240 Stack Address 1 : Stack Address 2 : Stack Address 3 : Computer Name : Full Path : C:\WINDOWS\Minidump\100315-22546-01.dmp Processors Count : 4 Major Version : 15 Minor Version : 10240 Dump File Size : 368.184 Dump File Time : 03.10.2015 12:44:21 ================================================== ================================================== Dump File : 093015-27421-01.dmp Crash Time : 30.09.2015 22:23:55 Bug Check String : SYSTEM_SERVICE_EXCEPTION Bug Check Code : 0x0000003b Parameter 1 : 00000000`c0000005 Parameter 2 : fffff803`13a91bff Parameter 3 : ffffd000`23192b90 Parameter 4 : 00000000`00000000 Caused By Driver : ntoskrnl.exe Caused By Address : ntoskrnl.exe+14e240 File Description : Product Name : Company : File Version : Processor : x64 Crash Address : ntoskrnl.exe+14e240 Stack Address 1 : Stack Address 2 : Stack Address 3 : Computer Name : Full Path : C:\WINDOWS\Minidump\093015-27421-01.dmp Processors Count : 4 Major Version : 15 Minor Version : 10240 Dump File Size : 352.968 Dump File Time : 30.09.2015 22:25:57 ================================================== ================================================== Dump File : 092915-18843-01.dmp Crash Time : 29.09.2015 03:41:34 Bug Check String : PAGE_FAULT_IN_NONPAGED_AREA Bug Check Code : 0x00000050 Parameter 1 : ffffc001`224e9630 Parameter 2 : 00000000`00000002 Parameter 3 : fffff800`07abd126 Parameter 4 : 00000000`00000000 Caused By Driver : ntoskrnl.exe Caused By Address : ntoskrnl.exe+14e240 File Description : Product Name : Company : File Version : Processor : x64 Crash Address : ntoskrnl.exe+14e240 Stack Address 1 : Stack Address 2 : Stack Address 3 : Computer Name : Full Path : C:\WINDOWS\Minidump\092915-18843-01.dmp Processors Count : 4 Major Version : 15 Minor Version : 10240 Dump File Size : 352.920 Dump File Time : 29.09.2015 20:45:07 ================================================== ================================================== Dump File : 092815-20640-01.dmp Crash Time : 28.09.2015 23:32:26 Bug Check String : BAD_POOL_HEADER Bug Check Code : 0x00000019 Parameter 1 : 00000000`00000025 Parameter 2 : 00000000`00000008 Parameter 3 : 00000000`00000001 Parameter 4 : fffff901`401f0690 Caused By Driver : ntoskrnl.exe Caused By Address : ntoskrnl.exe+14e240 File Description : Product Name : Company : File Version : Processor : x64 Crash Address : ntoskrnl.exe+14e240 Stack Address 1 : Stack Address 2 : Stack Address 3 : Computer Name : Full Path : C:\WINDOWS\Minidump\092815-20640-01.dmp Processors Count : 4 Major Version : 15 Minor Version : 10240 Dump File Size : 353.840 Dump File Time : 28.09.2015 23:33:24 ================================================== ================================================== Dump File : 092615-22437-01.dmp Crash Time : 26.09.2015 00:38:27 Bug Check String : Bug Check Code : 0x0000012b Parameter 1 : ffffffff`c00002c4 Parameter 2 : 00000000`0000077c Parameter 3 : 000000b2`94826990 Parameter 4 : ffffd000`24a52000 Caused By Driver : ntoskrnl.exe Caused By Address : ntoskrnl.exe+14e240 File Description : Product Name : Company : File Version : Processor : x64 Crash Address : ntoskrnl.exe+14e240 Stack Address 1 : Stack Address 2 : Stack Address 3 : Computer Name : Full Path : C:\WINDOWS\Minidump\092615-22437-01.dmp Processors Count : 4 Major Version : 15 Minor Version : 10240 Dump File Size : 353.848 Dump File Time : 26.09.2015 00:39:22 ================================================== ================================================== Dump File : 092415-23375-01.dmp Crash Time : 24.09.2015 19:05:45 Bug Check String : BAD_POOL_HEADER Bug Check Code : 0x00000019 Parameter 1 : 00000000`00000003 Parameter 2 : ffffc001`fb15c250 Parameter 3 : 0020006d`00610072 Parameter 4 : ffffc001`fb15c250 Caused By Driver : NTFS.sys Caused By Address : NTFS.sys+cb4ae File Description : Product Name : Company : File Version : Processor : x64 Crash Address : ntoskrnl.exe+14e240 Stack Address 1 : Stack Address 2 : Stack Address 3 : Computer Name : Full Path : C:\WINDOWS\Minidump\092415-23375-01.dmp Processors Count : 4 Major Version : 15 Minor Version : 10240 Dump File Size : 367.856 Dump File Time : 24.09.2015 19:06:42 ================================================== ================================================== Dump File : 092315-23296-01.dmp Crash Time : 23.09.2015 14:53:55 Bug Check String : Bug Check Code : 0x00000139 Parameter 1 : 00000000`00000003 Parameter 2 : ffffd000`204cb590 Parameter 3 : ffffd000`204cb4e8 Parameter 4 : 00000000`00000000 Caused By Driver : ntoskrnl.exe Caused By Address : ntoskrnl.exe+14e240 File Description : Product Name : Company : File Version : Processor : x64 Crash Address : ntoskrnl.exe+14e240 Stack Address 1 : Stack Address 2 : Stack Address 3 : Computer Name : Full Path : C:\WINDOWS\Minidump\092315-23296-01.dmp Processors Count : 4 Major Version : 15 Minor Version : 10240 Dump File Size : 361.272 Dump File Time : 23.09.2015 14:54:55 ================================================== ================================================== Dump File : 092215-19796-01.dmp Crash Time : 22.09.2015 17:37:28 Bug Check String : MEMORY_MANAGEMENT Bug Check Code : 0x0000001a Parameter 1 : 00000000`00006000 Parameter 2 : ffffe001`867b62f0 Parameter 3 : ffffffff`c0000225 Parameter 4 : 00000000`00000000 Caused By Driver : ntoskrnl.exe Caused By Address : ntoskrnl.exe+14e240 File Description : Product Name : Company : File Version : Processor : x64 Crash Address : ntoskrnl.exe+14e240 Stack Address 1 : Stack Address 2 : Stack Address 3 : Computer Name : Full Path : C:\WINDOWS\Minidump\092215-19796-01.dmp Processors Count : 4 Major Version : 15 Minor Version : 10240 Dump File Size : 353.848 Dump File Time : 22.09.2015 17:38:20 ================================================== ================================================== Dump File : 092115-20734-01.dmp Crash Time : 21.09.2015 01:18:31 Bug Check String : Bug Check Code : 0x0000012b Parameter 1 : ffffffff`c00002c4 Parameter 2 : 00000000`00000d23 Parameter 3 : 000000b9`03d20930 Parameter 4 : ffffd000`23f4d000 Caused By Driver : ntoskrnl.exe Caused By Address : ntoskrnl.exe+14e240 File Description : Product Name : Company : File Version : Processor : x64 Crash Address : ntoskrnl.exe+14e240 Stack Address 1 : Stack Address 2 : Stack Address 3 : Computer Name : Full Path : C:\WINDOWS\Minidump\092115-20734-01.dmp Processors Count : 4 Major Version : 15 Minor Version : 10240 Dump File Size : 353.840 Dump File Time : 21.09.2015 01:19:27 ================================================== ================================================== Dump File : 092015-20906-01.dmp Crash Time : 20.09.2015 18:20:14 Bug Check String : SYSTEM_THREAD_EXCEPTION_NOT_HANDLED Bug Check Code : 0x1000007e Parameter 1 : ffffffff`c0000005 Parameter 2 : fffff800`a6630995 Parameter 3 : ffffd000`212ea4b8 Parameter 4 : ffffd000`212e9cd0 Caused By Driver : NTFS.sys Caused By Address : NTFS.sys+bc8f4 File Description : Product Name : Company : File Version : Processor : x64 Crash Address : NTFS.sys+100995 Stack Address 1 : Stack Address 2 : Stack Address 3 : Computer Name : Full Path : C:\WINDOWS\Minidump\092015-20906-01.dmp Processors Count : 4 Major Version : 15 Minor Version : 10240 Dump File Size : 352.768 Dump File Time : 20.09.2015 18:21:09 ================================================== ================================================== Dump File : 092015-19984-01.dmp Crash Time : 20.09.2015 16:23:46 Bug Check String : Bug Check Code : 0x0000012b Parameter 1 : ffffffff`c00002c4 Parameter 2 : 00000000`00000b24 Parameter 3 : 000000b9`829c1ae0 Parameter 4 : ffffd000`2c6a6000 Caused By Driver : ntoskrnl.exe Caused By Address : ntoskrnl.exe+14e240 File Description : Product Name : Company : File Version : Processor : x64 Crash Address : ntoskrnl.exe+14e240 Stack Address 1 : Stack Address 2 : Stack Address 3 : Computer Name : Full Path : C:\WINDOWS\Minidump\092015-19984-01.dmp Processors Count : 4 Major Version : 15 Minor Version : 10240 Dump File Size : 353.512 Dump File Time : 20.09.2015 16:24:54 ================================================== ================================================== Dump File : 091915-22500-01.dmp Crash Time : 19.09.2015 21:52:50 Bug Check String : SYSTEM_THREAD_EXCEPTION_NOT_HANDLED Bug Check Code : 0x1000007e Parameter 1 : ffffffff`c0000005 Parameter 2 : fffff801`96f07557 Parameter 3 : ffffd000`231d0e68 Parameter 4 : ffffd000`231d0680 Caused By Driver : FLTMGR.SYS Caused By Address : FLTMGR.SYS+33d23 File Description : Product Name : Company : File Version : Processor : x64 Crash Address : FLTMGR.SYS+7557 Stack Address 1 : Stack Address 2 : Stack Address 3 : Computer Name : Full Path : C:\WINDOWS\Minidump\091915-22500-01.dmp Processors Count : 4 Major Version : 15 Minor Version : 10240 Dump File Size : 353.512 Dump File Time : 19.09.2015 21:53:47 ================================================== ================================================== Dump File : 091915-27640-01.dmp Crash Time : 19.09.2015 15:32:37 Bug Check String : Bug Check Code : 0x00000133 Parameter 1 : 00000000`00000001 Parameter 2 : 00000000`00001e00 Parameter 3 : 00000000`00000000 Parameter 4 : 00000000`00000000 Caused By Driver : Caused By Address : File Description : Product Name : Company : File Version : Processor : x64 Crash Address : Stack Address 1 : Stack Address 2 : Stack Address 3 : Computer Name : Full Path : C:\WINDOWS\Minidump\091915-27640-01.dmp Processors Count : 4 Major Version : 15 Minor Version : 10240 Dump File Size : 353.520 Dump File Time : 19.09.2015 15:33:55 ================================================== ================================================== Dump File : 091615-26484-01.dmp Crash Time : 16.09.2015 17:39:17 Bug Check String : Bug Check Code : 0x0000012b Parameter 1 : ffffffff`c00002c4 Parameter 2 : 00000000`0000098b Parameter 3 : 00000060`90afaca0 Parameter 4 : ffffd000`21e74000 Caused By Driver : ntoskrnl.exe Caused By Address : ntoskrnl.exe+14e240 File Description : Product Name : Company : File Version : Processor : x64 Crash Address : ntoskrnl.exe+14e240 Stack Address 1 : Stack Address 2 : Stack Address 3 : Computer Name : Full Path : C:\WINDOWS\Minidump\091615-26484-01.dmp Processors Count : 4 Major Version : 15 Minor Version : 10240 Dump File Size : 331.336 Dump File Time : 16.09.2015 17:41:03 ================================================== ================================================== Dump File : 091415-29328-01.dmp Crash Time : 14.09.2015 20:45:10 Bug Check String : SYSTEM_SERVICE_EXCEPTION Bug Check Code : 0x0000003b Parameter 1 : 00000000`c0000005 Parameter 2 : fffff802`deccaee4 Parameter 3 : ffffd001`cba4c710 Parameter 4 : 00000000`00000000 Caused By Driver : ntoskrnl.exe Caused By Address : ntoskrnl.exe+14e240 File Description : Product Name : Company : File Version : Processor : x64 Crash Address : ntoskrnl.exe+14e240 Stack Address 1 : Stack Address 2 : Stack Address 3 : Computer Name : Full Path : C:\WINDOWS\Minidump\091415-29328-01.dmp Processors Count : 4 Major Version : 15 Minor Version : 10240 Dump File Size : 330.024 Dump File Time : 14.09.2015 20:47:12 ================================================== ================================================== Dump File : 091315-23718-01.dmp Crash Time : 13.09.2015 19:59:54 Bug Check String : SYSTEM_THREAD_EXCEPTION_NOT_HANDLED Bug Check Code : 0x1000007e Parameter 1 : ffffffff`c0000005 Parameter 2 : fffff800`a3cefec8 Parameter 3 : ffffd000`214ec698 Parameter 4 : ffffd000`214ebeb0 Caused By Driver : NTFS.sys Caused By Address : NTFS.sys+be7cb File Description : Product Name : Company : File Version : Processor : x64 Crash Address : NTFS.sys+1afec8 Stack Address 1 : Stack Address 2 : Stack Address 3 : Computer Name : Full Path : C:\WINDOWS\Minidump\091315-23718-01.dmp Processors Count : 4 Major Version : 15 Minor Version : 10240 Dump File Size : 328.264 Dump File Time : 13.09.2015 20:00:50 ================================================== ================================================== Dump File : 091315-24984-01.dmp Crash Time : 13.09.2015 18:03:35 Bug Check String : SYSTEM_THREAD_EXCEPTION_NOT_HANDLED Bug Check Code : 0x1000007e Parameter 1 : ffffffff`c0000005 Parameter 2 : fffff801`6ea0c4be Parameter 3 : ffffd000`25d694b8 Parameter 4 : ffffd000`25d68cd0 Caused By Driver : NTFS.sys Caused By Address : NTFS.sys+bc50a File Description : Product Name : Company : File Version : Processor : x64 Crash Address : NTFS.sys+c4be Stack Address 1 : Stack Address 2 : Stack Address 3 : Computer Name : Full Path : C:\WINDOWS\Minidump\091315-24984-01.dmp Processors Count : 4 Major Version : 15 Minor Version : 10240 Dump File Size : 329.784 Dump File Time : 13.09.2015 18:04:38 ================================================== ================================================== Dump File : 091215-19984-01.dmp Crash Time : 12.09.2015 23:51:39 Bug Check String : Bug Check Code : 0x00000109 Parameter 1 : a3a01f59`110b86c3 Parameter 2 : b3b72bdf`63892e3e Parameter 3 : fffff802`a540c4ce Parameter 4 : 00000000`00000001 Caused By Driver : ntoskrnl.exe Caused By Address : ntoskrnl.exe+14e240 File Description : Product Name : Company : File Version : Processor : x64 Crash Address : ntoskrnl.exe+14e240 Stack Address 1 : Stack Address 2 : Stack Address 3 : Computer Name : Full Path : C:\WINDOWS\Minidump\091215-19984-01.dmp Processors Count : 4 Major Version : 15 Minor Version : 10240 Dump File Size : 334.736 Dump File Time : 12.09.2015 23:52:31 ================================================== ================================================== Dump File : 091015-23890-01.dmp Crash Time : 10.09.2015 21:21:58 Bug Check String : Bug Check Code : 0x00000133 Parameter 1 : 00000000`00000001 Parameter 2 : 00000000`00001e00 Parameter 3 : 00000000`00000000 Parameter 4 : 00000000`00000000 Caused By Driver : ntoskrnl.exe Caused By Address : ntoskrnl.exe+14e240 File Description : Product Name : Company : File Version : Processor : x64 Crash Address : ntoskrnl.exe+14e240 Stack Address 1 : Stack Address 2 : Stack Address 3 : Computer Name : Full Path : C:\WINDOWS\Minidump\091015-23890-01.dmp Processors Count : 4 Major Version : 15 Minor Version : 10240 Dump File Size : 335.896 Dump File Time : 10.09.2015 21:23:30 ================================================== ================================================== Dump File : 090715-18812-01.dmp Crash Time : 07.09.2015 04:38:55 Bug Check String : INTERNAL_POWER_ERROR Bug Check Code : 0x000000a0 Parameter 1 : 00000000`0000010e Parameter 2 : 00000000`0000000a Parameter 3 : 00000000`0000bff7 Parameter 4 : 00000000`000085ba Caused By Driver : crashdmp.sys Caused By Address : crashdmp.sys+6e38 File Description : Product Name : Company : File Version : Processor : x64 Crash Address : ntoskrnl.exe+14e240 Stack Address 1 : Stack Address 2 : Stack Address 3 : Computer Name : Full Path : C:\WINDOWS\Minidump\090715-18812-01.dmp Processors Count : 4 Major Version : 15 Minor Version : 10240 Dump File Size : 92.672 Dump File Time : 07.09.2015 23:14:09 ================================================== ================================================== Dump File : 090615-27890-01.dmp Crash Time : 06.09.2015 19:31:51 Bug Check String : MEMORY_MANAGEMENT Bug Check Code : 0x0000001a Parameter 1 : 00000000`00041792 Parameter 2 : fffff680`0000ee58 Parameter 3 : 00040000`00000000 Parameter 4 : 00000000`00000000 Caused By Driver : ntoskrnl.exe Caused By Address : ntoskrnl.exe+14e240 File Description : Product Name : Company : File Version : Processor : x64 Crash Address : ntoskrnl.exe+14e240 Stack Address 1 : Stack Address 2 : Stack Address 3 : Computer Name : Full Path : C:\WINDOWS\Minidump\090615-27890-01.dmp Processors Count : 4 Major Version : 15 Minor Version : 10240 Dump File Size : 339.792 Dump File Time : 06.09.2015 19:33:22 ================================================== ================================================== Dump File : 090515-22046-01.dmp Crash Time : 05.09.2015 22:56:55 Bug Check String : BAD_POOL_HEADER Bug Check Code : 0x00000019 Parameter 1 : 00000000`00000025 Parameter 2 : 00000000`00000044 Parameter 3 : 00000000`00000005 Parameter 4 : ffffc001`b80f5820 Caused By Driver : NTFS.sys Caused By Address : NTFS.sys+76480 File Description : Product Name : Company : File Version : Processor : x64 Crash Address : ntoskrnl.exe+14e240 Stack Address 1 : Stack Address 2 : Stack Address 3 : Computer Name : Full Path : C:\WINDOWS\Minidump\090515-22046-01.dmp Processors Count : 4 Major Version : 15 Minor Version : 10240 Dump File Size : 328.072 Dump File Time : 05.09.2015 22:57:50 ================================================== ================================================== Dump File : 090515-27968-01.dmp Crash Time : 05.09.2015 16:18:12 Bug Check String : Bug Check Code : 0x00000139 Parameter 1 : 00000000`00000003 Parameter 2 : ffffd001`0f3e1510 Parameter 3 : ffffd001`0f3e1468 Parameter 4 : 00000000`00000000 Caused By Driver : ntoskrnl.exe Caused By Address : ntoskrnl.exe+14e240 File Description : Product Name : Company : File Version : Processor : x64 Crash Address : ntoskrnl.exe+14e240 Stack Address 1 : Stack Address 2 : Stack Address 3 : Computer Name : Full Path : C:\WINDOWS\Minidump\090515-27968-01.dmp Processors Count : 4 Major Version : 15 Minor Version : 10240 Dump File Size : 331.424 Dump File Time : 05.09.2015 16:19:52 ================================================== ================================================== Dump File : 082615-19109-01.dmp Crash Time : 26.08.2015 14:46:50 Bug Check String : SYSTEM_THREAD_EXCEPTION_NOT_HANDLED Bug Check Code : 0x1000007e Parameter 1 : ffffffff`c0000005 Parameter 2 : fffff800`8665ea0e Parameter 3 : ffffd000`26ad7328 Parameter 4 : ffffd000`26ad6b40 Caused By Driver : FLTMGR.SYS Caused By Address : FLTMGR.SYS+24000 File Description : Product Name : Company : File Version : Processor : x64 Crash Address : Stack Address 1 : Stack Address 2 : Stack Address 3 : Computer Name : Full Path : C:\WINDOWS\Minidump\082615-19109-01.dmp Processors Count : 4 Major Version : 15 Minor Version : 10240 Dump File Size : 343.384 Dump File Time : 26.08.2015 14:48:18 ================================================== ================================================== Dump File : 082515-27531-01.dmp Crash Time : 25.08.2015 21:44:10 Bug Check String : Bug Check Code : 0x00000133 Parameter 1 : 00000000`00000001 Parameter 2 : 00000000`00001e00 Parameter 3 : 00000000`00000000 Parameter 4 : 00000000`00000000 Caused By Driver : ntoskrnl.exe Caused By Address : ntoskrnl.exe+14dd00 File Description : Product Name : Company : File Version : Processor : x64 Crash Address : ntoskrnl.exe+14dd00 Stack Address 1 : Stack Address 2 : Stack Address 3 : Computer Name : Full Path : C:\WINDOWS\Minidump\082515-27531-01.dmp Processors Count : 4 Major Version : 15 Minor Version : 10240 Dump File Size : 342.656 Dump File Time : 25.08.2015 21:45:50 ================================================== ================================================== Dump File : 082415-31609-01.dmp Crash Time : 24.08.2015 12:12:24 Bug Check String : MEMORY_MANAGEMENT Bug Check Code : 0x0000001a Parameter 1 : 00000000`00004477 Parameter 2 : 00000001`00000000 Parameter 3 : 00000000`00000000 Parameter 4 : 00000000`00000000 Caused By Driver : ntoskrnl.exe Caused By Address : ntoskrnl.exe+14dd00 File Description : Product Name : Company : File Version : Processor : x64 Crash Address : ntoskrnl.exe+14dd00 Stack Address 1 : Stack Address 2 : Stack Address 3 : Computer Name : Full Path : C:\WINDOWS\Minidump\082415-31609-01.dmp Processors Count : 4 Major Version : 15 Minor Version : 10240 Dump File Size : 345.840 Dump File Time : 24.08.2015 12:14:07 ================================================== ================================================== Dump File : 082315-26343-01.dmp Crash Time : 22.08.2015 13:43:00 Bug Check String : SYSTEM_THREAD_EXCEPTION_NOT_HANDLED Bug Check Code : 0x1000007e Parameter 1 : ffffffff`c0000005 Parameter 2 : fffff800`bdccfa0e Parameter 3 : ffffd000`221ac328 Parameter 4 : ffffd000`221abb40 Caused By Driver : WdFilter.sys Caused By Address : WdFilter.sys+331c5 File Description : Product Name : Company : File Version : Processor : x64 Crash Address : Stack Address 1 : Stack Address 2 : Stack Address 3 : Computer Name : Full Path : C:\WINDOWS\Minidump\082315-26343-01.dmp Processors Count : 4 Major Version : 15 Minor Version : 10240 Dump File Size : 342.304 Dump File Time : 23.08.2015 00:59:22 ================================================== ================================================== Dump File : 081515-28828-01.dmp Crash Time : 15.08.2015 22:01:17 Bug Check String : SYSTEM_THREAD_EXCEPTION_NOT_HANDLED Bug Check Code : 0x1000007e Parameter 1 : ffffffff`c0000005 Parameter 2 : fffff800`aa4def10 Parameter 3 : ffffd000`afc364f8 Parameter 4 : ffffd000`afc35d10 Caused By Driver : WindowsTrustedRTProxy.sys Caused By Address : WindowsTrustedRTProxy.sys+3fcf7a1 File Description : Product Name : Company : File Version : Processor : x64 Crash Address : WindowsTrustedRTProxy.sys+3f7ef10 Stack Address 1 : Stack Address 2 : Stack Address 3 : Computer Name : Full Path : C:\WINDOWS\Minidump\081515-28828-01.dmp Processors Count : 4 Major Version : 15 Minor Version : 10240 Dump File Size : 352.976 Dump File Time : 15.08.2015 22:03:24 ================================================== |
03.10.2015, 13:38 | #7 |
/// Malwareteam | API-Probleme (Api,ms-win-core-processthreads-l1-1-2.dll nicht gefunden) /häufige Bluescreens perfekt Arbeitsspeicherüberprüfung mit Memtest86+ Lade dir dazu folgendes Tool herunter: Memtest86+ - Advanced Memory Diagnostic Tool Ein dazugehöriges Tutorial: [HowTo] Wie testet man den RAM mit Memtest86+? Sobald rote Zeilen auf dem Schirm erscheinen, ist dein Arbeitsspeicher physikalisch beschädigt und es muss getauscht werden. |
Themen zu API-Probleme (Api,ms-win-core-processthreads-l1-1-2.dll nicht gefunden) /häufige Bluescreens |
.dll, alarm, bluescreen, bluescreens, checken, computer, cpu, datei, erneut, fehlermeldung, geschieht, gestartet, hallo zusammen, hochfahren, infos, installieren, problem, programm, rechner, tagen, taskmanager, viewer, virenprogramm, zusammen, öffnen |